$ rpki-client -vvf rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft File: PM1fKKh57729PlX0wrzyjWzdWu4.mft (raw, json) Hash identifier: FaoFT/HfZnjP1f0xTdX4kId5CDWCqo6QXap6gVKLC08= Subject key identifier: 11:22:F8:5A:33:03:B7:43:C4:7B:C5:CD:7A:5F:7F:01:ED:7D:08:5B Authority key identifier: 3C:CD:5F:28:A8:79:EF:BD:BD:3E:55:F4:C2:BC:F2:8D:6C:DD:5A:EE Certificate issuer: /CN=A914B14E/serialNumber=3CCD5F28A879EFBDBD3E55F4C2BCF28D6CDD5AEE Certificate serial: 07A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft Manifest number: 07A2 Signing time: Fri 02 May 2025 21:23:55 +0000 Manifest this update: Fri 02 May 2025 21:23:55 +0000 Manifest next update: Fri 09 May 2025 21:23:55 +0000 Files and hashes: 1: PM1fKKh57729PlX0wrzyjWzdWu4.crl (hash: /kJhB83gw+wD45Ur3ob2Or93grHJGbdidgP5mhtwI6s=) 2: 47F1DE34FF8611EA9DCF8D5DC4F9AE02.roa (hash: jZ1TFb24gzyDaAOjNUU4zbi794zrIaNAbZVrsZ7ZMRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.crl rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 21:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1961 (0x7a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B14E, serialNumber=3CCD5F28A879EFBDBD3E55F4C2BCF28D6CDD5AEE Validity Not Before: May 2 21:23:55 2025 GMT Not After : May 9 21:23:55 2025 GMT Subject: CN=681537eb-75e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:57:b4:3e:5f:ba:75:fe:50:d4:c5:13:09:f5: b0:d2:f7:d3:20:95:e8:98:5b:5f:1b:40:5e:70:36: 24:1f:82:7d:8c:93:98:6e:71:b1:56:bc:6b:ac:f0: 11:68:f5:fb:8b:d8:2b:5e:fa:49:b6:c0:61:54:3d: c2:ee:29:1e:8b:9f:5a:a9:d1:61:83:c8:fa:f9:e6: 04:dd:8d:e7:34:08:c3:bf:e7:b4:7c:4b:fd:45:5d: 28:f9:98:1d:b4:ec:22:e0:92:3e:bd:56:f6:b0:06: 58:6b:0d:61:7f:fb:ab:4a:fb:36:36:6b:86:18:1a: a1:53:cd:ad:13:2b:9d:c5:a0:94:56:14:39:0c:a4: f0:29:a9:ef:e2:71:13:8d:9e:55:de:0b:8c:f7:ec: ce:eb:d7:50:36:f0:5c:07:68:00:3b:df:12:b3:24: 57:37:7f:a0:74:ed:a7:f2:79:3d:b4:3c:22:eb:0d: 48:7b:0f:25:17:32:fc:e7:f5:bf:73:d5:6b:c9:4f: dd:b8:46:cc:95:56:07:c9:44:d5:e1:90:86:cf:cc: d8:cd:76:3a:51:40:0d:65:f9:3d:ba:d4:cf:93:90: fc:a5:18:12:b1:95:71:99:6a:14:04:16:c4:36:b0: d5:24:40:63:fd:d7:e9:da:1d:4f:9d:ad:34:28:10: fd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:22:F8:5A:33:03:B7:43:C4:7B:C5:CD:7A:5F:7F:01:ED:7D:08:5B X509v3 Authority Key Identifier: keyid:3C:CD:5F:28:A8:79:EF:BD:BD:3E:55:F4:C2:BC:F2:8D:6C:DD:5A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:c8:e4:a9:1b:07:fe:93:96:12:c9:b7:11:e6:11:52:b8:d8: 9c:3c:83:6c:23:56:2c:03:55:2f:9c:9a:c2:84:25:46:5c:06: fc:57:9c:d4:8b:5c:fe:5a:62:c8:04:02:8d:05:2f:d1:d6:f3: be:47:ee:28:f3:43:d6:b6:0d:01:c2:83:14:1a:55:f7:9b:33: de:92:50:b4:49:d6:ac:52:eb:f5:db:91:96:35:32:23:ea:a8: 66:2a:92:0b:7d:f4:70:74:b0:32:83:d0:9f:95:58:01:41:da: de:81:15:02:4f:34:8a:f5:e9:27:3b:41:bf:c6:c1:6c:fd:c6: d6:b0:1c:0d:bf:ef:6c:23:6e:ca:6f:38:e1:b1:42:c4:c9:0a: 9c:0b:2e:77:62:28:76:95:64:85:88:8b:c1:09:e8:a8:57:14: ac:f4:0c:4e:53:1a:df:76:8a:13:45:0a:80:dc:59:e6:6a:3e: 06:9b:b6:25:22:4f:d2:84:b6:84:65:50:0b:de:a4:f8:a5:59: 54:f8:02:37:ee:7b:5d:42:7a:3e:96:1b:4f:97:48:b7:07:ae: 8b:11:5e:4d:fe:28:b6:a9:a6:18:7f:5c:90:73:2e:cc:e3:20: 44:22:7d:f2:dc:60:77:97:1a:f6:00:9c:0b:00:ff:3b:68:19: fc:c3:6e:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNEUxMTAvBgNVBAUTKDNDQ0Q1RjI4QTg3OUVGQkRCRDNFNTVGNEMyQkNGMjhE NkNERDVBRUUwHhcNMjUwNTAyMjEyMzU1WhcNMjUwNTA5MjEyMzU1WjAYMRYwFAYD VQQDEw02ODE1MzdlYi03NWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVe0Pl+6df5Q1MUTCfWw0vfTIJXomFtfG0BecDYkH4J9jJOYbnGxVrxrrPAR aPX7i9grXvpJtsBhVD3C7ikei59aqdFhg8j6+eYE3Y3nNAjDv+e0fEv9RV0o+Zgd tOwi4JI+vVb2sAZYaw1hf/urSvs2NmuGGBqhU82tEyudxaCUVhQ5DKTwKanv4nET jZ5V3guM9+zO69dQNvBcB2gAO98SsyRXN3+gdO2n8nk9tDwi6w1Iew8lFzL85/W/ c9VryU/duEbMlVYHyUTV4ZCGz8zYzXY6UUANZfk9utTPk5D8pRgSsZVxmWoUBBbE NrDVJEBj/dfp2h1Pna00KBD9BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEi+Foz A7dDxHvFzXpffwHtfQhbMB8GA1UdIwQYMBaAFDzNXyioee+9vT5V9MK88o1s3Vru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE0RS84N0Y2ODQ4Q0ZG ODQxMUVBQjJBMUM3NUJDNEY5QUUwMi9QTTFmS0toNTc3MjlQbFgwd3J6eWpXemRX dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BNMWZLS2g1NzcyOVBsWDB3cnp5ald6ZFd1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE0RS84N0Y2ODQ4Q0ZGODQxMUVBQjJBMUM3NUJDNEY5QUUwMi9QTTFmS0toNTc3 MjlQbFgwd3J6eWpXemRXdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoyOSpGwf+k5YSybcR5hFSuNicPINsI1YsA1UvnJrChCVGXAb8V5zU i1z+WmLIBAKNBS/R1vO+R+4o80PWtg0BwoMUGlX3mzPeklC0SdasUuv125GWNTIj 6qhmKpILffRwdLAyg9CflVgBQdregRUCTzSK9eknO0G/xsFs/cbWsBwNv+9sI27K bzjhsULEyQqcCy53Yih2lWSFiIvBCeioVxSs9AxOUxrfdooTRQqA3Fnmaj4Gm7Yl Ik/ShLaEZVAL3qT4pVlU+AI37ntdQno+lhtPl0i3B66LEV5N/ii2qaYYf1yQcy7M 4yBEIn3y3GB3lxr2AJwLAP87aBn8w272 -----END CERTIFICATE-----Generated at Sat May 3 04:04:25 2025 by rpki-client