$ rpki-client -vvf rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft File: pgmpTmohAbr5XIwvVc7EF5Jb788.mft (raw, json) Hash identifier: uWlIyayFAiGJlAB+NhQ5bd5l/TMiqgsgKRr5e41QE3Q= Subject key identifier: 86:9E:A3:58:AE:4E:F9:84:49:AC:54:63:9B:06:B4:DC:74:0F:F7:CD Authority key identifier: A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF Certificate issuer: /CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft Manifest number: DB Signing time: Sun 27 Apr 2025 04:26:41 +0000 Manifest this update: Sun 27 Apr 2025 04:26:41 +0000 Manifest next update: Sun 04 May 2025 04:26:41 +0000 Files and hashes: 1: pgmpTmohAbr5XIwvVc7EF5Jb788.crl (hash: MaNNR6zewqA+2WLUgSRIvAo+lfyHG3QHqARrgCEqEAo=) 2: EF260118D54211EEA18A7234C4F9AE02.roa (hash: xjhn9qUtE7xRbdf4fFZHDUa2ZArgvxrc59opJoY9If0=) 3: 2FA91770D61A11EE9BDDD627C4F9AE02.roa (hash: Y2k2zpzO5L2UX1/syfcTHwfwkADI2HQTu1qn6JdDuuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122010, serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Validity Not Before: Apr 27 04:26:41 2025 GMT Not After : May 4 04:26:41 2025 GMT Subject: CN=680db201-5dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4d:fa:6b:3a:d7:71:8b:11:a3:ff:99:20:88: 09:30:c8:28:81:52:8d:6f:92:35:cf:f9:46:ca:31: 06:e8:60:65:79:62:94:e6:94:1b:f4:f4:5c:10:76: fe:c2:06:1a:32:dc:a9:34:2a:b5:a9:83:fc:53:d9: f1:c9:03:7e:99:f9:d1:72:e6:2f:32:c4:b2:46:d0: a1:d3:1c:49:1e:83:36:dc:fe:ec:26:d3:c7:45:c9: 0b:51:6f:34:a1:1e:48:f3:96:f0:c5:4d:6a:15:57: ca:81:cc:6f:99:6a:fa:c3:7e:58:4e:a4:73:e2:79: 17:1e:0d:53:86:3d:d4:b6:21:3c:87:07:10:69:c2: 0f:63:b2:78:6c:ae:a6:15:e0:64:d4:55:1c:96:13: c8:8e:2d:1c:ff:22:3e:37:54:b5:d8:99:c2:ed:18: da:4b:7c:f4:f0:4c:53:77:aa:5c:fb:b1:2b:86:0b: 3a:1e:5e:5c:b7:cb:2c:be:c8:32:bf:6e:d1:98:a9: 34:e6:a7:87:f1:b5:a2:16:d9:94:4f:9e:10:ec:d3: 12:3b:33:6f:f7:5c:a9:78:e0:6f:0f:d1:da:e9:c2: f8:94:2a:61:85:be:42:72:2f:36:98:1d:ae:fa:36: 66:69:db:a5:6e:26:57:af:0f:25:6e:be:7e:e3:fe: b4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:9E:A3:58:AE:4E:F9:84:49:AC:54:63:9B:06:B4:DC:74:0F:F7:CD X509v3 Authority Key Identifier: keyid:A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:6c:1d:09:3e:bc:d5:25:eb:3a:7d:75:6c:95:66:58:45:5f: f1:8f:bb:7b:97:ee:94:96:b0:e5:2d:0c:f5:a7:63:ee:5c:eb: 3f:e9:04:f3:c5:ea:18:60:cd:29:a7:91:bc:b8:dd:f4:eb:83: d0:2c:7b:48:15:46:4f:36:a4:97:04:0b:4f:72:bf:54:7d:fe: b5:a9:f8:e1:9e:8a:44:cc:e7:a3:d7:61:59:b2:4c:b3:49:a2: 44:07:29:e5:d6:80:86:39:8e:cc:e7:65:39:c1:c1:a5:ae:40: 4c:d5:b3:8d:68:a8:7f:93:6d:32:ef:59:f3:57:c1:cd:7d:f4: 64:98:c7:e1:26:4d:8c:a2:03:57:64:25:f3:6e:00:84:fc:fb: 7b:d7:9a:bf:c9:22:1f:b3:f9:d6:40:8d:e4:47:f7:99:37:e7: d6:f6:76:f6:db:cf:a3:10:4b:4d:16:e3:69:3e:e7:9d:ea:58: 4c:fe:5c:37:be:30:8c:c2:45:46:af:7f:b6:ec:35:27:bc:f9: 85:34:fa:7e:f2:17:0b:00:c5:ac:2e:fd:ab:25:cc:f8:ee:b3: df:a6:cc:b8:aa:2c:fc:7e:69:02:df:ab:dc:55:18:99:a4:f8: 50:34:16:7f:cf:04:a4:70:88:f3:7d:52:a5:4b:9c:f4:85:bf: da:a0:64:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIwMTAxMTAvBgNVBAUTKEE2MDlBOTRFNkEyMTAxQkFGOTVDOEMyRjU1Q0VDNDE3 OTI1QkVGQ0YwHhcNMjUwNDI3MDQyNjQxWhcNMjUwNTA0MDQyNjQxWjAYMRYwFAYD VQQDEw02ODBkYjIwMS01ZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1U36azrXcYsRo/+ZIIgJMMgogVKNb5I1z/lGyjEG6GBleWKU5pQb9PRcEHb+ wgYaMtypNCq1qYP8U9nxyQN+mfnRcuYvMsSyRtCh0xxJHoM23P7sJtPHRckLUW80 oR5I85bwxU1qFVfKgcxvmWr6w35YTqRz4nkXHg1Thj3UtiE8hwcQacIPY7J4bK6m FeBk1FUclhPIji0c/yI+N1S12JnC7RjaS3z08ExTd6pc+7Erhgs6Hl5ct8ssvsgy v27RmKk05qeH8bWiFtmUT54Q7NMSOzNv91ypeOBvD9Ha6cL4lCphhb5Cci82mB2u +jZmadulbiZXrw8lbr5+4/60mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaeo1iu TvmESaxUY5sGtNx0D/fNMB8GA1UdIwQYMBaAFKYJqU5qIQG6+VyML1XOxBeSW+/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjAxMC9FQTAyMUE5NEQ1 M0YxMUVFQThENjI0MEZDNEY5QUUwMi9wZ21wVG1vaEFicjVYSXd2VmM3RUY1SmI3 ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BnbXBUbW9oQWJyNVhJd3ZWYzdFRjVKYjc4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjAxMC9FQTAyMUE5NEQ1M0YxMUVFQThENjI0MEZDNEY5QUUwMi9wZ21wVG1vaEFi cjVYSXd2VmM3RUY1SmI3ODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXbB0JPrzVJes6fXVslWZYRV/xj7t7l+6UlrDlLQz1p2PuXOs/6QTz xeoYYM0pp5G8uN3064PQLHtIFUZPNqSXBAtPcr9Uff61qfjhnopEzOej12FZskyz SaJEBynl1oCGOY7M52U5wcGlrkBM1bONaKh/k20y71nzV8HNffRkmMfhJk2MogNX ZCXzbgCE/Pt715q/ySIfs/nWQI3kR/eZN+fW9nb228+jEEtNFuNpPued6lhM/lw3 vjCMwkVGr3+27DUnvPmFNPp+8hcLAMWsLv2rJcz47rPfpsy4qiz8fmkC36vcVRiZ pPhQNBZ/zwSkcIjzfVKlS5z0hb/aoGSn -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:41 2025 by rpki-client on console.sobornost.net