$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: wEoBQYoA6vfMV2FH3wUzNHIJorrvoYCB8zFNo0d41Rg= Subject key identifier: F6:20:EB:29:94:73:30:36:4F:6D:18:4C:B9:17:BD:46:C5:92:91:FC Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 3470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 346D Signing time: Thu 24 Apr 2025 15:08:49 +0000 Manifest this update: Thu 24 Apr 2025 15:08:48 +0000 Manifest next update: Thu 01 May 2025 15:08:48 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: nnEPoVWLwZWKTpCGjf+8ELcfd8Trk7lrloaPBEcaS1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13424 (0x3470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Apr 24 15:08:48 2025 GMT Not After : May 1 15:08:48 2025 GMT Subject: CN=680a5401-05ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0d:8a:88:27:16:cd:db:54:29:05:99:42:5c: 96:ab:97:bf:70:37:eb:26:68:60:11:72:4c:41:83: 61:37:21:fd:44:4f:ff:24:78:b0:b1:ca:d4:8d:47: a2:33:24:1f:39:a4:05:17:d9:f5:70:d8:43:30:f6: 67:a9:56:87:ca:2e:c6:09:9c:ae:fc:91:72:7b:62: ea:2a:33:24:76:5c:c5:be:c0:1f:e4:94:db:7d:2e: 1b:75:50:9b:2c:da:8d:c4:53:e7:9e:c2:18:c1:59: 55:00:35:7f:b6:29:9c:2b:16:68:0b:4f:7b:2c:0d: ce:cf:8c:94:95:27:ea:34:49:a8:31:6c:fe:5e:17: 5a:6d:40:17:7e:85:55:15:8a:43:1a:a5:04:00:a5: 0f:8a:52:4f:84:fd:25:81:a0:82:08:c5:27:35:d1: 9e:51:a7:79:0e:9c:dd:05:c8:34:4c:c5:cb:7e:76: 12:d4:2b:a0:8e:6b:f3:97:57:81:ca:87:27:56:80: 79:69:7e:f9:ec:ea:9e:1a:e8:c7:c6:48:19:33:7a: 64:0c:31:d3:af:e0:68:b6:76:02:39:ae:dd:f7:e5: 4b:8d:82:81:7d:e3:08:0c:b9:bd:93:9a:21:98:4b: 6a:da:be:d6:5e:be:45:88:ef:6a:a4:5e:2a:ce:11: 00:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:20:EB:29:94:73:30:36:4F:6D:18:4C:B9:17:BD:46:C5:92:91:FC X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:42:18:3f:05:64:5f:98:79:61:38:82:9f:76:8f:9b:f4:9f: 5e:e5:79:e3:2a:97:08:10:d0:a4:8d:7d:2c:ae:68:11:61:17: ec:e6:31:a9:6d:74:9d:51:a8:50:bb:ec:e7:ff:44:4e:cd:ac: 37:56:cf:48:e5:ac:73:73:60:a5:ff:69:fe:f2:cb:a4:dd:82: 06:1f:2a:f1:d1:9a:bf:3c:8f:8e:ad:97:81:64:8b:c9:08:cd: b9:3b:2d:c1:5f:44:1f:7a:b8:a6:eb:33:94:65:e4:1b:11:fd: 61:8a:08:f7:41:c0:7a:02:4d:fa:cc:5e:60:47:77:07:10:38: 61:d9:0a:7f:54:7c:30:32:97:d7:b7:4a:dd:d5:c4:6f:d8:d8: 66:b7:8a:85:dc:38:a1:51:03:34:68:06:f9:47:54:6e:f7:d0: 24:60:39:db:4d:dc:11:6d:8b:09:0b:ff:eb:66:d8:61:e1:ff: b5:57:a2:7e:f9:43:b5:2c:92:62:e6:bf:a1:f7:2a:cd:a5:29: 91:b5:f2:8b:10:5f:24:f4:21:ba:bb:33:61:2c:04:7e:04:06: 79:82:bf:19:c2:50:ac:b7:16:81:11:13:13:e0:d6:4e:36:ba: ce:ff:5b:e6:5a:2f:47:5f:e6:d2:78:e9:26:5b:3d:d5:de:a0: 4c:8a:c9:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwNDI0MTUwODQ4WhcNMjUwNTAxMTUwODQ4WjAYMRYwFAYD VQQDEw02ODBhNTQwMS0wNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyw2KiCcWzdtUKQWZQlyWq5e/cDfrJmhgEXJMQYNhNyH9RE//JHiwscrUjUei MyQfOaQFF9n1cNhDMPZnqVaHyi7GCZyu/JFye2LqKjMkdlzFvsAf5JTbfS4bdVCb LNqNxFPnnsIYwVlVADV/timcKxZoC097LA3Oz4yUlSfqNEmoMWz+XhdabUAXfoVV FYpDGqUEAKUPilJPhP0lgaCCCMUnNdGeUad5DpzdBcg0TMXLfnYS1Cugjmvzl1eB yocnVoB5aX757OqeGujHxkgZM3pkDDHTr+BotnYCOa7d9+VLjYKBfeMIDLm9k5oh mEtq2r7WXr5FiO9qpF4qzhEAUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYg6ymU czA2T20YTLkXvUbFkpH8MB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTQhg/BWRfmHlhOIKfdo+b9J9e5XnjKpcIENCkjX0srmgRYRfs5jGp bXSdUahQu+zn/0ROzaw3Vs9I5axzc2Cl/2n+8suk3YIGHyrx0Zq/PI+OrZeBZIvJ CM25Oy3BX0Qferim6zOUZeQbEf1higj3QcB6Ak36zF5gR3cHEDhh2Qp/VHwwMpfX t0rd1cRv2Nhmt4qF3DihUQM0aAb5R1Ru99AkYDnbTdwRbYsJC//rZthh4f+1V6J+ +UO1LJJi5r+h9yrNpSmRtfKLEF8k9CG6uzNhLAR+BAZ5gr8ZwlCstxaBERMT4NZO NrrO/1vmWi9HX+bSeOkmWz3V3qBMisk6 -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:52 2025 by rpki-client