$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: piUy22oo8Xd+YL+1OItCX7Q1EQmfYoEOX6qDmI7XUQg= Subject key identifier: FE:02:1A:C4:48:C9:13:D7:4D:37:CD:37:97:C6:E3:50:40:AF:42:56 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0426 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0420 Signing time: Wed 09 Apr 2025 00:07:06 +0000 Manifest this update: Wed 09 Apr 2025 00:07:05 +0000 Manifest next update: Wed 16 Apr 2025 00:07:05 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: zlWwPXulVXcFdy5kcxWlkakbDBggOvxqUBIu4O/JhuQ=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2 Validity Not Before: Apr 9 00:07:05 2025 GMT Not After : Apr 16 00:07:05 2025 GMT Subject: CN=67f5ba2a-765c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3b:7b:e7:94:4c:d2:62:bf:eb:f9:fa:a7:5c: e9:78:73:97:5b:46:0b:32:84:b2:ee:0f:e1:01:97: b7:b3:e4:97:35:d9:6d:1a:8a:64:26:fb:79:3b:81: 36:b2:b5:d3:43:3b:62:86:a8:d2:0a:77:25:63:58: d6:40:c0:84:83:65:e1:cc:76:28:0d:9a:82:84:7a: 4d:53:92:40:08:4d:cb:a7:94:eb:cf:af:f8:03:c7: e5:60:d8:60:05:f5:cd:69:22:42:94:a8:a7:7f:cc: 79:0d:00:ae:8b:95:8f:f9:bd:01:ac:90:6a:af:e1: 8e:ad:c7:9b:1f:07:df:8a:90:69:7d:b6:a2:81:7b: 24:ba:99:ac:4f:4c:9d:d9:b3:23:fd:ba:b5:60:4b: 60:93:40:3c:4d:d5:3f:92:15:6e:5c:bf:09:16:7e: 76:64:21:ab:65:be:4c:65:2a:72:c6:de:42:ac:94: e7:c8:5e:3c:4a:62:54:61:d4:78:2e:64:37:10:77: e7:6b:65:06:27:4a:98:37:f0:52:13:13:e8:e1:be: 42:d4:6b:ab:76:35:cd:c6:dd:63:34:a9:06:33:d7: 7e:c0:37:0d:e8:d1:d9:ed:c6:50:6c:9c:33:dc:4c: 70:ce:3d:a5:25:f3:1a:cc:86:7b:7a:27:d3:04:9f: 2b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:02:1A:C4:48:C9:13:D7:4D:37:CD:37:97:C6:E3:50:40:AF:42:56 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:95:81:28:b3:c2:6b:03:c7:f0:53:47:43:19:6c:b0:11:7d: 02:c1:20:d6:6d:ec:0a:64:89:fc:3c:33:32:b3:5c:57:da:9c: db:69:e2:53:ba:8d:ab:95:c1:f9:26:12:df:ae:81:52:bd:f1: 0f:ce:1a:9c:90:65:12:33:5f:9a:8a:fe:f9:6e:ec:36:bd:f8: 20:ef:94:da:f1:78:ca:e6:eb:1c:7d:41:cd:7f:97:db:6d:9a: 2b:63:a2:c6:f9:b5:f3:cc:59:39:f3:64:9e:cc:bb:59:b1:0c: 47:15:f4:fe:ca:d4:e2:44:d3:10:c6:bb:e6:62:66:e5:35:85: 9c:86:66:e6:3c:83:df:c2:c1:4c:ae:67:6d:80:2f:9b:48:06: 79:f1:d5:1d:e4:13:a4:94:f0:51:f8:8f:1d:e0:f2:2e:76:b9: 85:f1:64:29:30:79:53:2a:a1:53:df:0c:73:69:d5:6b:80:0d: 76:0b:5d:7c:35:85:67:15:5d:7c:06:3c:38:a1:e2:3d:7f:e8: 88:b2:94:99:9a:09:fc:c4:02:17:26:f7:d9:af:f1:fb:e8:41: 62:be:4b:66:36:2e:04:e2:d3:77:62:34:2e:71:4f:5e:6e:c8: b4:41:b2:31:12:97:38:10:2d:2a:5b:8c:0b:e1:1c:da:c2:bd: 56:9e:b3:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwNDA5MDAwNzA1WhcNMjUwNDE2MDAwNzA1WjAYMRYwFAYD VQQDEw02N2Y1YmEyYS03NjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDt755RM0mK/6/n6p1zpeHOXW0YLMoSy7g/hAZe3s+SXNdltGopkJvt5O4E2 srXTQztihqjSCnclY1jWQMCEg2XhzHYoDZqChHpNU5JACE3Lp5Trz6/4A8flYNhg BfXNaSJClKinf8x5DQCui5WP+b0BrJBqr+GOrcebHwffipBpfbaigXskupmsT0yd 2bMj/bq1YEtgk0A8TdU/khVuXL8JFn52ZCGrZb5MZSpyxt5CrJTnyF48SmJUYdR4 LmQ3EHfna2UGJ0qYN/BSExPo4b5C1GurdjXNxt1jNKkGM9d+wDcN6NHZ7cZQbJwz 3Exwzj2lJfMazIZ7eifTBJ8rhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4CGsRI yRPXTTfNN5fG41BAr0JWMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFlYEos8JrA8fwU0dDGWywEX0CwSDWbewKZIn8PDMys1xX2pzbaeJT uo2rlcH5JhLfroFSvfEPzhqckGUSM1+aiv75buw2vfgg75Ta8XjK5uscfUHNf5fb bZorY6LG+bXzzFk582SezLtZsQxHFfT+ytTiRNMQxrvmYmblNYWchmbmPIPfwsFM rmdtgC+bSAZ58dUd5BOklPBR+I8d4PIudrmF8WQpMHlTKqFT3wxzadVrgA12C118 NYVnFV18Bjw4oeI9f+iIspSZmgn8xAIXJvfZr/H76EFivktmNi4E4tN3YjQucU9e bsi0QbIxEpc4EC0qW4wL4Rzawr1WnrOe -----END CERTIFICATE-----Generated at Thu Apr 10 23:58:27 2025 by rpki-client