$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: +/cgbuNHnxAWPQJj8gtjLqKynQQQ9h/cLwbIZCvxSpo= Subject key identifier: 52:5D:4B:D2:52:20:B5:76:36:85:AD:B5:0F:9A:06:9B:D6:CC:C4:78 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0429 Signing time: Sun 27 Apr 2025 00:01:17 +0000 Manifest this update: Sun 27 Apr 2025 00:01:17 +0000 Manifest next update: Sun 04 May 2025 00:01:17 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: 459f/09ken/HGCGgy1GldGJlWlVwS4siJjh3E0YQJtk=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Apr 27 00:01:17 2025 GMT Not After : May 4 00:01:17 2025 GMT Subject: CN=680d73cd-da51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5b:9e:30:7d:81:04:ea:23:7c:47:37:4d:ed: ba:6c:fc:39:57:26:50:94:c1:48:19:8b:c4:44:9b: 16:ec:ef:bf:ff:70:6d:eb:80:74:86:71:80:7c:4b: f9:4c:82:99:41:79:4a:ed:a9:4b:e1:28:9a:25:7f: f1:23:da:61:76:ef:4d:30:24:c6:89:e2:d5:98:4b: af:b5:d9:d0:2d:e8:b2:88:2b:64:6a:bd:31:8c:ff: b8:b0:c6:c7:53:ab:f4:ad:65:3c:7f:b7:e8:a1:0a: 96:af:0f:13:e3:54:b2:df:84:b2:2a:73:41:47:ba: 78:3c:a6:2d:17:83:5f:83:50:1f:08:66:79:0e:12: fe:90:db:f7:f5:1a:5c:69:97:50:17:b7:3f:9c:6f: b7:14:f4:fe:dc:65:d1:09:67:7c:d0:40:77:71:81: 05:ff:dc:2f:84:e2:da:a5:6c:72:b7:b9:90:7c:62: 75:1b:3d:41:f3:fd:51:ce:32:eb:3b:52:05:33:ff: bb:32:d8:5a:b1:04:9d:79:f4:43:85:75:61:61:60: 64:da:8d:e0:44:45:7e:d5:96:0c:ce:ae:fc:ad:e6: e4:ad:80:5d:9f:0b:ff:0a:44:ee:ef:b7:0d:c6:9f: 60:df:a8:5d:4e:62:cd:63:aa:5c:48:ff:f6:71:60: 63:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5D:4B:D2:52:20:B5:76:36:85:AD:B5:0F:9A:06:9B:D6:CC:C4:78 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:19:0d:fa:14:34:b4:8c:d2:87:3c:78:a1:79:c9:a9:d5:85: 95:50:b7:df:b1:83:87:fa:cf:27:05:67:9e:17:99:bb:bc:e6: 93:53:67:ba:c1:a6:d7:2f:ce:39:c4:4a:e5:17:ed:d4:bd:fc: 48:bb:11:b3:47:f9:a7:1f:50:b2:90:c6:fd:74:75:66:00:67: 45:67:ec:fb:10:5f:cd:d6:6e:79:21:14:16:df:0d:37:96:ad: 05:f6:1c:8e:b5:94:2c:f4:a2:9c:fa:e7:6a:1e:59:46:5f:8b: b3:b9:b8:e0:04:af:f7:44:22:d9:ed:83:21:02:dc:cd:94:4e: 25:62:fd:ea:87:0b:52:9e:72:6f:18:63:ef:3a:40:e3:7a:cc: d2:8e:a3:46:08:5f:b9:ed:38:97:17:20:49:c6:0b:c2:4f:3b: 3b:35:d2:f1:d0:c8:a0:2f:82:f2:37:97:35:ea:02:eb:17:c5: af:17:f5:9b:43:bc:05:2a:a3:79:8a:4a:fa:64:59:d7:ee:cc: 66:ed:ba:6f:10:cf:69:da:63:4c:17:07:ab:a2:1f:9a:e7:90: b4:f4:41:8d:56:34:1b:ec:63:e2:6a:ea:b1:a2:1c:35:3c:cd: 76:53:67:09:6c:e8:05:99:81:61:18:fe:ba:0b:7b:5f:d4:93: ad:0c:45:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwNDI3MDAwMTE3WhcNMjUwNTA0MDAwMTE3WjAYMRYwFAYD VQQDEw02ODBkNzNjZC1kYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlueMH2BBOojfEc3Te26bPw5VyZQlMFIGYvERJsW7O+//3Bt64B0hnGAfEv5 TIKZQXlK7alL4SiaJX/xI9phdu9NMCTGieLVmEuvtdnQLeiyiCtkar0xjP+4sMbH U6v0rWU8f7fooQqWrw8T41Sy34SyKnNBR7p4PKYtF4Nfg1AfCGZ5DhL+kNv39Rpc aZdQF7c/nG+3FPT+3GXRCWd80EB3cYEF/9wvhOLapWxyt7mQfGJ1Gz1B8/1RzjLr O1IFM/+7MthasQSdefRDhXVhYWBk2o3gREV+1ZYMzq78rebkrYBdnwv/CkTu77cN xp9g36hdTmLNY6pcSP/2cWBjFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJdS9JS ILV2NoWttQ+aBpvWzMR4MB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVGQ36FDS0jNKHPHihecmp1YWVULffsYOH+s8nBWeeF5m7vOaTU2e6 wabXL845xErlF+3UvfxIuxGzR/mnH1CykMb9dHVmAGdFZ+z7EF/N1m55IRQW3w03 lq0F9hyOtZQs9KKc+udqHllGX4uzubjgBK/3RCLZ7YMhAtzNlE4lYv3qhwtSnnJv GGPvOkDjeszSjqNGCF+57TiXFyBJxgvCTzs7NdLx0MigL4LyN5c16gLrF8WvF/Wb Q7wFKqN5ikr6ZFnX7sxm7bpvEM9p2mNMFweroh+a55C09EGNVjQb7GPiauqxohw1 PM12U2cJbOgFmYFhGP66C3tf1JOtDEXO -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:14 2025 by rpki-client on console.sobornost.net