$ rpki-client -vvf rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft File: PHUP1suMdwFoHlNr3WtxXxkrivk.mft (raw, json) Hash identifier: F7qsD2BzvDLVSR9994MC7bghg8VwHPw+yEvHbGVfg0o= Subject key identifier: F6:77:30:A1:A5:9E:4D:49:15:07:87:D0:D4:8E:8A:AD:08:7C:A4:5B Authority key identifier: 3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 Certificate issuer: /CN=A914233F/serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft Manifest number: 0140 Signing time: Fri 25 Apr 2025 03:31:58 +0000 Manifest this update: Fri 25 Apr 2025 03:31:57 +0000 Manifest next update: Fri 02 May 2025 03:31:57 +0000 Files and hashes: 1: PHUP1suMdwFoHlNr3WtxXxkrivk.crl (hash: kVFqK/pDXRm/kbgac/J2qxp1O0XMoln9RcbEtO5eg5k=) 2: D2AD84364AE411EE95B72651C4F9AE02.roa (hash: c3n7ErqEI7wUv0Zh/82IQ41rmFajxkaaakm4Lrf4zUE=) 3: D1DA657E4AE411EE95B72651C4F9AE02.roa (hash: OyzekySsh32QnXqLJ9xXpFy1GOqrIr4htNA7lulacc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914233F, serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Validity Not Before: Apr 25 03:31:57 2025 GMT Not After : May 2 03:31:57 2025 GMT Subject: CN=680b022d-7922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:27:ad:6d:5c:66:18:35:88:8b:91:5e:57:1a: f0:81:0c:9e:2b:0f:7f:a1:d2:d5:6d:d8:fc:b9:90: 41:83:32:47:84:08:4c:60:25:f9:c9:ee:78:c4:2e: 46:a2:a8:bd:f7:ac:a0:e4:6f:33:17:bf:dc:3a:56: 73:80:f2:01:97:df:fb:23:52:5e:33:70:db:8b:c2: d6:b0:9a:ed:e0:81:dd:7c:55:d5:dd:0d:b0:9b:8c: 54:cd:03:c3:8a:d3:f3:9d:64:c3:06:88:28:11:95: 5d:75:21:26:11:b3:61:35:78:e4:31:ed:0c:51:6b: 84:d2:69:c5:78:80:6e:f2:39:3f:2c:3d:97:60:05: 67:f7:bb:81:6f:ae:13:ab:18:e2:1e:61:7d:04:b2: 4b:e2:f8:60:62:1c:90:33:26:96:dd:df:64:18:02: 8b:bc:38:7d:93:39:45:93:b7:26:db:d9:33:14:0c: dd:10:3e:fc:48:1d:84:02:fa:ca:a5:00:b6:f1:af: a2:60:d2:80:1c:76:24:ea:39:fc:db:dc:dc:6d:4f: 47:7e:bd:fb:c1:0f:e6:95:cf:9d:a3:80:ea:66:30: f0:e1:9a:59:d9:7f:e6:e1:52:7e:12:f4:c6:12:a2: e2:6f:af:67:5d:cc:28:5d:48:03:8c:f9:96:4b:be: 7a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:77:30:A1:A5:9E:4D:49:15:07:87:D0:D4:8E:8A:AD:08:7C:A4:5B X509v3 Authority Key Identifier: keyid:3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:5a:17:a0:0a:c9:fc:f3:d1:d8:5a:1b:f4:91:55:28:69:de: 2c:ab:4a:e3:2a:79:2f:c7:c9:6d:ff:f0:9e:6a:8f:7b:8c:3c: f5:e7:d9:81:37:e7:e2:05:e6:22:30:e0:6d:36:0f:9d:ab:ea: 5e:45:25:18:9d:ad:2f:ad:2d:30:3b:48:2a:53:e3:46:09:5d: 5a:be:9f:32:5e:81:43:e9:67:6a:38:aa:d8:b3:9e:b7:bd:04: d2:63:90:c3:5e:f6:92:e1:18:02:cf:be:93:07:4b:12:5a:7d: df:49:12:6d:6e:f8:f0:65:11:7e:10:0d:ea:ad:7e:52:50:ef: 11:76:c9:2e:b7:fa:25:48:0b:64:da:cb:af:5d:cf:61:60:ad: 3d:c5:71:e5:90:93:f6:3d:4c:27:94:01:8f:e3:fb:d7:33:da: b4:e5:be:a0:bf:34:69:8c:14:43:a9:9d:f4:6c:05:75:22:b1: f8:20:70:0d:dd:dd:d6:e5:e1:b2:f3:69:28:6e:2c:73:cb:32: 3f:da:3c:4b:59:fe:42:c1:08:a6:ce:05:bb:95:b9:2b:46:4c: 3d:b3:20:16:d2:09:f7:30:d3:f2:73:a5:ec:39:e3:37:2a:66: 6a:28:58:04:98:db:c5:18:66:e5:e7:a4:2f:0f:f1:36:ae:f7: ac:09:06:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzM0YxMTAvBgNVBAUTKDNDNzUwRkQ2Q0I4Qzc3MDE2ODFFNTM2QkRENkI3MTVG MTkyQjhBRjkwHhcNMjUwNDI1MDMzMTU3WhcNMjUwNTAyMDMzMTU3WjAYMRYwFAYD VQQDEw02ODBiMDIyZC03OTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCetbVxmGDWIi5FeVxrwgQyeKw9/odLVbdj8uZBBgzJHhAhMYCX5ye54xC5G oqi996yg5G8zF7/cOlZzgPIBl9/7I1JeM3Dbi8LWsJrt4IHdfFXV3Q2wm4xUzQPD itPznWTDBogoEZVddSEmEbNhNXjkMe0MUWuE0mnFeIBu8jk/LD2XYAVn97uBb64T qxjiHmF9BLJL4vhgYhyQMyaW3d9kGAKLvDh9kzlFk7cm29kzFAzdED78SB2EAvrK pQC28a+iYNKAHHYk6jn829zcbU9Hfr37wQ/mlc+do4DqZjDw4ZpZ2X/m4VJ+EvTG EqLib69nXcwoXUgDjPmWS7560QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZ3MKGl nk1JFQeH0NSOiq0IfKRbMB8GA1UdIwQYMBaAFDx1D9bLjHcBaB5Ta91rcV8ZK4r5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjMzRi84NUMyMEJEQTQ2 M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3Rm9IbE5yM1d0eFh4a3Jp dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BIVVAxc3VNZHdGb0hsTnIzV3R4WHhrcml2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjMzRi84NUMyMEJEQTQ2M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3 Rm9IbE5yM1d0eFh4a3JpdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACWhegCsn889HYWhv0kVUoad4sq0rjKnkvx8lt//Ceao97jDz159mB N+fiBeYiMOBtNg+dq+peRSUYna0vrS0wO0gqU+NGCV1avp8yXoFD6WdqOKrYs563 vQTSY5DDXvaS4RgCz76TB0sSWn3fSRJtbvjwZRF+EA3qrX5SUO8Rdskut/olSAtk 2suvXc9hYK09xXHlkJP2PUwnlAGP4/vXM9q05b6gvzRpjBRDqZ30bAV1IrH4IHAN 3d3W5eGy82kobixzyzI/2jxLWf5CwQimzgW7lbkrRkw9syAW0gn3MNPyc6XsOeM3 KmZqKFgEmNvFGGbl56QvD/E2rvesCQbJ -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:37 2025 by rpki-client