$ rpki-client -vvf rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.mft File: PSzMkYN0TcaWqFVry5BDhI6V33A.mft (raw, json) Hash identifier: +kv3ghdJb5nyaEJpYHy235XH9A2D664op9iVo9ElpNg= Subject key identifier: C9:21:E8:AD:F0:3A:10:AD:CC:98:8D:A0:FA:06:FE:4C:39:5B:C3:4A Authority key identifier: 3D:2C:CC:91:83:74:4D:C6:96:A8:55:6B:CB:90:43:84:8E:95:DF:70 Certificate issuer: /CN=A912D826/serialNumber=3D2CCC9183744DC696A8556BCB9043848E95DF70 Certificate serial: 0359 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSzMkYN0TcaWqFVry5BDhI6V33A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.mft Manifest number: 034F Signing time: Sat 29 Mar 2025 01:16:14 +0000 Manifest this update: Sat 29 Mar 2025 01:16:14 +0000 Manifest next update: Sat 05 Apr 2025 01:16:14 +0000 Files and hashes: 1: PSzMkYN0TcaWqFVry5BDhI6V33A.crl (hash: bHgBn+0IJVxoNH6QiC9uTIvBhUU2CSw+78yvsaukrw0=) 2: 82230EB20A7211EE8FA2CD58C4F9AE02.roa (hash: pFtPdQMMb/WQBA6aWqz7vT25hbAFdZnwC3pUZe1i/Ks=) 3: 80FAEBF40A7211EE8FA2CD58C4F9AE02.roa (hash: Sf1R/khEpR4iFJR+AM7kGD6260NMhorWrh2A7K0OVyw=) 4: 804B03560A7211EE8FA2CD58C4F9AE02.roa (hash: TyBxPxhfQAireAxlWMgdzu2oa+eead1thRrfD4eJkU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.crl rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSzMkYN0TcaWqFVry5BDhI6V33A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D826 Validity Not Before: Mar 29 01:16:14 2025 GMT Not After : Apr 5 01:16:14 2025 GMT Subject: CN=67e749de-49fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7c:b1:1b:d7:e4:a1:c5:4c:04:74:52:25:bb: f4:44:5a:44:b1:e2:b7:7f:ad:ac:c4:1c:58:b3:72: d7:49:4c:ff:44:9e:1e:3d:96:35:4d:98:22:b1:77: 50:0e:34:06:1d:10:e9:9a:56:39:43:56:e0:73:17: f3:dd:11:c5:a4:2f:25:b4:b9:6e:b5:f3:0b:49:61: 51:1b:6f:61:a7:01:b1:47:56:c0:31:9a:54:66:20: 8b:0d:48:e4:c6:11:88:9a:fd:31:45:64:46:97:46: 65:37:e9:41:e6:3d:1a:2a:ba:15:b9:d1:10:79:6e: 69:b6:de:bf:ff:b5:6b:d7:d3:e5:20:4a:db:1c:8a: b6:e3:d2:aa:a9:81:66:3d:9c:31:80:ff:79:d2:86: 0c:2e:69:4a:41:7f:21:7c:7c:19:cf:10:3d:d1:6b: ab:0d:8c:6a:10:be:ed:09:f0:6e:6b:9c:0d:7c:3a: de:f6:a7:31:63:a9:79:60:3d:fd:a6:58:70:8e:ec: 55:8c:b0:f9:f7:3c:5e:e1:f0:e0:4b:e3:60:07:4b: f9:4a:fa:a8:eb:4e:d7:3d:4e:64:ea:43:47:c7:cb: 9b:22:d0:f7:e3:d5:95:2f:9b:f8:2c:d2:53:ce:b3: 95:88:8d:c9:bd:0e:5d:3b:8b:74:e0:92:d3:ec:00: d6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:21:E8:AD:F0:3A:10:AD:CC:98:8D:A0:FA:06:FE:4C:39:5B:C3:4A X509v3 Authority Key Identifier: keyid:3D:2C:CC:91:83:74:4D:C6:96:A8:55:6B:CB:90:43:84:8E:95:DF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSzMkYN0TcaWqFVry5BDhI6V33A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D826/CF4E1D74AE4A11EC846F3F68C4F9AE02/PSzMkYN0TcaWqFVry5BDhI6V33A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:e1:bb:39:67:4f:1e:85:db:26:bd:bb:e2:b3:e3:e7:97:28: 80:6f:6c:b0:2c:e3:d6:35:9c:f7:a8:7d:39:6a:37:86:6d:e2: bb:0b:06:20:63:3e:61:39:53:f9:ec:d5:6e:da:f2:14:de:76: c0:d9:ef:f5:3e:75:35:cb:5a:8f:fd:55:0c:d5:b1:f4:fe:9c: da:08:ae:04:e4:a6:f5:da:ae:9a:ff:dc:3c:44:bc:da:0f:e7: e4:d7:10:43:81:01:0e:3f:9f:7b:36:bc:10:55:91:32:2c:cf: 5d:df:75:ee:eb:f1:da:e5:52:d2:63:1c:50:45:9b:40:0a:32: e2:2f:7f:c1:cb:20:68:81:c5:81:98:50:14:c4:82:07:6b:39: b3:19:d6:93:3b:3d:b5:52:1b:6d:e8:8b:c5:ef:6b:35:9e:d9: 0e:3d:dc:62:3f:aa:f9:65:b4:e4:98:30:21:09:0a:c7:8f:c9: ad:ef:f3:3b:77:db:60:d3:e3:fb:51:62:4a:ef:e1:74:b0:da: ef:cc:56:74:50:5e:19:b3:c9:80:87:5d:a4:ca:f8:0c:95:0c: 54:9c:e6:5a:34:bc:42:6d:a1:b0:e9:62:b6:30:5c:f4:2f:3c: 74:f0:ad:f7:1f:6b:aa:32:5f:25:e6:55:6e:4b:ea:2c:3a:91: 89:b8:f4:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ4MjYxMTAvBgNVBAUTKDNEMkNDQzkxODM3NDREQzY5NkE4NTU2QkNCOTA0Mzg0 OEU5NURGNzAwHhcNMjUwMzI5MDExNjE0WhcNMjUwNDA1MDExNjE0WjAYMRYwFAYD VQQDEw02N2U3NDlkZS00OWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63yxG9fkocVMBHRSJbv0RFpEseK3f62sxBxYs3LXSUz/RJ4ePZY1TZgisXdQ DjQGHRDpmlY5Q1bgcxfz3RHFpC8ltLlutfMLSWFRG29hpwGxR1bAMZpUZiCLDUjk xhGImv0xRWRGl0ZlN+lB5j0aKroVudEQeW5ptt6//7Vr19PlIErbHIq249KqqYFm PZwxgP950oYMLmlKQX8hfHwZzxA90WurDYxqEL7tCfBua5wNfDre9qcxY6l5YD39 plhwjuxVjLD59zxe4fDgS+NgB0v5Svqo607XPU5k6kNHx8ubItD349WVL5v4LNJT zrOViI3JvQ5dO4t04JLT7ADWewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkh6K3w OhCtzJiNoPoG/kw5W8NKMB8GA1UdIwQYMBaAFD0szJGDdE3GlqhVa8uQQ4SOld9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDgyNi9DRjRFMUQ3NEFF NEExMUVDODQ2RjNGNjhDNEY5QUUwMi9QU3pNa1lOMFRjYVdxRlZyeTVCRGhJNlYz M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTek1rWU4wVGNhV3FGVnJ5NUJEaEk2VjMzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDgyNi9DRjRFMUQ3NEFFNEExMUVDODQ2RjNGNjhDNEY5QUUwMi9QU3pNa1lOMFRj YVdxRlZyeTVCRGhJNlYzM0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+4bs5Z08ehdsmvbvis+PnlyiAb2ywLOPWNZz3qH05ajeGbeK7CwYg Yz5hOVP57NVu2vIU3nbA2e/1PnU1y1qP/VUM1bH0/pzaCK4E5Kb12q6a/9w8RLza D+fk1xBDgQEOP597NrwQVZEyLM9d33Xu6/Ha5VLSYxxQRZtACjLiL3/ByyBogcWB mFAUxIIHazmzGdaTOz21Uhtt6IvF72s1ntkOPdxiP6r5ZbTkmDAhCQrHj8mt7/M7 d9tg0+P7UWJK7+F0sNrvzFZ0UF4Zs8mAh12kyvgMlQxUnOZaNLxCbaGw6WK2MFz0 Lzx08K33H2uqMl8l5lVuS+osOpGJuPSe -----END CERTIFICATE-----Generated at Fri Apr 4 18:28:59 2025 by rpki-client