$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: D5KFNXOpKoXyx+e/yYao68lCplR3kEfOfezedV8dsnc= Subject key identifier: BA:3C:41:C0:B3:5E:91:06:01:C9:3F:DE:3B:8E:25:36:0F:2E:2C:33 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 013C Signing time: Sun 27 Apr 2025 03:24:16 +0000 Manifest this update: Sun 27 Apr 2025 03:24:15 +0000 Manifest next update: Sun 04 May 2025 03:24:15 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: YHqp3RmdhSn58+OszoyCZkCpvxHz92bTuP/ojiOVFnE=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Apr 27 03:24:15 2025 GMT Not After : May 4 03:24:15 2025 GMT Subject: CN=680da35f-f5cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:92:92:79:e9:81:90:92:00:23:a9:fe:38: 98:55:4c:63:b2:46:cf:25:57:4c:1d:de:51:9f:4f: 00:e5:d6:a9:ec:ec:88:a5:92:18:78:be:24:6a:9b: 0b:c6:6c:6d:f0:2c:5c:52:17:95:b3:87:c1:37:12: a8:39:45:fe:31:eb:28:2d:3b:d2:3c:cc:8e:29:c5: 27:42:27:5b:7d:fe:cc:2a:e0:3b:bc:91:e1:2c:e8: 79:0a:ef:ad:d1:7a:bd:5c:8f:b5:35:ce:15:09:fe: df:68:3a:2b:1f:55:49:14:0f:ba:93:49:f2:23:f3: 32:6d:fc:bd:fa:92:37:a5:fe:25:a5:64:01:a9:84: d1:1e:17:ab:8f:93:65:ae:9e:c7:9a:15:82:69:f5: d9:5e:ae:fe:e5:69:31:8a:d6:61:3c:54:b9:46:bb: a1:bb:75:b9:5f:53:54:18:2f:19:af:4a:83:25:d7: 83:1b:2f:c7:74:05:84:00:cd:7d:5f:d1:b6:9c:0a: fe:b7:61:2d:b3:07:45:4e:79:22:83:74:89:c6:9a: 6b:84:bc:8e:fa:a0:0d:5c:7e:8d:ce:12:37:eb:74: c4:a9:a4:ef:93:08:7f:61:4d:a4:20:2f:24:cb:66: b4:1d:a1:21:54:94:65:31:04:fc:f6:3b:22:6f:b8: 6c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:3C:41:C0:B3:5E:91:06:01:C9:3F:DE:3B:8E:25:36:0F:2E:2C:33 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:9f:3d:b1:ba:74:ea:d0:d7:80:fd:13:fb:0a:1b:ad:7a:7d: 75:7d:85:7e:17:93:e2:17:59:8e:02:09:de:b8:43:08:69:8f: 59:67:1c:be:36:1f:fa:e4:95:70:1c:55:15:dc:b1:53:78:2b: e8:21:a1:51:b6:8d:fe:1f:cb:5f:43:c8:e2:e1:c9:d2:9c:31: ad:6b:7a:55:a4:78:15:ca:95:d9:26:cd:5e:9b:f7:ab:99:81: 1e:73:27:8a:65:bd:c2:c9:89:60:41:c5:18:05:9c:96:65:48: 31:61:4a:6f:01:5d:c6:21:f2:66:8a:d5:32:90:b2:65:6a:c2: 41:3e:11:72:2f:0a:75:d3:5b:70:88:1f:c8:e6:48:7d:80:8e: 1c:d5:a2:80:d2:29:c2:60:1c:c1:7b:72:65:44:0b:bd:76:4e: 7c:36:6c:f1:e7:7d:bc:ea:12:7a:2d:14:7b:3d:37:34:33:37: 88:75:ca:d0:6c:42:21:a3:b5:c6:85:92:6d:7a:ec:0f:82:f6: fa:86:96:ce:c1:95:eb:af:fc:ae:5f:15:f1:b2:3c:23:64:87: a9:8e:86:38:2e:4d:ec:04:9f:5b:b8:3b:27:87:64:80:f5:92: 40:d7:3c:4e:25:77:09:14:f8:61:04:75:42:3f:72:62:d9:1c: 39:48:50:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUwNDI3MDMyNDE1WhcNMjUwNTA0MDMyNDE1WjAYMRYwFAYD VQQDEw02ODBkYTM1Zi1mNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVmSknnpgZCSACOp/jiYVUxjskbPJVdMHd5Rn08A5dap7OyIpZIYeL4kapsL xmxt8CxcUheVs4fBNxKoOUX+MesoLTvSPMyOKcUnQidbff7MKuA7vJHhLOh5Cu+t 0Xq9XI+1Nc4VCf7faDorH1VJFA+6k0nyI/Mybfy9+pI3pf4lpWQBqYTRHherj5Nl rp7HmhWCafXZXq7+5WkxitZhPFS5Rruhu3W5X1NUGC8Zr0qDJdeDGy/HdAWEAM19 X9G2nAr+t2EtswdFTnkig3SJxpprhLyO+qANXH6NzhI363TEqaTvkwh/YU2kIC8k y2a0HaEhVJRlMQT89jsib7hsbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLo8QcCz XpEGAck/3juOJTYPLiwzMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYnz2xunTq0NeA/RP7Chuten11fYV+F5PiF1mOAgneuEMIaY9ZZxy+ Nh/65JVwHFUV3LFTeCvoIaFRto3+H8tfQ8ji4cnSnDGta3pVpHgVypXZJs1em/er mYEecyeKZb3CyYlgQcUYBZyWZUgxYUpvAV3GIfJmitUykLJlasJBPhFyLwp101tw iB/I5kh9gI4c1aKA0inCYBzBe3JlRAu9dk58Nmzx53286hJ6LRR7PTc0MzeIdcrQ bEIho7XGhZJteuwPgvb6hpbOwZXrr/yuXxXxsjwjZIepjoY4Lk3sBJ9buDsnh2SA 9ZJA1zxOJXcJFPhhBHVCP3Ji2Rw5SFCc -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:06 2025 by rpki-client on console.sobornost.net