$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft File: PusZaI0z1iGZTls9nkbsqqUJ9CM.mft (raw, json) Hash identifier: zmuizpbLIcf26cyUZE5QHK88LxNaCvv+C+hzjtkiRVs= Subject key identifier: CC:B3:B7:E6:B9:4C:1E:46:9F:8D:90:21:5B:04:72:E3:8A:03:55:CE Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 03FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft Manifest number: 03F9 Signing time: Thu 03 Apr 2025 00:30:37 +0000 Manifest this update: Thu 03 Apr 2025 00:30:37 +0000 Manifest next update: Thu 10 Apr 2025 00:30:37 +0000 Files and hashes: 1: PusZaI0z1iGZTls9nkbsqqUJ9CM.crl (hash: HA2HybYz5bzB4f0olidLTXzwa572kwS1gpHTTd8WGoA=) 2: 0716B2646C7111EC8C5E6967C4F9AE02.roa (hash: TIDwy9LVcXS4MQZ5z7Q3BUlFE+wSiwfGMr/OEXHL42A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC Validity Not Before: Apr 3 00:30:37 2025 GMT Not After : Apr 10 00:30:37 2025 GMT Subject: CN=67edd6ad-3c8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7f:17:8f:5c:f8:92:73:3e:df:ad:db:ba:6d: c8:e2:13:71:2e:1c:16:11:a7:35:19:55:98:dc:2c: f5:f7:3e:0c:cd:ac:81:3e:68:b6:ba:de:46:a9:88: 88:07:59:c8:73:00:10:ed:13:f5:37:b3:26:a9:49: b3:5a:17:e3:80:5c:c2:3f:56:33:b7:77:0b:20:b8: e2:f8:5d:5f:62:67:df:9c:ce:3c:aa:86:d7:0c:76: 7a:9a:7f:e8:3d:bd:46:a0:08:9e:41:50:d1:d7:41: 2a:a9:75:b5:ca:e7:08:79:b1:a0:d3:84:f2:09:dd: 79:cc:ba:8c:5d:d7:a4:7d:a4:ec:2c:16:7f:2d:7b: 2d:b7:3d:47:ab:d9:61:b6:29:01:9e:a9:e9:7e:9b: 27:ae:14:ac:c0:6c:6b:04:9c:35:79:77:2f:53:16: 33:b1:88:df:fc:b6:57:05:b5:07:43:b2:92:8c:56: 64:c3:81:a8:eb:5e:a1:85:98:46:e0:37:57:1f:c0: 01:e1:7b:a1:49:ab:2e:f4:88:4c:ed:8c:57:40:26: 58:ab:7d:36:8f:2f:57:9f:2f:71:08:f2:cc:b9:e7: ac:3b:ba:a8:ce:8c:a9:e4:a1:4e:56:a5:02:c1:80: c0:78:d6:62:fd:e5:1d:95:df:c4:ec:b5:30:8f:24: ef:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B3:B7:E6:B9:4C:1E:46:9F:8D:90:21:5B:04:72:E3:8A:03:55:CE X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1d:eb:3c:ab:b8:01:ce:b6:80:e4:bb:b1:69:e6:28:3b:79: c2:8b:23:d6:f6:5a:68:03:c3:28:b3:8b:25:85:b2:eb:9e:c5: e6:c6:27:51:88:03:41:1b:05:ce:e8:bd:45:b7:7d:b8:04:f5: 49:bc:c4:61:56:d1:de:b0:c5:96:15:1c:d1:3f:33:85:f1:7b: 5a:ca:28:e9:1e:e3:5b:d4:2f:b7:a7:ee:62:c4:62:93:ba:ef: 91:77:e5:74:85:d3:54:d9:92:a1:2e:80:33:62:a0:61:8b:9c: 8e:9a:0e:ad:13:bb:8c:29:df:9a:82:ff:26:82:d3:ce:de:11: 92:dc:a9:9c:17:54:fc:52:be:f8:a8:d8:81:dc:6d:a7:2d:48: 7c:aa:13:82:85:db:db:ea:3c:ed:b2:a4:fa:f9:3c:c0:4f:b5: b7:0f:9a:71:6b:e7:df:7a:35:46:56:ec:59:4d:04:26:20:6d: 5f:f6:3d:ae:71:b8:eb:ae:23:32:37:b4:d7:98:48:84:f4:22: 0d:88:6f:37:8a:d4:1c:38:99:db:56:3a:59:50:98:39:fb:3f: f6:d9:a2:60:e7:9e:19:3c:1c:bd:ca:8c:8e:22:a0:e2:32:db: a7:c1:64:24:ac:ce:47:14:0f:3d:2e:79:88:54:f2:5c:ff:65: 17:53:b7:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjUwNDAzMDAzMDM3WhcNMjUwNDEwMDAzMDM3WjAYMRYwFAYD VQQDEw02N2VkZDZhZC0zYzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp38Xj1z4knM+363bum3I4hNxLhwWEac1GVWY3Cz19z4MzayBPmi2ut5GqYiI B1nIcwAQ7RP1N7MmqUmzWhfjgFzCP1Yzt3cLILji+F1fYmffnM48qobXDHZ6mn/o Pb1GoAieQVDR10EqqXW1yucIebGg04TyCd15zLqMXdekfaTsLBZ/LXsttz1Hq9lh tikBnqnpfpsnrhSswGxrBJw1eXcvUxYzsYjf/LZXBbUHQ7KSjFZkw4Go616hhZhG 4DdXH8AB4XuhSasu9IhM7YxXQCZYq302jy9Xny9xCPLMueesO7qozoyp5KFOVqUC wYDAeNZi/eUdld/E7LUwjyTvjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyzt+a5 TB5Gn42QIVsEcuOKA1XOMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTRBQy8zNDQxRDJEMDZDNkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFp R1pUbHM5bmtic3FxVUo5Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiHes8q7gBzraA5LuxaeYoO3nCiyPW9lpoA8Mos4slhbLrnsXmxidR iANBGwXO6L1Ft324BPVJvMRhVtHesMWWFRzRPzOF8XtayijpHuNb1C+3p+5ixGKT uu+Rd+V0hdNU2ZKhLoAzYqBhi5yOmg6tE7uMKd+agv8mgtPO3hGS3KmcF1T8Ur74 qNiB3G2nLUh8qhOChdvb6jztsqT6+TzAT7W3D5pxa+ffejVGVuxZTQQmIG1f9j2u cbjrriMyN7TXmEiE9CINiG83itQcOJnbVjpZUJg5+z/22aJg554ZPBy9yoyOIqDi MtunwWQkrM5HFA89LnmIVPJc/2UXU7eW -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:49 2025 by rpki-client