$ rpki-client -vvf rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft File: PyDCnh1-UV3z49hapE51H4Fycxo.mft (raw, json) Hash identifier: p4EtLsG4ISwPKAaNAXCp8khihP3cGzpaRvZ7f0IX4Lk= Subject key identifier: C3:F9:1B:1E:41:24:FF:75:12:03:A0:7A:E9:8A:CD:7C:2F:0F:6F:46 Authority key identifier: 3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A Certificate issuer: /CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft Manifest number: 0121 Signing time: Fri 25 Apr 2025 03:49:59 +0000 Manifest this update: Fri 25 Apr 2025 03:49:58 +0000 Manifest next update: Fri 02 May 2025 03:49:58 +0000 Files and hashes: 1: PyDCnh1-UV3z49hapE51H4Fycxo.crl (hash: GH6BlhkvOUNoUm9V6rKxYiM/p4XkjUFJ0j+WQSuPJ2M=) 2: 503E43126E5E11EEB39D9E48C4F9AE02.roa (hash: L+aSJH2lWC1anAfV1QDeoFg2+6ljff+C6eVKVad/Lj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91210E0, serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Validity Not Before: Apr 25 03:49:58 2025 GMT Not After : May 2 03:49:58 2025 GMT Subject: CN=680b0667-429b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:44:41:47:c6:4b:90:18:88:c5:ea:ed:31:bd: 52:88:cf:bf:64:c5:54:61:3d:20:1d:6d:6c:ec:38: cf:e7:44:5a:5f:96:34:7a:9b:79:2e:1a:46:5b:18: f6:62:29:66:95:d3:60:88:8f:b1:dc:0c:bb:3c:be: bd:cc:16:69:ae:53:37:c2:95:7e:31:9a:74:26:f8: 76:0a:08:fa:5c:2f:c9:d3:14:cc:ac:2c:5d:66:80: 0f:b9:92:e7:cf:f4:72:27:ab:f5:e3:35:81:d1:55: ad:ca:f3:f1:3d:2f:51:87:39:87:96:a0:8f:14:a4: 59:8b:59:5f:94:be:96:ab:eb:ba:4a:a5:6f:3b:71: 38:42:c7:cc:c3:f7:3b:cd:5e:b2:2b:da:26:84:ea: 34:b7:10:3f:09:63:6d:4b:56:6a:91:39:bb:96:d0: 5d:ee:ec:61:3c:2b:a7:0c:e6:70:e1:31:6e:f2:ab: 5d:48:49:93:63:3d:ca:57:a2:16:0c:20:2a:7f:7b: 7e:ae:4d:25:e4:59:74:c3:5b:a4:ea:4c:ec:ee:2a: 9d:ab:59:84:c0:fa:9d:1c:68:03:f2:e4:d7:b0:49: d7:35:99:2d:57:2e:9d:71:19:18:ba:e1:3b:7f:d9: db:c9:d3:84:e7:66:cb:9c:63:9e:27:18:d1:44:be: 69:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F9:1B:1E:41:24:FF:75:12:03:A0:7A:E9:8A:CD:7C:2F:0F:6F:46 X509v3 Authority Key Identifier: keyid:3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:2a:3b:38:a5:81:ba:3e:1c:36:17:b5:f0:55:d5:aa:17:30: e9:75:16:5f:57:59:9b:0c:ce:a0:1f:3a:c6:9c:e4:21:ae:8d: e4:94:9f:a0:c0:98:c5:49:f9:fa:fd:c5:c7:a2:9f:26:91:d2: ed:9b:eb:1e:49:a9:9b:87:d4:8d:2e:7d:ab:99:2f:3f:ef:b2: fe:09:cf:10:5d:b1:ea:2d:5b:b6:52:29:e1:58:74:ce:f5:fc: e8:f8:ee:aa:49:93:40:76:c8:24:a9:e7:64:81:22:0e:ef:19: a7:28:36:e4:ab:3a:04:31:56:3d:be:91:28:ef:d1:56:70:56: 62:38:80:03:ca:b1:e4:65:a0:cf:db:5e:d9:35:5f:10:fd:6c: 98:ee:f8:c2:64:0d:dc:bc:69:30:61:34:0e:74:ba:c3:90:45: ba:ae:07:e0:25:7c:78:84:00:d2:f5:4b:f8:80:47:2c:e0:47: 13:e0:7c:d0:61:10:5e:6a:b0:6e:7f:b3:a4:13:96:cb:7e:2b: 3c:a7:d6:12:07:f1:dd:67:3a:a6:fa:f2:2e:41:66:79:90:a2: a5:bd:73:4c:61:df:fb:3c:72:76:51:5d:8f:71:11:32:50:d1: 03:e1:e6:61:70:4d:c5:63:9b:da:71:c3:e0:0c:f5:36:09:14: dc:d6:3f:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjEwRTAxMTAvBgNVBAUTKDNGMjBDMjlFMUQ3RTUxNURGM0UzRDg1QUE0NEU3NTFG ODE3MjczMUEwHhcNMjUwNDI1MDM0OTU4WhcNMjUwNTAyMDM0OTU4WjAYMRYwFAYD VQQDEw02ODBiMDY2Ny00MjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0RBR8ZLkBiIxertMb1SiM+/ZMVUYT0gHW1s7DjP50RaX5Y0ept5LhpGWxj2 YilmldNgiI+x3Ay7PL69zBZprlM3wpV+MZp0Jvh2Cgj6XC/J0xTMrCxdZoAPuZLn z/RyJ6v14zWB0VWtyvPxPS9RhzmHlqCPFKRZi1lflL6Wq+u6SqVvO3E4QsfMw/c7 zV6yK9omhOo0txA/CWNtS1ZqkTm7ltBd7uxhPCunDOZw4TFu8qtdSEmTYz3KV6IW DCAqf3t+rk0l5Fl0w1uk6kzs7iqdq1mEwPqdHGgD8uTXsEnXNZktVy6dcRkYuuE7 f9nbydOE52bLnGOeJxjRRL5pOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMP5Gx5B JP91EgOgeumKzXwvD29GMB8GA1UdIwQYMBaAFD8gwp4dflFd8+PYWqROdR+BcnMa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTBFMC8zRUIxMEM5QTZE OTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVWM3o0OWhhcEU1MUg0Rnlj eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5RENuaDEtVVYzejQ5aGFwRTUxSDRGeWN4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTBFMC8zRUIxMEM5QTZEOTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVW M3o0OWhhcEU1MUg0RnljeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkKjs4pYG6Phw2F7XwVdWqFzDpdRZfV1mbDM6gHzrGnOQhro3klJ+g wJjFSfn6/cXHop8mkdLtm+seSambh9SNLn2rmS8/77L+Cc8QXbHqLVu2UinhWHTO 9fzo+O6qSZNAdsgkqedkgSIO7xmnKDbkqzoEMVY9vpEo79FWcFZiOIADyrHkZaDP 217ZNV8Q/WyY7vjCZA3cvGkwYTQOdLrDkEW6rgfgJXx4hADS9Uv4gEcs4EcT4HzQ YRBearBuf7OkE5bLfis8p9YSB/HdZzqm+vIuQWZ5kKKlvXNMYd/7PHJ2UV2PcREy UNED4eZhcE3FY5vaccPgDPU2CRTc1j/Q -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:41 2025 by rpki-client