$ rpki-client -vvf rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft File: Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft (raw, json) Hash identifier: y7OMH6yCQ7HhZ1FFm67N+ImGosICDk6WkmzaTt09jU4= Subject key identifier: D2:D3:89:94:18:9B:AC:CF:90:73:EE:8D:EE:E7:CE:97:54:25:1E:C3 Authority key identifier: 3E:67:DB:F7:82:20:28:93:F1:FB:5A:F7:D6:FC:09:D0:01:8F:DF:06 Certificate issuer: /CN=A918AA54/serialNumber=3E67DBF782202893F1FB5AF7D6FC09D0018FDF06 Certificate serial: 02E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft Manifest number: 02E5 Signing time: Sun 27 Apr 2025 00:58:25 +0000 Manifest this update: Sun 27 Apr 2025 00:58:24 +0000 Manifest next update: Sun 04 May 2025 00:58:24 +0000 Files and hashes: 1: Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl (hash: Vo59rXrDgr+3Kqgoi2dRdZNhSg5elfZJvVoMxHHaWH8=) 2: F7ACA074DC3F11EC8323B460C4F9AE02.roa (hash: pktrHR+QS/er0s+loh1K6z6/oPCthVtEcSW6fBSWLVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AA54, serialNumber=3E67DBF782202893F1FB5AF7D6FC09D0018FDF06 Validity Not Before: Apr 27 00:58:24 2025 GMT Not After : May 4 00:58:24 2025 GMT Subject: CN=680d8130-4fa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bc:e2:45:ca:5a:3e:59:6b:61:16:b5:30:eb: d6:3e:48:91:c5:5b:c9:22:c7:26:a9:f3:b8:ca:9b: 9f:6b:83:f1:35:a7:15:23:c4:b3:5d:40:87:23:42: 05:ca:0f:46:b3:63:4e:39:86:1e:2f:60:2d:81:c7: 5e:e2:82:d3:1e:33:44:3a:ee:94:92:50:8f:d5:24: 83:df:62:0a:3c:d2:bb:6d:f9:84:6a:19:86:ae:61: d2:70:8d:e5:9a:db:82:e4:12:fc:87:dc:68:70:47: df:1e:f4:c4:bc:6e:e6:37:b8:a1:3e:4c:1b:a7:ef: e8:01:e9:22:11:47:38:72:c6:7e:06:7e:04:57:a9: 36:94:4f:5f:a9:bc:93:b2:5a:2b:49:cb:7e:a0:ef: ec:a0:8d:e8:fa:ef:e0:de:b1:39:7f:17:3d:18:e9: 33:b5:43:76:d2:b1:9b:3d:4a:5d:80:d5:9c:a9:74: bf:9e:cb:7f:d9:84:13:8a:cb:15:ae:27:f4:eb:bb: 0e:ae:0c:ae:eb:a6:0c:2a:42:73:17:5f:9a:3f:1a: 0a:ba:5f:c8:9e:24:5e:03:fc:a2:43:b2:97:c3:79: be:e6:ce:94:72:98:6e:f9:81:94:d8:3e:c5:6a:0e: 0f:92:ae:70:e1:37:c1:de:eb:6e:7a:3c:86:29:bd: 80:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D3:89:94:18:9B:AC:CF:90:73:EE:8D:EE:E7:CE:97:54:25:1E:C3 X509v3 Authority Key Identifier: keyid:3E:67:DB:F7:82:20:28:93:F1:FB:5A:F7:D6:FC:09:D0:01:8F:DF:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:dd:ce:ef:60:3b:22:e0:7b:65:6e:85:f7:82:12:de:1e:45: d6:b0:37:4b:48:ee:49:75:df:66:c1:cd:ff:3e:49:de:9c:79: 6d:c8:ad:13:9b:0e:9a:25:04:dc:d3:4a:c5:74:e3:71:79:ef: e8:c6:46:9c:5c:58:e0:d5:fb:c2:dc:5f:3f:10:2d:be:65:af: a3:08:f4:5d:68:7f:21:e1:f4:d9:52:f0:c6:2a:71:93:20:41: 9a:11:35:86:b2:6a:d0:47:f6:df:ff:90:75:9a:12:db:b5:b4: fd:b3:e3:df:83:65:e4:a4:42:a5:54:5a:2c:dc:19:f1:d4:6a: c9:0f:7a:28:bf:c8:36:79:c2:cd:05:ea:6f:3c:6d:05:e3:b5: 8a:eb:e1:80:17:7b:21:fd:69:0c:83:ab:0f:f7:82:ce:ee:6e: e7:e4:11:82:55:cb:79:de:ab:24:23:6b:eb:70:94:d7:7a:57: a9:f8:d9:37:48:97:b9:db:2d:b9:4c:d5:b7:47:b3:e5:8b:fb: 11:ba:66:24:13:51:e2:84:77:51:a6:a1:67:a8:39:4a:2f:8c: ee:50:ab:17:cd:3b:1b:43:66:0b:f5:60:8d:30:06:17:e7:1e: 53:ba:62:ba:87:7a:c3:c5:0d:5a:a9:37:45:ba:5b:09:f8:f8: df:7e:1b:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBNTQxMTAvBgNVBAUTKDNFNjdEQkY3ODIyMDI4OTNGMUZCNUFGN0Q2RkMwOUQw MDE4RkRGMDYwHhcNMjUwNDI3MDA1ODI0WhcNMjUwNTA0MDA1ODI0WjAYMRYwFAYD VQQDEw02ODBkODEzMC00ZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrziRcpaPllrYRa1MOvWPkiRxVvJIscmqfO4ypufa4PxNacVI8SzXUCHI0IF yg9Gs2NOOYYeL2Atgcde4oLTHjNEOu6UklCP1SSD32IKPNK7bfmEahmGrmHScI3l mtuC5BL8h9xocEffHvTEvG7mN7ihPkwbp+/oAekiEUc4csZ+Bn4EV6k2lE9fqbyT slorSct+oO/soI3o+u/g3rE5fxc9GOkztUN20rGbPUpdgNWcqXS/nst/2YQTissV rif067sOrgyu66YMKkJzF1+aPxoKul/IniReA/yiQ7KXw3m+5s6Ucphu+YGU2D7F ag4Pkq5w4TfB3utuejyGKb2AZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLTiZQY m6zPkHPuje7nzpdUJR7DMB8GA1UdIwQYMBaAFD5n2/eCICiT8fta99b8CdABj98G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUE1NC9EODhDRDlENkRD MzgxMUVDOTM5MTBCNjhDNEY5QUUwMi9QbWZiOTRJZ0tKUHgtMXIzMXZ3SjBBR1Az d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BtZmI5NElnS0pQeC0xcjMxdndKMEFHUDN3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUE1NC9EODhDRDlENkRDMzgxMUVDOTM5MTBCNjhDNEY5QUUwMi9QbWZiOTRJZ0tK UHgtMXIzMXZ3SjBBR1Azd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB93c7vYDsi4HtlboX3ghLeHkXWsDdLSO5Jdd9mwc3/PknenHltyK0T mw6aJQTc00rFdONxee/oxkacXFjg1fvC3F8/EC2+Za+jCPRdaH8h4fTZUvDGKnGT IEGaETWGsmrQR/bf/5B1mhLbtbT9s+Pfg2XkpEKlVFos3Bnx1GrJD3oov8g2ecLN BepvPG0F47WK6+GAF3sh/WkMg6sP94LO7m7n5BGCVct53qskI2vrcJTXelep+Nk3 SJe52y25TNW3R7Pli/sRumYkE1HihHdRpqFnqDlKL4zuUKsXzTsbQ2YL9WCNMAYX 5x5TumK6h3rDxQ1aqTdFulsJ+PjffhsL -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:13 2025 by rpki-client on console.sobornost.net