$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: C4MipkXzxPTegz0GAUgyN/FlhhuTj8EiEKXXP2+ubug= Subject key identifier: EE:B6:E3:54:2A:55:8F:5F:3C:5D:14:F4:CA:F0:7B:3F:66:90:EE:D1 Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0B8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0B87 Signing time: Thu 24 Apr 2025 18:56:22 +0000 Manifest this update: Thu 24 Apr 2025 18:56:22 +0000 Manifest next update: Thu 01 May 2025 18:56:21 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: P6wq4n5YXcae4jy9ilqdHRenop9N+3IDgRWGJM8CZD8=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: hoqO9FG6w4Km8eSvitEm9i1d1kTzMCDiWm1RhII3OZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Apr 24 18:56:22 2025 GMT Not After : May 1 18:56:21 2025 GMT Subject: CN=680a8956-e7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b0:a3:9e:c5:f6:ac:83:da:bc:50:fe:bb:3c: 94:55:f3:be:19:be:74:bd:cd:c4:67:f0:04:b1:40: 76:22:f6:55:96:1a:08:95:74:ba:98:d6:78:e1:17: c8:7b:6c:99:f8:5f:ea:e5:50:92:ce:b7:d4:87:fe: db:2c:b2:5c:22:9c:a7:53:5b:4b:e0:53:fc:2a:79: 99:ca:aa:c5:42:0a:db:97:1e:ca:d3:1b:82:83:a8: e0:25:f7:e6:6a:5f:2c:84:b4:68:55:aa:bd:d4:61: 7f:4c:9c:09:31:96:84:79:b4:b1:25:ab:37:5b:dc: af:c1:2c:2c:d8:9d:6c:e4:9a:0d:ec:b9:ac:33:32: ad:af:8f:a8:6b:52:82:fd:4b:11:80:d2:82:06:b8: d2:be:6d:76:0a:ee:e1:97:59:60:38:79:c6:87:f2: 50:ba:0e:10:3c:4d:0d:06:e1:25:e9:7a:83:2b:f9: b7:70:35:03:e7:27:ed:3b:7b:e3:fb:21:0a:80:67: ae:84:98:4c:6f:85:7d:5e:dc:a2:19:5e:bb:36:04: 44:8d:4a:86:59:91:53:05:eb:52:62:33:66:11:41: e5:96:a7:83:11:1c:d2:04:c0:7a:5a:de:53:4c:f1: d8:14:49:f5:df:35:42:06:ef:50:f8:7a:bf:ef:88: 98:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B6:E3:54:2A:55:8F:5F:3C:5D:14:F4:CA:F0:7B:3F:66:90:EE:D1 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:fe:1a:16:8c:0e:5b:f7:e1:f6:b4:75:a6:02:7b:31:f4:df: 10:08:8c:a6:41:d4:aa:40:0c:33:4a:dd:af:d7:08:21:77:43: 63:91:90:17:d4:08:49:39:d1:2e:c4:af:3d:d8:7d:43:24:61: 92:a5:25:2d:b3:d2:78:3b:13:1b:e6:20:31:92:2d:a8:a6:f9: b7:a9:0e:b0:b8:36:5c:65:09:47:6c:22:2e:30:35:93:e8:92: 79:d6:4e:4d:0b:bc:ac:d7:ba:9f:eb:33:be:97:99:08:c5:a3: c2:ec:23:5e:48:ca:93:6d:23:09:2d:46:a9:8b:55:44:a0:4d: 08:64:98:8a:2a:d4:fe:3a:ad:c5:5e:e5:ef:62:3c:25:7e:8f: f6:e3:14:14:ec:0a:9c:c6:a8:5c:26:31:b4:07:ed:fa:ed:0e: ac:61:82:a3:f9:e4:03:b3:c8:50:fb:9a:f5:38:c8:ac:84:f5: 2e:3d:20:56:40:dd:10:28:3b:69:30:27:3e:c4:2e:ee:5f:e9: 31:7a:0b:b5:83:4a:ab:be:06:9e:56:ce:d1:72:c1:7f:7e:4c: 39:d8:7e:ee:75:d2:3d:c3:00:ed:10:b7:ec:e6:8b:14:75:cb: f4:aa:63:44:ef:06:52:7b:fa:b2:40:a6:2b:06:cb:3d:46:59: 99:d7:11:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUwNDI0MTg1NjIyWhcNMjUwNTAxMTg1NjIxWjAYMRYwFAYD VQQDEw02ODBhODk1Ni1lN2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7CjnsX2rIPavFD+uzyUVfO+Gb50vc3EZ/AEsUB2IvZVlhoIlXS6mNZ44RfI e2yZ+F/q5VCSzrfUh/7bLLJcIpynU1tL4FP8KnmZyqrFQgrblx7K0xuCg6jgJffm al8shLRoVaq91GF/TJwJMZaEebSxJas3W9yvwSws2J1s5JoN7LmsMzKtr4+oa1KC /UsRgNKCBrjSvm12Cu7hl1lgOHnGh/JQug4QPE0NBuEl6XqDK/m3cDUD5yftO3vj +yEKgGeuhJhMb4V9XtyiGV67NgREjUqGWZFTBetSYjNmEUHllqeDERzSBMB6Wt5T TPHYFEn13zVCBu9Q+Hq/74iYhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6241Qq VY9fPF0U9Mrwez9mkO7RMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf/hoWjA5b9+H2tHWmAnsx9N8QCIymQdSqQAwzSt2v1wghd0NjkZAX 1AhJOdEuxK892H1DJGGSpSUts9J4OxMb5iAxki2opvm3qQ6wuDZcZQlHbCIuMDWT 6JJ51k5NC7ys17qf6zO+l5kIxaPC7CNeSMqTbSMJLUapi1VEoE0IZJiKKtT+Oq3F XuXvYjwlfo/24xQU7AqcxqhcJjG0B+367Q6sYYKj+eQDs8hQ+5r1OMishPUuPSBW QN0QKDtpMCc+xC7uX+kxegu1g0qrvgaeVs7RcsF/fkw52H7uddI9wwDtELfs5osU dcv0qmNE7wZSe/qyQKYrBss9RlmZ1xGu -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:49 2025 by rpki-client