$ rpki-client -vvf rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft File: PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft (raw, json) Hash identifier: N6a/X2/V4AeHawZ//KMf3Vp6aTRXv/8RhH9w9f9sNOY= Subject key identifier: F2:F0:12:4B:6F:AE:EE:83:11:0A:57:C5:05:19:8B:1A:4A:C4:F9:29 Authority key identifier: 3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83 Certificate issuer: /CN=A915B880/serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983 Certificate serial: 0E2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft Manifest number: 0E22 Signing time: Thu 24 Apr 2025 17:46:11 +0000 Manifest this update: Thu 24 Apr 2025 17:46:11 +0000 Manifest next update: Thu 01 May 2025 17:46:11 +0000 Files and hashes: 1: PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl (hash: NpCaZ9ZaifSvj5icQw3TZVv/hbsbOcMwuoRQFnGVFeU=) 2: 0853C13CA2F011E9B721795CC4F9AE02.roa (hash: PT85jOUkAj1X0WXEwRPCdUqy+wM3om5TOq/+D9IWTpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3626 (0xe2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B880, serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983 Validity Not Before: Apr 24 17:46:11 2025 GMT Not After : May 1 17:46:11 2025 GMT Subject: CN=680a78e3-7ad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:98:37:f2:2a:02:dd:dc:29:84:f9:78:93:07: 83:c1:57:84:01:17:21:4b:99:f1:83:cd:91:0a:e7: e1:4d:9a:88:a8:ba:e4:98:2f:3e:6e:14:f9:41:c0: 62:15:7d:2f:26:a1:70:a1:58:b3:b0:75:c6:ea:6b: 34:46:a7:de:40:dd:0b:b7:d4:22:7a:f2:8b:96:c9: cf:22:c6:db:b7:94:77:2c:d1:16:94:47:5a:d1:73: 78:28:5f:c2:29:2e:98:83:48:5f:23:db:3f:9c:df: 9f:d8:46:c1:88:61:a7:36:d3:e8:d6:e3:34:c6:48: 33:d0:d9:53:34:e8:5c:97:35:9d:01:7c:11:ee:0d: a0:7a:a8:d4:fe:48:b9:69:3a:e7:44:06:79:57:47: f8:c7:a6:cb:f7:a2:a1:fe:6c:49:d9:94:3a:8c:a3: 69:7f:5a:83:d2:d7:94:e9:75:b9:61:c7:8e:e9:7b: 0b:a5:60:cb:fc:89:a6:d9:e0:74:d4:59:53:2a:d7: 6f:8d:8a:1e:4c:e9:70:1b:29:72:11:42:fb:d1:5b: d4:07:de:73:97:47:b1:db:0d:cd:70:10:9c:5c:4c: aa:d5:ba:64:58:5b:91:c1:52:6b:9b:1f:db:6b:25: 9d:cf:2a:f8:42:02:b9:66:48:b0:92:21:a1:94:d2: 53:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F0:12:4B:6F:AE:EE:83:11:0A:57:C5:05:19:8B:1A:4A:C4:F9:29 X509v3 Authority Key Identifier: keyid:3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:dd:be:84:20:5e:f6:17:59:ef:7d:2f:bf:75:de:ac:d7:c7: 5f:f2:dd:63:92:31:e2:d2:1c:98:42:99:64:9a:ff:52:4a:62: 70:9f:52:fe:1f:69:e4:ed:f2:a8:0e:cf:d1:73:1c:c1:dc:1d: 39:40:ba:4a:04:75:f9:cb:eb:e3:4b:8e:a9:4f:ca:fc:05:0d: 07:5a:8e:ce:c5:7b:c7:64:4c:08:7a:b2:75:0f:6e:da:d2:a0: 30:03:b8:0c:93:5d:3e:85:b2:ac:d4:04:8e:00:8e:55:f3:f5: 43:f5:9b:e8:ec:3c:05:48:72:a4:f0:54:ef:d0:87:ba:75:aa: ad:14:07:59:83:17:25:f3:0e:d2:a6:5e:34:a5:e5:4c:62:1c: 0b:48:55:b5:8e:dd:1e:af:05:08:fe:e3:86:99:b1:9f:20:ba: 80:8f:a9:b1:6a:0c:71:e2:af:5a:3e:1c:d8:f9:61:0d:e2:7f: 4b:62:bb:36:1a:e3:e6:d4:64:0e:d6:e6:55:29:16:17:0b:bd: a5:e4:6b:32:c4:d7:f6:29:9d:17:23:6d:74:97:ee:54:1e:0d: 39:c8:8d:f8:fb:77:30:ce:a0:ba:35:5d:cf:21:7a:89:63:da: ce:3c:c1:5d:e8:7f:47:f2:b9:94:ee:44:ee:4d:d4:6b:19:26: 93:7a:e7:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI4ODAxMTAvBgNVBAUTKDNEN0E0RTBBOTlBRjE1RUYwQjM3OTBEMEU3OTYxRTg4 NzUyODE5ODMwHhcNMjUwNDI0MTc0NjExWhcNMjUwNTAxMTc0NjExWjAYMRYwFAYD VQQDEw02ODBhNzhlMy03YWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZg38ioC3dwphPl4kweDwVeEARchS5nxg82RCufhTZqIqLrkmC8+bhT5QcBi FX0vJqFwoVizsHXG6ms0RqfeQN0Lt9QievKLlsnPIsbbt5R3LNEWlEda0XN4KF/C KS6Yg0hfI9s/nN+f2EbBiGGnNtPo1uM0xkgz0NlTNOhclzWdAXwR7g2geqjU/ki5 aTrnRAZ5V0f4x6bL96Kh/mxJ2ZQ6jKNpf1qD0teU6XW5YceO6XsLpWDL/Imm2eB0 1FlTKtdvjYoeTOlwGylyEUL70VvUB95zl0ex2w3NcBCcXEyq1bpkWFuRwVJrmx/b ayWdzyr4QgK5ZkiwkiGhlNJTZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLwEktv ru6DEQpXxQUZixpKxPkpMB8GA1UdIwQYMBaAFD16TgqZrxXvCzeQ0OeWHoh1KBmD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjg4MC8xRjUxMThBNEEy RUYxMUU5OUQ0RTBBNUJDNEY5QUUwMi9QWHBPQ3BtdkZlOExONURRNTVZZWlIVW9H WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYcE9DcG12RmU4TE41RFE1NVllaUhVb0dZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Qjg4MC8xRjUxMThBNEEyRUYxMUU5OUQ0RTBBNUJDNEY5QUUwMi9QWHBPQ3BtdkZl OExONURRNTVZZWlIVW9HWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA13b6EIF72F1nvfS+/dd6s18df8t1jkjHi0hyYQplkmv9SSmJwn1L+ H2nk7fKoDs/RcxzB3B05QLpKBHX5y+vjS46pT8r8BQ0HWo7OxXvHZEwIerJ1D27a 0qAwA7gMk10+hbKs1ASOAI5V8/VD9Zvo7DwFSHKk8FTv0Ie6daqtFAdZgxcl8w7S pl40peVMYhwLSFW1jt0erwUI/uOGmbGfILqAj6mxagxx4q9aPhzY+WEN4n9LYrs2 GuPm1GQO1uZVKRYXC72l5GsyxNf2KZ0XI210l+5UHg05yI34+3cwzqC6NV3PIXqJ Y9rOPMFd6H9H8rmU7kTuTdRrGSaTeufi -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:35 2025 by rpki-client