$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: 3sGPa4xrlQYKX+DoWyXZkgOWxGEbGwbnL724NaA2YYw= Subject key identifier: 70:B0:B7:D1:04:1A:B2:59:2D:F9:84:45:AB:C7:E8:EE:07:62:15:93 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 0168 Signing time: Thu 24 Apr 2025 19:03:53 +0000 Manifest this update: Thu 24 Apr 2025 19:03:52 +0000 Manifest next update: Thu 01 May 2025 19:03:52 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: r7xF/9Y7IaJKGo/8DQhaxSAl+zkUH5ijHYcjZwzDfFw=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: jx7hnJAbOWXi06R8EaUqGVH9j+g4HwGKu5sUmUZqpVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Apr 24 19:03:52 2025 GMT Not After : May 1 19:03:52 2025 GMT Subject: CN=680a8b18-43b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1e:2c:80:3e:dc:c5:36:90:1e:44:eb:0c:1f: 2e:ba:1e:58:21:b2:6b:78:3a:9b:46:d6:b1:7a:34: 12:c4:e7:e1:12:70:b6:20:b5:d6:7b:34:f3:d4:8d: 67:4f:1a:a2:e4:90:8f:ad:05:a2:f3:97:c1:dc:e7: 2e:e1:e6:ae:02:62:f2:86:11:00:3b:65:81:d9:c9: 1a:e9:27:e0:e1:3c:6b:6f:d0:01:29:5b:4a:99:16: 01:6d:7c:e9:4d:22:c2:4b:1c:f1:8d:02:6c:36:90: 84:47:ce:4a:e9:b8:ff:7b:6d:e4:7b:a0:93:82:28: c4:d3:fe:19:e7:36:28:7e:fb:4b:9e:61:63:ee:42: 79:f2:be:ed:6f:88:cc:44:bf:0f:56:52:59:ee:c2: 00:b8:36:5a:0e:6a:70:f2:70:bf:07:b2:2e:95:7b: bc:e5:79:a0:fe:e3:56:ac:da:ab:42:82:a1:67:de: 7b:d4:0a:f8:bb:d9:61:2c:fb:1b:45:b3:13:65:48: 07:90:98:46:8b:51:5f:fa:0d:5e:03:45:3b:25:57: ca:96:3f:b3:0a:32:71:a6:e0:83:bc:6b:18:9d:a3: 43:f4:28:4a:ff:2f:94:30:fe:70:83:86:25:fe:b6: 36:c5:ad:d9:0e:06:46:f8:31:aa:8c:e1:76:a2:5e: d4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B0:B7:D1:04:1A:B2:59:2D:F9:84:45:AB:C7:E8:EE:07:62:15:93 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:06:c1:4b:b8:cf:20:c9:32:f1:6b:31:02:4c:17:b1:1f:ba: 82:31:47:a9:26:d1:6f:9e:d8:7e:d3:1d:87:7d:9b:61:3e:df: a9:5d:d6:f8:14:45:07:b4:ad:1e:42:79:02:05:d8:3f:cc:42: 9e:fb:e4:28:82:00:05:de:17:da:a7:5d:56:3b:26:f3:ce:07: 59:c1:1c:42:92:8f:9f:93:23:65:09:8d:94:bc:ba:f0:82:a8: e4:af:30:8d:b3:db:d4:79:21:19:19:84:43:da:ed:9e:a6:8b: 2b:28:4b:34:79:48:1a:46:bf:7e:dd:90:05:eb:e9:bd:07:f8: 7a:16:ef:a1:9b:9e:dc:0b:ca:f3:6a:23:a3:33:22:9c:7c:14: c6:b4:13:59:6d:e3:f1:62:ed:08:a1:91:31:d8:d3:70:5a:5b: 0e:18:ca:88:68:4a:7a:7b:d2:37:5d:88:22:44:eb:81:0a:4d: 8a:18:a7:eb:17:5c:2d:fd:8a:77:a8:38:44:a4:ab:fa:5c:df: 93:31:3a:5d:aa:de:0f:a4:ae:12:d1:46:a6:bb:46:74:ca:1b: 2e:bb:1f:d7:ad:96:9f:a9:70:3c:c5:a1:42:b1:d9:91:68:12: f9:14:b7:9d:f1:77:d2:47:1e:b9:fa:22:e2:69:07:7f:c1:4b: a3:b8:59:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUwNDI0MTkwMzUyWhcNMjUwNTAxMTkwMzUyWjAYMRYwFAYD VQQDEw02ODBhOGIxOC00M2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2B4sgD7cxTaQHkTrDB8uuh5YIbJreDqbRtaxejQSxOfhEnC2ILXWezTz1I1n Txqi5JCPrQWi85fB3Ocu4eauAmLyhhEAO2WB2cka6Sfg4Txrb9ABKVtKmRYBbXzp TSLCSxzxjQJsNpCER85K6bj/e23ke6CTgijE0/4Z5zYofvtLnmFj7kJ58r7tb4jM RL8PVlJZ7sIAuDZaDmpw8nC/B7IulXu85Xmg/uNWrNqrQoKhZ9571Ar4u9lhLPsb RbMTZUgHkJhGi1Ff+g1eA0U7JVfKlj+zCjJxpuCDvGsYnaND9ChK/y+UMP5wg4Yl /rY2xa3ZDgZG+DGqjOF2ol7UqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCwt9EE GrJZLfmERavH6O4HYhWTMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkBsFLuM8gyTLxazECTBexH7qCMUepJtFvnth+0x2HfZthPt+pXdb4 FEUHtK0eQnkCBdg/zEKe++QoggAF3hfap11WOybzzgdZwRxCko+fkyNlCY2UvLrw gqjkrzCNs9vUeSEZGYRD2u2eposrKEs0eUgaRr9+3ZAF6+m9B/h6Fu+hm57cC8rz aiOjMyKcfBTGtBNZbePxYu0IoZEx2NNwWlsOGMqIaEp6e9I3XYgiROuBCk2KGKfr F1wt/Yp3qDhEpKv6XN+TMTpdqt4PpK4S0Uamu0Z0yhsuux/XrZafqXA8xaFCsdmR aBL5FLed8XfSRx65+iLiaQd/wUujuFlS -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:55 2025 by rpki-client