$ rpki-client -vvf rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft File: PNcVUq-qATj5pk4BYO7wYJYGUyM.mft (raw, json) Hash identifier: BK1IRURMWPRd4qoN7vwEeajtZd22gH88PtmbemWE2VY= Subject key identifier: 4A:C4:6C:83:81:E6:92:BA:A1:63:71:28:40:EE:7F:93:CB:24:AE:F6 Authority key identifier: 3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 Certificate issuer: /CN=A9196CE1/serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft Manifest number: 0103 Signing time: Sat 29 Mar 2025 04:28:31 +0000 Manifest this update: Sat 29 Mar 2025 04:28:30 +0000 Manifest next update: Sat 05 Apr 2025 04:28:30 +0000 Files and hashes: 1: PNcVUq-qATj5pk4BYO7wYJYGUyM.crl (hash: BsV1uwyTKUc/NXRJh8FK3NTeG2V7bQ0FcsmqFRfvVbo=) 2: 4F7CFB9A82B711EE997EB92AC4F9AE02.roa (hash: VY07hPoAnZ6HhFnmDGOrse/S2/32FKp0YWgAY+x8IqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196CE1 Validity Not Before: Mar 29 04:28:30 2025 GMT Not After : Apr 5 04:28:30 2025 GMT Subject: CN=67e776ef-78af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:76:f6:c5:7b:57:82:1e:69:75:36:8a:55:73: 15:e7:79:26:b3:9a:ba:84:6d:1a:b5:02:45:7e:d7: 58:dc:46:da:c9:a3:b0:ae:87:d8:2a:17:51:ab:b5: e6:bb:04:3b:f5:ea:0e:64:0e:4e:a8:12:08:bd:06: 04:e1:74:d7:71:a6:0d:94:86:11:22:79:3f:08:2e: c5:ae:14:11:b5:11:ed:20:b6:9c:0d:65:76:9d:1d: d7:b1:30:01:7c:9d:18:bf:ab:67:9a:0b:03:22:9f: ef:d5:cb:01:47:db:c3:50:c8:b6:f7:42:f8:a5:5c: b5:6d:c8:25:cf:1e:75:9f:93:ad:da:69:25:a2:14: 80:51:19:6d:83:5e:fe:c7:e6:e6:fc:4f:21:67:30: 8b:2b:ad:06:2a:49:c6:da:5c:2f:f4:f1:9d:95:e7: 9d:d4:6a:a5:5b:a6:56:c2:ca:cf:02:e1:dc:e2:77: 88:8e:c5:b7:85:af:b4:a2:91:71:dd:ab:85:5d:f6: f2:0a:8a:9e:e8:fd:fc:40:82:de:ec:55:3f:b9:d9: 0d:f2:37:38:89:e8:14:33:34:31:41:01:b6:ab:6c: 54:d8:bc:fb:df:31:52:6a:e6:64:40:e0:bd:72:38: 1b:ac:3e:9c:fc:83:3f:31:c2:ee:f3:d8:28:0a:6f: dc:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C4:6C:83:81:E6:92:BA:A1:63:71:28:40:EE:7F:93:CB:24:AE:F6 X509v3 Authority Key Identifier: keyid:3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:43:52:a2:35:07:ea:ca:58:55:5c:f4:4c:f8:b5:e0:8c:84: f8:57:31:b6:2d:8e:51:41:45:ba:7b:47:54:ad:cb:df:c0:9f: d7:a0:73:32:3c:58:b0:f7:28:ad:da:b0:39:a8:79:0a:58:05: b3:51:05:9b:ff:ff:be:17:71:30:3c:c6:71:e8:b6:b1:60:db: 3f:72:f7:3e:ac:c8:8f:ac:8d:8a:b0:45:44:e2:c0:69:49:8f: e5:9f:e6:0a:bd:6d:b1:2d:70:c7:2e:cd:9e:8a:13:a4:9e:3b: e4:d7:d2:b0:16:c2:bb:a8:1d:aa:8a:c7:6c:39:30:60:0c:6d: 10:bc:e3:23:92:13:f8:61:df:d4:1c:46:f6:4d:d0:77:45:ef: ec:36:d5:98:00:5f:e1:da:1e:f8:97:c2:84:77:73:45:6a:04: ad:b0:cc:4d:f9:4b:ee:37:79:66:10:e0:34:7d:ef:e0:87:06: 69:37:cf:b1:23:c8:c0:c2:da:19:12:a7:07:3f:ec:b1:b0:c6: 80:cf:b5:7a:e1:b0:d1:0f:25:68:83:70:af:ea:19:fe:28:84: 15:02:8d:4a:ce:74:3a:33:b0:73:6c:c8:e3:a6:ae:bc:fd:13: 5c:c0:54:15:10:0b:66:7b:8f:d4:1f:ab:fb:c2:65:35:69:90: 16:54:9a:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZDRTExMTAvBgNVBAUTKDNDRDcxNTUyQUZBQTAxMzhGOUE2NEUwMTYwRUVGMDYw OTYwNjUzMjMwHhcNMjUwMzI5MDQyODMwWhcNMjUwNDA1MDQyODMwWjAYMRYwFAYD VQQDEw02N2U3NzZlZi03OGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3b2xXtXgh5pdTaKVXMV53kms5q6hG0atQJFftdY3EbayaOwrofYKhdRq7Xm uwQ79eoOZA5OqBIIvQYE4XTXcaYNlIYRInk/CC7FrhQRtRHtILacDWV2nR3XsTAB fJ0Yv6tnmgsDIp/v1csBR9vDUMi290L4pVy1bcglzx51n5Ot2mklohSAURltg17+ x+bm/E8hZzCLK60GKknG2lwv9PGdleed1GqlW6ZWwsrPAuHc4neIjsW3ha+0opFx 3auFXfbyCoqe6P38QILe7FU/udkN8jc4iegUMzQxQQG2q2xU2Lz73zFSauZkQOC9 cjgbrD6c/IM/McLu89goCm/c1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErEbIOB 5pK6oWNxKEDuf5PLJK72MB8GA1UdIwQYMBaAFDzXFVKvqgE4+aZOAWDu8GCWBlMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkNFMS9FODgxRThFQzgy QjYxMUVFOUJGQzA2MURDNEY5QUUwMi9QTmNWVXEtcUFUajVwazRCWU83d1lKWUdV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOY1ZVcS1xQVRqNXBrNEJZTzd3WUpZR1V5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkNFMS9FODgxRThFQzgyQjYxMUVFOUJGQzA2MURDNEY5QUUwMi9QTmNWVXEtcUFU ajVwazRCWU83d1lKWUdVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4Q1KiNQfqylhVXPRM+LXgjIT4VzG2LY5RQUW6e0dUrcvfwJ/XoHMy PFiw9yit2rA5qHkKWAWzUQWb//++F3EwPMZx6LaxYNs/cvc+rMiPrI2KsEVE4sBp SY/ln+YKvW2xLXDHLs2eihOknjvk19KwFsK7qB2qisdsOTBgDG0QvOMjkhP4Yd/U HEb2TdB3Re/sNtWYAF/h2h74l8KEd3NFagStsMxN+UvuN3lmEOA0fe/ghwZpN8+x I8jAwtoZEqcHP+yxsMaAz7V64bDRDyVog3Cv6hn+KIQVAo1KznQ6M7BzbMjjpq68 /RNcwFQVEAtme4/UH6v7wmU1aZAWVJpa -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:56 2025 by rpki-client