$ rpki-client -vvf rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft File: PxScskgQcfFD-NFWCCear8cdEVw.mft (raw, json) Hash identifier: sfEwnac7nLB++UkZV9xDKyBsfaqLAPaNY3GNP5k6rCk= Subject key identifier: 21:D7:C0:1E:52:30:82:E4:F2:D6:66:76:35:DD:78:0A:6B:F7:14:58 Authority key identifier: 3F:14:9C:B2:48:10:71:F1:43:F8:D1:56:08:27:9A:AF:C7:1D:11:5C Certificate issuer: /CN=A911C18F/serialNumber=3F149CB2481071F143F8D15608279AAFC71D115C Certificate serial: 1ECE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft Manifest number: 1EC4 Signing time: Fri 04 Apr 2025 16:05:34 +0000 Manifest this update: Fri 04 Apr 2025 16:05:33 +0000 Manifest next update: Fri 11 Apr 2025 16:05:33 +0000 Files and hashes: 1: PxScskgQcfFD-NFWCCear8cdEVw.crl (hash: Fpb9F4U1Ljsiq6FcqIMq5OVQYUXshRVcYr7+xPFl9e0=) 2: A9FAE7FA5E1911E6B8CE9C5BC4F9AE02.roa (hash: C7LM+OrofkS8APK8eFVOJJHm9mqxZuAPAA0InGQkpPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.crl rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7886 (0x1ece) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C18F Validity Not Before: Apr 4 16:05:33 2025 GMT Not After : Apr 11 16:05:33 2025 GMT Subject: CN=67f0034d-b9b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fe:51:02:fd:85:e4:f6:ba:82:b4:1f:1b:c6: 93:e7:33:a6:0c:2a:a8:55:c3:35:eb:19:06:20:11: 00:2c:c1:68:c0:8b:d1:6b:a1:9b:80:ae:d9:ad:cb: 3d:e1:85:f1:36:ac:db:ee:cc:90:f7:bc:57:28:37: 7b:4d:cf:14:af:5d:e4:69:25:9a:e8:a5:44:91:eb: b3:fc:3d:ae:db:17:b1:c6:6c:54:03:cb:6b:e1:3a: fe:99:03:33:2e:29:09:4e:59:cf:a8:10:2c:46:81: 89:72:da:e7:c2:86:91:40:cf:9e:8a:f3:24:49:7b: 2d:1a:92:0c:7c:64:a1:e6:86:d3:61:ed:3a:3d:11: 0f:62:b7:70:23:e4:84:77:5c:f0:1e:56:03:15:6d: 62:95:21:47:58:6a:9e:b8:58:f8:b3:16:af:4f:3a: da:d3:72:b2:02:dd:19:10:00:46:cb:0c:d4:df:0e: 4f:03:5e:24:15:84:15:6b:1a:12:85:6b:15:09:7a: 06:2d:17:25:6b:d9:a5:d3:c4:3a:57:ed:60:99:2c: e3:9c:c1:8f:d4:1b:cb:47:f7:ec:11:cf:8e:69:f9: cb:26:b8:3f:3b:c0:57:59:c3:ee:24:be:6e:b9:6e: 8f:64:15:51:6f:83:ef:14:b6:6f:72:50:4f:8a:dd: 41:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D7:C0:1E:52:30:82:E4:F2:D6:66:76:35:DD:78:0A:6B:F7:14:58 X509v3 Authority Key Identifier: keyid:3F:14:9C:B2:48:10:71:F1:43:F8:D1:56:08:27:9A:AF:C7:1D:11:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:ab:7d:24:6a:4b:b7:ae:9a:09:6b:62:0e:00:83:d5:0a:45: b3:6a:85:64:75:ee:32:3f:d8:23:87:da:7a:4d:ab:68:c9:fb: 76:05:3a:f9:5a:9e:4d:00:0b:57:db:1f:67:bc:be:29:0e:e5: fb:cc:ab:3f:35:c6:0a:fb:bb:9b:89:6c:64:47:9c:d6:75:05: e4:53:a4:af:74:85:54:bc:20:bf:b4:0d:ab:0c:b7:e8:8c:2b: 0d:46:96:85:56:49:13:4f:2b:53:ff:53:9f:0e:0f:98:76:d7: bd:cc:0d:8e:16:ea:0e:dc:2a:a1:d2:61:2e:94:a6:fb:19:07: 45:c0:6c:fc:b4:52:90:4c:55:67:fb:ac:19:89:2c:a1:a6:58: 8e:4c:d8:4d:1d:e1:c7:2c:67:94:a4:6d:33:c2:09:d7:0f:bb: c3:b9:6e:56:43:d2:ff:20:a4:be:b8:fd:b1:de:05:90:b6:a4: b1:bd:b6:01:34:63:29:0e:cd:a3:d4:a9:87:18:61:a6:4b:f2: 4f:e9:da:a7:1f:ed:59:aa:ce:a6:e6:7a:a8:33:72:8c:96:e2: 63:0a:8a:35:c9:b4:20:1c:7a:b1:88:91:4b:64:eb:45:53:9b: f3:55:92:19:4c:05:6f:c5:98:8d:16:f6:aa:a8:7e:71:29:fd: ba:4b:13:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMxOEYxMTAvBgNVBAUTKDNGMTQ5Q0IyNDgxMDcxRjE0M0Y4RDE1NjA4Mjc5QUFG QzcxRDExNUMwHhcNMjUwNDA0MTYwNTMzWhcNMjUwNDExMTYwNTMzWjAYMRYwFAYD VQQDEw02N2YwMDM0ZC1iOWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxP5RAv2F5Pa6grQfG8aT5zOmDCqoVcM16xkGIBEALMFowIvRa6GbgK7Zrcs9 4YXxNqzb7syQ97xXKDd7Tc8Ur13kaSWa6KVEkeuz/D2u2xexxmxUA8tr4Tr+mQMz LikJTlnPqBAsRoGJctrnwoaRQM+eivMkSXstGpIMfGSh5obTYe06PREPYrdwI+SE d1zwHlYDFW1ilSFHWGqeuFj4sxavTzra03KyAt0ZEABGywzU3w5PA14kFYQVaxoS hWsVCXoGLRcla9ml08Q6V+1gmSzjnMGP1BvLR/fsEc+OafnLJrg/O8BXWcPuJL5u uW6PZBVRb4PvFLZvclBPit1B1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHXwB5S MILk8tZmdjXdeApr9xRYMB8GA1UdIwQYMBaAFD8UnLJIEHHxQ/jRVggnmq/HHRFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzE4Ri84RTdBOUJBQzVF MTgxMUU2QUM2NkM1NTlDNEY5QUUwMi9QeFNjc2tnUWNmRkQtTkZXQ0NlYXI4Y2RF VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B4U2Nza2dRY2ZGRC1ORldDQ2VhcjhjZEVWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzE4Ri84RTdBOUJBQzVFMTgxMUU2QUM2NkM1NTlDNEY5QUUwMi9QeFNjc2tnUWNm RkQtTkZXQ0NlYXI4Y2RFVncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvq30kaku3rpoJa2IOAIPVCkWzaoVkde4yP9gjh9p6Tatoyft2BTr5 Wp5NAAtX2x9nvL4pDuX7zKs/NcYK+7ubiWxkR5zWdQXkU6SvdIVUvCC/tA2rDLfo jCsNRpaFVkkTTytT/1OfDg+Ydte9zA2OFuoO3Cqh0mEulKb7GQdFwGz8tFKQTFVn +6wZiSyhpliOTNhNHeHHLGeUpG0zwgnXD7vDuW5WQ9L/IKS+uP2x3gWQtqSxvbYB NGMpDs2j1KmHGGGmS/JP6dqnH+1Zqs6m5nqoM3KMluJjCoo1ybQgHHqxiJFLZOtF U5vzVZIZTAVvxZiNFvaqqH5xKf26SxOL -----END CERTIFICATE-----Generated at Sun Apr 6 02:23:03 2025 by rpki-client