$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: ogWXDFczRgxhAX8W7kkYOjKHtiRpzDhxTCs/g9+PtPU= Subject key identifier: E5:E3:6B:FD:7C:74:21:67:03:B8:9D:31:6B:74:13:6C:B4:60:8F:05 Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 0665 Signing time: Thu 24 Apr 2025 22:10:55 +0000 Manifest this update: Thu 24 Apr 2025 22:10:55 +0000 Manifest next update: Thu 01 May 2025 22:10:55 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: wt27+yklbTkshG3IlbvaExEer+/OLG6YUYt/tUneiks=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: DSJZavi/LmOaDs/V5ru83cEJvd41YvTKAbFr9jXt5Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Apr 24 22:10:55 2025 GMT Not After : May 1 22:10:55 2025 GMT Subject: CN=680ab6ef-ec0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:62:ab:f5:87:9b:81:5d:60:04:51:00:12:78: 12:49:9a:61:74:80:32:cc:b4:c0:9b:8f:9d:6e:55: 59:3d:0c:41:63:d6:75:4e:08:e5:c5:4d:60:77:04: 83:d6:bb:e9:a8:8b:bc:c9:cc:60:a4:26:aa:b3:4c: 96:e3:62:57:b6:18:27:15:6f:69:79:4f:4a:c1:a8: 0a:eb:76:33:4f:06:7f:80:5e:e5:89:ec:ab:b2:98: 57:05:c0:86:b8:9c:e1:d9:c8:cb:53:a0:bb:35:3a: 6f:30:ed:b2:35:ee:35:0d:63:8a:5c:ac:95:97:54: 4c:90:5c:43:01:74:86:cd:98:04:19:1a:f9:8d:83: c1:bd:be:3b:5b:1d:69:df:77:05:ee:34:27:c2:ea: 1a:ab:07:e0:c7:55:ef:01:06:a8:6b:86:9e:2d:11: 00:b1:fa:2f:cd:f0:ec:3a:7d:08:c3:67:1b:f1:9b: a3:75:df:e8:ac:b7:db:72:64:69:a7:44:e6:99:63: 32:5e:aa:c0:27:27:e5:e8:a5:09:9d:c6:0d:09:a5: 0c:ef:ce:4c:0c:ce:05:ef:1d:dd:69:5e:37:59:4f: 52:92:a3:b9:3f:b5:cd:6a:a0:76:b5:5d:48:25:ff: 36:93:4c:bb:43:41:be:7f:28:d1:d9:2b:59:2b:f6: 57:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E3:6B:FD:7C:74:21:67:03:B8:9D:31:6B:74:13:6C:B4:60:8F:05 X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:4e:cf:42:70:68:42:e7:7b:c6:24:98:02:01:d8:e6:9f:17: b1:b3:ea:e1:7a:83:f5:5c:a3:65:be:7a:5f:1d:02:75:fb:35: c0:11:86:87:fe:85:2b:02:c7:a2:bd:bc:13:87:21:6b:a6:3e: 42:0b:f4:92:dc:09:9d:33:24:17:44:cd:8b:86:df:2f:bf:0a: af:4d:be:ea:5d:78:d5:a9:64:0e:2b:84:f5:bb:a7:83:5d:20: 5f:ff:45:9a:4e:9f:99:48:13:93:6d:cd:7d:db:1a:b9:3a:67: dc:39:bd:bb:b5:4a:50:41:90:3d:ab:d8:d5:0a:9e:90:22:7d: 17:83:ac:5b:3f:32:02:0d:93:85:14:a8:51:e0:ed:a8:68:9a: 44:a8:81:dd:91:ce:26:f3:bd:14:6e:7f:88:e5:92:f9:65:92: 2e:cd:87:56:b1:75:80:eb:bc:59:cc:9b:e3:ae:b7:a7:c5:3c: 3c:26:72:2b:aa:bf:a2:c7:3d:a6:0c:d6:b1:58:9c:0a:73:dd: 03:e8:1f:aa:3b:dc:c3:a8:08:73:0e:f9:f5:30:19:81:86:30: 82:a9:d3:92:bc:9f:1c:8a:c9:9b:f9:f2:1f:5e:f4:bf:6b:3a: 9a:33:35:e1:70:04:1b:9f:98:70:da:92:e2:22:4d:dc:94:6d: 66:30:84:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUwNDI0MjIxMDU1WhcNMjUwNTAxMjIxMDU1WjAYMRYwFAYD VQQDEw02ODBhYjZlZi1lYzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WKr9YebgV1gBFEAEngSSZphdIAyzLTAm4+dblVZPQxBY9Z1TgjlxU1gdwSD 1rvpqIu8ycxgpCaqs0yW42JXthgnFW9peU9KwagK63YzTwZ/gF7lieyrsphXBcCG uJzh2cjLU6C7NTpvMO2yNe41DWOKXKyVl1RMkFxDAXSGzZgEGRr5jYPBvb47Wx1p 33cF7jQnwuoaqwfgx1XvAQaoa4aeLREAsfovzfDsOn0Iw2cb8Zujdd/orLfbcmRp p0TmmWMyXqrAJyfl6KUJncYNCaUM785MDM4F7x3daV43WU9SkqO5P7XNaqB2tV1I Jf82k0y7Q0G+fyjR2StZK/ZXBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXja/18 dCFnA7idMWt0E2y0YI8FMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBITs9CcGhC53vGJJgCAdjmnxexs+rheoP1XKNlvnpfHQJ1+zXAEYaH /oUrAseivbwThyFrpj5CC/SS3AmdMyQXRM2Lht8vvwqvTb7qXXjVqWQOK4T1u6eD XSBf/0WaTp+ZSBOTbc192xq5OmfcOb27tUpQQZA9q9jVCp6QIn0Xg6xbPzICDZOF FKhR4O2oaJpEqIHdkc4m870Ubn+I5ZL5ZZIuzYdWsXWA67xZzJvjrrenxTw8JnIr qr+ixz2mDNaxWJwKc90D6B+qO9zDqAhzDvn1MBmBhjCCqdOSvJ8cismb+fIfXvS/ azqaMzXhcAQbn5hw2pLiIk3clG1mMITY -----END CERTIFICATE-----Generated at Sat Apr 26 17:10:53 2025 by rpki-client