$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: lwH85V3TBeG/etGVttZo9Bf367YvkRc5doY2Rk4duU8= Subject key identifier: 9C:24:04:BC:92:8C:91:B3:09:A6:A8:E7:B3:2B:C5:DB:93:23:43:B9 Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0B7D Signing time: Fri 04 Apr 2025 19:09:01 +0000 Manifest this update: Fri 04 Apr 2025 19:09:00 +0000 Manifest next update: Fri 11 Apr 2025 19:09:00 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: gta5cK5hcYjXtfawa7Ao3vrArv3MdAInTSop565N3aA=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: hoqO9FG6w4Km8eSvitEm9i1d1kTzMCDiWm1RhII3OZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E Validity Not Before: Apr 4 19:09:00 2025 GMT Not After : Apr 11 19:09:00 2025 GMT Subject: CN=67f02e4d-2795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d8:be:a9:3f:88:04:87:28:db:41:39:50:56: c6:69:4a:84:32:7d:d4:e4:8d:c4:2b:91:94:5d:e0: 5f:63:db:7f:a7:12:0e:7a:59:f9:11:85:12:67:21: c4:4a:f3:20:96:24:68:79:ee:00:57:70:23:78:17: e8:c1:42:e7:70:7f:d4:8f:83:f2:88:ed:e1:08:d1: 64:c8:e7:05:41:a8:9d:0a:7e:30:6e:23:b1:e3:fa: ba:f7:3a:d5:26:90:39:cd:9f:b5:45:eb:b1:b1:35: 10:ec:a7:3c:6b:c4:85:98:78:32:13:07:62:23:fd: e4:61:39:c8:2f:2e:1a:30:b3:43:4e:59:10:57:8f: cf:15:01:24:3e:e1:c6:fc:fe:af:d6:c6:e7:ce:ec: 37:9f:05:62:66:8e:e7:d5:53:5c:78:10:b8:d5:62: 04:2f:a0:fe:8f:52:11:f4:28:d5:25:51:ed:3d:ef: fa:ba:4c:f2:54:ce:ae:45:ea:ff:21:b1:b0:8c:1b: f4:3a:e5:cc:d6:d3:12:e0:0d:8b:80:fb:62:53:73: d2:32:15:f4:8a:a5:f2:02:cf:d1:5b:47:93:0a:8a: 5e:8e:ee:c0:da:1a:2a:78:3d:f0:4a:7e:8a:ea:fc: 8e:1b:87:df:e6:51:c3:28:fd:c4:98:0c:da:63:e3: e4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:24:04:BC:92:8C:91:B3:09:A6:A8:E7:B3:2B:C5:DB:93:23:43:B9 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e4:5d:c7:7a:59:9f:b1:49:30:17:43:78:c5:59:77:75:62: 5d:d2:a2:c7:75:c1:20:b5:1f:77:8e:20:bc:ff:b4:3b:a5:3d: 92:12:0b:94:09:8a:24:32:04:d9:bc:fb:c9:e6:7a:85:8c:54: d6:c8:20:ec:62:2d:d5:3f:8d:f7:33:f0:f7:d0:83:9a:7f:a3: 20:66:85:0a:d6:2a:1e:7b:7d:4a:3c:f6:dd:68:ca:78:20:66: c7:eb:cd:63:af:49:4c:ca:4a:4c:7e:bd:53:ba:fd:99:07:a9: 73:82:a3:56:ab:6f:a8:32:fa:28:70:cf:27:c0:27:76:18:3c: 00:8b:28:c3:cb:71:99:84:ef:41:96:dc:73:0c:6b:09:bb:6a: 0c:ef:f1:79:1d:81:cf:36:2a:58:f7:c1:e9:73:ba:85:04:59: 68:51:6f:01:33:64:6f:90:e6:ae:c3:dc:2f:55:52:52:fc:68: dd:b6:eb:78:2d:63:36:97:59:51:c3:a5:ab:0b:82:a6:ad:13: 63:d4:7c:e7:8c:53:d7:e0:dc:58:8e:88:2d:f9:3f:a3:72:79: 50:47:b5:23:6e:4d:d7:f5:64:c7:e4:f2:61:a8:84:c9:6e:c5: 11:19:d1:09:54:85:e5:a2:fc:53:60:ea:13:88:d7:fe:e3:ee: 3d:d8:05:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUwNDA0MTkwOTAwWhcNMjUwNDExMTkwOTAwWjAYMRYwFAYD VQQDEw02N2YwMmU0ZC0yNzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtti+qT+IBIco20E5UFbGaUqEMn3U5I3EK5GUXeBfY9t/pxIOeln5EYUSZyHE SvMgliRoee4AV3AjeBfowULncH/Uj4PyiO3hCNFkyOcFQaidCn4wbiOx4/q69zrV JpA5zZ+1ReuxsTUQ7Kc8a8SFmHgyEwdiI/3kYTnILy4aMLNDTlkQV4/PFQEkPuHG /P6v1sbnzuw3nwViZo7n1VNceBC41WIEL6D+j1IR9CjVJVHtPe/6ukzyVM6uRer/ IbGwjBv0OuXM1tMS4A2LgPtiU3PSMhX0iqXyAs/RW0eTCopeju7A2hoqeD3wSn6K 6vyOG4ff5lHDKP3EmAzaY+PkzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwkBLyS jJGzCaao57MrxduTI0O5MB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB25F3HelmfsUkwF0N4xVl3dWJd0qLHdcEgtR93jiC8/7Q7pT2SEguU CYokMgTZvPvJ5nqFjFTWyCDsYi3VP433M/D30IOaf6MgZoUK1ioee31KPPbdaMp4 IGbH681jr0lMykpMfr1Tuv2ZB6lzgqNWq2+oMvoocM8nwCd2GDwAiyjDy3GZhO9B ltxzDGsJu2oM7/F5HYHPNipY98Hpc7qFBFloUW8BM2RvkOauw9wvVVJS/Gjdtut4 LWM2l1lRw6WrC4KmrRNj1HznjFPX4NxYjogt+T+jcnlQR7Ujbk3X9WTH5PJhqITJ bsURGdEJVIXlovxTYOoTiNf+4+492AVn -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:50 2025 by rpki-client