$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: Xml1gmHxNOOjmflaA3QANzdbymFvbhMU+g/5qFnn4Og= Subject key identifier: 86:B8:15:FB:4E:BF:B7:9B:54:3B:50:BB:8E:BF:29:42:34:84:A5:EE Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0418 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0412 Signing time: Thu 13 Mar 2025 00:02:20 +0000 Manifest this update: Thu 13 Mar 2025 00:02:19 +0000 Manifest next update: Thu 20 Mar 2025 00:02:19 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: zWjAHCnsrfx3QRLiNmfvDY7lYBUNJ9/RwjActXNg3Wc=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1048 (0x418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2 Validity Not Before: Mar 13 00:02:19 2025 GMT Not After : Mar 20 00:02:19 2025 GMT Subject: CN=67d2208c-5aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:77:bd:6f:a3:01:bb:ab:e9:8a:7e:04:a8:19: 58:dd:50:89:9e:96:b2:fc:c4:a2:f6:13:25:91:0e: e0:be:be:6c:0f:ad:03:13:61:76:05:60:1f:2c:a5: 3f:95:c7:b9:b7:91:c0:5d:cb:85:1a:7b:17:9c:82: c6:a5:5d:82:66:71:7d:c4:1d:57:8e:89:c3:4f:52: ec:2f:51:c7:4a:14:06:7a:10:c2:75:d1:a3:7b:16: e9:fe:d6:98:97:5d:3b:6e:79:b1:a3:a7:88:b7:0e: 62:b3:7d:a8:fc:00:f7:ae:16:06:80:52:99:c8:b5: 41:86:f0:b3:00:33:fc:8d:c8:77:fd:31:d1:bc:6a: dd:98:e2:46:b3:57:33:2f:82:3c:95:2b:dc:86:e9: ea:dd:92:1c:ca:ac:ef:80:f7:80:62:7c:64:b1:aa: 7f:6c:8c:9f:60:9c:bd:13:d3:3a:5f:1c:98:7d:18: 71:26:d0:54:17:95:cd:d1:14:26:5c:8b:7f:ce:6b: 86:58:30:6c:63:cc:f1:81:4c:71:87:4e:61:36:87: 94:dd:38:4e:d8:ed:9d:20:27:a5:cf:80:f4:99:78: 92:85:7c:43:7d:78:02:06:bf:6c:2a:84:8f:8f:0f: 51:19:f9:a8:f2:52:51:52:4b:f1:55:e0:12:9d:05: 6b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B8:15:FB:4E:BF:B7:9B:54:3B:50:BB:8E:BF:29:42:34:84:A5:EE X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:a0:84:bd:e5:14:c2:ea:a4:f8:7f:bb:0e:61:94:83:68:ad: 88:19:fd:73:55:e6:a6:d0:46:03:69:6f:25:e0:9a:6e:58:84: fc:61:31:c3:a0:60:b1:1d:28:c7:60:a1:16:3f:39:62:d8:d9: 9d:e7:5f:10:32:9c:08:c7:eb:5a:9d:cb:60:94:f9:a8:75:db: 16:71:12:21:3e:08:6d:42:08:5e:44:53:75:9c:b5:2c:77:19: ff:08:64:85:1a:71:76:4f:a6:0d:0c:33:83:da:43:64:67:11: 8a:a9:f8:53:0e:30:75:83:aa:a6:80:ed:d2:5e:25:22:e4:12: 2c:6e:89:a1:c8:a3:1e:a9:e9:10:f5:be:a8:ab:49:db:bd:bd: c2:d3:7f:2b:99:46:9c:47:60:cf:f0:06:e6:fb:c0:82:ea:b1: 56:e3:f2:f4:f1:82:94:c5:2d:55:f6:1d:48:31:5f:73:b1:ac: 16:b5:2b:94:84:2f:25:cc:93:4e:1b:3e:cb:f9:ef:a5:83:f2: d9:30:58:e3:07:84:f1:a1:9d:7c:b1:33:08:dc:60:d4:95:a6: 5d:64:00:09:8b:7c:71:4f:33:58:92:ad:a4:e0:39:82:13:1b: 2b:33:3e:f8:26:d2:f7:d5:c0:96:6e:64:86:07:ad:6b:4b:81: 7d:54:c0:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwMzEzMDAwMjE5WhcNMjUwMzIwMDAwMjE5WjAYMRYwFAYD VQQDEw02N2QyMjA4Yy01YWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23e9b6MBu6vpin4EqBlY3VCJnpay/MSi9hMlkQ7gvr5sD60DE2F2BWAfLKU/ lce5t5HAXcuFGnsXnILGpV2CZnF9xB1XjonDT1LsL1HHShQGehDCddGjexbp/taY l107bnmxo6eItw5is32o/AD3rhYGgFKZyLVBhvCzADP8jch3/THRvGrdmOJGs1cz L4I8lSvchunq3ZIcyqzvgPeAYnxksap/bIyfYJy9E9M6XxyYfRhxJtBUF5XN0RQm XIt/zmuGWDBsY8zxgUxxh05hNoeU3ThO2O2dICelz4D0mXiShXxDfXgCBr9sKoSP jw9RGfmo8lJRUkvxVeASnQVrEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIa4FftO v7ebVDtQu46/KUI0hKXuMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVoIS95RTC6qT4f7sOYZSDaK2IGf1zVeam0EYDaW8l4JpuWIT8YTHD oGCxHSjHYKEWPzli2Nmd518QMpwIx+tanctglPmoddsWcRIhPghtQgheRFN1nLUs dxn/CGSFGnF2T6YNDDOD2kNkZxGKqfhTDjB1g6qmgO3SXiUi5BIsbomhyKMeqekQ 9b6oq0nbvb3C038rmUacR2DP8Abm+8CC6rFW4/L08YKUxS1V9h1IMV9zsawWtSuU hC8lzJNOGz7L+e+lg/LZMFjjB4TxoZ18sTMI3GDUlaZdZAAJi3xxTzNYkq2k4DmC ExsrMz74JtL31cCWbmSGB61rS4F9VMAi -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:42 2025 by rpki-client