$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: FOrYLSshVgsh9gcPeyc4QjWS1W+yp4+fFNbpogFCeaQ= Subject key identifier: 41:38:6B:09:37:E1:9C:D2:C1:C3:20:86:4D:DB:D8:8C:0D:ED:41:74 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 0127 Signing time: Sat 05 Apr 2025 04:05:57 +0000 Manifest this update: Sat 05 Apr 2025 04:05:56 +0000 Manifest next update: Sat 12 Apr 2025 04:05:56 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: SIy585XbHcAaeTQ1yuChO60MqqE8VGt+vfbZdfvwZhY=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109 Validity Not Before: Apr 5 04:05:56 2025 GMT Not After : Apr 12 04:05:56 2025 GMT Subject: CN=67f0ac25-6d9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:94:4e:1b:03:66:fb:06:ac:46:d0:25:fa:b6: 6b:7a:66:33:db:80:e6:8f:8a:c1:d4:1a:e2:0a:13: e6:9e:fd:b5:c8:ad:83:87:28:81:df:d0:cd:9f:1a: 2a:52:d0:82:3f:f6:2c:8c:4d:87:8e:83:03:db:25: 71:12:3e:a2:db:0f:a6:16:9e:23:b5:0e:db:41:95: 85:5c:45:f5:02:e6:1f:78:ab:fb:79:b2:1c:23:c3: d2:72:e0:f1:54:21:aa:c1:04:8b:ec:c0:a3:58:41: 63:d6:0f:ae:16:01:78:3d:49:23:53:63:7b:43:4f: 74:3f:4b:12:7e:54:18:88:c3:7f:c2:bc:c8:6a:83: 71:68:c4:a9:f7:c5:26:d1:9f:b3:f2:6d:c6:19:52: b9:d9:35:89:d4:f3:7d:8e:bf:bd:f0:8b:84:a8:91: d1:99:2e:c9:2b:13:fe:ce:20:d9:ca:1e:43:41:85: 97:0a:59:43:5d:37:a9:4f:6b:7c:5c:7c:23:79:2b: b1:78:e4:f0:62:e1:30:51:07:20:cd:46:56:94:89: 44:c5:9b:7b:9f:c4:6e:3f:78:82:bd:73:91:ba:b3: 40:09:da:97:da:ee:50:66:ab:03:f1:ee:cb:35:76: 55:54:0a:1f:7e:d3:53:33:21:24:1b:ea:7f:83:15: 38:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:38:6B:09:37:E1:9C:D2:C1:C3:20:86:4D:DB:D8:8C:0D:ED:41:74 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:ce:ef:2e:0c:e8:62:d1:2a:67:36:1b:18:f0:8f:e8:a5:f1: 34:af:c2:d6:40:2b:cd:16:40:c2:a4:e4:e8:d2:13:d7:d9:22: d3:ec:3e:5e:83:14:8e:fd:17:ac:a7:f4:f7:cc:64:d8:1a:3b: 60:b4:f1:fc:0a:86:d1:7b:8b:e8:02:ae:da:d4:9c:69:a6:b4: c2:92:21:63:ff:37:01:53:30:a7:36:fc:02:5f:d8:93:8f:d6: ab:45:03:d9:a2:66:1a:dc:13:6b:06:70:1e:89:fd:fb:ea:eb: 6a:4d:69:b3:cc:6d:d8:1e:10:a3:e5:b6:7d:84:aa:e1:b9:be: ba:db:3e:de:1a:6e:f0:e7:03:41:b2:67:9c:ae:bf:47:82:ad: 06:04:71:13:33:83:d5:cb:cc:99:c4:1f:52:9c:69:7e:36:f9: ad:7d:f5:12:dd:b6:1b:98:1a:2f:fd:88:f9:ea:7d:d8:31:61: 68:ca:ec:ab:0a:63:53:ba:00:ef:48:48:2e:a2:65:0c:5b:49: 30:52:83:8e:34:4d:64:f0:3e:bf:5c:6e:1c:46:cb:c8:39:e3: 32:ca:32:01:73:e6:2e:56:aa:8b:cb:d6:97:f0:f2:48:77:4d: ac:9d:50:01:cb:74:5a:37:fd:4a:73:0e:e7:e7:3c:bd:da:61: 88:9a:62:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUwNDA1MDQwNTU2WhcNMjUwNDEyMDQwNTU2WjAYMRYwFAYD VQQDEw02N2YwYWMyNS02ZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JROGwNm+wasRtAl+rZremYz24Dmj4rB1BriChPmnv21yK2DhyiB39DNnxoq UtCCP/YsjE2HjoMD2yVxEj6i2w+mFp4jtQ7bQZWFXEX1AuYfeKv7ebIcI8PScuDx VCGqwQSL7MCjWEFj1g+uFgF4PUkjU2N7Q090P0sSflQYiMN/wrzIaoNxaMSp98Um 0Z+z8m3GGVK52TWJ1PN9jr+98IuEqJHRmS7JKxP+ziDZyh5DQYWXCllDXTepT2t8 XHwjeSuxeOTwYuEwUQcgzUZWlIlExZt7n8RuP3iCvXORurNACdqX2u5QZqsD8e7L NXZVVAofftNTMyEkG+p/gxU4kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEE4awk3 4ZzSwcMghk3b2IwN7UF0MB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYzu8uDOhi0SpnNhsY8I/opfE0r8LWQCvNFkDCpOTo0hPX2SLT7D5e gxSO/Resp/T3zGTYGjtgtPH8CobRe4voAq7a1JxpprTCkiFj/zcBUzCnNvwCX9iT j9arRQPZomYa3BNrBnAeif376utqTWmzzG3YHhCj5bZ9hKrhub662z7eGm7w5wNB smecrr9Hgq0GBHETM4PVy8yZxB9SnGl+NvmtffUS3bYbmBov/Yj56n3YMWFoyuyr CmNTugDvSEguomUMW0kwUoOONE1k8D6/XG4cRsvIOeMyyjIBc+YuVqqLy9aX8PJI d02snVABy3RaN/1Kcw7n5zy92mGImmKC -----END CERTIFICATE-----Generated at Sat Apr 5 08:15:44 2025 by rpki-client