$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft File: pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json) Hash identifier: YHsvGe+ERM4aMglEB11t+3gbMdeO3tPLNHPtyIKPZ7o= Subject key identifier: 29:80:38:F4:84:88:D9:D8:A1:AE:1A:D5:11:AA:EF:CF:7E:4C:7E:ED Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D Certificate issuer: /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Certificate serial: 0556 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft Manifest number: 0552 Signing time: Thu 24 Apr 2025 23:12:08 +0000 Manifest this update: Thu 24 Apr 2025 23:12:08 +0000 Manifest next update: Thu 01 May 2025 23:12:08 +0000 Files and hashes: 1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: 5al9V4AzzWcjdcVrHZ02fZdE8p9W8R/BDCWqOaem9Js=) 2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: mvt83k4r04Uj589p/6oDGv6atTVgppc7yoDpOvB9Gm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE3D, serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Validity Not Before: Apr 24 23:12:08 2025 GMT Not After : May 1 23:12:08 2025 GMT Subject: CN=680ac548-2629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:08:4e:5e:e7:ed:d6:ef:0d:e9:c3:fa:ac:fe: 9a:77:2b:32:22:75:1e:ea:f2:c4:80:60:7c:7c:b2: 3a:5f:d4:1e:8f:6e:0f:1c:b1:c7:01:46:58:d9:63: 78:8d:a9:a0:fc:52:99:5d:fa:1e:96:f6:98:d1:d7: 8f:38:97:0d:26:6f:19:68:13:e5:73:46:cb:de:88: 68:24:82:82:a1:98:04:f5:8b:0d:92:47:fb:ff:ec: a4:0a:c7:f1:a5:94:c1:0f:e7:18:e9:10:db:24:06: 6f:1c:49:90:ea:b7:f0:eb:da:48:db:da:72:74:24: 50:4e:f7:35:12:c3:67:53:c1:f8:51:d8:a4:45:e5: 13:ef:5f:c5:bc:ec:83:84:a5:64:91:c0:54:6e:55: 7e:fc:3c:59:bb:c8:20:b4:a3:a3:ec:fc:11:fc:60: 45:2c:4f:79:8c:0b:d6:78:d5:39:0a:29:37:50:66: 8d:26:ba:eb:74:9e:31:39:b3:3c:f0:83:60:20:5b: 5d:f1:5f:7c:ff:42:95:ce:80:92:2e:60:6a:78:be: 24:38:bf:a5:54:5c:ac:8c:cd:6b:1c:f1:f1:7d:a3: 68:f5:b7:67:0c:45:81:00:47:50:aa:dc:9b:29:bf: 25:ff:9a:4b:44:1b:a4:1c:2f:49:75:ff:78:dd:d0: 74:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:80:38:F4:84:88:D9:D8:A1:AE:1A:D5:11:AA:EF:CF:7E:4C:7E:ED X509v3 Authority Key Identifier: keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:3b:fc:ee:6f:43:cc:d3:cc:d6:8e:66:39:5f:0f:33:32:ed: 92:97:67:2f:fd:8c:c0:9e:f0:22:20:c8:40:d3:72:7a:95:3e: 38:4b:49:2d:d7:50:71:3f:68:99:d8:05:80:51:9b:17:f0:34: e7:79:1d:83:b6:95:d3:77:0f:2f:ef:41:45:35:0b:a9:d7:90: 13:86:b7:38:80:29:bf:ad:94:58:e4:cc:a9:03:9c:4b:97:88: c9:b0:d3:10:60:f4:07:80:53:1d:08:4a:c7:7d:9e:b6:05:06: bb:85:28:6e:57:57:7f:1f:45:d3:7b:6e:39:16:c0:da:04:7b: 6d:9d:5e:0e:7d:4c:5d:64:46:a0:2c:03:6b:a6:16:9e:d5:a8: 9d:c3:95:2a:be:31:64:49:c3:6b:42:fe:3e:8a:66:3e:b8:c7: 23:91:21:ce:a9:81:9f:94:5a:24:94:ad:52:8c:d3:fa:a5:16: 71:ce:22:20:48:cb:9c:45:9e:72:35:8a:28:8a:03:7b:4b:97: 02:9d:bc:ee:2e:83:fd:1c:08:e6:68:80:eb:ba:ff:69:21:33: c5:c9:f6:ab:48:3f:7b:c0:d2:7e:23:75:f8:34:18:9e:04:ef: 6f:9b:2c:78:2e:00:8b:f3:5d:98:49:18:86:59:f4:a2:5a:1a: 50:dc:74:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5 RDFCNkU5NUQwHhcNMjUwNDI0MjMxMjA4WhcNMjUwNTAxMjMxMjA4WjAYMRYwFAYD VQQDEw02ODBhYzU0OC0yNjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QhOXuft1u8N6cP6rP6adysyInUe6vLEgGB8fLI6X9Qej24PHLHHAUZY2WN4 jamg/FKZXfoelvaY0dePOJcNJm8ZaBPlc0bL3ohoJIKCoZgE9YsNkkf7/+ykCsfx pZTBD+cY6RDbJAZvHEmQ6rfw69pI29pydCRQTvc1EsNnU8H4UdikReUT71/FvOyD hKVkkcBUblV+/DxZu8ggtKOj7PwR/GBFLE95jAvWeNU5Cik3UGaNJrrrdJ4xObM8 8INgIFtd8V98/0KVzoCSLmBqeL4kOL+lVFysjM1rHPHxfaNo9bdnDEWBAEdQqtyb Kb8l/5pLRBukHC9Jdf943dB0mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmAOPSE iNnYoa4a1RGq789+TH7tMB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1 MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUO/zub0PM08zWjmY5Xw8zMu2Sl2cv/YzAnvAiIMhA03J6lT44S0kt 11BxP2iZ2AWAUZsX8DTneR2DtpXTdw8v70FFNQup15AThrc4gCm/rZRY5MypA5xL l4jJsNMQYPQHgFMdCErHfZ62BQa7hShuV1d/H0XTe245FsDaBHttnV4OfUxdZEag LANrphae1aidw5UqvjFkScNrQv4+imY+uMcjkSHOqYGflFoklK1SjNP6pRZxziIg SMucRZ5yNYooigN7S5cCnbzuLoP9HAjmaIDruv9pITPFyfarSD97wNJ+I3X4NBie BO9vmyx4LgCL812YSRiGWfSiWhpQ3HQI -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:34 2025 by rpki-client