$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft File: PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft (raw, json) Hash identifier: UZVcTz0nI10vNjdXb5TQ9vycr6Z+JNV+fZVIBX1j4yg= Subject key identifier: 8B:D6:CD:77:42:A4:53:77:7C:BC:CE:14:98:D0:BD:7A:FA:FD:0F:57 Authority key identifier: 3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 Certificate issuer: /CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Certificate serial: 0E62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft Manifest number: 0E57 Signing time: Wed 02 Apr 2025 17:49:44 +0000 Manifest this update: Wed 02 Apr 2025 17:49:43 +0000 Manifest next update: Wed 09 Apr 2025 17:49:43 +0000 Files and hashes: 1: PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl (hash: cDiEUi7UNKiXq/CN+WY0C94K4kmyy2nK+Q29X9w9eHs=) 2: A5B7D874091F11EFA6EDE141C4F9AE02.roa (hash: 2rvUxpqj7Y+E1RimjzmymQTO9YIeEHWwe9dn2EcRiJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 17:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4668 Validity Not Before: Apr 2 17:49:43 2025 GMT Not After : Apr 9 17:49:43 2025 GMT Subject: CN=67ed78b7-ed65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:93:ad:39:e0:fc:dc:b9:24:f5:ee:c5:4d:97: 21:50:a5:0c:48:38:b6:ea:bb:de:c0:96:ac:87:46: 55:e0:b4:78:fa:64:8d:a3:1c:d0:5a:b0:17:13:29: 66:e2:e0:04:c2:f0:41:8b:51:67:a9:28:6c:63:f6: dc:62:82:16:1b:54:35:94:e8:79:12:17:2c:d5:86: b3:fe:1f:6b:e5:cc:9e:53:d6:6e:3c:c7:a1:22:3f: 56:8f:7a:ef:ff:91:ad:ec:ee:55:bf:f7:2d:b3:5d: d0:5d:94:8d:96:0b:dc:ad:c3:c1:33:5a:30:0f:2d: ad:c2:8f:2f:a3:d3:98:57:36:90:73:cc:54:5c:c4: 77:bc:ce:51:06:b3:5b:65:1e:8a:60:b5:a9:fc:b7: d2:08:95:54:61:6a:1f:0e:80:e8:8c:a9:37:85:9f: 31:8a:48:4b:46:4a:19:ab:90:5b:8e:c1:86:09:bf: 3c:4a:c0:92:1b:72:52:cf:9a:93:a5:03:13:20:e6: db:1e:c1:eb:88:0c:5a:ae:39:5f:97:b8:5c:0a:af: 23:4a:03:f1:9c:86:70:67:8b:78:a7:97:05:52:37: fa:04:a0:1a:e5:cd:98:97:78:86:75:16:da:29:35: c0:17:c4:b9:57:ce:5e:58:6f:8e:23:3f:01:d9:0c: 92:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D6:CD:77:42:A4:53:77:7C:BC:CE:14:98:D0:BD:7A:FA:FD:0F:57 X509v3 Authority Key Identifier: keyid:3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:ef:c9:09:0d:70:82:c1:09:52:2c:3e:74:f5:17:19:ec:29: c0:ee:6a:01:d7:5d:da:fe:69:18:d8:c2:73:ca:b0:5b:2e:26: 87:ac:71:b8:92:75:cd:10:08:fa:07:0d:bd:62:86:3a:9e:7c: 71:94:0e:05:db:9d:18:b1:82:bd:76:be:86:c9:8d:22:0d:25: 0c:5b:7d:b4:82:7b:d3:44:43:74:88:0d:cd:b4:d0:7d:cc:45: e6:36:f3:8a:ec:9a:a1:cc:9a:a2:a0:a4:df:e3:41:f5:f4:f3: 52:6c:d0:c9:06:6a:89:82:8e:4f:04:1d:61:d8:02:fd:ec:06: a4:a8:72:c1:bf:dd:af:76:2d:a6:64:45:5e:62:87:c0:9c:d8: ff:a6:6b:4e:c4:d7:f8:62:ea:f6:9d:a5:67:5c:83:0b:59:2b: 44:74:a5:0d:bf:e5:41:d9:6c:35:1e:d5:d2:dc:5a:80:f6:20: ba:3b:4f:26:84:bb:b7:ac:4b:bd:97:a7:2a:37:f2:82:2f:e8: fb:b7:ae:18:5d:ce:69:6a:52:cb:c7:44:ee:78:5f:f0:8a:74: e3:62:7d:e5:ea:64:15:0a:dd:95:84:73:f2:f4:98:1a:e0:e8: 1d:92:6b:d6:0f:1c:c0:7c:92:1a:70:d6:65:cb:39:a2:fe:78: 4f:f3:bd:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2NjgxMTAvBgNVBAUTKDNEMDU1NkQxOTNCQzkyQTIxRUE3NDdGOTU4QzY5N0E5 N0VDNUQ1RDYwHhcNMjUwNDAyMTc0OTQzWhcNMjUwNDA5MTc0OTQzWjAYMRYwFAYD VQQDEw02N2VkNzhiNy1lZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05OtOeD83Lkk9e7FTZchUKUMSDi26rvewJash0ZV4LR4+mSNoxzQWrAXEylm 4uAEwvBBi1FnqShsY/bcYoIWG1Q1lOh5Ehcs1Yaz/h9r5cyeU9ZuPMehIj9Wj3rv /5Gt7O5Vv/cts13QXZSNlgvcrcPBM1owDy2two8vo9OYVzaQc8xUXMR3vM5RBrNb ZR6KYLWp/LfSCJVUYWofDoDojKk3hZ8xikhLRkoZq5BbjsGGCb88SsCSG3JSz5qT pQMTIObbHsHriAxarjlfl7hcCq8jSgPxnIZwZ4t4p5cFUjf6BKAa5c2Yl3iGdRba KTXAF8S5V85eWG+OIz8B2QySLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvWzXdC pFN3fLzOFJjQvXr6/Q9XMB8GA1UdIwQYMBaAFD0FVtGTvJKiHqdH+VjGl6l+xdXW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY2OC83QzkwMDlBQzk3 RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtxSWVwMGY1V01hWHFYN0Yx ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRVlcwWk84a3FJZXAwZjVXTWFYcVg3RjFkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY2OC83QzkwMDlBQzk3RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtx SWVwMGY1V01hWHFYN0YxZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB178kJDXCCwQlSLD509RcZ7CnA7moB113a/mkY2MJzyrBbLiaHrHG4 knXNEAj6Bw29YoY6nnxxlA4F250YsYK9dr6GyY0iDSUMW320gnvTREN0iA3NtNB9 zEXmNvOK7JqhzJqioKTf40H19PNSbNDJBmqJgo5PBB1h2AL97AakqHLBv92vdi2m ZEVeYofAnNj/pmtOxNf4Yur2naVnXIMLWStEdKUNv+VB2Ww1HtXS3FqA9iC6O08m hLu3rEu9l6cqN/KCL+j7t64YXc5palLLx0TueF/winTjYn3l6mQVCt2VhHPy9Jga 4OgdkmvWDxzAfJIacNZlyzmi/nhP870L -----END CERTIFICATE-----Generated at Fri Apr 4 18:27:01 2025 by rpki-client