$ rpki-client -vvf rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.mft File: b_pdsVnUCjoXLbx09cMrVVF5ea8.mft (raw, json) Hash identifier: ttOmDQcEsD5hX8mMzTL34t8G3BFJbQyTDeOQEr0OVwI= Subject key identifier: 54:B0:E7:94:27:98:FC:86:16:03:2D:D1:1F:3F:C9:EE:2A:71:81:15 Authority key identifier: 6F:FA:5D:B1:59:D4:0A:3A:17:2D:BC:74:F5:C3:2B:55:51:79:79:AF Certificate issuer: /CN=A913C627/serialNumber=6FFA5DB159D40A3A172DBC74F5C32B55517979AF Certificate serial: 085F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.mft Manifest number: 0842 Signing time: Thu 24 Apr 2025 20:41:19 +0000 Manifest this update: Thu 24 Apr 2025 20:41:19 +0000 Manifest next update: Thu 01 May 2025 20:41:19 +0000 Files and hashes: 1: b_pdsVnUCjoXLbx09cMrVVF5ea8.crl (hash: MnTkLhOX3c/9jpn49v1UVjZcB2tb8M/k8jhrLZOpyvU=) 2: FFB3EF94F53C11EEA5B4623BC4F9AE02.roa (hash: qCV1CGEKKAAFyjh2aY/pv/O3Ul0oy0qB9pbyOTWaQu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.crl rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2143 (0x85f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C627, serialNumber=6FFA5DB159D40A3A172DBC74F5C32B55517979AF Validity Not Before: Apr 24 20:41:19 2025 GMT Not After : May 1 20:41:19 2025 GMT Subject: CN=680aa1ef-2141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ec:31:fe:e5:db:b7:02:a4:df:fa:9f:b8:e9: 67:79:cf:cf:4c:b2:59:1c:0e:33:76:a4:9f:df:4d: 06:0f:7d:32:52:39:6a:f3:a7:f0:23:50:39:94:82: fc:68:dc:3e:c4:b8:b0:07:6e:9b:b3:56:2d:0f:7f: 66:c9:49:e6:73:0e:65:ad:d3:37:61:cc:05:2b:43: 37:65:73:c5:82:94:43:e7:56:68:22:b6:8e:e5:c9: 90:1f:c8:ff:8c:2f:7b:36:6d:13:95:bf:fd:54:3e: f4:f2:0e:fb:51:08:1b:8b:93:09:94:7a:91:85:9b: 86:60:59:28:80:b4:e5:73:dc:34:4a:5e:68:76:eb: bc:4f:c0:b7:2f:74:e5:e7:d1:7f:4d:4e:5a:0f:5c: 9c:bc:c5:1c:50:5b:77:2c:60:ed:bd:4e:44:db:bb: 2a:cc:ae:6a:33:c2:5a:5a:1a:30:3e:98:e8:ff:33: 5c:f9:72:9d:77:67:4d:57:b6:9a:55:00:65:ab:78: 2e:ae:cb:0a:04:36:47:50:66:7b:6e:a8:b1:7b:f3: ee:b7:61:30:43:9a:03:39:b2:55:a6:84:c7:24:0c: ed:7d:9f:a7:ea:bd:95:e3:6b:6b:32:9f:49:ac:9d: 29:57:a8:43:87:31:e2:0a:48:8f:6d:79:f6:97:93: f4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B0:E7:94:27:98:FC:86:16:03:2D:D1:1F:3F:C9:EE:2A:71:81:15 X509v3 Authority Key Identifier: keyid:6F:FA:5D:B1:59:D4:0A:3A:17:2D:BC:74:F5:C3:2B:55:51:79:79:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:34:a9:02:c8:a8:70:bb:c7:d6:53:7c:3a:a5:ff:35:c7:5a: fd:fe:4a:9a:59:62:cc:ca:25:61:84:93:a3:ae:04:12:84:93: 06:46:80:a9:07:09:b2:41:d3:74:b7:f1:82:4e:2b:90:d3:e1: 9a:36:e9:40:49:35:5f:55:4d:10:e2:19:d7:e3:d3:dd:1c:63: 8d:15:81:3e:7e:96:f5:8c:30:b8:df:42:09:d5:eb:94:b7:b3: 3a:c7:40:db:39:32:1f:a2:ed:48:0a:b9:05:86:75:4f:81:65: cd:92:21:89:67:93:b0:3f:de:95:6b:b7:8e:7c:f1:a8:bb:0e: 9f:2a:bb:43:fb:17:11:3d:a4:e4:46:dd:df:0e:6a:c1:fe:e5: c8:75:5e:d6:d4:2b:b9:12:55:fe:7a:9f:6f:be:1b:e3:b9:8e: 2a:35:3e:a5:f2:ca:ab:22:c4:2f:62:7f:be:8f:95:fa:c4:75: 1f:96:83:e1:89:3f:d3:23:fe:ff:91:99:3b:cd:ad:ec:f5:19: cc:37:21:b0:0e:94:35:81:c0:d3:0e:06:36:e8:ed:ac:5f:77: b3:d0:c5:61:94:dd:d2:fb:3d:64:00:f6:b3:fd:a5:cb:12:3a: 45:57:06:6d:0d:15:93:bf:35:dc:57:ac:1d:37:f1:5b:ac:62: d2:a5:27:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M2MjcxMTAvBgNVBAUTKDZGRkE1REIxNTlENDBBM0ExNzJEQkM3NEY1QzMyQjU1 NTE3OTc5QUYwHhcNMjUwNDI0MjA0MTE5WhcNMjUwNTAxMjA0MTE5WjAYMRYwFAYD VQQDEw02ODBhYTFlZi0yMTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqewx/uXbtwKk3/qfuOlnec/PTLJZHA4zdqSf300GD30yUjlq86fwI1A5lIL8 aNw+xLiwB26bs1YtD39myUnmcw5lrdM3YcwFK0M3ZXPFgpRD51ZoIraO5cmQH8j/ jC97Nm0Tlb/9VD708g77UQgbi5MJlHqRhZuGYFkogLTlc9w0Sl5oduu8T8C3L3Tl 59F/TU5aD1ycvMUcUFt3LGDtvU5E27sqzK5qM8JaWhowPpjo/zNc+XKdd2dNV7aa VQBlq3gurssKBDZHUGZ7bqixe/Put2EwQ5oDObJVpoTHJAztfZ+n6r2V42trMp9J rJ0pV6hDhzHiCkiPbXn2l5P0fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSw55Qn mPyGFgMt0R8/ye4qcYEVMB8GA1UdIwQYMBaAFG/6XbFZ1Ao6Fy28dPXDK1VReXmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzYyNy9DMjY1QzFBNEQw N0QxMUVBODYwMDk4NkRDNEY5QUUwMi9iX3Bkc1ZuVUNqb1hMYngwOWNNclZWRjVl YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfcGRzVm5VQ2pvWExieDA5Y01yVlZGNWVhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzYyNy9DMjY1QzFBNEQwN0QxMUVBODYwMDk4NkRDNEY5QUUwMi9iX3Bkc1ZuVUNq b1hMYngwOWNNclZWRjVlYTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPNKkCyKhwu8fWU3w6pf81x1r9/kqaWWLMyiVhhJOjrgQShJMGRoCp BwmyQdN0t/GCTiuQ0+GaNulASTVfVU0Q4hnX49PdHGONFYE+fpb1jDC430IJ1euU t7M6x0DbOTIfou1ICrkFhnVPgWXNkiGJZ5OwP96Va7eOfPGouw6fKrtD+xcRPaTk Rt3fDmrB/uXIdV7W1Cu5ElX+ep9vvhvjuY4qNT6l8sqrIsQvYn++j5X6xHUfloPh iT/TI/7/kZk7za3s9RnMNyGwDpQ1gcDTDgY26O2sX3ez0MVhlN3S+z1kAPaz/aXL EjpFVwZtDRWTvzXcV6wdN/FbrGLSpSdl -----END CERTIFICATE-----Generated at Sat Apr 26 17:07:06 2025 by rpki-client