$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft File: pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft (raw, json) Hash identifier: ViQzWRsZT2hy7sJr5ekx5PME1b0VEc2UftQ7gwMtf84= Subject key identifier: 61:9C:71:8A:BE:CB:44:FB:78:E1:97:DC:7F:30:7E:04:D0:AD:EB:E5 Authority key identifier: A6:0C:98:21:F5:30:B0:D5:3A:67:A9:8B:76:71:96:C4:0A:2D:5A:66 Certificate issuer: /CN=A91E3B25/serialNumber=A60C9821F530B0D53A67A98B767196C40A2D5A66 Certificate serial: 16A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft Manifest number: 1F85 Signing time: Fri 04 Apr 2025 16:45:23 +0000 Manifest this update: Fri 04 Apr 2025 16:45:23 +0000 Manifest next update: Fri 11 Apr 2025 16:45:23 +0000 Files and hashes: 1: pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl (hash: JHyvLhz3nUjzPVAs9kU+wARmZiOqTD2dxDljdEfvRC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5799 (0x16a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25 Validity Not Before: Apr 4 16:45:23 2025 GMT Not After : Apr 11 16:45:23 2025 GMT Subject: CN=67f00ca3-64a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f5:f6:33:4a:77:9d:5a:e3:f7:ec:b5:6d:f3: 79:83:71:1a:34:e9:3f:e5:d3:b4:fc:42:28:75:d1: a6:b8:b2:00:21:27:4e:88:03:8c:80:df:8b:ba:16: 87:3c:4b:03:55:70:b9:1e:28:76:fb:97:9c:a7:b5: 96:69:b6:7d:23:5d:f3:b0:e5:36:68:8b:0a:6e:62: 83:83:cd:b7:3f:25:9f:d4:1d:04:d9:56:e5:3c:e0: aa:58:0c:8f:bb:21:69:80:70:fe:48:3b:f5:7a:a8: 25:3f:02:fa:fc:57:97:8d:45:52:5f:17:a0:72:d7: 15:c5:ec:e3:09:f5:8c:e9:7d:18:8a:13:3c:29:ef: 65:b3:13:12:7d:5f:a4:23:66:dc:9d:62:20:1e:09: 95:0e:1a:a5:12:3b:19:c4:f8:12:08:cf:f9:88:64: ae:7d:79:0a:fb:8f:c7:95:6b:12:21:eb:bb:5a:2a: 06:50:41:48:72:60:b7:c6:ee:f6:06:8e:b4:97:19: a3:58:7f:f5:ad:87:c2:7d:5f:e7:35:21:06:b1:a8: ce:e6:af:1d:87:41:81:c2:ba:72:58:a9:e7:10:ce: c6:52:1a:66:31:a8:e4:3a:da:a7:1b:4e:af:4d:b4: 45:0a:d0:ea:1b:0c:37:71:d5:16:ce:ef:0e:9b:3d: 74:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9C:71:8A:BE:CB:44:FB:78:E1:97:DC:7F:30:7E:04:D0:AD:EB:E5 X509v3 Authority Key Identifier: keyid:A6:0C:98:21:F5:30:B0:D5:3A:67:A9:8B:76:71:96:C4:0A:2D:5A:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:bc:13:07:6f:3a:b8:99:7b:04:91:44:d7:5b:7c:5b:2e:0f: 7c:4e:2e:29:72:1f:fd:df:b0:01:79:82:ce:c3:eb:a4:e1:b2: 9e:3d:70:6c:2d:f6:26:fe:ce:41:e4:37:71:f4:76:b4:0a:7f: 37:bb:ff:40:1f:57:d8:6b:a7:8a:eb:6d:f1:79:8b:e7:72:60: 39:69:1f:85:03:77:89:a8:e7:86:ca:4a:da:77:ad:7e:3f:45: db:bb:d5:d9:1e:ec:b6:4c:b6:3f:4c:64:d4:ef:3a:af:06:5d: 7d:34:27:b3:54:67:4e:44:41:ab:8f:98:d8:f9:ea:b6:0f:72: cd:48:ed:da:9e:d7:d4:8e:22:7e:49:66:d1:ca:66:86:9e:35: 7c:b2:c2:ce:5d:45:1f:4e:93:8b:39:18:82:36:1d:13:ea:94: c3:a5:08:85:69:a9:c4:1a:ab:2e:26:49:f0:b7:2d:09:1e:6e: 0d:17:a6:e0:e5:34:b2:bf:c2:19:37:f8:f6:83:ed:3f:24:64: 20:2e:54:5c:35:a9:f2:2b:f6:6f:68:6e:07:4c:30:ef:88:6a: 44:cf:69:23:9d:0d:39:96:74:9c:25:9a:70:62:d5:ac:9d:88: be:af:9c:43:3b:bb:13:34:dc:12:e4:97:31:ac:f2:49:36:15: ac:58:3f:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEE2MEM5ODIxRjUzMEIwRDUzQTY3QTk4Qjc2NzE5NkM0 MEEyRDVBNjYwHhcNMjUwNDA0MTY0NTIzWhcNMjUwNDExMTY0NTIzWjAYMRYwFAYD VQQDEw02N2YwMGNhMy02NGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfX2M0p3nVrj9+y1bfN5g3EaNOk/5dO0/EIoddGmuLIAISdOiAOMgN+LuhaH PEsDVXC5Hih2+5ecp7WWabZ9I13zsOU2aIsKbmKDg823PyWf1B0E2VblPOCqWAyP uyFpgHD+SDv1eqglPwL6/FeXjUVSXxegctcVxezjCfWM6X0YihM8Ke9lsxMSfV+k I2bcnWIgHgmVDhqlEjsZxPgSCM/5iGSufXkK+4/HlWsSIeu7WioGUEFIcmC3xu72 Bo60lxmjWH/1rYfCfV/nNSEGsajO5q8dh0GBwrpyWKnnEM7GUhpmMajkOtqnG06v TbRFCtDqGww3cdUWzu8Omz10ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGccYq+ y0T7eOGX3H8wfgTQrevlMB8GA1UdIwQYMBaAFKYMmCH1MLDVOmepi3ZxlsQKLVpm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi9wZ3lZSWZVd3NOVTZaNm1MZG5HV3hBb3RX bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BneVlJZlV3c05VNlo2bUxkbkdXeEFvdFdtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi9wZ3lZSWZVd3NO VTZaNm1MZG5HV3hBb3RXbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABvBMHbzq4mXsEkUTXW3xbLg98Ti4pch/937ABeYLOw+uk4bKePXBs LfYm/s5B5Ddx9Ha0Cn83u/9AH1fYa6eK623xeYvncmA5aR+FA3eJqOeGykrad61+ P0Xbu9XZHuy2TLY/TGTU7zqvBl19NCezVGdOREGrj5jY+eq2D3LNSO3antfUjiJ+ SWbRymaGnjV8ssLOXUUfTpOLORiCNh0T6pTDpQiFaanEGqsuJknwty0JHm4NF6bg 5TSyv8IZN/j2g+0/JGQgLlRcNanyK/ZvaG4HTDDviGpEz2kjnQ05lnScJZpwYtWs nYi+r5xDO7sTNNwS5JcxrPJJNhWsWD+W -----END CERTIFICATE-----Generated at Sat Apr 5 01:25:23 2025 by rpki-client