$ rpki-client -vvf rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft File: PitYQ36GJEE5rkzQPZf0A0KFBzY.mft (raw, json) Hash identifier: x4xoAa297eh/p3fG8s6ojhi8FHzj7kwd4XNzUKyCAJM= Subject key identifier: BF:A6:60:DC:14:BD:AE:20:C4:AC:7A:96:94:EB:54:02:97:07:AB:9B Authority key identifier: 3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 Certificate issuer: /CN=A914EE0C/serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Certificate serial: 26CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft Manifest number: 26AC Signing time: Thu 24 Apr 2025 15:41:42 +0000 Manifest this update: Thu 24 Apr 2025 15:41:42 +0000 Manifest next update: Thu 01 May 2025 15:41:42 +0000 Files and hashes: 1: PitYQ36GJEE5rkzQPZf0A0KFBzY.crl (hash: u2YXSBvCgmtuI+QoOndWV1EFQPAEgl1EPu1ldrthhsM=) 2: 7CEC0182B10C11E5BB6B2A16C4F9AE02.roa (hash: szs84NZp6PRkDbAazU5Vux6gnoQk27OVrBFKSwWNnmU=) 3: 7E75C196B10C11E5BB6B2A16C4F9AE02.roa (hash: 84MBUnVnF5YSfCtGOyL/Mf1o361blRMq4zWtu5Lhyug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9934 (0x26ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EE0C, serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Validity Not Before: Apr 24 15:41:42 2025 GMT Not After : May 1 15:41:42 2025 GMT Subject: CN=680a5bb6-f472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f2:c9:22:64:fd:cc:17:2a:36:f6:25:c6:55: dc:87:e5:51:8d:30:b8:f7:73:74:b0:58:3c:56:52: 42:4c:ff:e3:8f:ea:0e:35:15:22:19:6e:6f:8f:7e: 39:3a:d9:d0:60:a4:80:8c:21:e8:38:82:2b:38:3c: df:4f:dc:de:79:20:eb:7e:04:25:81:96:97:e0:30: bb:af:24:08:63:06:a3:dd:18:17:d2:05:39:c8:b1: f9:76:0f:f6:10:a0:ec:e7:08:e9:ad:0d:b6:25:3c: 6b:b5:3e:16:77:b9:f5:04:73:f9:df:1b:92:54:fb: d6:d2:d9:e0:9a:d5:46:80:cb:aa:f2:4c:c7:bf:42: 26:55:84:8e:77:82:04:3d:c7:79:dd:8b:e8:7d:77: 3c:9b:96:b0:fa:8b:bf:84:4b:05:4a:18:c6:5b:67: ec:69:95:16:cd:a3:8c:e0:6a:09:4a:0c:0d:f5:4c: c8:05:46:1a:b4:9a:2c:21:30:60:42:e5:d1:53:1b: 0e:85:f3:71:01:67:b3:90:aa:85:b5:87:82:05:5c: c0:a0:78:1d:c0:b3:d1:be:b5:02:63:6a:b6:f7:95: 6a:bf:de:cf:59:3d:ad:7f:0a:64:37:b0:6a:74:cb: 0b:6d:af:91:0e:5d:0b:fd:c3:e5:d9:d6:b8:1f:a0: 91:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A6:60:DC:14:BD:AE:20:C4:AC:7A:96:94:EB:54:02:97:07:AB:9B X509v3 Authority Key Identifier: keyid:3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:35:c5:0e:82:ba:ab:5c:e6:67:21:94:83:0b:d5:de:91:23: e7:fa:35:21:a9:8f:89:fa:78:b0:f9:ff:2a:28:dd:0a:75:1e: d2:2a:e8:ac:ce:69:2f:35:1b:f2:8b:b6:09:f8:94:d2:4c:06: c8:b7:4b:8a:a4:f3:75:fa:7f:8c:89:f6:94:cc:08:a8:58:d6: 3c:20:f9:4e:24:30:ef:44:73:20:d4:5d:f5:43:2b:28:22:cf: ab:8b:2c:f7:f3:d9:ed:af:04:8e:4f:c9:93:32:ca:2a:35:27: bd:21:d0:4e:f9:5d:f1:0d:a3:ab:de:4d:05:e1:53:71:74:30: 7d:bb:73:26:50:79:57:65:1f:e0:db:0b:df:40:b7:0f:ee:e0: 7b:bb:b3:2c:a9:cd:2a:0e:3c:3f:79:57:52:b5:e9:76:78:1b: 12:16:ee:6e:85:c4:e0:34:23:39:f2:1b:11:02:68:1d:83:87: 5a:b9:31:67:fc:e4:b4:c0:b4:51:d1:78:73:a3:c1:d7:be:e8: e4:75:54:0d:ae:1c:53:2e:0a:ec:87:59:8c:b6:bf:a2:25:26: 49:4a:6f:e9:09:ec:5b:9e:f5:cf:91:36:8b:26:90:af:36:cf: db:02:07:81:dc:a6:1f:98:b4:b6:87:3a:82:a9:bd:34:6c:c1: 9a:29:b9:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFMEMxMTAvBgNVBAUTKDNFMkI1ODQzN0U4NjI0NDEzOUFFNENEMDNEOTdGNDAz NDI4NTA3MzYwHhcNMjUwNDI0MTU0MTQyWhcNMjUwNTAxMTU0MTQyWjAYMRYwFAYD VQQDEw02ODBhNWJiNi1mNDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPLJImT9zBcqNvYlxlXch+VRjTC493N0sFg8VlJCTP/jj+oONRUiGW5vj345 OtnQYKSAjCHoOIIrODzfT9zeeSDrfgQlgZaX4DC7ryQIYwaj3RgX0gU5yLH5dg/2 EKDs5wjprQ22JTxrtT4Wd7n1BHP53xuSVPvW0tngmtVGgMuq8kzHv0ImVYSOd4IE Pcd53YvofXc8m5aw+ou/hEsFShjGW2fsaZUWzaOM4GoJSgwN9UzIBUYatJosITBg QuXRUxsOhfNxAWezkKqFtYeCBVzAoHgdwLPRvrUCY2q295Vqv97PWT2tfwpkN7Bq dMsLba+RDl0L/cPl2da4H6CRBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+mYNwU va4gxKx6lpTrVAKXB6ubMB8GA1UdIwQYMBaAFD4rWEN+hiRBOa5M0D2X9ANChQc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUUwQy8yMkQ1MzY1MkQ2 NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pFRTVya3pRUFpmMEEwS0ZC elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BpdFlRMzZHSkVFNXJrelFQWmYwQTBLRkJ6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUUwQy8yMkQ1MzY1MkQ2NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pF RTVya3pRUFpmMEEwS0ZCelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTNcUOgrqrXOZnIZSDC9XekSPn+jUhqY+J+niw+f8qKN0KdR7SKuis zmkvNRvyi7YJ+JTSTAbIt0uKpPN1+n+MifaUzAioWNY8IPlOJDDvRHMg1F31Qyso Is+riyz389ntrwSOT8mTMsoqNSe9IdBO+V3xDaOr3k0F4VNxdDB9u3MmUHlXZR/g 2wvfQLcP7uB7u7Msqc0qDjw/eVdStel2eBsSFu5uhcTgNCM58hsRAmgdg4dauTFn /OS0wLRR0Xhzo8HXvujkdVQNrhxTLgrsh1mMtr+iJSZJSm/pCexbnvXPkTaLJpCv Ns/bAgeB3KYfmLS2hzqCqb00bMGaKbmm -----END CERTIFICATE-----Generated at Sat Apr 26 15:24:23 2025 by rpki-client