$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft (raw, json) Hash identifier: x4IPoQUQHcrM68Jk8bLs0dRnbuWGZFgrRdgPtegGbsg= Subject key identifier: CC:CF:1D:C7:2A:7C:E8:B3:10:4C:4A:DE:A6:F8:F6:C8:74:E2:2B:B9 Authority key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 Certificate issuer: /CN=A914E6AA/serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft Manifest number: 0872 Signing time: Sun 06 Apr 2025 22:38:00 +0000 Manifest this update: Sun 06 Apr 2025 22:38:00 +0000 Manifest next update: Sun 13 Apr 2025 22:38:00 +0000 Files and hashes: 1: PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl (hash: NcJDsOyqY7PtC88azeQtQdMMhRfssSgZrOO4UFkYBcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 22:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA Validity Not Before: Apr 6 22:38:00 2025 GMT Not After : Apr 13 22:38:00 2025 GMT Subject: CN=67f30248-6fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c1:35:bd:5e:91:15:b5:c5:60:8c:6e:00:78: 01:0b:d0:c4:e3:36:e3:48:13:83:b4:f1:33:ee:d1: 0b:87:18:94:4b:d9:3b:80:97:69:61:11:02:41:39: f3:8a:99:b9:97:66:ec:75:db:4f:e5:96:c2:f6:7f: 7a:24:5d:d2:40:06:f1:e7:db:cf:6e:02:24:cb:09: 5a:7b:22:bb:2e:7e:e5:fc:5c:62:a6:2f:e1:3f:3c: 31:62:ff:78:e3:cb:dc:fe:00:4a:85:a2:3e:c1:f5: e2:f2:dc:68:70:42:1f:17:56:6c:12:a9:2e:95:92: 6e:f4:29:db:1e:f7:1b:02:9a:cf:cf:e5:8b:74:96: 85:89:10:f0:d7:e1:0e:b8:63:71:a5:25:79:65:93: 3d:46:3e:64:96:46:f1:c6:0e:69:79:0d:9f:09:3e: bd:82:c0:bb:13:f6:34:9b:3a:4b:8b:be:69:ab:1e: b2:8e:33:14:99:2f:c3:d4:bf:d4:36:9e:67:52:b3: 03:7b:3a:17:77:76:84:45:4a:01:a4:25:9e:20:2b: 53:da:9b:36:42:6e:6b:a0:da:b6:0c:53:42:1c:1a: c3:7f:30:de:b6:94:c2:4d:a6:39:d3:fd:2e:f0:8f: 42:19:6b:a7:dd:c1:41:e2:d2:68:01:62:f6:7d:9d: 67:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:CF:1D:C7:2A:7C:E8:B3:10:4C:4A:DE:A6:F8:F6:C8:74:E2:2B:B9 X509v3 Authority Key Identifier: keyid:3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:1e:83:cc:1b:09:05:63:dd:af:a9:5e:58:32:c4:f0:7f:06: 2a:81:c8:08:2f:fe:26:8b:1e:b5:7d:3c:7e:55:1c:2d:50:3c: 90:eb:72:67:00:eb:c2:68:fd:9c:ee:98:0b:7c:21:8c:aa:34: cf:3d:48:24:89:42:9d:50:09:15:39:d3:d8:4d:41:7d:ef:de: c1:50:d8:86:77:a8:65:2e:fb:0f:2a:e9:93:c7:1a:a8:8f:57: c0:f2:1a:9d:a1:53:d4:74:26:f1:fe:7f:b0:e5:e4:2e:e2:e3: 66:50:7e:68:b5:60:4b:4d:ed:30:21:44:37:13:a8:09:32:d0: a7:da:8e:0a:c5:81:bf:d6:45:94:9b:c9:d2:8f:85:7d:4f:fc: 31:da:cf:ac:ce:a4:de:2d:66:57:e8:8e:b9:dc:cd:b0:d7:cc: aa:1a:f6:e8:2d:1e:d6:92:b5:2c:d6:ef:f2:f3:9e:c9:79:d1: 83:27:19:d1:ed:c6:99:92:0a:31:07:e3:fa:61:ea:5a:ab:c1: 4e:94:d9:15:72:7d:4d:1d:2b:8a:f9:1e:bc:81:05:3d:db:f9: 51:ed:86:9e:e1:94:0b:28:87:5f:35:c8:e3:96:2c:b9:b5:62: fa:8f:4f:41:b2:8f:a2:8c:55:76:50:42:02:42:91:30:07:56: 1e:55:1e:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2QUExMTAvBgNVBAUTKDNENTFFREM0M0EzOTk5QjEzNzFDRTVDMDQxNDIwODNG RTI4N0QwRjIwHhcNMjUwNDA2MjIzODAwWhcNMjUwNDEzMjIzODAwWjAYMRYwFAYD VQQDEw02N2YzMDI0OC02ZmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvME1vV6RFbXFYIxuAHgBC9DE4zbjSBODtPEz7tELhxiUS9k7gJdpYRECQTnz ipm5l2bsddtP5ZbC9n96JF3SQAbx59vPbgIkywlaeyK7Ln7l/Fxipi/hPzwxYv94 48vc/gBKhaI+wfXi8txocEIfF1ZsEqkulZJu9CnbHvcbAprPz+WLdJaFiRDw1+EO uGNxpSV5ZZM9Rj5klkbxxg5peQ2fCT69gsC7E/Y0mzpLi75pqx6yjjMUmS/D1L/U Np5nUrMDezoXd3aERUoBpCWeICtT2ps2Qm5roNq2DFNCHBrDfzDetpTCTaY50/0u 8I9CGWun3cFB4tJoAWL2fZ1n6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzPHccq fOizEExK3qb49sh04iu5MB8GA1UdIwQYMBaAFD1R7cQ6OZmxNxzlwEFCCD/ih9Dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTZBQS84RURCMTA3RUFE QTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1iRTNIT1hBUVVJSVAtS0gw UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWSHR4RG81bWJFM0hPWEFRVUlJUC1LSDBQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1i RTNIT1hBUVVJSVAtS0gwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWHoPMGwkFY92vqV5YMsTwfwYqgcgIL/4mix61fTx+VRwtUDyQ63Jn AOvCaP2c7pgLfCGMqjTPPUgkiUKdUAkVOdPYTUF9797BUNiGd6hlLvsPKumTxxqo j1fA8hqdoVPUdCbx/n+w5eQu4uNmUH5otWBLTe0wIUQ3E6gJMtCn2o4KxYG/1kWU m8nSj4V9T/wx2s+szqTeLWZX6I653M2w18yqGvboLR7WkrUs1u/y857JedGDJxnR 7caZkgoxB+P6Yepaq8FOlNkVcn1NHSuK+R68gQU92/lR7Yae4ZQLKIdfNcjjliy5 tWL6j09Bso+ijFV2UEICQpEwB1YeVR5Y -----END CERTIFICATE-----Generated at Mon Apr 7 13:31:43 2025 by rpki-client