$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft File: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft (raw, json) Hash identifier: gJe5g32kH+ner1dBDyJlzmwQ6Hg/YbvHLiZqcI1GXRs= Subject key identifier: 6D:85:76:B0:06:A9:04:FF:A3:AA:1C:EE:80:8B:D5:15:AB:DA:22:D8 Authority key identifier: 3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B Certificate issuer: /CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft Manifest number: 8A Signing time: Thu 13 Mar 2025 04:34:20 +0000 Manifest this update: Thu 13 Mar 2025 04:34:19 +0000 Manifest next update: Thu 20 Mar 2025 04:34:19 +0000 Files and hashes: 1: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl (hash: YlwLVIqmSVUb+Vz+XGhgcTMNFsUrhAqRAR/3jrCqg10=) 2: 7D7BEE5430B111EF94A59A7AC4F9AE02.roa (hash: 81k+yaGAd+6BZ2WpNR6UcAlDDXedgJXlylTiPkMD+do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B4A Validity Not Before: Mar 13 04:34:19 2025 GMT Not After : Mar 20 04:34:19 2025 GMT Subject: CN=67d2604b-0ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a9:c2:3a:e5:05:14:b8:3f:08:27:94:76:db: 85:fc:00:2d:81:00:c4:a9:46:14:25:e5:59:5c:f0: 0a:af:09:43:38:49:23:a0:4c:c2:5b:06:39:22:1f: 6e:84:8a:32:1c:f1:0f:95:8a:48:63:02:b0:8f:57: a6:70:3d:e2:ff:24:b4:52:d8:de:70:fc:8d:5b:f2: 94:6d:81:33:e2:54:db:d0:99:c2:1d:97:37:b7:29: 45:c8:bc:f9:80:ac:dc:72:60:aa:2a:55:f0:ed:ed: 61:ad:7e:8a:f3:32:86:42:40:b9:ce:c0:55:2d:09: c9:f4:8e:09:1d:4d:28:6e:bf:ac:0c:ef:94:76:5e: 01:8c:63:68:05:33:4a:fb:ef:49:e5:4b:39:4a:6d: ab:ee:69:4e:b4:95:e1:66:e1:42:43:de:08:cb:99: d1:e4:72:80:8e:0b:4e:c2:73:fe:3d:f4:9c:3a:40: 41:9c:0c:32:d5:d9:5e:f6:dd:19:6e:ea:9c:6e:51: 0d:6f:28:f5:0a:42:17:db:18:64:33:84:ac:b8:44: 61:b8:17:07:0a:b6:d5:ce:b6:d0:f3:25:08:84:be: bb:d3:bd:82:94:b9:ff:97:c4:d0:94:20:8d:d6:f8: b1:10:5d:35:64:51:e0:62:dd:72:c4:4a:76:f5:af: c3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:85:76:B0:06:A9:04:FF:A3:AA:1C:EE:80:8B:D5:15:AB:DA:22:D8 X509v3 Authority Key Identifier: keyid:3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:e3:f6:eb:71:e7:83:4e:f0:3b:ba:ad:09:2f:67:85:e1:36: fa:e8:56:6d:ee:d4:0f:36:b4:e2:17:8c:ac:a3:03:f4:4a:68: e4:22:fe:23:48:a6:41:98:ff:cd:5a:8c:01:5d:35:ef:64:59: 50:0e:2c:2a:41:1f:67:3d:2f:7a:0d:e9:19:71:48:4e:12:15: 79:1c:ec:31:20:09:e9:b7:ac:00:40:4e:41:3a:34:64:a0:ee: f1:0f:71:a7:7b:8b:ff:15:c2:8c:b4:bf:04:b7:82:b2:7c:4b: ca:cb:f4:5e:68:6d:9b:3f:b7:2c:0d:d0:8d:92:4b:ae:47:de: d4:85:e9:5d:57:0d:16:c1:74:be:07:1e:bb:37:30:1e:67:3f: aa:43:70:6b:a1:e9:69:4d:52:59:4c:88:34:74:97:eb:aa:05: 4f:43:81:5d:7a:35:de:db:13:78:32:01:3b:b6:22:70:48:86: 16:0d:f8:db:8c:eb:01:77:0c:e8:66:c8:93:90:a5:03:40:4c: a3:13:45:fa:78:2a:18:84:05:b9:b6:28:4a:77:90:44:e8:08: d0:b5:c9:c8:7c:70:09:e4:83:a2:76:f0:73:f4:5f:b4:fb:e2: f1:0e:bd:6c:27:0b:a3:f6:b5:9e:78:81:80:f5:ac:9b:b5:1f: ba:14:5d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCNEExMTAvBgNVBAUTKDNDMzU4N0RDM0FGMkU5MzdFQ0RCNjVBODM4OTI3NTlB NDFDODg1MEIwHhcNMjUwMzEzMDQzNDE5WhcNMjUwMzIwMDQzNDE5WjAYMRYwFAYD VQQDEw02N2QyNjA0Yi0wZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqnCOuUFFLg/CCeUdtuF/AAtgQDEqUYUJeVZXPAKrwlDOEkjoEzCWwY5Ih9u hIoyHPEPlYpIYwKwj1emcD3i/yS0UtjecPyNW/KUbYEz4lTb0JnCHZc3tylFyLz5 gKzccmCqKlXw7e1hrX6K8zKGQkC5zsBVLQnJ9I4JHU0obr+sDO+Udl4BjGNoBTNK ++9J5Us5Sm2r7mlOtJXhZuFCQ94Iy5nR5HKAjgtOwnP+PfScOkBBnAwy1dle9t0Z buqcblENbyj1CkIX2xhkM4SsuERhuBcHCrbVzrbQ8yUIhL67072ClLn/l8TQlCCN 1vixEF01ZFHgYt1yxEp29a/DSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2FdrAG qQT/o6oc7oCL1RWr2iLYMB8GA1UdIwQYMBaAFDw1h9w68uk37NtlqDiSdZpByIUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEI0QS9FMjY0OTlBMjJG ODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZUZnMyMldvT0pKMW1rSElo UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BEV0gzRHJ5NlRmczIyV29PSkoxbWtISWhRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEI0QS9FMjY0OTlBMjJGODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZU ZnMyMldvT0pKMW1rSEloUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj4/brceeDTvA7uq0JL2eF4Tb66FZt7tQPNrTiF4ysowP0SmjkIv4j SKZBmP/NWowBXTXvZFlQDiwqQR9nPS96DekZcUhOEhV5HOwxIAnpt6wAQE5BOjRk oO7xD3Gne4v/FcKMtL8Et4KyfEvKy/ReaG2bP7csDdCNkkuuR97UheldVw0WwXS+ Bx67NzAeZz+qQ3BroelpTVJZTIg0dJfrqgVPQ4FdejXe2xN4MgE7tiJwSIYWDfjb jOsBdwzoZsiTkKUDQEyjE0X6eCoYhAW5tihKd5BE6AjQtcnIfHAJ5IOidvBz9F+0 ++LxDr1sJwuj9rWeeIGA9aybtR+6FF2M -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:57 2025 by rpki-client