$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft File: PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json) Hash identifier: 8kVUGMgG2Cv2DSXaSXDo0OgmxZhXHcu5PQDewJL2SoM= Subject key identifier: 13:2E:72:95:A2:10:AE:AB:8E:CA:F6:C5:84:91:D4:98:B5:C2:65:0C Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 Certificate issuer: /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Certificate serial: 033B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft Manifest number: 0337 Signing time: Fri 25 Apr 2025 00:50:55 +0000 Manifest this update: Fri 25 Apr 2025 00:50:54 +0000 Manifest next update: Fri 02 May 2025 00:50:54 +0000 Files and hashes: 1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: OFGhn2O3hHvefEKP4SXeOP5SvJJaE13mR/ZxCOVhY48=) 2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: BTLl2ZQykfG+tipQAUgtzvqp3DpDHeGIHhFJsSIVOWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91607DE, serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Validity Not Before: Apr 25 00:50:54 2025 GMT Not After : May 2 00:50:54 2025 GMT Subject: CN=680adc6f-7322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ff:57:38:91:23:ef:52:c9:b8:93:1e:ae:b9:ea: f8:c4:2a:31:a8:50:e2:29:b4:85:81:9c:b5:a4:16: da:11:3a:ce:a1:90:3b:ae:d3:e8:84:3b:27:ff:86: 53:00:61:ca:fc:1a:52:e9:4c:ee:d8:f5:4e:79:d7: 3f:38:ea:54:a9:bf:cb:21:25:4e:08:c5:14:2b:02: 87:7d:0e:5b:56:70:21:26:26:1f:98:8b:e6:df:94: e9:18:01:95:c0:ac:75:7e:d4:bd:6a:09:1d:5f:be: 24:b7:20:45:0e:e9:8d:40:bf:d5:63:5f:b6:32:a9: 85:2d:15:e3:0e:0f:eb:c6:38:26:be:1f:b6:f4:76: e1:44:e4:64:34:d6:aa:da:10:82:2a:05:e3:71:23: 23:78:01:e0:08:42:b0:f4:c1:2c:f8:1d:fa:a3:26: 0f:2f:23:4f:69:84:a0:b5:e7:95:d6:06:70:ae:01: 22:b9:ff:e0:db:e1:46:2a:ac:61:72:e8:1b:90:59: 04:b0:a7:21:b0:f4:aa:a3:0a:6d:b5:88:38:87:dd: 61:94:5e:b7:3b:86:dd:47:71:4e:e0:9e:fe:ba:3f: 04:04:75:4f:8b:12:59:82:61:81:11:07:c8:ad:02: c1:7a:f6:a4:1f:eb:d9:65:17:d0:fe:b2:43:c3:a9: 31:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2E:72:95:A2:10:AE:AB:8E:CA:F6:C5:84:91:D4:98:B5:C2:65:0C X509v3 Authority Key Identifier: keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:5f:2d:20:f8:34:02:03:83:1c:b9:10:c2:f8:1c:0e:12:16: a1:a6:c0:88:67:3b:62:b4:3c:d1:55:df:60:d3:05:91:7b:bf: b0:1d:44:d8:80:6d:e7:78:b9:4a:1d:7c:b1:1a:09:7f:46:c3: 5c:55:95:1d:68:e0:eb:95:eb:98:8b:82:56:65:8b:ef:72:ca: 04:bf:fe:dd:34:33:52:a3:c1:7d:3d:56:a2:fc:64:75:78:86: 66:6c:b2:57:db:9b:22:b4:87:2b:97:13:6e:f7:0a:97:d8:69: ae:12:05:ad:07:33:cd:26:5f:d8:91:90:bb:c7:8e:36:8b:09: bf:b9:ae:1e:ae:42:5b:70:c0:ca:03:36:9e:ec:1f:e1:7e:e5: 8b:01:53:e8:1c:69:39:5a:98:fa:70:66:6e:18:7f:13:57:de: 64:6e:d8:df:79:fb:9e:68:66:dc:1e:52:df:37:20:ed:bf:04: cd:cc:49:84:79:e3:28:1c:65:9b:73:c9:1a:14:84:6f:80:19: 2e:7c:56:75:ec:88:32:57:84:07:ba:77:91:b7:55:df:8c:33: 55:6c:11:f1:a9:6c:3f:d2:80:f0:c2:69:32:8d:03:aa:be:87: 97:47:6f:a2:7d:7b:e2:1f:d2:66:0e:c3:6c:36:f2:a0:44:ad: 18:89:43:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3REUxMTAvBgNVBAUTKDNEMEE4OEMwQ0NBM0VFODY3N0NEMTdERjNFRTg2REU3 MURGQzExMjkwHhcNMjUwNDI1MDA1MDU0WhcNMjUwNTAyMDA1MDU0WjAYMRYwFAYD VQQDEw02ODBhZGM2Zi03MzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/1c4kSPvUsm4kx6uuer4xCoxqFDiKbSFgZy1pBbaETrOoZA7rtPohDsn/4ZT AGHK/BpS6Uzu2PVOedc/OOpUqb/LISVOCMUUKwKHfQ5bVnAhJiYfmIvm35TpGAGV wKx1ftS9agkdX74ktyBFDumNQL/VY1+2MqmFLRXjDg/rxjgmvh+29HbhRORkNNaq 2hCCKgXjcSMjeAHgCEKw9MEs+B36oyYPLyNPaYSgteeV1gZwrgEiuf/g2+FGKqxh cugbkFkEsKchsPSqowpttYg4h91hlF63O4bdR3FO4J7+uj8EBHVPixJZgmGBEQfI rQLBevakH+vZZRfQ/rJDw6kxiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMucpWi EK6rjsr2xYSR1Ji1wmUMMB8GA1UdIwQYMBaAFD0KiMDMo+6Gd80X3z7obecd/BEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDdERS9DNzY4MTRDNkJC NUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdvWjN6UmZmUHVodDV4MzhF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRcUl3TXlqN29aM3pSZmZQdWh0NXgzOEVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDdERS9DNzY4MTRDNkJCNUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdv WjN6UmZmUHVodDV4MzhFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrXy0g+DQCA4McuRDC+BwOEhahpsCIZztitDzRVd9g0wWRe7+wHUTY gG3neLlKHXyxGgl/RsNcVZUdaODrleuYi4JWZYvvcsoEv/7dNDNSo8F9PVai/GR1 eIZmbLJX25sitIcrlxNu9wqX2GmuEgWtBzPNJl/YkZC7x442iwm/ua4erkJbcMDK Azae7B/hfuWLAVPoHGk5Wpj6cGZuGH8TV95kbtjfefueaGbcHlLfNyDtvwTNzEmE eeMoHGWbc8kaFIRvgBkufFZ17IgyV4QHuneRt1XfjDNVbBHxqWw/0oDwwmkyjQOq voeXR2+ifXviH9JmDsNsNvKgRK0YiUOT -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:47 2025 by rpki-client