$ rpki-client -vvf rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft File: PitYQ36GJEE5rkzQPZf0A0KFBzY.mft (raw, json) Hash identifier: q7USq1vjSAzlOIR7cXRaypHpg8UN+24ILoLNhUXSGAw= Subject key identifier: 0C:4E:AC:D7:DB:66:78:D7:A4:EC:60:B9:2E:EB:34:F7:D9:84:B1:44 Authority key identifier: 3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 Certificate issuer: /CN=A914EE0C/serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Certificate serial: 26C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft Manifest number: 26A3 Signing time: Sun 06 Apr 2025 15:37:47 +0000 Manifest this update: Sun 06 Apr 2025 15:37:46 +0000 Manifest next update: Sun 13 Apr 2025 15:37:46 +0000 Files and hashes: 1: PitYQ36GJEE5rkzQPZf0A0KFBzY.crl (hash: vIcuw/cqxfBBTt/zgd6pv7wipZtYDvM2sZmXZpTTJT4=) 2: 7CEC0182B10C11E5BB6B2A16C4F9AE02.roa (hash: szs84NZp6PRkDbAazU5Vux6gnoQk27OVrBFKSwWNnmU=) 3: 7E75C196B10C11E5BB6B2A16C4F9AE02.roa (hash: 84MBUnVnF5YSfCtGOyL/Mf1o361blRMq4zWtu5Lhyug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9925 (0x26c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EE0C Validity Not Before: Apr 6 15:37:46 2025 GMT Not After : Apr 13 15:37:46 2025 GMT Subject: CN=67f29fcb-591b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:05:08:35:a4:5c:37:62:bd:b1:5d:de:4b:f0: c9:f1:fb:ac:59:e0:b4:ab:e3:81:3e:1a:dc:b5:f4: 85:39:d9:c4:49:06:d8:1f:de:61:52:24:d9:bc:65: ee:88:2f:d6:b7:db:78:66:cd:81:f7:87:82:ff:be: 0a:aa:62:d9:f9:c2:8f:2c:49:e8:8a:8c:4a:14:1c: 7c:e1:51:aa:a6:74:6e:3e:f5:ed:22:17:ef:46:8b: 30:df:f2:69:c2:62:88:9b:5c:e6:a7:12:6e:80:18: b1:5b:11:59:bd:8d:0e:54:ac:77:ee:56:c5:77:85: af:cf:88:cb:5e:53:68:0f:37:82:f8:1c:c0:06:3c: 57:c9:f1:b3:da:3b:43:7c:4a:52:43:f2:b4:35:1e: 19:89:89:2d:20:f5:07:2d:7e:f1:3c:df:32:be:d1: 84:ed:cd:4b:fb:c5:01:48:93:e7:bd:d5:fc:52:b6: aa:5a:a5:f0:1c:27:8b:6b:fd:a0:d1:69:f4:85:b9: e7:78:af:e9:85:6a:6a:ed:40:a9:48:cc:27:fa:47: b8:14:18:f6:1f:dc:a4:5c:9a:02:ff:c1:19:3b:9e: 72:2c:3a:76:3d:8d:24:b9:79:5f:3c:9c:21:14:2f: 68:c1:99:75:7a:37:ae:a4:17:bd:a2:53:45:f7:c6: 6d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4E:AC:D7:DB:66:78:D7:A4:EC:60:B9:2E:EB:34:F7:D9:84:B1:44 X509v3 Authority Key Identifier: keyid:3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:32:6b:6e:f7:8c:a7:46:e0:90:95:ab:df:2c:98:5e:b1:78: 39:5b:29:8f:0c:c2:04:86:64:61:ba:ed:38:7a:84:8d:5d:f3: f0:ca:25:f1:80:56:57:c8:c1:0a:5d:b7:2f:c6:3d:4c:a1:a1: 77:19:0d:b9:3c:d4:0d:d4:cf:36:7d:c4:0c:04:85:c5:0f:37: a8:c8:74:25:b1:38:cb:9d:a4:b8:cd:5d:21:7a:8a:86:36:62: de:06:d6:07:93:4a:14:25:3c:6e:a2:01:c4:4c:d5:40:43:24: 88:a4:4c:88:48:61:39:dd:4f:34:73:95:40:0f:14:f1:8a:03: 11:9b:eb:f6:3e:9e:77:3f:cb:aa:c5:b0:ce:e1:74:7b:b8:83: 42:b9:79:bd:35:46:0e:0e:f8:ff:ef:68:6c:f8:7d:a4:99:f7: 83:21:7f:1b:b2:59:fd:80:e4:96:28:7e:99:d4:c4:46:d1:d4: 94:0c:8b:2a:c2:2b:b1:ac:5d:5b:e8:03:b1:a0:d4:bc:aa:db: e4:c0:30:ed:da:25:36:03:88:2f:d3:0d:c0:0f:7a:0e:9b:5a: e2:3d:e7:10:f2:c7:17:07:ac:c5:62:d1:61:eb:0c:b8:cb:bb: 87:a2:3c:84:58:3f:3a:55:65:49:6e:8f:7d:65:47:59:66:fc: c4:eb:1b:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFMEMxMTAvBgNVBAUTKDNFMkI1ODQzN0U4NjI0NDEzOUFFNENEMDNEOTdGNDAz NDI4NTA3MzYwHhcNMjUwNDA2MTUzNzQ2WhcNMjUwNDEzMTUzNzQ2WjAYMRYwFAYD VQQDEw02N2YyOWZjYi01OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QUINaRcN2K9sV3eS/DJ8fusWeC0q+OBPhrctfSFOdnESQbYH95hUiTZvGXu iC/Wt9t4Zs2B94eC/74KqmLZ+cKPLEnoioxKFBx84VGqpnRuPvXtIhfvRosw3/Jp wmKIm1zmpxJugBixWxFZvY0OVKx37lbFd4Wvz4jLXlNoDzeC+BzABjxXyfGz2jtD fEpSQ/K0NR4ZiYktIPUHLX7xPN8yvtGE7c1L+8UBSJPnvdX8UraqWqXwHCeLa/2g 0Wn0hbnneK/phWpq7UCpSMwn+ke4FBj2H9ykXJoC/8EZO55yLDp2PY0kuXlfPJwh FC9owZl1ejeupBe9olNF98ZtDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxOrNfb ZnjXpOxguS7rNPfZhLFEMB8GA1UdIwQYMBaAFD4rWEN+hiRBOa5M0D2X9ANChQc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUUwQy8yMkQ1MzY1MkQ2 NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pFRTVya3pRUFpmMEEwS0ZC elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BpdFlRMzZHSkVFNXJrelFQWmYwQTBLRkJ6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUUwQy8yMkQ1MzY1MkQ2NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pF RTVya3pRUFpmMEEwS0ZCelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMMmtu94ynRuCQlavfLJhesXg5WymPDMIEhmRhuu04eoSNXfPwyiXx gFZXyMEKXbcvxj1MoaF3GQ25PNQN1M82fcQMBIXFDzeoyHQlsTjLnaS4zV0heoqG NmLeBtYHk0oUJTxuogHETNVAQySIpEyISGE53U80c5VADxTxigMRm+v2Pp53P8uq xbDO4XR7uINCuXm9NUYODvj/72hs+H2kmfeDIX8bsln9gOSWKH6Z1MRG0dSUDIsq wiuxrF1b6AOxoNS8qtvkwDDt2iU2A4gv0w3AD3oOm1riPecQ8scXB6zFYtFh6wy4 y7uHojyEWD86VWVJbo99ZUdZZvzE6xuf -----END CERTIFICATE-----Generated at Sun Apr 6 19:57:10 2025 by rpki-client