$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: acAR2me60sSdhr9BdRjSU4lB2rYnP6J/iU3M8NulB+A= Subject key identifier: B4:71:DF:78:70:CE:AE:BC:7F:98:39:8B:B6:80:3B:F8:C8:B2:9D:FF Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3482 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3477 Signing time: Mon 28 Apr 2025 15:20:10 +0000 Manifest this update: Mon 28 Apr 2025 15:20:09 +0000 Manifest next update: Mon 05 May 2025 15:20:09 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: 4gqhJRyjS1vLLF7o7n7bbXzaMIbg1nxBMs8o19Jww8Q=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13442 (0x3482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Apr 28 15:20:09 2025 GMT Not After : May 5 15:20:09 2025 GMT Subject: CN=680f9ca9-7b48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:47:91:a1:d8:a0:2f:dc:33:95:86:64:e4:84: c0:12:a2:3f:64:c0:2b:76:6e:bc:45:8e:f9:77:68: d2:58:26:d4:b1:ca:1d:a8:07:e6:40:ff:5a:7f:2a: ea:ea:b5:a7:70:e0:b4:5c:cc:8b:bf:42:7e:ca:f2: 3f:35:f6:3e:b4:b6:9b:f7:4d:79:5c:2b:92:11:c8: 26:a4:9c:02:b0:9a:46:ba:47:80:7f:f3:03:16:b6: 1d:6a:81:a8:3b:6f:18:74:a1:4a:9a:69:3d:5a:34: 1d:62:c7:92:39:93:e8:6f:e4:d7:ca:d9:58:e5:74: c3:31:87:59:b6:d9:bc:05:c8:78:d8:8a:b3:a8:67: 96:dc:eb:4f:8d:a1:05:c8:fd:d2:1f:e4:9a:f7:60: a6:08:88:ac:12:0b:14:96:e2:69:7b:34:8b:89:45: 65:88:31:59:85:3b:b5:0e:c0:4a:53:b8:ff:ee:62: 48:09:77:9c:80:6b:e9:2c:ae:96:b6:63:19:a1:3c: 8c:45:9c:42:66:6b:f4:b9:07:30:f0:91:6c:3d:c3: 31:ff:6f:b3:85:0e:67:ba:4e:96:9a:e3:8e:36:91: b5:8d:32:fc:53:f7:a9:b4:be:09:67:d3:a4:59:5d: 35:04:43:22:59:fa:c4:77:aa:dc:ed:fd:99:a8:fc: 04:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:71:DF:78:70:CE:AE:BC:7F:98:39:8B:B6:80:3B:F8:C8:B2:9D:FF X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:82:8c:28:cf:0b:d6:4b:7b:d9:08:d0:60:11:59:f3:ff:38: f5:d1:40:13:6c:b3:ba:b3:5c:fa:c2:ae:f0:0b:0a:17:33:74: f3:1a:73:d5:5c:8b:e3:21:90:70:0b:17:f8:dc:6c:c2:9e:f4: 06:60:7b:8b:49:9e:72:22:b8:52:df:1d:68:43:b5:df:98:74: b9:9d:a2:00:3d:83:87:8c:75:b4:2b:05:fc:9c:06:22:b7:82: 8b:6c:39:3c:c8:d8:fb:53:d4:f6:9f:b8:68:1d:b1:36:70:eb: 72:69:33:57:d6:58:97:16:0d:1e:91:ca:42:df:a3:2a:cb:31: 18:8b:96:f2:f5:fe:f1:f9:f9:33:15:6c:e0:2f:f4:c7:25:5a: 91:8a:b1:56:99:87:68:f2:31:71:02:03:e4:9a:d1:21:2f:a1: 4f:6a:de:2e:8f:c7:3d:d4:0a:ab:1a:57:ab:cd:0f:b3:b1:10: 4e:cd:25:ed:69:5b:1e:ea:54:76:c3:09:38:35:e7:97:cb:c3: 5d:f2:a4:29:ef:c0:05:0c:19:1d:16:00:4e:f5:39:85:6a:5f: e0:95:1d:93:ae:4a:41:f9:89:77:b5:ba:1a:bf:68:9b:65:4d: 9f:9d:8b:95:f6:87:56:42:9a:da:cc:b1:27:b0:13:bc:b2:bf: fd:54:8f:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwNDI4MTUyMDA5WhcNMjUwNTA1MTUyMDA5WjAYMRYwFAYD VQQDEw02ODBmOWNhOS03YjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUeRodigL9wzlYZk5ITAEqI/ZMArdm68RY75d2jSWCbUscodqAfmQP9afyrq 6rWncOC0XMyLv0J+yvI/NfY+tLab9015XCuSEcgmpJwCsJpGukeAf/MDFrYdaoGo O28YdKFKmmk9WjQdYseSOZPob+TXytlY5XTDMYdZttm8Bch42IqzqGeW3OtPjaEF yP3SH+Sa92CmCIisEgsUluJpezSLiUVliDFZhTu1DsBKU7j/7mJICXecgGvpLK6W tmMZoTyMRZxCZmv0uQcw8JFsPcMx/2+zhQ5nuk6WmuOONpG1jTL8U/eptL4JZ9Ok WV01BEMiWfrEd6rc7f2ZqPwE0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRx33hw zq68f5g5i7aAO/jIsp3/MB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApgowozwvWS3vZCNBgEVnz/zj10UATbLO6s1z6wq7wCwoXM3TzGnPV XIvjIZBwCxf43GzCnvQGYHuLSZ5yIrhS3x1oQ7XfmHS5naIAPYOHjHW0KwX8nAYi t4KLbDk8yNj7U9T2n7hoHbE2cOtyaTNX1liXFg0ekcpC36MqyzEYi5by9f7x+fkz FWzgL/THJVqRirFWmYdo8jFxAgPkmtEhL6FPat4uj8c91AqrGlerzQ+zsRBOzSXt aVse6lR2wwk4NeeXy8Nd8qQp78AFDBkdFgBO9TmFal/glR2TrkpB+Yl3tboav2ib ZU2fnYuV9odWQprazLEnsBO8sr/9VI/D -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:10 2025 by rpki-client on console.sobornost.net