$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: gaIcUfbaROgaPAidZO5E3lDwUTQ+qys9AlxBzCbQygU= Subject key identifier: 16:D9:DE:04:08:A1:58:DA:6A:E3:54:83:AE:76:AE:81:F6:FC:0C:29 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 0782 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 077C Signing time: Sat 26 Apr 2025 21:06:54 +0000 Manifest this update: Sat 26 Apr 2025 21:06:53 +0000 Manifest next update: Sat 03 May 2025 21:06:53 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: wDYoAxXrTAaiN7bGWLQXe9PVp9wYDjUUB7shZ86JspA=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: SKKgbqIxO8h2gMjhNkPa/ZI17L9sik+EpFHik6yG+pU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Apr 26 21:06:53 2025 GMT Not After : May 3 21:06:53 2025 GMT Subject: CN=680d4aee-600d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:d7:93:66:e6:f6:b1:08:46:73:9a:13:40: 70:c4:e7:99:2e:eb:c5:f3:75:13:0e:d0:34:78:2c: 9b:9e:d4:38:23:0b:53:62:e3:b4:7d:60:e5:db:59: f2:7d:20:15:74:8d:38:66:7a:6c:1c:ef:c9:d5:c6: c7:31:78:2b:79:6d:f3:85:ac:39:0e:39:96:ca:f1: 44:0b:91:26:50:f3:1b:22:45:09:5b:69:95:b8:70: 02:74:6f:62:42:25:54:81:18:89:cc:3e:85:2b:72: 55:1a:d7:1a:b2:80:57:6e:15:06:67:d6:e6:d2:b1: a9:71:7b:ca:02:b8:90:2b:95:e3:e0:7a:43:00:83: d3:8b:c9:a1:b4:f1:82:04:c8:19:59:c2:fa:e5:42: 05:41:65:66:44:33:ca:e9:7b:c8:b9:ad:04:65:76: 7c:a5:14:5a:f9:8e:ad:10:94:9e:3d:68:7b:bb:47: 9e:e1:13:b1:1b:d7:bc:be:07:8d:ce:96:e3:8d:18: f0:88:eb:ef:9e:f5:64:9f:6d:56:a4:4a:2f:e5:70: 5f:2f:78:8b:12:72:d4:27:dd:4b:64:75:c9:d7:19: f7:01:54:bd:93:ca:87:ce:2a:ac:f0:13:7e:f8:95: 77:dd:37:0f:06:67:e5:3a:c1:2f:a9:83:43:9a:26: e9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D9:DE:04:08:A1:58:DA:6A:E3:54:83:AE:76:AE:81:F6:FC:0C:29 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:35:a8:76:7c:2f:3f:f3:34:3f:ed:2c:23:6d:b7:72:08:17: a4:f6:22:8f:31:27:00:7d:18:e0:fc:19:8f:ce:0c:de:20:9a: c3:5c:ca:7f:66:f6:fd:ea:56:18:d8:de:ef:a1:0d:4f:25:1e: f7:f2:ff:10:13:a7:79:74:6f:d4:c9:ca:0f:76:00:a3:fc:04: af:c2:90:93:61:98:50:6d:8e:dc:82:78:0d:5a:bb:77:9f:9d: 8b:35:00:0e:64:f6:c7:e2:da:bc:9b:4a:0e:7a:73:8f:e2:e3: 43:a8:1e:c0:ce:bc:d7:c8:f1:2f:da:2a:03:06:63:3c:52:0e: f6:71:f8:55:0c:d8:12:44:77:6e:e0:d7:33:37:ad:23:2d:b7: 8b:b6:ab:d7:7b:11:56:5f:ea:cc:d0:ba:ad:ec:92:14:5a:95: 02:6a:75:93:ca:7d:17:3e:ba:10:89:d4:63:bc:27:46:bf:c0: 0a:f7:9a:90:29:71:03:96:6a:73:05:22:9e:61:71:de:7e:c9: dd:0d:5f:1a:7e:84:96:d3:94:e5:50:d3:b5:20:e7:0e:8d:47: e5:cd:d8:37:b5:70:fe:2d:59:01:d8:97:7a:37:92:24:bb:35: f3:b1:27:04:d9:1c:93:01:4e:6f:34:af:79:00:36:d8:65:c0: 97:76:b3:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUwNDI2MjEwNjUzWhcNMjUwNTAzMjEwNjUzWjAYMRYwFAYD VQQDEw02ODBkNGFlZS02MDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJTXk2bm9rEIRnOaE0BwxOeZLuvF83UTDtA0eCybntQ4IwtTYuO0fWDl21ny fSAVdI04ZnpsHO/J1cbHMXgreW3zhaw5DjmWyvFEC5EmUPMbIkUJW2mVuHACdG9i QiVUgRiJzD6FK3JVGtcasoBXbhUGZ9bm0rGpcXvKAriQK5Xj4HpDAIPTi8mhtPGC BMgZWcL65UIFQWVmRDPK6XvIua0EZXZ8pRRa+Y6tEJSePWh7u0ee4ROxG9e8vgeN zpbjjRjwiOvvnvVkn21WpEov5XBfL3iLEnLUJ91LZHXJ1xn3AVS9k8qHziqs8BN+ +JV33TcPBmflOsEvqYNDmibpTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbZ3gQI oVjaauNUg652roH2/AwpMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Nah2fC8/8zQ/7SwjbbdyCBek9iKPMScAfRjg/BmPzgzeIJrDXMp/ Zvb96lYY2N7voQ1PJR738v8QE6d5dG/UycoPdgCj/ASvwpCTYZhQbY7cgngNWrt3 n52LNQAOZPbH4tq8m0oOenOP4uNDqB7AzrzXyPEv2ioDBmM8Ug72cfhVDNgSRHdu 4NczN60jLbeLtqvXexFWX+rM0Lqt7JIUWpUCanWTyn0XProQidRjvCdGv8AK95qQ KXEDlmpzBSKeYXHefsndDV8afoSW05TlUNO1IOcOjUflzdg3tXD+LVkB2Jd6N5Ik uzXzsScE2RyTAU5vNK95ADbYZcCXdrPY -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:12 2025 by rpki-client on console.sobornost.net