$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft File: PgzfiCrujHIh1YijxSYBjh1kyWg.mft (raw, json) Hash identifier: JmOytjtM4YuHKs1TgRPYpcoj+es/Ytv5yWFlWoezyeQ= Subject key identifier: 19:7A:E5:68:D8:7A:38:06:D0:8F:72:A7:30:2A:51:2F:7F:BB:24:A2 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft Manifest number: F7 Signing time: Sun 27 Apr 2025 04:06:52 +0000 Manifest this update: Sun 27 Apr 2025 04:06:51 +0000 Manifest next update: Sun 04 May 2025 04:06:51 +0000 Files and hashes: 1: PgzfiCrujHIh1YijxSYBjh1kyWg.crl (hash: XzZPKl+Yk0ZJ32QRE8Tr2Mbw7d45+M1z8bCkV887n4c=) 2: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (hash: 92n4boJHjJIj9KtZ2gabfQc0rIkNAgV+GGdiupr7NM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Apr 27 04:06:51 2025 GMT Not After : May 4 04:06:51 2025 GMT Subject: CN=680dad5b-f819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3c:2f:8d:38:fc:88:93:ed:48:24:4f:68:91: ab:68:69:c4:c7:9f:39:43:2f:60:39:df:ef:ba:87: ae:a6:43:36:94:b3:ca:4d:02:a9:ba:06:25:af:81: 81:da:f8:5c:df:47:14:1a:bc:6c:a0:3a:22:e9:58: fd:1e:be:fe:00:11:e9:ae:ae:54:1e:b6:dd:71:87: 90:1b:3b:71:ae:4e:13:e6:1d:1d:f7:ad:bd:19:91: 40:21:d9:5c:8c:89:5a:d3:27:9e:d6:7e:5a:9f:92: 7c:4a:74:38:dc:85:00:23:e1:e1:81:2b:b5:1d:8a: 00:a0:11:68:dc:74:81:16:9f:d5:21:75:f1:d6:5a: 67:c2:54:be:66:19:19:58:cb:fb:ce:1e:3e:65:7d: fd:52:4a:9a:66:52:17:90:8e:f2:dc:b9:14:c2:22: 7a:60:b6:f5:93:1a:c7:20:c4:79:1c:a4:5a:87:91: b2:ef:50:2d:89:03:4d:6d:fe:31:f8:d4:9a:6d:8d: 38:fe:14:7d:3d:76:19:1b:bb:61:5d:f5:5a:59:1f: 8a:f7:cc:2f:3e:98:bb:18:0b:b6:61:7f:10:06:d9: b5:c2:75:db:0c:ff:65:d1:15:8d:6f:f9:50:3a:cb: 11:74:1c:21:9e:cf:99:bb:33:49:24:42:2f:81:92: c7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:7A:E5:68:D8:7A:38:06:D0:8F:72:A7:30:2A:51:2F:7F:BB:24:A2 X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:39:29:d5:02:4c:0e:72:b7:4c:38:6a:10:cd:7e:09:38:cf: ce:77:2e:ca:32:43:28:63:49:9c:53:30:2b:b6:f2:b7:04:6d: 45:a7:1d:04:cc:a9:3d:ff:42:2d:23:ef:bc:08:bd:22:ff:b2: c8:5d:6c:7b:76:48:44:bf:c5:84:c8:c1:b7:7c:ed:ec:2f:40: 27:c9:17:0b:98:c7:60:03:a6:c2:d6:80:69:e4:3a:80:cb:fd: a7:34:06:4f:f3:00:32:ad:24:cf:cd:0b:bc:e9:b1:1d:52:f8: 62:2b:96:e8:03:a5:45:2f:b0:27:7b:81:4c:03:f3:fe:77:5b: 49:4d:51:97:b5:f3:de:a7:04:e5:f5:7a:3e:81:f8:bf:7c:e1: 8b:11:90:c7:57:73:37:32:78:64:2a:98:73:1a:80:1f:8a:0e: e8:70:ba:01:db:49:b5:34:0a:5c:a9:c3:73:20:b6:51:24:8a: 09:ac:fc:1a:2e:0f:83:72:8f:14:de:4a:19:3b:ed:ca:34:6b: 5e:dc:8d:ce:a4:f9:8e:7f:fa:49:91:d7:02:0c:19:ac:96:21: 54:c1:66:e9:2e:2d:b4:d1:62:af:fd:8e:d0:b7:83:75:ce:e7: 4f:37:c1:64:2a:aa:e3:2c:38:32:b6:a9:11:3e:2e:d6:80:60: 28:5b:a0:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjUwNDI3MDQwNjUxWhcNMjUwNTA0MDQwNjUxWjAYMRYwFAYD VQQDEw02ODBkYWQ1Yi1mODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zwvjTj8iJPtSCRPaJGraGnEx585Qy9gOd/vuoeupkM2lLPKTQKpugYlr4GB 2vhc30cUGrxsoDoi6Vj9Hr7+ABHprq5UHrbdcYeQGztxrk4T5h0d9629GZFAIdlc jIla0yee1n5an5J8SnQ43IUAI+HhgSu1HYoAoBFo3HSBFp/VIXXx1lpnwlS+ZhkZ WMv7zh4+ZX39UkqaZlIXkI7y3LkUwiJ6YLb1kxrHIMR5HKRah5Gy71AtiQNNbf4x +NSabY04/hR9PXYZG7thXfVaWR+K98wvPpi7GAu2YX8QBtm1wnXbDP9l0RWNb/lQ OssRdBwhns+ZuzNJJEIvgZLHiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBl65WjY ejgG0I9ypzAqUS9/uySiMB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpI SWgxWWlqeFNZQmpoMWt5V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcOSnVAkwOcrdMOGoQzX4JOM/Ody7KMkMoY0mcUzArtvK3BG1Fpx0E zKk9/0ItI++8CL0i/7LIXWx7dkhEv8WEyMG3fO3sL0AnyRcLmMdgA6bC1oBp5DqA y/2nNAZP8wAyrSTPzQu86bEdUvhiK5boA6VFL7Ane4FMA/P+d1tJTVGXtfPepwTl 9Xo+gfi/fOGLEZDHV3M3MnhkKphzGoAfig7ocLoB20m1NApcqcNzILZRJIoJrPwa Lg+Dco8U3koZO+3KNGte3I3OpPmOf/pJkdcCDBmsliFUwWbpLi200WKv/Y7Qt4N1 zudPN8FkKqrjLDgytqkRPi7WgGAoW6Ao -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:56 2025 by rpki-client on console.sobornost.net