$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: 14RgeFrK3nt8s5Wv4hD2jm/4jsEQ3EX+C4/qqKPwVCE= Subject key identifier: 7C:8F:E5:6D:52:C4:9A:82:E3:BC:02:00:A9:27:8D:C7:74:D2:18:A0 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 0193 Signing time: Mon 21 Apr 2025 02:27:22 +0000 Manifest this update: Mon 21 Apr 2025 02:27:22 +0000 Manifest next update: Mon 28 Apr 2025 02:27:22 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: MEXFwkuJ35Npj5lCwmPXJ0zF9Agaetj/pt99NzXJATs=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: jtm4IGu6ehkk/GhdKICbbynbKgcYNoX0OJfsqwSmMDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Apr 21 02:27:22 2025 GMT Not After : Apr 28 02:27:22 2025 GMT Subject: CN=6805ad0a-fa9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cf:e3:cc:21:b5:d7:f4:ac:ca:24:35:27:ec: bd:f5:1e:f2:ca:12:a2:cc:cd:87:a8:85:bb:87:24: aa:c0:00:93:15:95:58:a3:17:56:3f:e5:9a:77:1e: 66:14:de:8d:c2:c4:15:63:6c:1c:3b:6c:43:05:f5: 44:3e:b5:00:df:ad:5b:67:ce:85:ee:6a:d7:c2:2d: ce:fd:90:de:6d:d6:4a:97:8c:38:fe:20:7e:b8:7f: f6:53:da:b1:f7:a7:52:30:63:d5:a9:e9:44:92:e3: fe:3e:94:dd:56:94:bf:54:9a:c4:cb:8c:47:40:bd: 71:bb:ab:6c:7f:30:64:66:66:67:d8:cb:62:b3:a2: e1:b8:e7:da:4e:61:33:c3:5d:4a:ec:5a:6f:70:60: 5c:e0:09:8d:f9:c6:0e:49:5c:e3:92:f6:f9:42:a8: 96:5a:3b:60:54:42:84:c8:b7:94:81:8b:c5:77:90: 5b:b6:24:a3:4b:a8:4f:76:c1:c8:5e:43:93:0b:62: 0f:1d:40:5b:75:aa:c4:40:84:84:35:6c:c6:5d:ef: 38:01:76:b6:09:65:7b:32:b5:80:f0:43:b0:59:d1: 29:cc:33:6b:af:97:77:31:17:13:05:59:59:ad:a6: 20:3b:b2:40:39:83:0d:de:e0:97:e8:32:05:e4:0a: 0a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:8F:E5:6D:52:C4:9A:82:E3:BC:02:00:A9:27:8D:C7:74:D2:18:A0 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:64:de:c7:38:a3:e3:92:c9:25:9e:41:0c:2d:7d:2c:09:c5: ad:96:5d:6d:29:7d:3f:65:49:26:22:e1:cb:32:8b:40:e1:c3: 84:31:2d:c1:79:60:8e:e0:d1:7b:e2:1b:5a:0e:92:b7:39:6f: 1a:58:d7:00:75:99:c4:27:b6:36:48:d2:6c:b3:68:50:68:67: db:a4:53:29:88:82:bd:1b:1d:a5:3c:1f:42:97:65:47:1e:54: 3f:4f:e6:73:73:b4:27:cd:07:a0:e3:b8:8e:7a:0e:67:67:9a: b4:78:12:97:b8:f4:57:1b:11:08:4f:99:2e:02:d6:17:2c:19: 64:45:6a:5b:e5:c8:ee:e9:fb:b6:d9:42:77:ef:5e:68:7a:e0: 57:e2:d0:e8:4b:49:fa:21:c5:80:93:df:47:55:bd:c2:b9:f9: c7:57:24:34:1e:a4:67:23:b1:72:b4:ee:ca:03:9f:3a:5b:42: 5a:de:55:37:51:1c:df:b4:2d:75:8c:c5:5b:45:60:cc:87:04: f0:ce:e7:6d:86:72:54:2f:bd:de:72:ec:b3:42:27:e4:fb:d6: 00:18:8a:c5:b3:42:fc:8c:4e:99:fc:f1:b5:89:57:c1:76:96: ab:69:99:01:99:c6:1d:a2:98:b3:c3:0c:2d:ab:a3:bd:7b:f9: d6:a8:1e:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjUwNDIxMDIyNzIyWhcNMjUwNDI4MDIyNzIyWjAYMRYwFAYD VQQDEw02ODA1YWQwYS1mYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8/jzCG11/SsyiQ1J+y99R7yyhKizM2HqIW7hySqwACTFZVYoxdWP+Wadx5m FN6NwsQVY2wcO2xDBfVEPrUA361bZ86F7mrXwi3O/ZDebdZKl4w4/iB+uH/2U9qx 96dSMGPVqelEkuP+PpTdVpS/VJrEy4xHQL1xu6tsfzBkZmZn2Mtis6LhuOfaTmEz w11K7FpvcGBc4AmN+cYOSVzjkvb5QqiWWjtgVEKEyLeUgYvFd5BbtiSjS6hPdsHI XkOTC2IPHUBbdarEQISENWzGXe84AXa2CWV7MrWA8EOwWdEpzDNrr5d3MRcTBVlZ raYgO7JAOYMN3uCX6DIF5AoKFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyP5W1S xJqC47wCAKknjcd00higMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+ZN7HOKPjksklnkEMLX0sCcWtll1tKX0/ZUkmIuHLMotA4cOEMS3B eWCO4NF74htaDpK3OW8aWNcAdZnEJ7Y2SNJss2hQaGfbpFMpiIK9Gx2lPB9Cl2VH HlQ/T+Zzc7QnzQeg47iOeg5nZ5q0eBKXuPRXGxEIT5kuAtYXLBlkRWpb5cju6fu2 2UJ3715oeuBX4tDoS0n6IcWAk99HVb3CufnHVyQ0HqRnI7FytO7KA586W0Ja3lU3 URzftC11jMVbRWDMhwTwzudthnJUL73ecuyzQifk+9YAGIrFs0L8jE6Z/PG1iVfB dparaZkBmcYdopizwwwtq6O9e/nWqB7z -----END CERTIFICATE-----Generated at Tue Apr 22 23:09:12 2025 by rpki-client