$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft File: pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json) Hash identifier: mzrux95N1+nhskTQBEX/L5izHS+Us8DFIL/z3QFRLiA= Subject key identifier: 79:48:23:27:51:4D:90:84:4B:EA:15:2D:AF:4F:66:C2:AA:4B:50:1A Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D Certificate issuer: /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Certificate serial: 0554 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft Manifest number: 0550 Signing time: Sun 20 Apr 2025 23:03:28 +0000 Manifest this update: Sun 20 Apr 2025 23:03:27 +0000 Manifest next update: Sun 27 Apr 2025 23:03:27 +0000 Files and hashes: 1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: a4XTml/HtDy/tzvrg4Vs3eoOX2HGFNNWudux76JC/0U=) 2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: mvt83k4r04Uj589p/6oDGv6atTVgppc7yoDpOvB9Gm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 23:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1364 (0x554) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE3D, serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Validity Not Before: Apr 20 23:03:27 2025 GMT Not After : Apr 27 23:03:27 2025 GMT Subject: CN=68057d40-5d36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7a:63:11:00:50:cc:cd:04:8e:c4:4a:06:ea: 21:c9:cd:33:0a:81:cd:cf:00:44:41:36:f6:f0:1a: e3:69:b8:3d:bd:ea:09:74:64:bf:32:51:4a:a2:16: f8:c3:2a:ad:29:d3:51:94:53:b4:75:07:60:8b:24: 60:7b:29:6f:42:83:cb:55:d9:d9:59:5a:d0:26:a8: 77:b0:e0:a4:d8:43:f0:ca:50:e6:07:10:b4:58:85: 92:78:41:d2:73:e6:32:f2:6b:40:d2:9c:5d:a2:d6: d4:cd:a1:b4:1e:a4:9e:f5:b6:e6:66:34:2d:96:75: 86:e5:35:1b:bf:13:96:8f:dd:14:c9:a1:b8:06:fa: 13:80:08:23:cf:07:a8:1f:59:1c:5f:dd:84:ad:06: d4:ff:62:2d:00:3f:d9:e2:7d:3f:2b:87:fd:9a:10: 0b:86:87:70:60:39:ea:6e:51:2f:95:be:db:be:7f: c2:fe:58:07:b5:d1:9c:42:de:84:eb:e4:a3:d9:50: 2d:a8:11:6e:cc:dd:da:a3:33:cd:25:18:cc:e5:29: 75:af:37:fd:ea:59:87:0d:96:23:73:3f:df:86:a7: 2a:1c:7b:5c:9f:34:a9:50:34:86:b0:87:8a:83:dd: c9:e7:03:06:96:ba:f6:f5:d6:78:d0:75:48:bf:88: 9b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:48:23:27:51:4D:90:84:4B:EA:15:2D:AF:4F:66:C2:AA:4B:50:1A X509v3 Authority Key Identifier: keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:98:14:63:6c:78:15:03:66:ac:b1:02:af:c6:6b:fe:b3:d9: bd:07:77:46:d2:2f:ed:c7:f6:4e:77:27:fc:67:63:ab:65:fc: 57:44:2f:8d:42:40:ae:1b:43:c0:3a:b3:6a:24:2b:d0:3b:78: 8e:33:0c:47:a6:cc:b0:26:a3:f8:05:ac:4f:cd:f0:c6:c0:96: 09:46:7d:c8:39:00:72:81:ee:cf:95:c0:4b:28:bf:55:bc:f7: cf:64:17:d1:78:0f:33:cf:d7:c5:c1:49:75:63:cf:2e:af:c9: b5:c5:a6:14:19:4a:ff:b5:98:5d:5d:d9:8a:02:6f:3c:18:f2: fe:cf:30:7c:b9:fd:d4:1e:cc:bd:34:1e:c0:66:5d:c4:cb:d5: e2:c7:a0:01:b4:d3:7a:4a:8c:73:84:80:a5:4a:af:a4:60:cb: cc:d0:ad:f4:86:e7:2b:a7:c2:63:d5:9c:de:4d:dc:07:b1:1f: d2:e0:29:8f:18:92:67:3b:8e:2f:6c:18:90:b5:c7:42:85:cb: 17:f6:9c:b8:70:dc:13:6a:74:01:a5:40:2b:f3:d5:13:01:05: 57:80:c7:49:82:23:c4:4e:36:a8:22:ca:af:60:e8:94:06:6d: 19:28:83:a9:0d:20:86:f1:65:2a:16:45:96:dc:ec:68:ac:c6: 07:85:d7:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5 RDFCNkU5NUQwHhcNMjUwNDIwMjMwMzI3WhcNMjUwNDI3MjMwMzI3WjAYMRYwFAYD VQQDEw02ODA1N2Q0MC01ZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XpjEQBQzM0EjsRKBuohyc0zCoHNzwBEQTb28Brjabg9veoJdGS/MlFKohb4 wyqtKdNRlFO0dQdgiyRgeylvQoPLVdnZWVrQJqh3sOCk2EPwylDmBxC0WIWSeEHS c+Yy8mtA0pxdotbUzaG0HqSe9bbmZjQtlnWG5TUbvxOWj90UyaG4BvoTgAgjzweo H1kcX92ErQbU/2ItAD/Z4n0/K4f9mhALhodwYDnqblEvlb7bvn/C/lgHtdGcQt6E 6+Sj2VAtqBFuzN3aozPNJRjM5Sl1rzf96lmHDZYjcz/fhqcqHHtcnzSpUDSGsIeK g93J5wMGlrr29dZ40HVIv4ibCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlIIydR TZCES+oVLa9PZsKqS1AaMB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1 MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZmBRjbHgVA2assQKvxmv+s9m9B3dG0i/tx/ZOdyf8Z2OrZfxXRC+N QkCuG0PAOrNqJCvQO3iOMwxHpsywJqP4BaxPzfDGwJYJRn3IOQByge7PlcBLKL9V vPfPZBfReA8zz9fFwUl1Y88ur8m1xaYUGUr/tZhdXdmKAm88GPL+zzB8uf3UHsy9 NB7AZl3Ey9Xix6ABtNN6SoxzhIClSq+kYMvM0K30hucrp8Jj1ZzeTdwHsR/S4CmP GJJnO44vbBiQtcdChcsX9py4cNwTanQBpUAr89UTAQVXgMdJgiPETjaoIsqvYOiU Bm0ZKIOpDSCG8WUqFkWW3OxorMYHhddr -----END CERTIFICATE-----Generated at Tue Apr 22 12:25:13 2025 by rpki-client