$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: zZ0S9tBzrsq/KI2OZYhu+8uRiS4Xe+bM+5axVU1dbzU= Subject key identifier: 21:2F:E0:99:40:B8:3B:D9:BB:0A:13:02:6B:EF:C0:0A:DF:3F:2E:B6 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 348E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 347F Signing time: Mon 28 Apr 2025 14:28:10 +0000 Manifest this update: Mon 28 Apr 2025 14:28:09 +0000 Manifest next update: Mon 05 May 2025 14:28:09 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: IedPnEkAIVO2HYfZptGWxSW2C3+obikOKhBOYg4oHJ0=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13454 (0x348e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Apr 28 14:28:09 2025 GMT Not After : May 5 14:28:09 2025 GMT Subject: CN=680f907a-4536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c7:4e:51:b4:84:6f:c2:93:ef:a3:7e:2c:d3: 95:c2:56:19:01:ef:50:fe:3d:bb:e3:a5:f8:b2:89: 9a:1e:e5:3f:ec:25:29:44:ee:3d:91:48:c2:f9:12: 13:ae:3a:88:71:16:b3:4a:58:95:2f:e0:46:ae:c7: 66:0f:6f:73:a8:fc:6a:c5:7c:a7:b3:00:3a:90:dd: c0:6f:8b:4a:e4:90:0d:74:a7:99:bb:36:c0:20:cd: f0:26:5f:10:14:91:40:07:6d:4d:96:d3:48:fa:bf: b8:e7:06:6e:bd:02:c1:59:8e:2f:93:3b:fa:bc:6d: dd:de:ff:c3:e4:74:dd:6b:0b:d4:4c:8e:ae:97:85: d3:b0:43:5a:19:bb:d4:d2:52:0e:bd:d9:d3:c0:46: e4:b6:73:ee:b1:54:ee:93:4e:af:01:db:b7:8c:83: 6a:07:c5:3a:c8:14:ea:9b:48:20:7d:f9:a7:76:a3: d1:58:ca:ae:26:44:b5:ae:3a:67:da:d5:c3:09:48: 29:28:a0:02:21:68:ea:b1:4b:7b:17:36:c9:2f:81: 25:00:e4:e2:4a:e3:91:ab:a0:d2:18:b3:37:bd:39: d1:de:33:54:a8:61:1e:87:cb:93:fa:cf:17:26:da: 5b:18:f1:c9:b9:f6:dd:c6:b3:42:83:99:39:4c:bc: 66:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2F:E0:99:40:B8:3B:D9:BB:0A:13:02:6B:EF:C0:0A:DF:3F:2E:B6 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:91:10:86:0e:00:42:ec:51:e7:a0:b6:80:28:db:a0:93:a7: cc:60:93:08:1b:48:6b:f8:6d:c6:9a:33:96:fe:17:ee:2e:c0: 0f:be:10:59:bd:17:94:3f:ec:4e:e5:8d:26:63:c8:d8:c8:2a: e5:b2:5d:bb:12:b1:61:ef:e3:56:4e:4f:b1:58:a0:f5:9a:63: d0:8f:ff:07:55:ae:7e:b2:99:c0:8f:2d:d5:ea:0e:a0:dd:79: 34:29:60:3a:74:db:01:be:a7:13:ed:bc:5c:6a:0f:87:48:0e: df:57:61:50:cf:a3:0a:4c:7c:b8:7c:de:db:8b:b4:76:0e:d9: 3c:45:e5:3b:f0:c1:44:11:3a:b6:23:85:35:c6:15:c7:91:04: 4f:6e:23:23:6e:50:75:a9:2f:66:7b:8d:90:2b:9e:ec:01:3a: 16:8b:ee:d6:cb:36:7a:03:56:fa:d2:1e:23:91:d4:b9:d5:a4: e8:cb:5c:f7:92:10:56:46:62:1a:f8:8e:b6:97:4f:a3:d6:5d: 29:51:e8:74:55:35:1e:e7:60:a6:6f:d2:24:4e:f9:3c:3e:28: d3:8a:2d:3e:9a:b1:93:e0:a3:c6:c9:22:f4:d5:cb:37:fd:15: e8:60:74:34:e2:c8:67:a1:4a:57:df:68:d7:c0:9e:b4:d6:ef: 89:b5:36:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwNDI4MTQyODA5WhcNMjUwNTA1MTQyODA5WjAYMRYwFAYD VQQDEw02ODBmOTA3YS00NTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8dOUbSEb8KT76N+LNOVwlYZAe9Q/j2746X4somaHuU/7CUpRO49kUjC+RIT rjqIcRazSliVL+BGrsdmD29zqPxqxXynswA6kN3Ab4tK5JANdKeZuzbAIM3wJl8Q FJFAB21NltNI+r+45wZuvQLBWY4vkzv6vG3d3v/D5HTdawvUTI6ul4XTsENaGbvU 0lIOvdnTwEbktnPusVTuk06vAdu3jINqB8U6yBTqm0ggffmndqPRWMquJkS1rjpn 2tXDCUgpKKACIWjqsUt7FzbJL4ElAOTiSuORq6DSGLM3vTnR3jNUqGEeh8uT+s8X JtpbGPHJufbdxrNCg5k5TLxmuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEv4JlA uDvZuwoTAmvvwArfPy62MB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJkRCGDgBC7FHnoLaAKNugk6fMYJMIG0hr+G3GmjOW/hfuLsAPvhBZ vReUP+xO5Y0mY8jYyCrlsl27ErFh7+NWTk+xWKD1mmPQj/8HVa5+spnAjy3V6g6g 3Xk0KWA6dNsBvqcT7bxcag+HSA7fV2FQz6MKTHy4fN7bi7R2Dtk8ReU78MFEETq2 I4U1xhXHkQRPbiMjblB1qS9me42QK57sAToWi+7WyzZ6A1b60h4jkdS51aToy1z3 khBWRmIa+I62l0+j1l0pUeh0VTUe52Cmb9IkTvk8PijTii0+mrGT4KPGySL01cs3 /RXoYHQ04shnoUpX32jXwJ601u+JtTbO -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:11 2025 by rpki-client on console.sobornost.net