$ rpki-client -vvf rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft File: pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft (raw, json) Hash identifier: +Aa1+bTZN21fwEuycaQDwS9l9mb1Wx5tnMS8VJ2BoFc= Subject key identifier: 88:3A:0C:4A:BC:02:46:18:B0:BD:C0:AC:B3:FE:29:7A:2E:D3:63:95 Authority key identifier: A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC Certificate issuer: /CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft Manifest number: 0521 Signing time: Thu 24 Apr 2025 23:19:40 +0000 Manifest this update: Thu 24 Apr 2025 23:19:39 +0000 Manifest next update: Thu 01 May 2025 23:19:39 +0000 Files and hashes: 1: pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl (hash: gjGVzEkDfaVCQQ0PowZviz6/Q9xQN8oJHL0lZdP1hpA=) 2: 4CBECA5CF9C311EBBA064C70C4F9AE02.roa (hash: Xe7orzQUYbTeZbeATWUGaYq/rRlqzWXLpAilQy3hdVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DCFB, serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Validity Not Before: Apr 24 23:19:39 2025 GMT Not After : May 1 23:19:39 2025 GMT Subject: CN=680ac70c-b7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:63:ed:02:fd:48:45:54:ed:b3:43:71:c9:2b: dd:ef:7a:98:e7:48:84:54:99:06:b6:26:60:47:1b: 4c:83:c8:bd:c6:c8:6f:dd:04:b9:3e:1a:b2:60:ff: 34:80:a5:a3:79:17:bb:c5:9e:b1:b1:d5:2e:b1:4d: 14:98:ce:03:1a:18:39:de:ac:26:18:28:6b:10:ca: 6a:f8:8a:2b:e8:1d:b9:39:db:00:48:c2:d1:62:2d: ac:75:b0:80:d2:91:9a:e3:36:04:bd:49:48:49:6d: c1:8e:fd:08:eb:09:ba:3d:14:ff:33:44:9e:8e:72: 17:25:56:35:64:84:e2:b3:ae:56:93:e8:c1:ff:d9: 45:01:52:2c:75:a7:6e:f9:f9:77:2f:51:94:73:87: 9e:c4:62:50:7d:21:b0:c5:b7:37:5b:7f:50:3d:14: 90:16:ae:2a:19:f2:f2:76:a7:65:95:ca:a6:ed:51: c7:b8:33:67:3f:d5:3a:a4:bb:d5:fe:14:a9:5b:07: 3b:8f:ed:61:7b:67:00:76:a7:f1:dc:17:cc:6e:e8: e9:13:3e:cd:6d:ab:17:55:f1:35:d8:0f:dc:ce:ff: 6a:0d:3f:d0:77:99:63:81:12:81:31:00:c0:22:46: 77:63:33:86:d3:be:56:32:8a:fd:1f:28:15:30:d1: c4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3A:0C:4A:BC:02:46:18:B0:BD:C0:AC:B3:FE:29:7A:2E:D3:63:95 X509v3 Authority Key Identifier: keyid:A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:54:ea:c3:d6:4b:7a:61:b4:23:8e:88:d8:2f:70:90:09:5e: 86:28:20:9b:78:b1:52:e5:c7:2a:e8:db:8c:6a:a8:36:4e:28: ae:31:2d:1d:e3:f8:39:ef:7e:6c:ff:53:7f:e6:5b:20:5f:60: f1:f1:90:c3:3f:f4:a7:de:1a:7f:8a:e1:2e:e0:c5:1c:1c:11: 28:1b:85:6f:a6:a0:c9:7c:18:a8:73:4b:32:8c:17:b7:b0:26: 3a:d7:0e:b4:7e:54:ed:1f:2d:ce:af:8a:e2:ce:cb:ad:90:7b: 48:ff:fa:ff:ec:05:85:c3:17:a5:7f:32:d8:ee:da:84:71:41: 2c:0a:04:7a:10:d0:88:84:c4:bf:a4:8b:57:3c:fa:13:35:32: c9:bd:cf:d3:89:d4:e4:d8:58:67:71:f0:5b:bd:b4:16:2f:39: 40:4c:fc:94:22:ec:9c:8b:03:1a:6a:a8:7e:53:b3:5a:11:68: cf:bf:aa:5c:12:31:08:e4:3a:c9:32:dd:2e:c5:43:f2:fc:d2: bf:04:b4:92:8d:04:7c:36:ba:00:cd:90:d3:42:28:d1:5f:ae: 0d:06:13:82:23:6e:c2:58:5e:89:06:36:ab:c8:14:e0:33:d2: 5a:3b:14:b8:8a:75:a9:f1:a1:f3:a9:98:07:91:bd:7b:b2:b0: 76:3a:fd:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURDRkIxMTAvBgNVBAUTKEE1MTc0MURDMTlDQjkzOTA0MDI2NzZBMDNBMUZEQUVC RTBFN0YyQkMwHhcNMjUwNDI0MjMxOTM5WhcNMjUwNTAxMjMxOTM5WjAYMRYwFAYD VQQDEw02ODBhYzcwYy1iN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGPtAv1IRVTts0NxySvd73qY50iEVJkGtiZgRxtMg8i9xshv3QS5PhqyYP80 gKWjeRe7xZ6xsdUusU0UmM4DGhg53qwmGChrEMpq+Ior6B25OdsASMLRYi2sdbCA 0pGa4zYEvUlISW3Bjv0I6wm6PRT/M0SejnIXJVY1ZITis65Wk+jB/9lFAVIsdadu +fl3L1GUc4eexGJQfSGwxbc3W39QPRSQFq4qGfLydqdllcqm7VHHuDNnP9U6pLvV /hSpWwc7j+1he2cAdqfx3BfMbujpEz7NbasXVfE12A/czv9qDT/Qd5ljgRKBMQDA IkZ3YzOG075WMor9HygVMNHEwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg6DEq8 AkYYsL3ArLP+KXou02OVMB8GA1UdIwQYMBaAFKUXQdwZy5OQQCZ2oDof2uvg5/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRENGQi9BQUVBMERDMEY5 QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1QkFKbmFnT2hfYTYtRG44 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BSZEIzQm5MazVCQUpuYWdPaF9hNi1Ebjhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RENGQi9BQUVBMERDMEY5QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1 QkFKbmFnT2hfYTYtRG44cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/VOrD1kt6YbQjjojYL3CQCV6GKCCbeLFS5ccq6NuMaqg2TiiuMS0d 4/g5735s/1N/5lsgX2Dx8ZDDP/Sn3hp/iuEu4MUcHBEoG4VvpqDJfBioc0syjBe3 sCY61w60flTtHy3Or4rizsutkHtI//r/7AWFwxelfzLY7tqEcUEsCgR6ENCIhMS/ pItXPPoTNTLJvc/TidTk2FhncfBbvbQWLzlATPyUIuyciwMaaqh+U7NaEWjPv6pc EjEI5DrJMt0uxUPy/NK/BLSSjQR8NroAzZDTQijRX64NBhOCI27CWF6JBjaryBTg M9JaOxS4inWp8aHzqZgHkb17srB2Ov3F -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:57 2025 by rpki-client