$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft File: pcdj6Klfa5qyQRNgHagVOhWRJu4.mft (raw, json) Hash identifier: NiSd86RUofue8T2nMFCCpc3Z5IpNfKMG0GXli6FJmZ8= Subject key identifier: 75:03:6F:41:4D:E8:38:BE:9D:33:58:3B:66:AE:9E:80:DD:CC:36:6B Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Certificate serial: 0657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft Manifest number: 0646 Signing time: Thu 24 Apr 2025 22:25:48 +0000 Manifest this update: Thu 24 Apr 2025 22:25:47 +0000 Manifest next update: Thu 01 May 2025 22:25:47 +0000 Files and hashes: 1: pcdj6Klfa5qyQRNgHagVOhWRJu4.crl (hash: LyiQDCraXvHwFGlTPrRi4rQNXe/ynAR6gFhl9ELQ0ok=) 2: 45FE96F6A5F611EFA16E4B2FC4F9AE02.roa (hash: QKxHtK6gPEt6tq1AwAFxqNPlRptJP4WLysqBYZDRn14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53D, serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Validity Not Before: Apr 24 22:25:47 2025 GMT Not After : May 1 22:25:47 2025 GMT Subject: CN=680aba6b-decc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4c:98:48:be:96:e3:44:02:15:d7:93:51:ba: 97:f6:2e:a5:28:0f:fc:27:fd:e0:b8:28:89:eb:11: 56:ff:94:30:0c:d4:79:49:27:81:7a:cf:c9:1a:5d: f8:d5:f7:63:56:ca:ca:e2:d5:38:4a:72:5f:c8:81: 17:70:13:20:57:58:82:21:d4:b2:c7:4b:a7:cf:1e: 1c:db:56:d9:93:0e:0f:85:a8:c0:47:6e:da:1b:68: 68:9c:97:18:17:1a:4b:9b:1a:76:34:62:4f:91:b3: 8a:7d:57:bb:14:5b:e1:d8:87:b8:63:12:2c:d6:74: 4f:56:a7:5b:84:76:26:8e:6e:af:9e:ce:48:db:14: bf:01:e7:a0:5d:56:3c:44:3c:0d:cf:bc:54:b9:bc: 53:ee:bb:d3:9a:5e:6d:54:b1:5c:17:54:bc:fa:1f: 4b:7d:25:e1:0a:80:b8:f4:09:72:27:1a:64:bb:2b: ce:e8:3b:42:fd:b7:92:69:d8:50:c8:b3:a5:5b:d3: 0e:0a:2d:7c:aa:ab:7c:87:9f:76:32:27:be:c6:5f: 67:e5:56:c7:0d:5b:2d:69:6b:83:be:8a:a8:c8:da: 06:3c:e9:e8:96:09:34:dc:f4:25:e4:0a:a7:7c:48: f8:14:20:e1:13:b5:53:c3:bf:5d:89:4b:a1:78:68: bc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:03:6F:41:4D:E8:38:BE:9D:33:58:3B:66:AE:9E:80:DD:CC:36:6B X509v3 Authority Key Identifier: keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:82:f0:44:71:3d:0b:b0:dc:9c:e0:29:7b:38:30:d6:a9:b1: 48:fb:16:ff:f4:4b:e3:72:df:8d:99:fd:14:05:75:45:ab:81: af:c0:37:89:5a:ea:17:2c:2b:80:e0:3b:0e:fe:e7:0d:e5:70: f6:4b:c6:3f:00:e0:bf:7e:a4:73:56:91:0e:28:cb:44:34:93: 83:cb:1b:98:e6:d7:d8:bf:23:cf:42:ef:86:41:27:51:1f:6c: 4a:bc:c0:61:9d:1a:7f:5f:99:a0:bc:d9:32:d9:7d:2d:e6:0c: 7b:07:71:96:01:ff:71:c2:b7:76:42:ed:70:a8:48:20:c1:f2: b9:53:6b:e1:7e:0f:58:81:b4:f8:f3:d3:4d:2f:e4:b2:40:84: 63:13:f1:ba:15:d9:d2:23:5a:fe:94:27:55:36:eb:42:ae:d1: f9:6b:3b:71:ea:5a:12:e6:fd:91:55:98:7c:a1:e6:68:54:1f: a5:fe:d3:20:79:d7:9d:f9:e5:c3:cc:69:59:6f:c3:33:4e:bb: 70:8a:c4:7f:f4:49:e2:50:cc:9a:e4:a5:2d:56:a0:42:5b:66: e1:42:53:b6:3d:fb:2a:9f:42:4c:5a:19:09:09:d8:87:23:be: 61:ff:bd:cd:61:51:1d:df:7c:29:f5:85:58:7f:b4:01:b6:87: 47:e5:6f:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0QxMTAvBgNVBAUTKEE1Qzc2M0U4QTk1RjZCOUFCMjQxMTM2MDFEQTgxNTNB MTU5MTI2RUUwHhcNMjUwNDI0MjIyNTQ3WhcNMjUwNTAxMjIyNTQ3WjAYMRYwFAYD VQQDEw02ODBhYmE2Yi1kZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUyYSL6W40QCFdeTUbqX9i6lKA/8J/3guCiJ6xFW/5QwDNR5SSeBes/JGl34 1fdjVsrK4tU4SnJfyIEXcBMgV1iCIdSyx0unzx4c21bZkw4PhajAR27aG2honJcY FxpLmxp2NGJPkbOKfVe7FFvh2Ie4YxIs1nRPVqdbhHYmjm6vns5I2xS/AeegXVY8 RDwNz7xUubxT7rvTml5tVLFcF1S8+h9LfSXhCoC49AlyJxpkuyvO6DtC/beSadhQ yLOlW9MOCi18qqt8h592Mie+xl9n5VbHDVstaWuDvoqoyNoGPOnolgk03PQl5Aqn fEj4FCDhE7VTw79diUuheGi8nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUDb0FN 6Di+nTNYO2aunoDdzDZrMB8GA1UdIwQYMBaAFKXHY+ipX2uaskETYB2oFToVkSbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzRC84NEI1OEY2NjhD RkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1cXlRUk5nSGFnVk9oV1JK dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjZGo2S2xmYTVxeVFSTmdIYWdWT2hXUkp1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzUzRC84NEI1OEY2NjhDRkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1 cXlRUk5nSGFnVk9oV1JKdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7gvBEcT0LsNyc4Cl7ODDWqbFI+xb/9Evjct+Nmf0UBXVFq4GvwDeJ WuoXLCuA4DsO/ucN5XD2S8Y/AOC/fqRzVpEOKMtENJODyxuY5tfYvyPPQu+GQSdR H2xKvMBhnRp/X5mgvNky2X0t5gx7B3GWAf9xwrd2Qu1wqEggwfK5U2vhfg9YgbT4 89NNL+SyQIRjE/G6FdnSI1r+lCdVNutCrtH5aztx6loS5v2RVZh8oeZoVB+l/tMg eded+eXDzGlZb8MzTrtwisR/9EniUMya5KUtVqBCW2bhQlO2Pfsqn0JMWhkJCdiH I75h/73NYVEd33wp9YVYf7QBtodH5W+h -----END CERTIFICATE-----Generated at Sat Apr 26 03:56:42 2025 by rpki-client