$ rpki-client -vvf rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft File: PHUP1suMdwFoHlNr3WtxXxkrivk.mft (raw, json) Hash identifier: IcKbGb41NxB40fglOjovy8je66t8L2f/1nfsQ6qrsbQ= Subject key identifier: EC:54:5F:4E:26:28:1E:98:61:A1:1F:BC:75:BC:A1:BE:4C:65:40:76 Authority key identifier: 3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 Certificate issuer: /CN=A914233F/serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft Manifest number: 013B Signing time: Tue 15 Apr 2025 03:24:09 +0000 Manifest this update: Tue 15 Apr 2025 03:24:08 +0000 Manifest next update: Tue 22 Apr 2025 03:24:08 +0000 Files and hashes: 1: PHUP1suMdwFoHlNr3WtxXxkrivk.crl (hash: pMjRKgZdt9o9ZGYVeRvdL9P/YymRpEEdVrIP+hvaNXo=) 2: D2AD84364AE411EE95B72651C4F9AE02.roa (hash: c3n7ErqEI7wUv0Zh/82IQ41rmFajxkaaakm4Lrf4zUE=) 3: D1DA657E4AE411EE95B72651C4F9AE02.roa (hash: OyzekySsh32QnXqLJ9xXpFy1GOqrIr4htNA7lulacc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 03:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914233F, serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Validity Not Before: Apr 15 03:24:08 2025 GMT Not After : Apr 22 03:24:08 2025 GMT Subject: CN=67fdd158-d072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6b:43:99:d7:f6:9a:de:63:26:f2:9d:15:4a: d1:29:d9:05:bd:f3:08:41:84:66:e6:1d:5d:38:2a: 68:0d:70:f0:cb:72:a1:02:b3:1b:17:71:ad:c4:a0: 79:d2:cd:30:53:ad:dd:ab:ba:bd:1a:a0:85:00:91: ae:aa:b0:5b:e2:45:52:63:da:7e:7e:9f:62:13:85: bf:7b:19:17:df:8e:88:c6:3d:57:d5:d0:f2:00:6b: 78:1d:36:44:80:db:0f:7f:52:cd:53:f3:65:75:29: 41:76:b9:f5:53:0a:e7:3f:85:03:70:f3:32:60:ba: c1:c2:77:fe:32:45:d5:3f:a1:9b:37:e6:05:11:44: 99:cf:0b:d7:c7:c9:07:d4:2f:b8:0e:80:96:5d:6b: 56:8e:42:54:0d:13:4c:30:70:95:b9:1d:07:e5:a4: ff:04:d0:98:3d:fb:c6:97:f8:c5:09:b4:fe:b9:27: 94:6a:72:95:2e:85:56:0c:dd:a1:ec:22:4e:5e:e2: a5:d8:d1:f3:13:96:2c:68:9f:2b:d1:92:9d:bf:6c: 14:32:e8:fa:75:1a:f5:87:dd:b3:0d:75:78:8b:b1: 2d:be:bb:92:a9:2e:1b:8b:26:b0:62:67:a9:a5:3f: ed:5a:ee:de:b3:af:80:40:9d:c0:7d:a9:85:50:15: 8d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:54:5F:4E:26:28:1E:98:61:A1:1F:BC:75:BC:A1:BE:4C:65:40:76 X509v3 Authority Key Identifier: keyid:3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ec:47:59:3a:b7:40:5e:10:42:b5:e6:8f:86:4d:8a:76:a0: 4d:13:4d:93:ad:13:21:17:87:5c:74:f0:da:29:60:0d:86:36: e3:26:3c:70:09:17:88:26:9d:7b:7b:bd:35:e4:9c:0b:7f:1b: 1a:b1:ae:ba:02:d8:39:74:4a:82:14:9c:1d:3e:d2:92:2a:58: 2a:37:df:47:f9:98:73:58:b0:a9:f2:c0:9e:5a:84:43:31:98: b5:e0:30:cb:cd:c2:f8:cc:af:18:7b:55:87:a3:63:20:42:ef: 31:7a:03:82:c3:27:06:8e:f6:f5:1c:43:47:56:69:3a:49:46: 8c:59:0d:4c:bb:91:2f:f3:a7:c4:e3:d2:a1:1e:57:87:b7:b1: dc:c9:31:62:7a:ff:9e:73:ee:62:25:c9:ae:3b:6f:f4:3d:ee: 65:52:73:e1:5a:b5:6a:ac:9f:fb:5e:94:a3:d0:5a:0d:a4:60: c0:7e:6a:3b:cb:17:ca:42:be:2f:36:07:97:c4:42:ae:bb:6d: 4b:65:51:02:2d:c3:ca:3a:b4:5d:93:d9:8d:73:fa:48:3c:58: 70:68:55:84:90:71:53:e3:cb:de:50:4c:af:99:5b:37:98:47: f2:17:43:53:2f:fc:e3:2a:98:7a:b9:bc:3e:00:40:5c:63:09: 3e:f0:7a:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzM0YxMTAvBgNVBAUTKDNDNzUwRkQ2Q0I4Qzc3MDE2ODFFNTM2QkRENkI3MTVG MTkyQjhBRjkwHhcNMjUwNDE1MDMyNDA4WhcNMjUwNDIyMDMyNDA4WjAYMRYwFAYD VQQDEw02N2ZkZDE1OC1kMDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWtDmdf2mt5jJvKdFUrRKdkFvfMIQYRm5h1dOCpoDXDwy3KhArMbF3GtxKB5 0s0wU63dq7q9GqCFAJGuqrBb4kVSY9p+fp9iE4W/exkX346Ixj1X1dDyAGt4HTZE gNsPf1LNU/NldSlBdrn1UwrnP4UDcPMyYLrBwnf+MkXVP6GbN+YFEUSZzwvXx8kH 1C+4DoCWXWtWjkJUDRNMMHCVuR0H5aT/BNCYPfvGl/jFCbT+uSeUanKVLoVWDN2h 7CJOXuKl2NHzE5YsaJ8r0ZKdv2wUMuj6dRr1h92zDXV4i7EtvruSqS4biyawYmep pT/tWu7es6+AQJ3AfamFUBWNtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxUX04m KB6YYaEfvHW8ob5MZUB2MB8GA1UdIwQYMBaAFDx1D9bLjHcBaB5Ta91rcV8ZK4r5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjMzRi84NUMyMEJEQTQ2 M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3Rm9IbE5yM1d0eFh4a3Jp dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BIVVAxc3VNZHdGb0hsTnIzV3R4WHhrcml2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjMzRi84NUMyMEJEQTQ2M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3 Rm9IbE5yM1d0eFh4a3JpdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA67EdZOrdAXhBCteaPhk2KdqBNE02TrRMhF4dcdPDaKWANhjbjJjxw CReIJp17e7015JwLfxsasa66Atg5dEqCFJwdPtKSKlgqN99H+ZhzWLCp8sCeWoRD MZi14DDLzcL4zK8Ye1WHo2MgQu8xegOCwycGjvb1HENHVmk6SUaMWQ1Mu5Ev86fE 49KhHleHt7HcyTFiev+ec+5iJcmuO2/0Pe5lUnPhWrVqrJ/7XpSj0FoNpGDAfmo7 yxfKQr4vNgeXxEKuu21LZVECLcPKOrRdk9mNc/pIPFhwaFWEkHFT48veUEyvmVs3 mEfyF0NTL/zjKph6ubw+AEBcYwk+8Hph -----END CERTIFICATE-----Generated at Wed Apr 16 22:23:59 2025 by rpki-client