$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft File: PByHc0fugnKWNq8POjddORCQ-SE.mft (raw, json) Hash identifier: GptCdsXBF+Hmk9URuw+5CtEUh1IQWvcK/rrZluLKE/E= Subject key identifier: 86:37:AE:10:C6:DB:4D:03:81:77:32:85:5F:0E:44:D8:02:0F:79:A1 Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 Certificate issuer: /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Certificate serial: 2CC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft Manifest number: 2C97 Signing time: Mon 28 Apr 2025 15:37:12 +0000 Manifest this update: Mon 28 Apr 2025 15:37:12 +0000 Manifest next update: Mon 05 May 2025 15:37:11 +0000 Files and hashes: 1: PByHc0fugnKWNq8POjddORCQ-SE.crl (hash: /oLIbSULLMo1vNksYblty5gSS09+dr+Oc9ZHMmFNtuk=) 2: 5728551C6E9611EF8FEC9C1BC4F9AE02.roa (hash: rd1Y32xkoeiGOMGm6/GALVzy5u2L42RHVTq0ym4rGxc=) 3: 14820EDE248611EEB600357DC4F9AE02.roa (hash: pfSrv7ABwA9/SpzKbTS+fYCpaS8uDOGjDIZI4jVwlaM=) 4: 1EE59B10AFB911EF843BCE46C4F9AE02.roa (hash: lLGc/5mA5kFPjBXAMgczp/DBVxx7SVF6m6e/8RR/fUw=) 5: 5F2A9412249D11EEBA491E2FC4F9AE02.roa (hash: g11u2GEJJEEmMdpcoU8e0HEnyj3HUMfwjbRYntoaDGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:37:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11462 (0x2cc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA2D5, serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Validity Not Before: Apr 28 15:37:12 2025 GMT Not After : May 5 15:37:11 2025 GMT Subject: CN=680fa0a8-5449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:67:79:72:a7:26:f0:34:26:b0:1d:05:df:21: 54:f3:d3:74:e5:60:1b:40:5d:63:8d:cb:a2:9e:d4: 38:82:fe:52:34:4d:1b:6a:4d:a1:ef:09:06:ad:a5: f5:0d:44:96:e4:96:b2:bf:b4:08:5d:01:60:cc:89: 0f:ca:31:76:72:05:25:d2:5f:58:d9:69:f5:c9:82: ef:a1:d2:b6:da:83:b2:4c:3f:9c:5a:9a:d8:c8:d6: a4:fe:f8:48:13:de:33:90:14:63:fe:3d:f8:58:d2: dd:c2:7b:7f:05:34:61:a4:70:cd:05:43:06:c0:fd: 67:10:85:37:df:4e:86:5c:d6:1d:09:60:9c:79:b7: 52:06:a4:1d:93:db:46:20:ab:24:14:64:04:ba:83: 1d:cb:e5:10:c3:c7:c1:f6:fd:c8:bd:c5:d8:0a:a2: 33:a7:3c:12:87:96:1a:68:3c:fd:a0:bc:6c:32:71: c0:94:95:ae:0d:63:b8:f8:c0:c8:4b:bf:53:11:04: 46:b7:79:ca:25:7a:e2:6e:f2:e4:aa:bc:b9:ec:bc: e2:7d:c1:d0:0a:f8:f2:fb:8e:3a:54:3e:c9:7c:a0: 4f:6d:63:08:ad:71:3f:c4:52:ab:93:5b:de:77:9c: 58:c3:3c:fa:54:d1:7b:28:2b:46:73:b5:39:25:bc: 5c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:37:AE:10:C6:DB:4D:03:81:77:32:85:5F:0E:44:D8:02:0F:79:A1 X509v3 Authority Key Identifier: keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:8b:70:5d:95:50:fa:9a:8c:59:88:ce:ac:12:3f:45:89:df: b5:ad:ca:96:fd:70:8c:0a:04:80:ff:8f:09:27:c0:87:6c:ea: 3e:80:4f:63:eb:9c:8b:4e:c4:10:5d:66:fe:c9:2e:01:06:3a: 6d:a5:cb:01:ff:1b:73:3e:3d:30:df:00:e8:8d:bb:7b:a1:af: c7:9f:ca:13:15:56:9c:c1:ce:15:67:d1:a3:5a:42:e9:e8:f7: 99:37:b8:9e:6a:f9:10:61:67:74:c3:7e:92:d7:9c:86:99:aa: 89:82:d6:88:5a:bd:eb:66:58:f1:11:88:0c:22:e5:33:74:33: a8:6a:f6:ac:53:8c:49:81:71:1f:58:00:b7:cf:4b:ef:b0:cb: 76:f3:e9:78:5c:c9:2c:0f:70:19:fd:32:07:ca:99:a3:99:ed: 58:02:3e:54:64:dd:ce:be:93:81:bf:fa:a1:57:a7:48:ab:fe: 63:36:1b:df:30:43:cd:d0:8a:72:fc:e4:43:96:88:e6:2a:e9: 5a:f1:1f:08:d9:38:5a:47:9a:2d:5a:30:63:85:83:2a:ef:ed: 14:2d:77:0a:85:1d:3a:85:7a:23:da:6d:88:52:75:a2:76:b5: 99:00:75:d3:8b:39:87:bd:c6:48:ca:0f:34:21:5e:c9:b2:f7: 43:39:7f:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyRDUxMTAvBgNVBAUTKDNDMUM4NzczNDdFRTgyNzI5NjM2QUYwRjNBMzc1RDM5 MTA5MEY5MjEwHhcNMjUwNDI4MTUzNzEyWhcNMjUwNTA1MTUzNzExWjAYMRYwFAYD VQQDEw02ODBmYTBhOC01NDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumd5cqcm8DQmsB0F3yFU89N05WAbQF1jjcuintQ4gv5SNE0bak2h7wkGraX1 DUSW5Jayv7QIXQFgzIkPyjF2cgUl0l9Y2Wn1yYLvodK22oOyTD+cWprYyNak/vhI E94zkBRj/j34WNLdwnt/BTRhpHDNBUMGwP1nEIU3306GXNYdCWCcebdSBqQdk9tG IKskFGQEuoMdy+UQw8fB9v3IvcXYCqIzpzwSh5YaaDz9oLxsMnHAlJWuDWO4+MDI S79TEQRGt3nKJXribvLkqry57LzifcHQCvjy+446VD7JfKBPbWMIrXE/xFKrk1ve d5xYwzz6VNF7KCtGc7U5Jbxc1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIY3rhDG 200DgXcyhV8ORNgCD3mhMB8GA1UdIwQYMBaAFDwch3NH7oJyljavDzo3XTkQkPkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTJENS81Rjg2MUVFNkI4 OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWduS1dOcThQT2pkZE9SQ1Et U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCeUhjMGZ1Z25LV05xOFBPamRkT1JDUS1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTJENS81Rjg2MUVFNkI4OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWdu S1dOcThQT2pkZE9SQ1EtU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDi3BdlVD6moxZiM6sEj9Fid+1rcqW/XCMCgSA/48JJ8CHbOo+gE9j 65yLTsQQXWb+yS4BBjptpcsB/xtzPj0w3wDojbt7oa/Hn8oTFVacwc4VZ9GjWkLp 6PeZN7ieavkQYWd0w36S15yGmaqJgtaIWr3rZljxEYgMIuUzdDOoavasU4xJgXEf WAC3z0vvsMt28+l4XMksD3AZ/TIHypmjme1YAj5UZN3OvpOBv/qhV6dIq/5jNhvf MEPN0Ipy/ORDlojmKula8R8I2ThaR5otWjBjhYMq7+0ULXcKhR06hXoj2m2IUnWi drWZAHXTizmHvcZIyg80IV7JsvdDOX+B -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:03 2025 by rpki-client on console.sobornost.net