$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.mft File: P3MTY_5HQEYaWciPp2e9ijbsDfY.mft (raw, json) Hash identifier: K97/AdBBfO6ZapU9Od1fbk9AjVAjRigZ01qp89Sex4M= Subject key identifier: 69:A5:52:B0:BD:67:BE:DA:BC:5C:8A:FF:7D:53:5D:02:98:08:83:60 Authority key identifier: 3F:73:13:63:FE:47:40:46:1A:59:C8:8F:A7:67:BD:8A:36:EC:0D:F6 Certificate issuer: /CN=A915FD1D/serialNumber=3F731363FE4740461A59C88FA767BD8A36EC0DF6 Certificate serial: 0706 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3MTY_5HQEYaWciPp2e9ijbsDfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.mft Manifest number: 06FD Signing time: Thu 24 Apr 2025 21:46:11 +0000 Manifest this update: Thu 24 Apr 2025 21:46:11 +0000 Manifest next update: Thu 01 May 2025 21:46:11 +0000 Files and hashes: 1: P3MTY_5HQEYaWciPp2e9ijbsDfY.crl (hash: ow5VX3pCIO8BD4b42CUBqTh1b8SjQa9zI42Na6xdKxg=) 2: 7D3B257298C411EC97E3503CC4F9AE02.roa (hash: 6grT2T2iSHeWzKw66g5XN9FJCWiwh1LX3u2dZ5E6lG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.crl rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3MTY_5HQEYaWciPp2e9ijbsDfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD1D, serialNumber=3F731363FE4740461A59C88FA767BD8A36EC0DF6 Validity Not Before: Apr 24 21:46:11 2025 GMT Not After : May 1 21:46:11 2025 GMT Subject: CN=680ab123-ee7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:da:90:f5:48:80:f4:a9:75:28:14:1a:9c:5d: bf:d2:58:66:0a:cd:57:be:fd:2e:00:27:46:cf:a6: cc:a6:9f:8c:70:27:cb:79:3b:44:f8:fe:9b:9a:2e: 3d:72:49:2c:e0:0c:18:7d:b0:f4:b9:33:a4:8b:a8: 37:8b:f1:22:9a:e7:c8:21:a8:e5:2e:26:23:5a:25: 34:db:5e:a2:e2:41:ee:22:29:13:79:07:bd:84:1f: c8:14:14:ee:29:2a:55:82:5f:44:55:b0:32:bf:a0: 93:cd:b8:e2:9b:e8:7d:aa:ed:19:f1:55:cd:22:39: aa:fc:30:29:6d:19:fa:74:10:84:3f:32:ed:eb:5e: cf:a0:5e:de:ec:1a:6f:d9:75:2f:0f:53:75:f2:8e: 47:ca:0d:45:90:84:ca:bd:c4:2e:1d:4f:7f:0d:5d: 83:38:9e:35:b8:b3:db:e6:ca:38:dc:1b:8e:af:60: 2b:ee:79:be:09:9e:08:e3:24:89:a1:54:3f:f3:5b: cc:52:d7:b6:56:7d:3e:11:bf:5d:75:3e:15:36:e0: 35:59:bf:ad:20:b1:b3:46:c2:7a:38:4a:c9:66:53: 05:6d:86:90:2b:e0:18:51:d9:08:65:d7:ab:91:2b: 07:06:1a:5e:fa:9a:3f:dd:09:18:4f:59:73:ec:7e: fe:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A5:52:B0:BD:67:BE:DA:BC:5C:8A:FF:7D:53:5D:02:98:08:83:60 X509v3 Authority Key Identifier: keyid:3F:73:13:63:FE:47:40:46:1A:59:C8:8F:A7:67:BD:8A:36:EC:0D:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3MTY_5HQEYaWciPp2e9ijbsDfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:8d:dc:f4:f0:bd:51:5b:6b:3f:54:cf:94:5a:d3:2d:63:c3: ed:5d:36:25:ae:03:38:70:be:65:5f:09:bd:b6:3e:15:b7:12: be:d7:aa:34:b6:d7:63:a1:a0:0d:43:77:85:9e:b1:f3:41:35: 2f:14:f4:1d:21:7c:9a:2d:8f:7b:3a:09:37:f1:d2:ad:5c:09: 4b:ee:77:50:18:e4:d2:36:da:b1:de:23:c8:8a:53:1f:b3:dc: ca:63:58:13:ea:97:dc:3d:3d:21:2f:49:42:6c:04:a4:c0:4b: 11:74:cf:33:5a:3a:d3:15:72:b1:10:57:c3:a1:b2:11:f7:c0: f3:be:52:ae:a0:a6:f9:20:29:03:53:fa:af:25:30:63:1a:2e: b8:7e:a6:68:3b:e9:78:e2:95:51:d2:e1:81:27:88:48:a7:01: 70:17:8f:56:c7:a2:0b:e9:5f:5d:9a:40:a4:80:b6:6b:06:7e: 81:45:ca:11:d5:fe:af:6a:ad:02:e1:ee:0c:d0:02:e9:ee:29: 31:4f:b8:d6:94:94:2d:e5:45:c6:2c:ca:29:9d:34:8c:b6:9a: 73:b4:fd:f9:a1:93:cd:b2:09:e2:f4:c1:70:fd:91:53:71:92: ea:32:69:4c:6a:60:13:db:ad:e1:52:3d:42:63:c5:f2:f4:bd: 99:32:73:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMUQxMTAvBgNVBAUTKDNGNzMxMzYzRkU0NzQwNDYxQTU5Qzg4RkE3NjdCRDhB MzZFQzBERjYwHhcNMjUwNDI0MjE0NjExWhcNMjUwNTAxMjE0NjExWjAYMRYwFAYD VQQDEw02ODBhYjEyMy1lZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNqQ9UiA9Kl1KBQanF2/0lhmCs1Xvv0uACdGz6bMpp+McCfLeTtE+P6bmi49 ckks4AwYfbD0uTOki6g3i/EimufIIajlLiYjWiU0216i4kHuIikTeQe9hB/IFBTu KSpVgl9EVbAyv6CTzbjim+h9qu0Z8VXNIjmq/DApbRn6dBCEPzLt617PoF7e7Bpv 2XUvD1N18o5Hyg1FkITKvcQuHU9/DV2DOJ41uLPb5so43BuOr2Ar7nm+CZ4I4ySJ oVQ/81vMUte2Vn0+Eb9ddT4VNuA1Wb+tILGzRsJ6OErJZlMFbYaQK+AYUdkIZder kSsHBhpe+po/3QkYT1lz7H7+zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmlUrC9 Z77avFyK/31TXQKYCINgMB8GA1UdIwQYMBaAFD9zE2P+R0BGGlnIj6dnvYo27A32 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQxRC84QURFMzNGQzQx MkUxMUVCOUE5NzRDMTZDNEY5QUUwMi9QM01UWV81SFFFWWFXY2lQcDJlOWlqYnNE ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AzTVRZXzVIUUVZYVdjaVBwMmU5aWpic0RmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQxRC84QURFMzNGQzQxMkUxMUVCOUE5NzRDMTZDNEY5QUUwMi9QM01UWV81SFFF WWFXY2lQcDJlOWlqYnNEZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYjdz08L1RW2s/VM+UWtMtY8PtXTYlrgM4cL5lXwm9tj4VtxK+16o0 ttdjoaANQ3eFnrHzQTUvFPQdIXyaLY97Ogk38dKtXAlL7ndQGOTSNtqx3iPIilMf s9zKY1gT6pfcPT0hL0lCbASkwEsRdM8zWjrTFXKxEFfDobIR98DzvlKuoKb5ICkD U/qvJTBjGi64fqZoO+l44pVR0uGBJ4hIpwFwF49Wx6IL6V9dmkCkgLZrBn6BRcoR 1f6vaq0C4e4M0ALp7ikxT7jWlJQt5UXGLMopnTSMtppztP35oZPNsgni9MFw/ZFT cZLqMmlMamAT263hUj1CY8Xy9L2ZMnNr -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:00 2025 by rpki-client