$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft File: PudBKv6HPx1FurYUcUoyAeNilpE.mft (raw, json) Hash identifier: n/hAWEuc+iDb1SNjAX1l/rk2yifRvduhxJBOimjKYLg= Subject key identifier: 58:F4:D3:3B:EC:DF:BF:2A:45:78:A0:17:01:6F:8F:FE:FD:CD:0B:1B Authority key identifier: 3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91 Certificate issuer: /CN=A91E3680/serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691 Certificate serial: 059D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft Manifest number: 0598 Signing time: Fri 28 Mar 2025 23:28:57 +0000 Manifest this update: Fri 28 Mar 2025 23:28:56 +0000 Manifest next update: Fri 04 Apr 2025 23:28:56 +0000 Files and hashes: 1: PudBKv6HPx1FurYUcUoyAeNilpE.crl (hash: eZVd9dTgYk4fTx+ZjSvE4OrCjyvCUkolAXvbFfgboOc=) 2: B46FE2D0C5CA11EBB86D320BC4F9AE02.roa (hash: akcQJOcqn6Cqm1e0k8wvVS6O2vanCte0Cwevg6oh+R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1437 (0x59d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3680 Validity Not Before: Mar 28 23:28:56 2025 GMT Not After : Apr 4 23:28:56 2025 GMT Subject: CN=67e730b9-a437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:19:0d:73:45:b5:b7:82:82:d7:9f:1f:16:dc: 11:87:78:d2:aa:38:88:cb:87:9c:cd:bb:f5:b1:ea: b6:e8:40:e8:ed:f7:49:9d:3d:c0:e0:85:43:75:d0: 5c:7b:42:c4:0f:b8:d9:e3:90:a2:31:0b:35:03:1d: 26:7f:13:0f:9c:17:e8:6d:8b:3d:f5:cc:41:dd:96: 29:04:82:47:31:c4:2b:fb:ac:5f:bd:6a:12:22:94: f8:53:b2:72:43:66:65:3f:5f:bf:48:41:61:2a:72: b7:b0:0c:c0:54:7a:c1:df:ec:0a:e5:4d:bd:c1:b3: 7a:84:09:2a:37:92:be:c4:d4:5e:75:8b:10:c5:e0: 31:a2:b6:77:97:e1:63:19:b8:1f:41:12:af:2c:75: f0:b8:0f:60:c9:49:3e:ff:ce:13:36:cb:91:bf:95: ff:4f:cd:0e:1b:6e:e5:36:1b:61:5b:19:02:48:bc: b1:3e:95:57:a8:65:2b:e4:67:a3:ab:88:aa:28:c2: f2:35:a7:d9:87:5d:db:c9:25:8e:6d:ca:b9:f8:e2: 75:ef:0d:89:9e:13:28:39:ee:19:2d:c5:ca:14:ab: a5:d3:79:bd:16:7e:db:07:58:cf:80:ec:cc:83:4b: 76:79:f5:f8:71:e6:07:c1:ec:bd:ba:5c:90:4d:c3: 34:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F4:D3:3B:EC:DF:BF:2A:45:78:A0:17:01:6F:8F:FE:FD:CD:0B:1B X509v3 Authority Key Identifier: keyid:3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:5d:e7:53:52:c8:07:8d:3d:4d:0a:28:79:df:fd:f3:f0:83: 1a:9f:d9:5e:b5:cf:77:d0:e0:a0:e9:e8:8c:59:4e:d8:9d:38: 21:9a:20:87:d7:a1:5a:8c:79:a5:4d:0b:63:0a:23:e9:a8:95: c9:7d:d1:1a:ba:f4:5e:55:20:6f:12:34:af:36:eb:2c:5e:3f: c2:69:cd:0b:c8:8a:4f:a2:a6:7f:e9:89:cb:8a:ae:47:d9:1d: 4e:4f:23:c5:8c:ac:4b:7c:9c:06:b1:4c:0c:f2:53:13:90:8c: a7:91:5b:3b:a8:c9:bf:ea:02:a1:ea:c3:da:50:4f:27:a4:b2: cf:92:8f:09:57:05:ce:69:67:f6:89:a1:41:5d:69:f5:66:fd: 68:19:0b:63:51:de:8b:79:10:7d:cf:46:8e:4b:22:9d:94:0d: 60:99:0e:0b:a8:94:3e:65:97:c0:c3:49:3e:27:2d:aa:8c:ba: 21:bd:a1:60:4c:50:f4:e3:1d:14:a4:2e:a1:4f:75:85:b0:af: f3:57:3f:ad:24:75:24:1e:d2:27:68:02:d4:d7:45:bf:0c:c1: 5d:c4:4d:5b:1b:3b:c7:25:6d:be:19:c0:92:ee:74:22:42:20: db:71:48:d7:30:8b:7a:1a:7a:97:cf:12:c7:6a:58:f6:ac:ca: 3a:04:ff:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM2ODAxMTAvBgNVBAUTKDNFRTc0MTJBRkU4NzNGMUQ0NUJBQjYxNDcxNEEzMjAx RTM2Mjk2OTEwHhcNMjUwMzI4MjMyODU2WhcNMjUwNDA0MjMyODU2WjAYMRYwFAYD VQQDEw02N2U3MzBiOS1hNDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BkNc0W1t4KC158fFtwRh3jSqjiIy4eczbv1seq26EDo7fdJnT3A4IVDddBc e0LED7jZ45CiMQs1Ax0mfxMPnBfobYs99cxB3ZYpBIJHMcQr+6xfvWoSIpT4U7Jy Q2ZlP1+/SEFhKnK3sAzAVHrB3+wK5U29wbN6hAkqN5K+xNRedYsQxeAxorZ3l+Fj GbgfQRKvLHXwuA9gyUk+/84TNsuRv5X/T80OG27lNhthWxkCSLyxPpVXqGUr5Gej q4iqKMLyNafZh13bySWObcq5+OJ17w2JnhMoOe4ZLcXKFKul03m9Fn7bB1jPgOzM g0t2efX4ceYHwey9ulyQTcM0oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFj00zvs 378qRXigFwFvj/79zQsbMB8GA1UdIwQYMBaAFD7nQSr+hz8dRbq2FHFKMgHjYpaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzY4MC9ENDk5MTg2MkM1 QzgxMUVCODkwQzBEMEJDNEY5QUUwMi9QdWRCS3Y2SFB4MUZ1cllVY1VveUFlTmls cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1ZEJLdjZIUHgxRnVyWVVjVW95QWVOaWxwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzY4MC9ENDk5MTg2MkM1QzgxMUVCODkwQzBEMEJDNEY5QUUwMi9QdWRCS3Y2SFB4 MUZ1cllVY1VveUFlTmlscEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiXedTUsgHjT1NCih53/3z8IMan9letc930OCg6eiMWU7YnTghmiCH 16FajHmlTQtjCiPpqJXJfdEauvReVSBvEjSvNussXj/Cac0LyIpPoqZ/6YnLiq5H 2R1OTyPFjKxLfJwGsUwM8lMTkIynkVs7qMm/6gKh6sPaUE8npLLPko8JVwXOaWf2 iaFBXWn1Zv1oGQtjUd6LeRB9z0aOSyKdlA1gmQ4LqJQ+ZZfAw0k+Jy2qjLohvaFg TFD04x0UpC6hT3WFsK/zVz+tJHUkHtInaALU10W/DMFdxE1bGzvHJW2+GcCS7nQi QiDbcUjXMIt6GnqXzxLHalj2rMo6BP8M -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:36 2025 by rpki-client