$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.mft File: puZHuaRPqqc-u4IEBQzGTMpFmOo.mft (raw, json) Hash identifier: Xa6GvrzNOPF5JllrIzcOIENDNqoxjdZ8nFR8xiPN/EE= Subject key identifier: 48:BE:90:FD:29:9A:77:F9:DC:09:1C:71:04:77:4E:09:DC:82:34:FF Authority key identifier: A6:E6:47:B9:A4:4F:AA:A7:3E:BB:82:04:05:0C:C6:4C:CA:45:98:EA Certificate issuer: /CN=A91C5319/serialNumber=A6E647B9A44FAAA73EBB8204050CC64CCA4598EA Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/puZHuaRPqqc-u4IEBQzGTMpFmOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.mft Manifest number: 5F Signing time: Thu 17 Apr 2025 05:52:29 +0000 Manifest this update: Thu 17 Apr 2025 05:52:29 +0000 Manifest next update: Thu 24 Apr 2025 05:52:29 +0000 Files and hashes: 1: puZHuaRPqqc-u4IEBQzGTMpFmOo.crl (hash: TXgatCyHHtTO0WA8AQVGxbw6mZq05d/18zTcFaW0VC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.crl rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/puZHuaRPqqc-u4IEBQzGTMpFmOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 05:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319, serialNumber=A6E647B9A44FAAA73EBB8204050CC64CCA4598EA Validity Not Before: Apr 17 05:52:29 2025 GMT Not After : Apr 24 05:52:29 2025 GMT Subject: CN=6800971d-a676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4a:aa:2e:46:59:50:86:c8:bc:7d:33:e0:93: d8:8f:2a:e1:08:e9:b9:70:05:cc:6c:81:3e:f5:0e: f4:0f:56:2f:af:99:da:09:ee:1c:73:26:16:8e:22: 71:55:29:35:27:16:b8:4c:f7:e1:5c:65:44:55:c6: 5e:20:6c:7b:91:7b:e2:df:1f:4b:09:d8:c1:fe:27: fd:76:cb:c1:0c:12:86:16:05:a3:a1:1e:9d:17:7a: 48:9b:c6:06:b5:05:5b:16:a0:c6:46:e6:54:25:2c: ab:68:20:0a:5b:3f:76:5b:0a:1d:da:64:39:1e:33: ce:28:53:a9:d4:90:39:82:4f:36:dc:a3:5f:fa:b1: 6f:e2:a7:2c:87:06:80:45:d9:79:1d:fe:5a:ab:89: f0:79:5a:3c:cf:44:dc:cc:8f:52:9c:05:b1:77:ed: af:25:57:f3:86:e0:91:13:33:6e:6b:af:9f:d9:53: 26:86:fd:3c:af:1d:d7:18:de:2a:95:00:7a:f9:8e: 3b:0a:6d:b9:2c:3c:44:a0:cc:fa:ba:18:52:b1:f9: a2:44:f9:fb:13:77:ca:a1:48:87:6a:c4:d6:4d:9a: ad:1c:08:0c:83:fe:33:d9:bd:0a:ce:c3:0c:a7:82: e3:cf:cb:c6:ee:82:9b:8a:a7:88:c5:96:88:5c:a7: 8f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:BE:90:FD:29:9A:77:F9:DC:09:1C:71:04:77:4E:09:DC:82:34:FF X509v3 Authority Key Identifier: keyid:A6:E6:47:B9:A4:4F:AA:A7:3E:BB:82:04:05:0C:C6:4C:CA:45:98:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/puZHuaRPqqc-u4IEBQzGTMpFmOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:3e:ad:20:08:12:26:0c:bf:b1:02:d5:ce:a0:f1:75:30:cf: 06:c2:f4:e0:59:11:ee:75:d5:df:96:4d:78:1b:06:6c:ef:cb: 0a:d0:16:7d:53:69:cb:23:df:4a:63:f8:12:9a:4f:46:a1:14: 07:f7:ed:2b:18:18:e0:ef:7a:3c:1b:e5:c3:d6:cf:53:7e:3d: 63:1d:ef:39:1c:b8:e6:72:13:9b:02:44:02:8e:4a:39:00:90: 62:46:fd:c6:38:b0:04:8d:7e:b6:60:da:4f:7f:1c:41:77:7c: e6:3e:d0:03:86:b1:3c:22:4a:1c:6c:04:02:f7:fd:5b:fe:cc: 04:18:02:20:60:be:45:36:67:56:c7:c0:63:b8:aa:7b:b4:04: 1e:5c:12:aa:97:6f:93:a2:79:8a:dc:b7:71:d4:f7:93:44:d9: 50:51:99:12:81:9a:68:db:98:bb:c7:d3:f5:b2:df:9c:5e:db: a7:27:99:6d:83:4d:4f:3e:9a:97:15:01:9b:68:60:4c:ad:c8: d3:5f:e8:5b:80:01:1f:55:fd:b7:76:6c:1f:52:84:57:c7:59: da:78:2d:9c:a0:77:ed:f9:6b:40:ff:15:ab:82:90:79:5a:62: 14:b0:45:77:00:96:5c:99:12:87:14:ab:62:e2:32:e6:55:70: 75:cd:70:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTMxOTExMC8GA1UEBRMoQTZFNjQ3QjlBNDRGQUFBNzNFQkI4MjA0MDUwQ0M2NEND QTQ1OThFQTAeFw0yNTA0MTcwNTUyMjlaFw0yNTA0MjQwNTUyMjlaMBgxFjAUBgNV BAMTDTY4MDA5NzFkLWE2NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsSqouRllQhsi8fTPgk9iPKuEI6blwBcxsgT71DvQPVi+vmdoJ7hxzJhaOInFV KTUnFrhM9+FcZURVxl4gbHuRe+LfH0sJ2MH+J/12y8EMEoYWBaOhHp0Xekibxga1 BVsWoMZG5lQlLKtoIApbP3ZbCh3aZDkeM84oU6nUkDmCTzbco1/6sW/ipyyHBoBF 2Xkd/lqrifB5WjzPRNzMj1KcBbF37a8lV/OG4JETM25rr5/ZUyaG/TyvHdcY3iqV AHr5jjsKbbksPESgzPq6GFKx+aJE+fsTd8qhSIdqxNZNmq0cCAyD/jPZvQrOwwyn guPPy8bugpuKp4jFlohcp4+TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSL6Q/Sma d/ncCRxxBHdOCdyCNP8wHwYDVR0jBBgwFoAUpuZHuaRPqqc+u4IEBQzGTMpFmOow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1MzE5LzAyNUQ3QjVDOEMy RDExRUY4MTIyRUMxMUM0RjlBRTAyL3B1Wkh1YVJQcXFjLXU0SUVCUXpHVE1wRm1P by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcHVaSHVhUlBxcWMtdTRJRUJRekdUTXBGbU9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 MzE5LzAyNUQ3QjVDOEMyRDExRUY4MTIyRUMxMUM0RjlBRTAyL3B1Wkh1YVJQcXFj LXU0SUVCUXpHVE1wRm1Pby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADU+rSAIEiYMv7EC1c6g8XUwzwbC9OBZEe511d+WTXgbBmzvywrQFn1T acsj30pj+BKaT0ahFAf37SsYGODvejwb5cPWz1N+PWMd7zkcuOZyE5sCRAKOSjkA kGJG/cY4sASNfrZg2k9/HEF3fOY+0AOGsTwiShxsBAL3/Vv+zAQYAiBgvkU2Z1bH wGO4qnu0BB5cEqqXb5OieYrct3HU95NE2VBRmRKBmmjbmLvH0/Wy35xe26cnmW2D TU8+mpcVAZtoYEytyNNf6FuAAR9V/bd2bB9ShFfHWdp4LZygd+35a0D/FauCkHla YhSwRXcAllyZEocUq2LiMuZVcHXNcDM= -----END CERTIFICATE-----Generated at Sat Apr 19 00:40:34 2025 by rpki-client