$ rpki-client -vvf rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft File: pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft (raw, json) Hash identifier: WX2jSpTTH2XtR7NjJVJ6ej2+4Sg1QJWRq/m/VZr6+1w= Subject key identifier: 8B:BB:86:E6:BB:9A:10:75:EC:CE:4D:61:93:DA:D2:FC:05:46:49:29 Authority key identifier: A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 Certificate issuer: /CN=A917C4E7/serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Certificate serial: 02CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft Manifest number: 02C1 Signing time: Wed 23 Apr 2025 01:17:12 +0000 Manifest this update: Wed 23 Apr 2025 01:17:11 +0000 Manifest next update: Wed 30 Apr 2025 01:17:11 +0000 Files and hashes: 1: pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl (hash: ImeNDRnjYR4CVtA0kuvd7F/dK/nsVJ16rlgonoS1oww=) 2: E6054D96F3CB11ECA86DCE60C4F9AE02.roa (hash: PELmNyhpg0raHsA7GFw1TRNGLjn8BhP7w+wplytqqsg=) 3: AB6989BCEADF11ECADC46036C4F9AE02.roa (hash: yhsDMBW1yOy0Jq2CHVI1ejI5EG1pZPsxlabs6cbZ8HE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 714 (0x2ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C4E7, serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Validity Not Before: Apr 23 01:17:11 2025 GMT Not After : Apr 30 01:17:11 2025 GMT Subject: CN=68083f97-81b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:51:3f:b9:0c:40:47:a7:be:c6:db:5d:b1:20: 78:3a:d9:dd:6d:b0:cc:99:0c:87:c8:37:49:cf:04: 12:3f:45:1e:3e:68:d9:6a:f5:44:32:7f:ed:4b:b3: be:36:85:37:9f:9b:08:8d:0b:fa:b0:ae:37:c3:c0: f7:5b:db:3e:55:bf:ed:c4:1f:42:6d:fd:c1:e3:e0: fe:aa:27:6e:55:de:7d:38:c0:e5:2e:37:a3:7b:b4: a4:a1:58:a7:35:b4:cb:4d:4e:5e:96:b6:06:2d:85: ce:65:ca:4f:a7:64:f4:8e:0f:d6:ec:c2:de:fd:c1: 4b:16:bf:a2:04:39:5c:8f:cb:33:e2:a5:ee:1d:10: e2:da:76:29:76:cd:56:91:98:df:ce:da:fb:7a:2e: a8:20:73:e9:c4:88:e1:7e:c3:38:35:fd:15:11:67: 70:a3:b8:c8:18:c4:a3:60:57:ce:e5:e7:41:0b:f2: 8c:24:6e:d8:70:0e:ff:03:2d:4b:de:4c:bd:de:23: e7:8c:e8:5d:79:45:4d:8c:87:7b:bf:f3:06:e8:a4: 93:44:13:ae:09:cb:06:dc:8e:8c:77:31:69:21:93: a9:8e:d1:8e:ab:0c:17:16:ca:f5:c7:2d:e8:af:4c: c8:e5:45:e8:33:c5:55:3b:44:42:d9:64:39:75:ed: fa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BB:86:E6:BB:9A:10:75:EC:CE:4D:61:93:DA:D2:FC:05:46:49:29 X509v3 Authority Key Identifier: keyid:A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:26:30:0c:61:2b:90:21:e6:d2:52:bd:a7:9e:62:b7:e9:44: e9:22:dc:4f:db:76:0d:c0:79:65:62:12:b0:76:8a:7c:2e:d5: 1b:95:ce:c8:4c:34:6a:2a:00:3a:18:a0:5c:15:33:5d:ca:93: 5c:e2:d1:c8:c9:8d:37:1c:0b:db:d6:56:e5:90:e7:62:a2:d1: 2b:7d:64:e5:c4:9c:f6:90:f0:36:f3:83:13:0c:71:a8:10:22: 8e:86:3f:a2:69:ef:c5:33:bf:16:b3:a6:87:6a:11:fe:d7:34: 79:41:9d:d2:2f:8b:88:d8:d6:68:74:93:fb:6b:49:73:43:ec: 5e:aa:66:65:06:d3:4a:29:0e:fa:52:c0:68:dd:a9:cc:f0:b3: e7:9b:63:67:6f:19:91:63:64:3f:5a:17:6c:2c:be:5e:eb:ce: 5c:5a:ea:be:f7:c6:c8:48:f2:86:63:d4:cd:00:db:24:92:6c: 28:d3:db:43:30:d5:a9:d7:55:73:df:80:7d:8b:99:02:27:e7: db:ff:39:4c:a2:44:53:90:26:78:9f:8b:9d:11:c9:f5:4f:b6: 3d:69:ab:0b:fe:74:97:0e:00:bf:89:af:b7:31:82:fe:34:1d: f4:b1:3f:6e:83:74:9d:7f:2c:55:6a:7a:80:16:04:a6:95:bb: e0:ce:fe:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0RTcxMTAvBgNVBAUTKEE1QzRBMEFCMEU1RUUxM0IxNDg0NTQzOUIxQUU0RkIz NDQ2OEM3QjkwHhcNMjUwNDIzMDExNzExWhcNMjUwNDMwMDExNzExWjAYMRYwFAYD VQQDEw02ODA4M2Y5Ny04MWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVE/uQxAR6e+xttdsSB4OtndbbDMmQyHyDdJzwQSP0UePmjZavVEMn/tS7O+ NoU3n5sIjQv6sK43w8D3W9s+Vb/txB9Cbf3B4+D+qiduVd59OMDlLjeje7SkoVin NbTLTU5elrYGLYXOZcpPp2T0jg/W7MLe/cFLFr+iBDlcj8sz4qXuHRDi2nYpds1W kZjfztr7ei6oIHPpxIjhfsM4Nf0VEWdwo7jIGMSjYFfO5edBC/KMJG7YcA7/Ay1L 3ky93iPnjOhdeUVNjId7v/MG6KSTRBOuCcsG3I6MdzFpIZOpjtGOqwwXFsr1xy3o r0zI5UXoM8VVO0RC2WQ5de36eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIu7hua7 mhB17M5NYZPa0vwFRkkpMB8GA1UdIwQYMBaAFKXEoKsOXuE7FIRUObGuT7NEaMe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzRFNy85ODFDMDU1OEVB RDgxMUVDQkM3RUUwMTVDNEY5QUUwMi9wY1NncXc1ZTRUc1VoRlE1c2E1UHMwUm94 N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjU2dxdzVlNFRzVWhGUTVzYTVQczBSb3g3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzRFNy85ODFDMDU1OEVBRDgxMUVDQkM3RUUwMTVDNEY5QUUwMi9wY1NncXc1ZTRU c1VoRlE1c2E1UHMwUm94N2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKJjAMYSuQIebSUr2nnmK36UTpItxP23YNwHllYhKwdop8LtUblc7I TDRqKgA6GKBcFTNdypNc4tHIyY03HAvb1lblkOdiotErfWTlxJz2kPA284MTDHGo ECKOhj+iae/FM78Ws6aHahH+1zR5QZ3SL4uI2NZodJP7a0lzQ+xeqmZlBtNKKQ76 UsBo3anM8LPnm2NnbxmRY2Q/WhdsLL5e685cWuq+98bISPKGY9TNANskkmwo09tD MNWp11Vz34B9i5kCJ+fb/zlMokRTkCZ4n4udEcn1T7Y9aasL/nSXDgC/ia+3MYL+ NB30sT9ug3SdfyxVanqAFgSmlbvgzv46 -----END CERTIFICATE-----Generated at Wed Apr 23 06:35:46 2025 by rpki-client on console.sobornost.net