$ rpki-client -vvf rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.mft File: agzMvwk_8QNvugMspR3gE6ZLS4s.mft (raw, json) Hash identifier: FN4xIlQIOSSkJaXb0Ij0vTykeyPRT3kSeeRUqGCPxCQ= Subject key identifier: 39:C6:47:3C:E4:B5:9D:25:FF:B2:C1:F6:73:A6:C2:4A:A6:24:32:DB Authority key identifier: 6A:0C:CC:BF:09:3F:F1:03:6F:BA:03:2C:A5:1D:E0:13:A6:4B:4B:8B Certificate issuer: /CN=A917275D/serialNumber=6A0CCCBF093FF1036FBA032CA51DE013A64B4B8B Certificate serial: 0349 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/agzMvwk_8QNvugMspR3gE6ZLS4s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.mft Manifest number: 0346 Signing time: Sun 27 Apr 2025 00:40:42 +0000 Manifest this update: Sun 27 Apr 2025 00:40:42 +0000 Manifest next update: Sun 04 May 2025 00:40:42 +0000 Files and hashes: 1: agzMvwk_8QNvugMspR3gE6ZLS4s.crl (hash: YsiaoaQ5lLLaGEVhKEtctMl9jSQ2CqUfHqsuIpsXSEE=) 2: 9CAFFE72B58F11ECBCF10934C4F9AE02.roa (hash: m1lmrBomInv3RwGPR6n2Hax1CjT2qYjyfLp3Bhn9XcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.crl rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/agzMvwk_8QNvugMspR3gE6ZLS4s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 841 (0x349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917275D, serialNumber=6A0CCCBF093FF1036FBA032CA51DE013A64B4B8B Validity Not Before: Apr 27 00:40:42 2025 GMT Not After : May 4 00:40:42 2025 GMT Subject: CN=680d7d0a-4b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:dc:e0:a4:a3:e5:2c:7a:19:ca:73:06:d6:6a: a4:4e:ac:85:af:f0:1b:b8:88:7c:d3:78:63:21:cd: ea:21:49:b5:ee:72:e1:fb:ab:e3:33:39:8f:61:54: c5:38:08:6e:7c:70:bd:b6:f2:24:57:1b:22:53:85: a1:a0:b2:64:ae:a0:dc:a7:36:f0:68:06:b0:86:14: 77:7c:08:39:f3:ca:e8:53:d0:6d:d3:81:3c:cf:35: ab:d0:36:ff:3c:ed:9b:5c:57:2c:28:97:5c:26:c5: 7a:cd:dc:a8:b7:76:5c:4c:86:52:46:83:98:c7:bf: 8f:84:c1:71:28:d4:ac:53:a9:5b:15:5c:3c:32:c5: 36:75:cd:56:39:ae:ea:f9:7d:dd:9d:62:90:8b:e2: 9a:2f:3e:e1:8e:12:55:18:b5:d3:65:af:1e:cb:9d: fb:c1:de:e4:9d:21:c0:37:54:73:30:04:06:64:5a: 7d:02:66:18:4c:ea:a2:0c:7f:0f:3b:28:93:3e:52: 58:2b:73:86:34:01:58:06:c3:47:fd:f7:1d:35:9d: 04:c4:29:44:2a:b5:1d:26:53:f5:56:12:f9:be:de: a6:d8:a6:d4:8f:bd:e7:dc:19:c5:20:db:35:fa:68: 31:97:f2:6f:f5:33:4b:b5:91:ca:23:90:34:ec:0e: cd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C6:47:3C:E4:B5:9D:25:FF:B2:C1:F6:73:A6:C2:4A:A6:24:32:DB X509v3 Authority Key Identifier: keyid:6A:0C:CC:BF:09:3F:F1:03:6F:BA:03:2C:A5:1D:E0:13:A6:4B:4B:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/agzMvwk_8QNvugMspR3gE6ZLS4s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:54:35:15:79:0c:05:de:a2:d1:91:ed:11:26:5b:46:88:cd: d3:d4:aa:78:7d:cc:ce:be:39:a8:b8:17:40:53:71:e1:c4:f6: 26:a0:b4:0d:7b:41:4c:ed:36:3a:f7:0d:00:43:85:84:0e:dc: 2b:3f:f4:94:4b:1c:26:f9:44:e5:0c:b5:3a:eb:50:71:67:19: 1a:aa:36:14:84:df:2a:b5:7f:cb:4c:2a:56:6a:3e:c0:71:87: 58:fb:01:ef:73:ce:ec:2e:4a:4f:36:07:6d:79:bb:3c:ab:b5: d9:1a:96:d2:3f:7e:2b:4f:76:e0:a8:4b:1e:48:4d:4d:a0:61: 5b:27:e0:88:22:b7:fd:45:88:b6:d1:49:b5:67:89:ae:f7:f9: 2d:cc:a0:24:1d:ff:56:92:49:55:98:0c:d9:c1:01:44:57:2c: 5b:a5:af:51:43:20:35:2e:4b:9f:8c:2c:ed:9a:05:f5:59:6b: dd:f5:28:f1:12:18:3a:85:ce:c3:b2:be:7d:37:91:47:b5:45: c3:4e:4e:66:d2:89:d9:6d:46:35:c5:2a:5e:52:ab:42:26:38: c2:bb:37:aa:fa:7a:0d:6d:f4:00:30:64:07:e6:d1:da:5b:4c: c8:42:44:7a:f1:e2:07:db:d3:ba:fd:6b:6b:8e:5e:a0:ad:26: 8f:fc:5b:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI3NUQxMTAvBgNVBAUTKDZBMENDQ0JGMDkzRkYxMDM2RkJBMDMyQ0E1MURFMDEz QTY0QjRCOEIwHhcNMjUwNDI3MDA0MDQyWhcNMjUwNTA0MDA0MDQyWjAYMRYwFAYD VQQDEw02ODBkN2QwYS00YjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39zgpKPlLHoZynMG1mqkTqyFr/AbuIh803hjIc3qIUm17nLh+6vjMzmPYVTF OAhufHC9tvIkVxsiU4WhoLJkrqDcpzbwaAawhhR3fAg588roU9Bt04E8zzWr0Db/ PO2bXFcsKJdcJsV6zdyot3ZcTIZSRoOYx7+PhMFxKNSsU6lbFVw8MsU2dc1WOa7q +X3dnWKQi+KaLz7hjhJVGLXTZa8ey537wd7knSHAN1RzMAQGZFp9AmYYTOqiDH8P OyiTPlJYK3OGNAFYBsNH/fcdNZ0ExClEKrUdJlP1VhL5vt6m2KbUj73n3BnFINs1 +mgxl/Jv9TNLtZHKI5A07A7NSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnGRzzk tZ0l/7LB9nOmwkqmJDLbMB8GA1UdIwQYMBaAFGoMzL8JP/EDb7oDLKUd4BOmS0uL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjc1RC85REFCRjAyMkI1 OEMxMUVDOUFGQjg3MzFDNEY5QUUwMi9hZ3pNdndrXzhRTnZ1Z01zcFIzZ0U2WkxT NHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fnek12d2tfOFFOdnVnTXNwUjNnRTZaTFM0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Mjc1RC85REFCRjAyMkI1OEMxMUVDOUFGQjg3MzFDNEY5QUUwMi9hZ3pNdndrXzhR TnZ1Z01zcFIzZ0U2WkxTNHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvVDUVeQwF3qLRke0RJltGiM3T1Kp4fczOvjmouBdAU3HhxPYmoLQN e0FM7TY69w0AQ4WEDtwrP/SUSxwm+UTlDLU661BxZxkaqjYUhN8qtX/LTCpWaj7A cYdY+wHvc87sLkpPNgdtebs8q7XZGpbSP34rT3bgqEseSE1NoGFbJ+CIIrf9RYi2 0Um1Z4mu9/ktzKAkHf9WkklVmAzZwQFEVyxbpa9RQyA1LkufjCztmgX1WWvd9Sjx Ehg6hc7Dsr59N5FHtUXDTk5m0onZbUY1xSpeUqtCJjjCuzeq+noNbfQAMGQH5tHa W0zIQkR68eIH29O6/Wtrjl6grSaP/Fst -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:03 2025 by rpki-client on console.sobornost.net