$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft (raw, json) Hash identifier: 1YG53LfnpGMz8bO9rpup7fi7D15Xn1vRt+jTtzlxLBI= Subject key identifier: 94:45:D1:85:B9:B8:C1:C7:BA:D5:AC:BC:32:84:47:6E:86:1B:46:6C Authority key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 Certificate issuer: /CN=A914E6AA/serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft Manifest number: 0896 Signing time: Thu 24 Apr 2025 22:45:46 +0000 Manifest this update: Thu 24 Apr 2025 22:45:45 +0000 Manifest next update: Thu 01 May 2025 22:45:45 +0000 Files and hashes: 1: PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl (hash: wTlU/A+/Adw5Tg5C0btdULjsuBFEwWSlb6eia+QnNtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA, serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Validity Not Before: Apr 24 22:45:45 2025 GMT Not After : May 1 22:45:45 2025 GMT Subject: CN=680abf19-0d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:88:c2:22:5e:63:bf:7b:81:c9:c0:af:04:e0: 7a:35:0c:90:70:e3:40:da:c4:4d:29:8f:9a:2a:96: 6f:17:44:b3:21:66:52:26:7c:09:a9:c1:6d:2a:6a: 6c:93:c0:bc:5b:77:4c:f5:a6:c2:e1:4f:3d:85:ee: f6:62:52:d5:96:ff:f4:bb:ad:d5:92:af:46:e1:27: c5:5f:c1:4e:8b:6e:fe:48:ba:63:13:49:a4:33:09: 45:e4:98:cc:ef:4e:6f:cb:b6:0e:b9:4c:07:80:ea: 79:c3:7d:72:31:27:44:ca:a4:cf:5b:8c:4b:4c:3d: 9c:28:a6:1b:6b:dd:48:93:28:72:c3:e1:3f:0e:d8: aa:e2:08:f3:fe:0b:af:74:e4:a5:9b:c4:4b:10:57: 25:92:59:65:77:c4:cb:3b:69:f7:35:ce:b8:bd:3b: 35:fa:b4:7b:00:b1:a7:9e:a3:be:55:18:ff:bb:85: 17:77:25:c2:f1:3a:86:bb:40:7d:cf:da:d3:98:bd: ef:d0:12:ba:ff:4a:ba:4c:f5:0a:2e:f1:13:c0:83: 7a:df:a0:af:3f:4d:97:8d:eb:8c:18:b4:18:7b:d5: 7c:7a:cb:55:93:fc:4f:8e:9d:20:ab:f7:67:9e:c8: 05:0b:a5:7a:ad:e8:8e:e6:2e:23:b7:39:51:e6:33: 73:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:45:D1:85:B9:B8:C1:C7:BA:D5:AC:BC:32:84:47:6E:86:1B:46:6C X509v3 Authority Key Identifier: keyid:3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:6e:73:e8:51:2c:65:82:ee:82:06:09:9c:7e:26:5d:6e:db: f1:ff:a5:2f:33:5e:1e:6a:2b:75:06:a7:dc:7f:10:e5:1c:36: 7e:cb:ca:51:aa:74:07:83:4a:72:26:ab:32:86:e1:c1:a8:27: 2a:8a:d8:b6:2e:e0:6c:29:93:c8:1d:e5:75:11:eb:ca:1a:c3: 54:7a:90:aa:84:08:da:08:a2:43:69:14:3b:bf:3a:53:03:1c: 08:c4:50:0e:8f:b3:a4:5d:fd:47:ba:a0:2a:7a:7c:f5:5f:c0: 34:62:51:73:49:62:85:17:42:cf:ff:2b:9a:3b:57:f0:b9:94: e3:80:f8:e1:29:1e:ec:e0:6f:0f:66:07:b0:62:47:b9:9a:5e: 45:6a:b7:23:84:16:92:63:85:95:ac:7c:30:ce:4b:2d:fd:c6: 92:a2:86:9b:46:0a:a8:1e:f3:d6:e7:04:73:72:5c:c5:06:a6: 48:b9:f9:47:c3:2e:5d:bc:eb:c4:9d:4d:93:70:b2:06:cf:7a: bb:e2:03:29:54:d0:3e:df:b3:08:87:7f:2c:1d:b8:f0:7c:f4: 34:b2:2d:bf:f3:54:cc:3f:fe:3e:d2:37:6c:ca:86:36:5c:0e: d1:1b:d9:49:f7:e6:80:55:15:88:0a:8b:b7:1d:a9:3c:9b:d3: 9e:3a:90:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2QUExMTAvBgNVBAUTKDNENTFFREM0M0EzOTk5QjEzNzFDRTVDMDQxNDIwODNG RTI4N0QwRjIwHhcNMjUwNDI0MjI0NTQ1WhcNMjUwNTAxMjI0NTQ1WjAYMRYwFAYD VQQDEw02ODBhYmYxOS0wZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4jCIl5jv3uBycCvBOB6NQyQcONA2sRNKY+aKpZvF0SzIWZSJnwJqcFtKmps k8C8W3dM9abC4U89he72YlLVlv/0u63Vkq9G4SfFX8FOi27+SLpjE0mkMwlF5JjM 705vy7YOuUwHgOp5w31yMSdEyqTPW4xLTD2cKKYba91Ikyhyw+E/Dtiq4gjz/guv dOSlm8RLEFclkllld8TLO2n3Nc64vTs1+rR7ALGnnqO+VRj/u4UXdyXC8TqGu0B9 z9rTmL3v0BK6/0q6TPUKLvETwIN636CvP02XjeuMGLQYe9V8estVk/xPjp0gq/dn nsgFC6V6reiO5i4jtzlR5jNzaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRF0YW5 uMHHutWsvDKER26GG0ZsMB8GA1UdIwQYMBaAFD1R7cQ6OZmxNxzlwEFCCD/ih9Dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTZBQS84RURCMTA3RUFE QTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1iRTNIT1hBUVVJSVAtS0gw UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWSHR4RG81bWJFM0hPWEFRVUlJUC1LSDBQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1i RTNIT1hBUVVJSVAtS0gwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAubnPoUSxlgu6CBgmcfiZdbtvx/6UvM14eait1BqfcfxDlHDZ+y8pR qnQHg0pyJqsyhuHBqCcqiti2LuBsKZPIHeV1EevKGsNUepCqhAjaCKJDaRQ7vzpT AxwIxFAOj7OkXf1HuqAqenz1X8A0YlFzSWKFF0LP/yuaO1fwuZTjgPjhKR7s4G8P ZgewYke5ml5FarcjhBaSY4WVrHwwzkst/caSooabRgqoHvPW5wRzclzFBqZIuflH wy5dvOvEnU2TcLIGz3q74gMpVNA+37MIh38sHbjwfPQ0si2/81TMP/4+0jdsyoY2 XA7RG9lJ9+aAVRWICou3Hak8m9OeOpAo -----END CERTIFICATE-----Generated at Sat Apr 26 08:01:24 2025 by rpki-client