$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: yxAZIGReUwOS5gT6TJipDctIeewrBgFkFaHCoh3ZUYg= Subject key identifier: E2:62:D4:9F:DE:8C:CF:15:96:70:B5:26:9A:B2:73:86:6A:1A:25:90 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1AC7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1AC4 Signing time: Tue 08 Apr 2025 16:19:51 +0000 Manifest this update: Tue 08 Apr 2025 16:19:50 +0000 Manifest next update: Tue 15 Apr 2025 16:19:50 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: a0baeckDGjw0XP2DA92ETmIA8wpIw8cPQzfRXTF/Kog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6855 (0x1ac7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3 Validity Not Before: Apr 8 16:19:50 2025 GMT Not After : Apr 15 16:19:50 2025 GMT Subject: CN=67f54ca7-b803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:11:35:e3:fd:c3:ff:8f:62:06:a1:6f:af:1f: d4:d5:5d:3b:c7:61:a6:c8:1c:cc:7f:9e:b6:1d:7a: 7c:f6:65:62:68:57:50:ee:33:f5:a1:c7:a4:7e:3a: 7b:06:e8:b7:7f:5b:2a:92:52:b5:29:f6:48:f0:79: e2:20:5f:d1:4c:af:c4:70:bc:52:a6:34:be:5d:48: ab:51:a4:3b:ac:86:9d:30:76:44:48:7b:c6:5b:d9: 47:85:86:e4:96:d3:01:15:69:cd:92:6e:cf:94:7d: 63:93:bc:61:6d:91:d8:b2:aa:67:c4:5f:19:2f:ed: 2d:c7:68:a9:69:91:06:c8:a8:ea:8f:ce:48:18:aa: 88:b4:e4:0a:71:4e:21:84:a7:25:18:10:c9:c0:55: 11:be:c3:74:a9:28:bc:e7:72:d4:49:51:53:78:de: a4:c3:09:14:69:03:96:95:19:9a:14:f0:2a:01:ed: c0:33:96:d9:c6:0b:cf:66:70:23:ac:ae:b1:68:c6: 6c:f4:e4:88:21:ff:40:aa:ff:15:52:ba:cb:f8:a7: e0:2f:6a:83:b4:6e:69:d6:c7:44:60:c3:79:2e:95: 4c:14:73:4c:ad:4f:45:31:91:d4:23:fc:be:9e:62: f7:17:9a:41:79:4d:f8:5f:2d:95:a7:8d:3c:73:88: 79:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:62:D4:9F:DE:8C:CF:15:96:70:B5:26:9A:B2:73:86:6A:1A:25:90 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:fb:f5:ef:9d:47:e3:e1:74:90:03:b5:bd:fc:f0:db:cb:28: 9a:72:f3:ab:31:6b:e3:a3:a5:d0:02:03:6c:bb:82:47:68:4d: bd:1d:63:e3:84:29:c7:1d:b4:8b:df:31:c0:a0:38:d3:0d:6c: 00:85:da:5d:d6:90:6e:d1:cc:e2:e1:b3:8b:d1:00:28:81:6a: 13:61:82:4e:e7:f1:49:4e:07:52:11:4e:a8:b9:29:73:21:ee: d1:f8:3f:b7:89:3e:90:8a:83:86:88:56:0e:18:49:1b:3b:63: 45:ce:a9:33:7f:92:ba:99:c8:41:21:d8:3f:52:9d:c6:85:3a: fc:89:36:d0:ed:6c:50:e2:5d:7d:23:3c:4e:01:e8:84:81:66: bb:8b:0a:8d:96:fe:5f:61:cc:25:73:bf:08:f2:d0:e8:27:e8: 50:cc:84:62:ad:d3:10:2a:d1:8d:08:b0:74:f4:73:91:de:1e: d7:b7:61:6d:42:1b:13:87:0b:cc:ac:59:15:2b:3f:5d:a2:fe: f4:7c:f4:87:e0:19:bd:45:0f:74:66:21:28:23:35:4f:f4:ac: 47:fb:e4:0b:e0:10:42:d9:14:61:81:fc:d6:25:79:e7:43:d5: 76:97:a2:bf:fa:ac:a3:c4:82:e3:12:3a:5f:76:4f:84:c3:63: d7:15:19:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUwNDA4MTYxOTUwWhcNMjUwNDE1MTYxOTUwWjAYMRYwFAYD VQQDEw02N2Y1NGNhNy1iODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhE14/3D/49iBqFvrx/U1V07x2GmyBzMf562HXp89mViaFdQ7jP1ocekfjp7 Bui3f1sqklK1KfZI8HniIF/RTK/EcLxSpjS+XUirUaQ7rIadMHZESHvGW9lHhYbk ltMBFWnNkm7PlH1jk7xhbZHYsqpnxF8ZL+0tx2ipaZEGyKjqj85IGKqItOQKcU4h hKclGBDJwFURvsN0qSi853LUSVFTeN6kwwkUaQOWlRmaFPAqAe3AM5bZxgvPZnAj rK6xaMZs9OSIIf9Aqv8VUrrL+KfgL2qDtG5p1sdEYMN5LpVMFHNMrU9FMZHUI/y+ nmL3F5pBeU34Xy2Vp408c4h5cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJi1J/e jM8VlnC1Jpqyc4ZqGiWQMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDE+/XvnUfj4XSQA7W9/PDbyyiacvOrMWvjo6XQAgNsu4JHaE29HWPj hCnHHbSL3zHAoDjTDWwAhdpd1pBu0czi4bOL0QAogWoTYYJO5/FJTgdSEU6ouSlz Ie7R+D+3iT6QioOGiFYOGEkbO2NFzqkzf5K6mchBIdg/Up3GhTr8iTbQ7WxQ4l19 IzxOAeiEgWa7iwqNlv5fYcwlc78I8tDoJ+hQzIRirdMQKtGNCLB09HOR3h7Xt2Ft QhsThwvMrFkVKz9dov70fPSH4Bm9RQ90ZiEoIzVP9KxH++QL4BBC2RRhgfzWJXnn Q9V2l6K/+qyjxILjEjpfdk+Ew2PXFRlk -----END CERTIFICATE-----Generated at Fri Apr 11 00:40:14 2025 by rpki-client