$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: FEf3vkQO6SPZJTz8wQA019Yd2Z7h0Z0odH3PtZ5ZRpo= Subject key identifier: BC:2A:60:F5:06:15:72:68:EE:CF:B5:B0:28:D6:70:7F:D9:2A:D7:B2 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: DF Signing time: Sat 29 Mar 2025 04:58:22 +0000 Manifest this update: Sat 29 Mar 2025 04:58:22 +0000 Manifest next update: Sat 05 Apr 2025 04:58:22 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: Y5bRaDdb8w6LZKshVcP9FSX31X8Q2UH/kQCElNMyoXE=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: 3GOqN8PMZ/cxFE5yg/l01rtznIl/3wsy8K8LEuE8lEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51 Validity Not Before: Mar 29 04:58:22 2025 GMT Not After : Apr 5 04:58:22 2025 GMT Subject: CN=67e77dee-9162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e1:65:cd:fd:e4:ab:88:9a:88:2f:7a:d0:d9: ea:63:33:36:2a:48:f4:7a:d4:c7:41:5f:ba:90:0c: 55:ec:91:a2:ef:c7:cd:50:ab:40:38:fe:64:19:df: 24:d6:e6:44:27:4c:0a:2d:72:11:8a:c4:e3:dd:60: 9a:0d:e4:0d:84:29:98:02:4c:b4:88:83:f0:ab:2b: 68:90:a9:9e:19:cf:77:9d:bf:7d:33:8d:64:6e:44: 15:35:ea:f0:a3:19:47:de:56:9f:7e:22:9d:7c:2e: 7f:08:b0:61:e4:0b:4b:53:bf:ff:60:30:09:50:c5: f1:e1:b2:d2:fb:2c:ef:38:24:fd:d2:b9:0d:70:ca: 74:a9:f7:48:2d:87:6e:9b:5f:51:b1:9c:b9:b1:ff: 49:2c:e5:84:0f:f6:a1:85:e9:28:6a:65:82:5a:13: 52:96:b2:cd:96:6b:eb:60:45:89:e6:3a:c6:4d:56: f3:a0:d8:d0:f0:dc:e5:0d:70:36:4e:34:79:9e:bc: a8:30:a6:6d:8a:2d:e3:2e:1f:07:f9:b2:29:7d:8c: 55:dc:9c:7f:db:e4:18:3b:b2:64:ac:66:74:1a:be: 9e:7f:61:d4:15:cd:1c:65:5e:2d:56:7f:a9:b4:07: 2a:91:3f:47:84:4a:85:aa:7f:3a:b5:ac:3b:0c:39: 5a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2A:60:F5:06:15:72:68:EE:CF:B5:B0:28:D6:70:7F:D9:2A:D7:B2 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:5a:f0:a4:68:ad:dd:cd:79:1b:12:38:27:45:fc:85:cb:ee: 75:d4:c1:43:99:ab:5f:80:4c:06:c9:07:35:39:04:12:aa:f5: 43:a9:fd:11:e7:c5:79:9d:42:6b:79:94:35:40:ce:cc:ec:94: 7f:72:69:2c:92:0b:06:c2:eb:32:b5:e4:92:48:db:97:7c:d1: d6:0a:9b:85:07:ae:1e:32:78:ca:1b:bf:c8:ff:24:97:84:61: 68:5f:c0:c1:37:d4:f9:e0:a3:5b:87:e9:47:72:9f:62:4c:43: 02:6a:44:9b:9e:97:2f:17:99:fa:08:35:68:38:35:4b:85:d7: a6:fe:d3:f5:03:0d:40:d3:ec:e6:f2:bb:11:c6:8c:ab:eb:01: 6d:42:29:63:3d:c6:ed:6b:c4:e8:99:70:3c:71:11:92:9c:8a: 0e:a9:43:b8:f9:6b:33:21:af:6c:be:6d:3e:ca:63:2c:cc:0c: 0f:65:a1:f0:46:e8:6f:5c:e7:b8:e6:a9:eb:43:4f:e6:0a:36: 5c:2b:22:37:a2:36:0f:ac:ee:cf:fb:e7:bb:bd:ac:5b:20:4a: 11:28:f2:70:c4:2d:7c:65:75:ae:63:37:74:5b:6a:32:a4:49: af:58:e8:88:9d:82:bf:53:c2:35:04:57:b8:7d:bb:b8:0e:27: b4:fb:b5:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjUwMzI5MDQ1ODIyWhcNMjUwNDA1MDQ1ODIyWjAYMRYwFAYD VQQDEw02N2U3N2RlZS05MTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uFlzf3kq4iaiC960NnqYzM2Kkj0etTHQV+6kAxV7JGi78fNUKtAOP5kGd8k 1uZEJ0wKLXIRisTj3WCaDeQNhCmYAky0iIPwqytokKmeGc93nb99M41kbkQVNerw oxlH3laffiKdfC5/CLBh5AtLU7//YDAJUMXx4bLS+yzvOCT90rkNcMp0qfdILYdu m19RsZy5sf9JLOWED/ahhekoamWCWhNSlrLNlmvrYEWJ5jrGTVbzoNjQ8NzlDXA2 TjR5nryoMKZtii3jLh8H+bIpfYxV3Jx/2+QYO7JkrGZ0Gr6ef2HUFc0cZV4tVn+p tAcqkT9HhEqFqn86taw7DDlacQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwqYPUG FXJo7s+1sCjWcH/ZKteyMB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1 dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjWvCkaK3dzXkbEjgnRfyFy+511MFDmatfgEwGyQc1OQQSqvVDqf0R 58V5nUJreZQ1QM7M7JR/cmkskgsGwusyteSSSNuXfNHWCpuFB64eMnjKG7/I/ySX hGFoX8DBN9T54KNbh+lHcp9iTEMCakSbnpcvF5n6CDVoODVLhdem/tP1Aw1A0+zm 8rsRxoyr6wFtQiljPcbta8TomXA8cRGSnIoOqUO4+WszIa9svm0+ymMszAwPZaHw RuhvXOe45qnrQ0/mCjZcKyI3ojYPrO7P++e7vaxbIEoRKPJwxC18ZXWuYzd0W2oy pEmvWOiInYK/U8I1BFe4fbu4Die0+7Vr -----END CERTIFICATE-----Generated at Fri Apr 4 18:27:05 2025 by rpki-client