$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.mft File: yjLVEUYqtCYYqI26BYaa_r6g5Ro.mft (raw, json) Hash identifier: Gv6lOFR339RytzD393NsbAKP9IyI9ABsRapOBs+r09Q= Subject key identifier: 44:07:0E:1D:E3:74:78:42:55:89:29:95:76:DF:15:23:FE:D9:21:47 Authority key identifier: CA:32:D5:11:46:2A:B4:26:18:A8:8D:BA:05:86:9A:FE:BE:A0:E5:1A Certificate issuer: /CN=A91F89C1/serialNumber=CA32D511462AB42618A88DBA05869AFEBEA0E51A Certificate serial: 065D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.mft Manifest number: 0657 Signing time: Sat 26 Apr 2025 22:08:24 +0000 Manifest this update: Sat 26 Apr 2025 22:08:24 +0000 Manifest next update: Sat 03 May 2025 22:08:24 +0000 Files and hashes: 1: yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl (hash: /A9LIxmLglIh5NPK2nrbkLEaLZqIjAakvg+l3d44Be8=) 2: 89283C80809211EB938F4016C4F9AE02.roa (hash: macE2NFUWcDcrdQSGzCQPdT+j1HMD3PGg+S93KaJKT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1629 (0x65d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1, serialNumber=CA32D511462AB42618A88DBA05869AFEBEA0E51A Validity Not Before: Apr 26 22:08:24 2025 GMT Not After : May 3 22:08:24 2025 GMT Subject: CN=680d5958-e170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:44:0f:42:3b:e8:4a:cf:22:8d:0d:4d:ae: e2:47:07:4c:ef:5d:c2:74:14:10:98:8a:9c:d3:18: 68:21:54:3a:c6:0a:bc:ff:6c:9c:bb:c4:15:02:54: 18:54:1b:bb:64:c3:a7:35:34:c0:4b:f2:b4:93:fa: 8a:03:ac:d6:9b:24:03:65:b9:1d:94:76:8d:a8:3f: 42:fd:e6:f6:d7:5f:0b:01:52:24:5b:56:5e:d6:58: cb:c4:29:72:47:6b:8e:6a:20:8c:7b:92:39:30:5b: a6:cd:27:7c:d5:82:78:73:45:84:ff:60:68:73:fb: 17:8d:50:00:de:94:ff:e9:ad:c8:cf:78:35:22:08: 4d:d4:ea:f4:e0:37:1f:6b:53:3a:37:39:a8:a6:5e: d9:d1:f3:9a:50:80:5a:3f:17:8d:c3:aa:ff:5d:c7: 45:ea:63:d1:f6:88:8c:e1:c6:f7:b3:02:24:fb:f7: 29:6c:31:21:32:02:93:36:2d:53:c3:0e:72:37:f1: 3f:fd:93:d9:40:2a:e0:a6:3e:be:7e:86:04:d8:52: 52:81:c8:e7:1b:3d:54:8e:c0:ed:4f:cb:8f:48:41: 74:25:d8:7b:d7:e7:98:5e:2c:e8:31:54:a8:53:b5: d4:2e:82:59:46:8e:5b:51:ac:93:73:38:16:26:38: 7b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:07:0E:1D:E3:74:78:42:55:89:29:95:76:DF:15:23:FE:D9:21:47 X509v3 Authority Key Identifier: keyid:CA:32:D5:11:46:2A:B4:26:18:A8:8D:BA:05:86:9A:FE:BE:A0:E5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:04:18:4f:58:80:04:d5:44:dd:01:b9:fa:53:8c:a1:08:e8: ee:2b:2f:6c:a0:2b:66:5f:39:9d:a7:9f:26:d9:be:52:a1:2e: 5e:a8:e5:87:6d:5a:eb:40:f5:68:51:ea:6f:db:12:e2:b4:ff: eb:2f:32:3e:5b:89:b1:fc:c9:53:1b:82:aa:42:e6:aa:1d:59: 31:37:f3:e1:9e:d2:d5:bf:1e:93:85:50:be:04:3a:d9:93:39: f4:d9:b5:2c:2a:e5:b0:3d:d2:ac:54:67:a4:fc:f4:d2:f8:08: 70:5e:47:29:6c:46:30:b5:e0:2a:c2:b0:74:89:71:38:e6:00: 83:24:ca:bb:5c:97:50:4e:b3:ec:fe:44:0a:7e:c3:a1:f3:8a: 42:90:89:70:47:08:c6:18:72:11:27:c5:24:4f:42:90:9e:2a: 8b:e5:24:2e:79:a2:ac:17:be:d5:7a:ae:50:9e:33:39:51:62: 2e:fa:84:32:8d:01:59:4c:1a:c0:ef:2b:6d:df:93:80:4a:38: 39:f6:91:35:23:b0:76:a2:b4:38:25:d1:20:17:06:4f:04:ba: b0:a1:66:c4:02:88:4d:ec:dd:8d:c0:b3:8b:21:9c:17:b9:76: 2e:29:06:c7:72:3d:ef:a0:9c:c6:b5:81:83:12:4b:fa:40:e9: 69:ce:94:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKENBMzJENTExNDYyQUI0MjYxOEE4OERCQTA1ODY5QUZF QkVBMEU1MUEwHhcNMjUwNDI2MjIwODI0WhcNMjUwNTAzMjIwODI0WjAYMRYwFAYD VQQDEw02ODBkNTk1OC1lMTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OxED0I76ErPIo0NTa7iRwdM713CdBQQmIqc0xhoIVQ6xgq8/2ycu8QVAlQY VBu7ZMOnNTTAS/K0k/qKA6zWmyQDZbkdlHaNqD9C/eb2118LAVIkW1Ze1ljLxCly R2uOaiCMe5I5MFumzSd81YJ4c0WE/2Boc/sXjVAA3pT/6a3Iz3g1IghN1Or04Dcf a1M6Nzmopl7Z0fOaUIBaPxeNw6r/XcdF6mPR9oiM4cb3swIk+/cpbDEhMgKTNi1T ww5yN/E//ZPZQCrgpj6+foYE2FJSgcjnGz1UjsDtT8uPSEF0Jdh71+eYXizoMVSo U7XULoJZRo5bUayTczgWJjh7OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQHDh3j dHhCVYkplXbfFSP+2SFHMB8GA1UdIwQYMBaAFMoy1RFGKrQmGKiNugWGmv6+oOUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8xM0VENjgwMjgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi95akxWRVVZcXRDWVlxSTI2QllhYV9yNmc1 Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lqTFZFVVlxdENZWXFJMjZCWWFhX3I2ZzVSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlDMS8xM0VENjgwMjgwODYxMUVCQjRDNkQxMTZDNEY5QUUwMi95akxWRVVZcXRD WVlxSTI2QllhYV9yNmc1Um8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARBBhPWIAE1UTdAbn6U4yhCOjuKy9soCtmXzmdp58m2b5SoS5eqOWH bVrrQPVoUepv2xLitP/rLzI+W4mx/MlTG4KqQuaqHVkxN/PhntLVvx6ThVC+BDrZ kzn02bUsKuWwPdKsVGek/PTS+AhwXkcpbEYwteAqwrB0iXE45gCDJMq7XJdQTrPs /kQKfsOh84pCkIlwRwjGGHIRJ8UkT0KQniqL5SQueaKsF77Veq5QnjM5UWIu+oQy jQFZTBrA7ytt35OASjg59pE1I7B2orQ4JdEgFwZPBLqwoWbEAohN7N2NwLOLIZwX uXYuKQbHcj3voJzGtYGDEkv6QOlpzpRl -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:18 2025 by rpki-client on console.sobornost.net