$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft File: pcdj6Klfa5qyQRNgHagVOhWRJu4.mft (raw, json) Hash identifier: A0B+FzaztjP/HET/Gy0qsckjGT+dYvyWnjMR9vm9sQw= Subject key identifier: 22:77:67:BF:D6:6C:8A:6F:16:2F:61:8C:3B:05:BC:D5:A1:0C:B0:E6 Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft Manifest number: 0647 Signing time: Sat 26 Apr 2025 22:18:00 +0000 Manifest this update: Sat 26 Apr 2025 22:17:59 +0000 Manifest next update: Sat 03 May 2025 22:17:59 +0000 Files and hashes: 1: pcdj6Klfa5qyQRNgHagVOhWRJu4.crl (hash: retDEn2oPy1iB8YKvx5d004YTyWlhPC9ULieqlLcEas=) 2: 45FE96F6A5F611EFA16E4B2FC4F9AE02.roa (hash: QKxHtK6gPEt6tq1AwAFxqNPlRptJP4WLysqBYZDRn14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53D, serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Validity Not Before: Apr 26 22:17:59 2025 GMT Not After : May 3 22:17:59 2025 GMT Subject: CN=680d5b98-68d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1d:5e:e4:ce:1d:99:1d:ec:84:c6:76:d7:5a: ce:a8:ae:1d:fb:e8:2f:31:71:8a:c4:10:d7:a9:b2: 85:11:1b:d2:ac:d9:3a:9e:e1:0a:c7:22:31:a9:1b: 33:da:30:ce:93:91:40:ab:2d:ef:f7:4c:39:de:33: 53:4a:ff:da:4b:e7:9a:24:0d:99:fe:c4:9b:88:a2: 02:8c:d1:ac:b3:e4:76:a9:24:51:4e:22:82:38:d7: d0:c0:ab:48:a6:4a:07:65:2e:73:6b:90:42:46:0d: 41:4b:e7:e2:8d:50:86:7a:a8:cf:2b:55:23:e5:a6: 89:4c:d7:e8:eb:ec:1a:24:4b:89:c0:f0:47:5d:75: bc:fa:84:19:bb:28:fb:5d:f9:f1:5c:17:49:18:8d: 1c:b0:ec:e7:8f:56:ce:2a:ab:c0:0b:6b:b5:e0:eb: 2f:1d:ee:a9:f8:7d:f4:aa:ed:a1:dc:b3:8c:2d:ac: 64:6c:fe:25:7d:4e:72:8e:c3:20:f3:2b:dc:f0:6e: 8b:11:64:a3:a5:a6:6e:37:9b:79:b0:09:5f:55:01: b6:be:f5:0a:74:d9:7c:8c:86:57:23:44:ac:bf:cc: aa:5f:7b:8a:13:04:c9:54:30:f6:92:37:85:62:e3: 5b:3e:3a:13:e5:de:d5:b2:4c:ea:be:78:83:7b:27: 4e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:77:67:BF:D6:6C:8A:6F:16:2F:61:8C:3B:05:BC:D5:A1:0C:B0:E6 X509v3 Authority Key Identifier: keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b9:a7:6a:95:de:87:41:94:60:c4:c1:b7:07:b0:8b:23:cb: 74:9a:0e:79:1b:72:b9:21:62:cf:e7:08:02:e2:2c:a8:8e:0e: b4:ac:75:31:14:12:33:22:ba:83:62:c0:b6:91:f6:8e:f6:4c: bd:79:d2:ef:aa:6a:66:e3:d4:bd:c4:95:fd:e5:fc:51:5f:31: a6:f3:f3:31:a9:b6:f3:48:77:f2:c7:ea:b8:38:53:ee:e3:ba: d0:49:a0:17:a0:2f:55:69:ec:a6:a8:df:59:19:9e:54:5f:49: 15:87:06:ef:6b:b9:81:2f:ae:97:be:bc:84:9e:da:26:6e:85: 00:1a:fd:c6:1d:d2:bf:8e:20:ab:eb:a4:fb:38:12:90:06:33: 52:68:d2:dd:5f:f5:b7:e6:c8:f6:39:2e:a5:95:4a:7b:82:da: 6b:dd:fa:14:3d:da:48:32:49:ac:99:75:97:0c:af:5c:71:d6: 18:4f:58:f1:f4:bf:43:84:ca:fa:75:f1:f7:ad:cf:f3:b6:db: e0:59:a9:68:b2:7f:2f:6d:6f:c0:aa:9e:0c:00:57:9b:86:df: bf:87:0f:1a:89:d8:aa:e1:eb:11:2b:77:f7:c0:aa:8c:fa:b3: 62:ff:7c:eb:9c:99:4e:33:6b:46:81:ca:e2:95:5d:ee:81:bb: d3:bb:c2:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0QxMTAvBgNVBAUTKEE1Qzc2M0U4QTk1RjZCOUFCMjQxMTM2MDFEQTgxNTNB MTU5MTI2RUUwHhcNMjUwNDI2MjIxNzU5WhcNMjUwNTAzMjIxNzU5WjAYMRYwFAYD VQQDEw02ODBkNWI5OC02OGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtx1e5M4dmR3shMZ211rOqK4d++gvMXGKxBDXqbKFERvSrNk6nuEKxyIxqRsz 2jDOk5FAqy3v90w53jNTSv/aS+eaJA2Z/sSbiKICjNGss+R2qSRRTiKCONfQwKtI pkoHZS5za5BCRg1BS+fijVCGeqjPK1Uj5aaJTNfo6+waJEuJwPBHXXW8+oQZuyj7 XfnxXBdJGI0csOznj1bOKqvAC2u14OsvHe6p+H30qu2h3LOMLaxkbP4lfU5yjsMg 8yvc8G6LEWSjpaZuN5t5sAlfVQG2vvUKdNl8jIZXI0Ssv8yqX3uKEwTJVDD2kjeF YuNbPjoT5d7VskzqvniDeydOKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJ3Z7/W bIpvFi9hjDsFvNWhDLDmMB8GA1UdIwQYMBaAFKXHY+ipX2uaskETYB2oFToVkSbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzRC84NEI1OEY2NjhD RkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1cXlRUk5nSGFnVk9oV1JK dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjZGo2S2xmYTVxeVFSTmdIYWdWT2hXUkp1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzUzRC84NEI1OEY2NjhDRkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1 cXlRUk5nSGFnVk9oV1JKdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiuadqld6HQZRgxMG3B7CLI8t0mg55G3K5IWLP5wgC4iyojg60rHUx FBIzIrqDYsC2kfaO9ky9edLvqmpm49S9xJX95fxRXzGm8/MxqbbzSHfyx+q4OFPu 47rQSaAXoC9VaeymqN9ZGZ5UX0kVhwbva7mBL66XvryEntomboUAGv3GHdK/jiCr 66T7OBKQBjNSaNLdX/W35sj2OS6llUp7gtpr3foUPdpIMkmsmXWXDK9ccdYYT1jx 9L9DhMr6dfH3rc/zttvgWalosn8vbW/Aqp4MAFebht+/hw8aidiq4esRK3f3wKqM +rNi/3zrnJlOM2tGgcrilV3ugbvTu8Kl -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:16 2025 by rpki-client on console.sobornost.net