$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: TzUuRdnEuEDpDy5L3zQ5bPnk5ceUx+kqcu19Y19A23w= Subject key identifier: 8F:3E:5A:C8:1A:F1:B8:B6:50:E0:F2:CD:C9:23:03:DB:C1:91:A7:73 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1ACF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1ACC Signing time: Thu 24 Apr 2025 16:19:54 +0000 Manifest this update: Thu 24 Apr 2025 16:19:53 +0000 Manifest next update: Thu 01 May 2025 16:19:53 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: Ur+fx4DHqv/KNWTh0AE4GCoN2maX1BVVkwygxwfapkY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6863 (0x1acf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Apr 24 16:19:53 2025 GMT Not After : May 1 16:19:53 2025 GMT Subject: CN=680a64aa-1fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:86:12:f6:49:89:60:df:5e:1c:12:29:d0:a6: 99:1a:3f:cc:fb:05:7a:54:ce:c3:bb:3e:22:f2:9c: f5:ba:19:f4:6f:73:6e:87:de:cf:5e:b3:fb:3c:1c: 85:31:ee:bd:6b:3a:29:a0:80:e1:4f:00:1a:aa:fb: d5:1f:d0:2a:a7:96:4b:74:03:c9:48:ad:e4:b7:32: 12:fb:fb:8e:ac:23:af:b5:03:a8:5d:72:cf:88:72: e2:a2:bd:83:a2:a6:ef:27:56:0b:23:09:0f:c8:33: 12:92:b0:54:04:70:60:90:96:48:1b:c2:cf:3e:8b: b6:d8:21:1c:24:73:7c:11:7a:b3:8a:26:18:41:c5: ae:7c:05:cf:e2:58:4f:ff:4c:65:c1:8b:3e:8f:b0: 3d:92:04:b0:c2:a9:50:4d:ea:99:78:59:88:08:05: f0:17:70:c5:c3:82:8d:4a:cf:36:34:98:d0:c7:e9: 3b:d8:9e:c5:b9:85:d2:14:ff:0b:ab:f2:c5:4c:52: eb:32:6a:95:50:de:71:1e:99:10:22:7a:f2:28:ae: 25:dd:dc:4a:93:0e:6b:81:5c:a0:e0:c9:e5:06:f7: c6:28:09:d3:51:37:0e:db:2a:02:05:d2:30:41:aa: 36:54:8b:f3:cc:a5:c8:02:3c:cf:ff:a6:1d:a2:74: 82:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3E:5A:C8:1A:F1:B8:B6:50:E0:F2:CD:C9:23:03:DB:C1:91:A7:73 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:49:58:86:be:d8:f3:e9:0b:f0:2d:70:f2:9e:23:dc:c9:5c: 0f:f8:7b:71:a1:b8:a3:ba:30:bc:9e:7c:05:04:bb:a9:6c:46: e3:6e:2d:19:24:b6:c5:b0:1d:e5:48:ec:1c:f1:22:f0:cd:70: 83:28:7b:51:65:ad:d5:d9:b0:36:d5:77:0e:2b:f1:d5:3e:33: 94:a1:15:29:78:e6:f3:eb:97:ec:1d:fc:ba:db:83:2f:ce:83: a8:a8:24:5d:42:8a:eb:03:03:f1:75:d7:a2:1c:47:eb:dc:7a: e3:32:53:3a:87:67:2b:9b:0b:87:76:4c:6a:37:d3:bb:43:b2: d5:28:65:7f:64:e5:1b:02:f4:1b:dd:96:8f:db:4e:93:c8:5c: 9e:3b:75:71:94:2f:9d:8f:99:d5:8a:42:f6:a6:a6:ad:d8:2b: 00:59:89:f4:2a:9f:b4:a9:b9:9f:4a:b9:79:8d:1f:63:b6:59: 47:3c:fb:65:56:1b:01:1b:fc:18:04:3d:19:aa:91:2d:44:b9: 3e:01:27:24:41:e3:e4:1c:b7:57:b0:26:1c:bb:12:f5:9f:a6: 68:96:42:2e:74:13:3b:2d:73:47:61:f7:0a:3d:5f:d6:8f:ff: ce:f8:41:e0:f9:f9:60:04:e4:83:26:9f:ab:b0:1e:09:e9:d1: 3b:c0:39:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUwNDI0MTYxOTUzWhcNMjUwNTAxMTYxOTUzWjAYMRYwFAYD VQQDEw02ODBhNjRhYS0xZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoYS9kmJYN9eHBIp0KaZGj/M+wV6VM7Duz4i8pz1uhn0b3Nuh97PXrP7PByF Me69azopoIDhTwAaqvvVH9Aqp5ZLdAPJSK3ktzIS+/uOrCOvtQOoXXLPiHLior2D oqbvJ1YLIwkPyDMSkrBUBHBgkJZIG8LPPou22CEcJHN8EXqziiYYQcWufAXP4lhP /0xlwYs+j7A9kgSwwqlQTeqZeFmICAXwF3DFw4KNSs82NJjQx+k72J7FuYXSFP8L q/LFTFLrMmqVUN5xHpkQInryKK4l3dxKkw5rgVyg4MnlBvfGKAnTUTcO2yoCBdIw Qao2VIvzzKXIAjzP/6YdonSCpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8+Wsga 8bi2UODyzckjA9vBkadzMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9SViGvtjz6QvwLXDyniPcyVwP+HtxobijujC8nnwFBLupbEbjbi0Z JLbFsB3lSOwc8SLwzXCDKHtRZa3V2bA21XcOK/HVPjOUoRUpeObz65fsHfy624Mv zoOoqCRdQorrAwPxddeiHEfr3HrjMlM6h2crmwuHdkxqN9O7Q7LVKGV/ZOUbAvQb 3ZaP206TyFyeO3VxlC+dj5nVikL2pqat2CsAWYn0Kp+0qbmfSrl5jR9jtllHPPtl VhsBG/wYBD0ZqpEtRLk+ASckQePkHLdXsCYcuxL1n6ZolkIudBM7LXNHYfcKPV/W j//O+EHg+flgBOSDJp+rsB4J6dE7wDkP -----END CERTIFICATE-----Generated at Sat Apr 26 17:10:36 2025 by rpki-client