$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/pYJQrqsTuNPTJ54yLhgS_a1G1ik.mft File: pYJQrqsTuNPTJ54yLhgS_a1G1ik.mft (raw, json) Hash identifier: PfspzIrGTSRl3HgnLEXxkP5qeF/BFj5VLl1WK+jAu98= Subject key identifier: 54:B8:89:D8:4A:BA:24:E0:74:82:C9:56:19:E3:0E:08:19:14:A9:1F Authority key identifier: A5:82:50:AE:AB:13:B8:D3:D3:27:9E:32:2E:18:12:FD:AD:46:D6:29 Certificate issuer: /CN=A9199B04/serialNumber=A58250AEAB13B8D3D3279E322E1812FDAD46D629 Certificate serial: 03C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYJQrqsTuNPTJ54yLhgS_a1G1ik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/pYJQrqsTuNPTJ54yLhgS_a1G1ik.mft Manifest number: 03BC Signing time: Sun 27 Apr 2025 00:19:33 +0000 Manifest this update: Sun 27 Apr 2025 00:19:33 +0000 Manifest next update: Sun 04 May 2025 00:19:33 +0000 Files and hashes: 1: pYJQrqsTuNPTJ54yLhgS_a1G1ik.crl (hash: pQA47diMi/iDC89QIz/Xylo6cMou2YT4ji7XsNrmjIw=) 2: 1DD9F6A83F0411EDB1462810C4F9AE02.roa (hash: XoAJoR31rueqw0a2nwDJzng/mfgTR8dQxHSL0vNo72U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/pYJQrqsTuNPTJ54yLhgS_a1G1ik.crl rsync://rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/pYJQrqsTuNPTJ54yLhgS_a1G1ik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYJQrqsTuNPTJ54yLhgS_a1G1ik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B04, serialNumber=A58250AEAB13B8D3D3279E322E1812FDAD46D629 Validity Not Before: Apr 27 00:19:33 2025 GMT Not After : May 4 00:19:33 2025 GMT Subject: CN=680d7815-2ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2a:81:7a:cf:09:e9:c9:9b:3f:d5:bd:27:43: d2:8d:96:ff:95:72:82:32:15:56:77:80:a6:6a:48: 85:ef:bb:21:d4:8d:5e:08:3f:52:b7:b3:dc:f1:81: 52:5f:ac:59:ce:de:c3:7c:f9:64:e4:4f:f5:37:0e: 42:64:bd:68:86:e7:de:81:00:30:48:6a:37:8d:9e: e8:51:2e:f7:98:86:e4:91:26:f0:9c:30:12:ed:b5: df:e5:8d:fc:46:83:01:d1:4b:23:2a:c3:ff:39:3d: e9:a3:11:5f:34:f1:d4:85:85:d7:00:e6:96:d3:11: 07:e0:e6:9d:8f:cf:41:c7:c7:1d:59:bf:d3:63:79: d8:04:0c:3b:70:68:32:a3:e4:78:98:48:26:17:77: 1d:9b:1a:8f:3d:8c:ad:a3:3b:e8:ce:f9:af:6f:bf: 71:c2:f5:7c:97:3a:14:30:4a:31:a6:6d:bd:e6:33: 9d:45:df:b1:97:29:b7:5e:9a:91:c3:01:ac:f1:77: fe:77:30:da:8d:9c:ac:62:a6:a9:fa:23:46:df:cc: 39:5f:04:ed:18:3b:69:c6:74:f5:9f:48:34:e9:c0: 50:ec:8a:1c:93:c8:f1:e6:21:af:7c:9e:61:f6:15: 2f:f5:02:90:93:4b:17:5a:48:fe:e3:80:57:80:6d: 64:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B8:89:D8:4A:BA:24:E0:74:82:C9:56:19:E3:0E:08:19:14:A9:1F X509v3 Authority Key Identifier: keyid:A5:82:50:AE:AB:13:B8:D3:D3:27:9E:32:2E:18:12:FD:AD:46:D6:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/pYJQrqsTuNPTJ54yLhgS_a1G1ik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYJQrqsTuNPTJ54yLhgS_a1G1ik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B04/642E07DC88A411ECA2A35020C4F9AE02/pYJQrqsTuNPTJ54yLhgS_a1G1ik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:9f:2d:d2:52:d4:22:63:60:6a:6f:1e:21:8f:d6:e8:e8:03: e4:0f:30:84:c6:b6:6c:50:4f:b7:0a:e7:e5:b7:b9:ef:13:47: 48:7b:89:1a:82:50:c2:bf:6b:bb:84:1c:6d:f8:55:e0:13:c7: 7d:29:b8:ef:d6:b4:45:60:f4:9b:cf:8f:db:f5:96:08:58:83: 23:07:1c:0f:46:4b:ed:b7:ca:56:a5:78:7d:65:89:8d:01:94: aa:e5:e8:72:a6:32:ab:88:5f:18:18:63:36:39:0d:11:d0:53: 80:66:e1:2a:53:9a:6a:62:a8:b7:a7:cd:be:a2:a1:8c:81:aa: 8b:ef:fd:70:a2:b0:cf:f7:e8:14:f7:e1:a1:84:1e:6c:79:00: b4:51:eb:f3:ac:06:62:ab:52:a9:5e:43:0b:08:25:47:42:61: 48:9a:c1:27:d4:8d:e0:29:59:0a:ac:5f:1b:53:1e:55:54:3b: 4c:fa:3c:3d:86:b3:35:ad:ae:d3:ad:5e:03:41:45:e4:87:78: 28:30:10:17:ae:fb:47:48:f2:3a:4b:f1:4b:66:18:b8:35:6f: b6:e0:48:15:12:04:45:41:72:24:74:84:ea:98:b4:28:8f:e5: 02:df:87:99:25:8e:66:fe:ce:0e:c7:b8:8e:af:86:ff:b4:5d: aa:50:2b:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCMDQxMTAvBgNVBAUTKEE1ODI1MEFFQUIxM0I4RDNEMzI3OUUzMjJFMTgxMkZE QUQ0NkQ2MjkwHhcNMjUwNDI3MDAxOTMzWhcNMjUwNTA0MDAxOTMzWjAYMRYwFAYD VQQDEw02ODBkNzgxNS0yY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SqBes8J6cmbP9W9J0PSjZb/lXKCMhVWd4CmakiF77sh1I1eCD9St7Pc8YFS X6xZzt7DfPlk5E/1Nw5CZL1ohufegQAwSGo3jZ7oUS73mIbkkSbwnDAS7bXf5Y38 RoMB0UsjKsP/OT3poxFfNPHUhYXXAOaW0xEH4Oadj89Bx8cdWb/TY3nYBAw7cGgy o+R4mEgmF3cdmxqPPYytozvozvmvb79xwvV8lzoUMEoxpm295jOdRd+xlym3XpqR wwGs8Xf+dzDajZysYqap+iNG38w5XwTtGDtpxnT1n0g06cBQ7Iock8jx5iGvfJ5h 9hUv9QKQk0sXWkj+44BXgG1kGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFS4idhK uiTgdILJVhnjDggZFKkfMB8GA1UdIwQYMBaAFKWCUK6rE7jT0yeeMi4YEv2tRtYp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUIwNC82NDJFMDdEQzg4 QTQxMUVDQTJBMzUwMjBDNEY5QUUwMi9wWUpRcnFzVHVOUFRKNTR5TGhnU19hMUcx aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BZSlFycXNUdU5QVEo1NHlMaGdTX2ExRzFpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUIwNC82NDJFMDdEQzg4QTQxMUVDQTJBMzUwMjBDNEY5QUUwMi9wWUpRcnFzVHVO UFRKNTR5TGhnU19hMUcxaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRny3SUtQiY2Bqbx4hj9bo6APkDzCExrZsUE+3Cuflt7nvE0dIe4ka glDCv2u7hBxt+FXgE8d9Kbjv1rRFYPSbz4/b9ZYIWIMjBxwPRkvtt8pWpXh9ZYmN AZSq5ehypjKriF8YGGM2OQ0R0FOAZuEqU5pqYqi3p82+oqGMgaqL7/1worDP9+gU 9+GhhB5seQC0UevzrAZiq1KpXkMLCCVHQmFImsEn1I3gKVkKrF8bUx5VVDtM+jw9 hrM1ra7TrV4DQUXkh3goMBAXrvtHSPI6S/FLZhi4NW+24EgVEgRFQXIkdITqmLQo j+UC34eZJY5m/s4Ox7iOr4b/tF2qUCsa -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:01 2025 by rpki-client on console.sobornost.net