$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: r9xtfa2m/FFI7PBVIp81x5aNgGMzvh7Ue73I5x52AB4= Subject key identifier: 5E:30:12:26:42:AC:29:A7:0C:C5:DD:57:71:41:31:59:92:FE:2D:A4 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 017B Signing time: Sat 29 Mar 2025 03:13:29 +0000 Manifest this update: Sat 29 Mar 2025 03:13:28 +0000 Manifest next update: Sat 05 Apr 2025 03:13:28 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: uh5tXwIMABqL5RBHUdxSITwK+MwcvbHXDcnoWt9MdHk=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: ZbC1fIWVYM0VLVl8rd4V+PKdCpSrgSM3tfi0uNsU2b0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902 Validity Not Before: Mar 29 03:13:28 2025 GMT Not After : Apr 5 03:13:28 2025 GMT Subject: CN=67e76559-9a45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d9:10:d5:9c:23:85:88:7e:b7:57:a2:35:d0: 57:d6:71:ea:18:04:bc:52:11:c5:d6:d8:2b:ec:f9: 87:f6:84:33:98:cd:0e:68:b6:5b:4a:1f:85:fb:20: 6b:ea:7e:c7:a7:34:86:dc:65:50:d1:93:af:46:b6: b4:f8:d9:fb:b7:4a:c2:47:7f:f8:61:a6:67:f9:45: 45:64:fb:f1:e8:75:13:18:8b:52:9a:d3:6e:ab:bc: de:7f:c0:17:83:52:8e:95:b0:99:bf:57:ed:9f:88: 7c:34:e2:98:e9:23:d3:ec:f8:0b:a1:cf:09:13:75: e4:57:51:ef:a0:e3:33:9e:50:4e:a1:b8:f1:62:80: 7e:36:d9:f9:d4:65:cc:b8:8e:9d:2e:ce:68:d4:79: 66:d0:d0:df:d2:78:f5:b8:9d:96:d3:5c:52:40:f6: ce:4b:36:bb:54:15:33:fa:95:37:86:2a:fe:8e:b1: 16:45:91:77:52:54:48:16:82:9c:5d:d6:24:52:46: 9c:d7:8f:85:93:02:e3:e6:0e:47:9e:a2:d1:da:93: d4:61:22:db:ae:34:49:b2:b6:90:76:43:b7:df:59: e7:bb:39:67:b8:27:8a:4c:63:ea:ad:64:73:26:a0: b9:4d:94:d2:71:76:e3:7a:89:f4:b1:9b:ad:75:e8: 8a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:30:12:26:42:AC:29:A7:0C:C5:DD:57:71:41:31:59:92:FE:2D:A4 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:1d:8e:71:9d:ef:ca:73:c0:8d:04:ae:00:60:85:3c:47:4d: 70:0d:53:1a:18:ad:64:01:b0:27:90:2a:bd:2b:b5:ca:c1:ca: 34:c0:7c:71:ef:5c:67:0e:ca:ea:50:8a:27:9d:00:6c:26:2f: 9f:fc:44:de:d3:a8:89:d1:16:e1:87:bb:e2:dd:2b:8f:45:20: 70:03:d5:4d:55:8a:75:68:6b:47:e8:c7:4b:d9:98:dd:20:48: 75:57:87:bb:c7:c5:94:3a:e3:1d:a6:6b:18:0e:4f:8c:ef:ca: fe:84:d3:5f:84:bc:b3:6a:80:a9:17:8b:95:a0:30:40:9b:cb: b2:b5:1a:04:57:ce:70:4d:61:74:cb:81:6d:ac:1c:51:b1:9c: 72:42:f1:74:85:f3:3b:5c:aa:27:b7:4a:b7:cf:40:58:cf:86: 33:16:34:dd:f3:0d:81:18:25:a9:c4:80:c8:e0:07:24:3f:cf: 50:e4:8e:67:54:7a:d4:3c:67:dc:d6:17:04:81:f0:ea:9c:99: 15:c6:4b:1c:f3:7a:a8:91:a0:9d:67:ea:68:16:47:4d:90:17: ab:ca:dc:4c:bb:16:1f:5b:6b:a6:e7:49:39:f1:76:34:fb:32: c2:89:86:7f:77:05:a9:16:f1:6e:54:92:43:d6:bd:ee:4e:df: c0:09:11:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjUwMzI5MDMxMzI4WhcNMjUwNDA1MDMxMzI4WjAYMRYwFAYD VQQDEw02N2U3NjU1OS05YTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NkQ1ZwjhYh+t1eiNdBX1nHqGAS8UhHF1tgr7PmH9oQzmM0OaLZbSh+F+yBr 6n7HpzSG3GVQ0ZOvRra0+Nn7t0rCR3/4YaZn+UVFZPvx6HUTGItSmtNuq7zef8AX g1KOlbCZv1ftn4h8NOKY6SPT7PgLoc8JE3XkV1HvoOMznlBOobjxYoB+Ntn51GXM uI6dLs5o1Hlm0NDf0nj1uJ2W01xSQPbOSza7VBUz+pU3hir+jrEWRZF3UlRIFoKc XdYkUkac14+FkwLj5g5HnqLR2pPUYSLbrjRJsraQdkO331nnuzlnuCeKTGPqrWRz JqC5TZTScXbjeon0sZutdeiKAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4wEiZC rCmnDMXdV3FBMVmS/i2kMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQHY5xne/Kc8CNBK4AYIU8R01wDVMaGK1kAbAnkCq9K7XKwco0wHxx 71xnDsrqUIonnQBsJi+f/ETe06iJ0Rbhh7vi3SuPRSBwA9VNVYp1aGtH6MdL2Zjd IEh1V4e7x8WUOuMdpmsYDk+M78r+hNNfhLyzaoCpF4uVoDBAm8uytRoEV85wTWF0 y4FtrBxRsZxyQvF0hfM7XKont0q3z0BYz4YzFjTd8w2BGCWpxIDI4AckP89Q5I5n VHrUPGfc1hcEgfDqnJkVxksc83qokaCdZ+poFkdNkBerytxMuxYfW2um50k58XY0 +zLCiYZ/dwWpFvFuVJJD1r3uTt/ACRHr -----END CERTIFICATE-----Generated at Fri Apr 4 21:17:23 2025 by rpki-client