$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: oOzmcA8XzRVCOgHJw7yoE7YpYlWWiiHriyfdPcOXSGM= Subject key identifier: 5D:BB:26:0A:D5:CE:D8:3C:36:03:6E:CA:9E:EE:70:92:58:B7:F2:78 Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 04AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 0497 Signing time: Sat 29 Mar 2025 00:18:42 +0000 Manifest this update: Sat 29 Mar 2025 00:18:42 +0000 Manifest next update: Sat 05 Apr 2025 00:18:42 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: FuO9Z4aLP99AzEUM6CQkpXA91cSlbIXen3Dp+7ssSEk=) 2: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: 2ILq0YdLX+uDk2zpnZWvB9sk0e06nVHIZcSy04DKJII=) 3: EFFA034837D111EC9337B812C4F9AE02.roa (hash: GRUpCE+gVb2TzuJuLp6/bFNygGmQWG7Yo+BJcqN3ABA=) 4: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: JmLkpvQJH0Uq9XtysKaBXjhAS8plkz/VizJFG4sBHBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C Validity Not Before: Mar 29 00:18:42 2025 GMT Not After : Apr 5 00:18:42 2025 GMT Subject: CN=67e73c62-0a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:44:51:73:bc:39:e1:b0:61:64:a9:17:41:76: 32:a2:ca:2f:0e:90:72:a1:24:fc:f8:cb:2c:49:7d: 02:34:15:fa:d7:64:06:fe:40:7e:f6:7d:69:d8:a0: 1e:c8:85:1d:6b:f5:8c:e9:f5:7b:e4:80:05:72:82: a1:f5:e9:55:18:b4:69:5c:81:a0:01:17:da:c1:db: 00:bf:d2:67:dc:a8:1f:3c:08:b9:4f:ab:bf:8e:de: a4:d6:69:f6:42:1d:83:03:d1:34:15:67:99:13:53: 5a:60:ef:10:21:90:77:21:71:f7:7e:4a:26:17:55: 33:bc:84:d5:58:2c:c6:c2:12:49:93:0f:f7:8e:84: 1b:fb:ce:17:41:3d:de:a5:8b:71:80:7e:95:dd:2f: 2f:30:03:c8:81:34:e3:23:fd:07:6c:72:59:c0:42: 58:63:e9:78:7f:b7:92:e6:cc:5c:7e:2c:18:1f:14: 2c:65:91:7f:f0:b0:c6:dd:14:c7:1b:b7:bc:c0:04: 23:ba:84:25:14:1f:35:a9:2e:86:2e:c4:34:d5:d0: 2a:4e:e9:6d:10:29:ab:10:66:8f:67:55:d5:f7:d4: af:67:44:38:b0:e3:b9:65:92:1c:1a:c3:1b:65:de: ed:44:3f:38:05:1a:d8:9f:18:f7:cd:a2:66:e0:10: d5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:BB:26:0A:D5:CE:D8:3C:36:03:6E:CA:9E:EE:70:92:58:B7:F2:78 X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:2e:4d:df:a5:80:0f:04:93:49:51:c9:34:63:8b:c3:36:54: 23:4b:d1:f4:24:74:ad:7c:17:5c:dd:98:63:d3:ec:16:c4:56: 8e:56:ad:d3:2e:56:82:38:bf:35:72:a7:4b:82:33:ec:a1:f7: f4:d7:9c:34:f5:2a:b9:ed:8f:28:3c:fd:96:90:44:fc:91:e0: fb:d4:3e:78:40:8c:10:c9:0c:2a:ce:76:32:61:00:a6:8f:20: 9a:f8:7c:8e:a1:95:de:0a:85:c0:97:39:ef:02:e9:6e:fb:99: 42:9f:7a:5b:a8:34:57:3c:72:d9:2b:90:5d:8c:2c:66:9d:6a: 04:54:ac:0d:4f:6d:df:1f:a5:94:4a:d3:13:5d:a7:a2:8b:a6: 4d:3a:2e:e9:34:8e:40:53:12:ac:37:e4:11:87:2b:2b:a5:6c: 2e:15:ac:37:e2:af:ff:f5:68:c9:01:86:ed:34:63:cc:f9:d5: e1:82:2f:a5:71:01:56:2e:8c:3f:bb:84:bd:02:b2:50:98:f6: fe:bf:cd:b3:35:a7:44:0d:75:ce:82:19:2f:17:cb:85:9b:06: d4:e5:83:87:02:65:b8:42:b8:8f:54:26:b8:3c:42:aa:0a:54: 22:fe:53:61:9b:2b:2e:7f:c5:c2:57:42:68:2b:59:08:be:a3: a8:1c:e5:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjUwMzI5MDAxODQyWhcNMjUwNDA1MDAxODQyWjAYMRYwFAYD VQQDEw02N2U3M2M2Mi0wYTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtURRc7w54bBhZKkXQXYyosovDpByoST8+MssSX0CNBX612QG/kB+9n1p2KAe yIUda/WM6fV75IAFcoKh9elVGLRpXIGgARfawdsAv9Jn3KgfPAi5T6u/jt6k1mn2 Qh2DA9E0FWeZE1NaYO8QIZB3IXH3fkomF1UzvITVWCzGwhJJkw/3joQb+84XQT3e pYtxgH6V3S8vMAPIgTTjI/0HbHJZwEJYY+l4f7eS5sxcfiwYHxQsZZF/8LDG3RTH G7e8wAQjuoQlFB81qS6GLsQ01dAqTultECmrEGaPZ1XV99SvZ0Q4sOO5ZZIcGsMb Zd7tRD84BRrYnxj3zaJm4BDVOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF27JgrV ztg8NgNuyp7ucJJYt/J4MB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhLk3fpYAPBJNJUck0Y4vDNlQjS9H0JHStfBdc3Zhj0+wWxFaOVq3T LlaCOL81cqdLgjPsoff015w09Sq57Y8oPP2WkET8keD71D54QIwQyQwqznYyYQCm jyCa+HyOoZXeCoXAlznvAulu+5lCn3pbqDRXPHLZK5BdjCxmnWoEVKwNT23fH6WU StMTXaeii6ZNOi7pNI5AUxKsN+QRhysrpWwuFaw34q//9WjJAYbtNGPM+dXhgi+l cQFWLow/u4S9ArJQmPb+v82zNadEDXXOghkvF8uFmwbU5YOHAmW4QriPVCa4PEKq ClQi/lNhmysuf8XCV0JoK1kIvqOoHOXF -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:54 2025 by rpki-client