$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: kf9IDZ/XmmLJtsVt6SWQpnEEwpZIShgIQduPPP8z7ZA= Subject key identifier: 96:9F:60:E6:7A:B4:E0:75:48:8E:44:C4:94:53:A3:97:26:40:E6:78 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 012D Signing time: Sat 29 Mar 2025 04:03:50 +0000 Manifest this update: Sat 29 Mar 2025 04:03:50 +0000 Manifest next update: Sat 05 Apr 2025 04:03:50 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: ZmfeNzDdGgGESvngZQ0iXVBM7P0/5gy/gbaiDfoPIXE=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6 Validity Not Before: Mar 29 04:03:50 2025 GMT Not After : Apr 5 04:03:50 2025 GMT Subject: CN=67e77126-4cc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:db:20:5e:f3:2b:e1:23:b8:c1:5e:d2:4c:23: da:69:df:35:e4:6c:1d:7c:9d:d7:b0:c9:76:6a:4e: d7:0f:c6:67:db:bd:d2:56:5f:36:e0:56:f9:53:14: 4f:ef:8d:fe:c9:97:c9:3a:f2:01:80:4c:e0:eb:c2: af:bb:01:63:f9:95:65:c0:ef:ed:61:ce:84:7e:e7: da:b3:be:76:84:5b:8d:3b:09:17:a7:6c:a6:38:e7: 70:c5:2c:8c:1b:ed:45:fe:a4:3f:d7:0e:74:be:c4: 25:be:38:dd:f1:ac:15:3f:02:55:7b:19:e4:a0:42: 22:72:66:4c:70:a2:46:e5:01:8e:ad:c6:d5:17:04: 7e:4b:b0:bf:c3:cd:96:52:e4:84:79:26:ba:f9:8a: 16:1a:36:8a:ab:3c:b5:6a:9a:fe:91:8e:76:3f:43: dc:2f:dc:22:ae:0c:87:73:31:84:ff:e4:65:9c:62: 68:b1:42:dc:f9:05:c5:a6:6a:66:91:04:c2:62:2c: 16:19:5e:2a:85:f9:3a:7d:4e:39:51:96:73:26:5c: 2c:d3:bc:30:3a:08:f6:0c:ce:ad:fd:11:2e:97:a2: 35:15:35:b2:06:4a:38:71:5f:b4:c2:42:75:6c:72: a5:45:a1:f5:34:25:9e:af:ec:80:22:e0:16:66:43: 42:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9F:60:E6:7A:B4:E0:75:48:8E:44:C4:94:53:A3:97:26:40:E6:78 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:d0:98:a4:f6:a4:27:3f:55:f1:2f:7e:fc:ab:02:a3:c7:88: c5:0b:3f:27:ab:8a:59:83:94:2f:f4:6b:16:3a:5f:bf:81:22: 91:a8:1f:92:f4:2a:d6:d0:00:87:5d:29:9d:ae:52:b9:b4:ee: c5:18:73:29:59:61:89:29:9c:62:02:ae:94:45:a1:4e:ac:c4: 63:dc:74:4c:07:90:63:99:de:f1:20:7e:c6:7a:1c:55:f1:fe: fa:f5:eb:f9:c8:44:01:71:2e:04:e4:bb:00:51:7d:43:8c:25: 59:9f:ba:8f:ef:0f:55:23:cd:23:87:e5:08:ee:26:25:06:97: 9d:46:db:67:29:8c:4d:4e:b7:c7:55:c4:76:1e:f0:7d:bc:dc: 4c:0f:c3:cc:ca:3e:a6:ed:72:ba:84:cf:f8:ed:45:7f:32:b4: cd:0c:df:00:ff:55:a6:af:bf:14:5f:cf:71:8b:a2:59:bf:df: 66:8d:f9:7c:c8:06:ae:ec:f9:22:e2:88:1f:cd:0e:bf:37:47: 9b:10:0d:65:16:09:7f:a8:69:4c:e7:cc:e9:6a:66:67:de:14: 09:23:2a:43:63:79:c7:72:0c:e6:67:71:59:d2:5f:a8:96:e6: fc:48:d2:98:44:82:2e:80:c3:3f:c0:8c:58:63:87:ec:2b:43: bf:39:e1:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUwMzI5MDQwMzUwWhcNMjUwNDA1MDQwMzUwWjAYMRYwFAYD VQQDEw02N2U3NzEyNi00Y2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9sgXvMr4SO4wV7STCPaad815GwdfJ3XsMl2ak7XD8Zn273SVl824Fb5UxRP 743+yZfJOvIBgEzg68KvuwFj+ZVlwO/tYc6Efufas752hFuNOwkXp2ymOOdwxSyM G+1F/qQ/1w50vsQlvjjd8awVPwJVexnkoEIicmZMcKJG5QGOrcbVFwR+S7C/w82W UuSEeSa6+YoWGjaKqzy1apr+kY52P0PcL9wirgyHczGE/+RlnGJosULc+QXFpmpm kQTCYiwWGV4qhfk6fU45UZZzJlws07wwOgj2DM6t/REul6I1FTWyBko4cV+0wkJ1 bHKlRaH1NCWer+yAIuAWZkNC4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJafYOZ6 tOB1SI5ExJRTo5cmQOZ4MB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt0Jik9qQnP1XxL378qwKjx4jFCz8nq4pZg5Qv9GsWOl+/gSKRqB+S 9CrW0ACHXSmdrlK5tO7FGHMpWWGJKZxiAq6URaFOrMRj3HRMB5Bjmd7xIH7GehxV 8f769ev5yEQBcS4E5LsAUX1DjCVZn7qP7w9VI80jh+UI7iYlBpedRttnKYxNTrfH VcR2HvB9vNxMD8PMyj6m7XK6hM/47UV/MrTNDN8A/1Wmr78UX89xi6JZv99mjfl8 yAau7Pki4ogfzQ6/N0ebEA1lFgl/qGlM58zpamZn3hQJIypDY3nHcgzmZ3FZ0l+o lub8SNKYRIIugMM/wIxYY4fsK0O/OeGc -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:51 2025 by rpki-client