$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: m8Gczt4oOYz/VqFVUtRoFooMtuhOs39F7jKm3h9t1BU= Subject key identifier: 00:B2:47:42:F8:B0:5B:4B:1F:AB:7B:A3:11:5B:6C:E8:ED:A9:79:22 Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 075C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 0755 Signing time: Thu 24 Apr 2025 21:25:34 +0000 Manifest this update: Thu 24 Apr 2025 21:25:34 +0000 Manifest next update: Thu 01 May 2025 21:25:34 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: Hx3JXz3yLr/xUTXQ8edOG0zT7+qDFTBddjiSMHyvF1U=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: yZHf3tOWc+sxyzq57J+zRtrh1h68qCw13SKQG5RmD88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1884 (0x75c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Apr 24 21:25:34 2025 GMT Not After : May 1 21:25:34 2025 GMT Subject: CN=680aac4e-5e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7c:0c:2a:06:a7:4d:3b:52:45:aa:96:44:b5: 30:f7:91:1a:96:8d:12:72:60:b4:f3:87:6e:c3:64: 1a:17:2b:ab:cc:cf:19:8b:d3:d9:cd:5a:55:f7:32: fe:92:da:b9:81:26:ab:61:82:d5:a9:38:94:d2:a4: 16:df:1a:dd:3c:11:9b:cb:12:d9:8e:b1:60:62:2a: 19:73:3a:4a:3f:a0:ff:92:c1:62:f1:e0:f4:e6:c8: 2c:d5:0a:7a:f5:4b:be:41:9a:0d:bb:21:59:cf:a5: 7d:a5:e8:eb:33:2b:b8:a1:b3:95:51:43:41:10:8d: c7:97:5c:84:2f:a5:d2:b9:5d:f3:56:11:47:75:dd: b3:d0:a4:f5:49:3f:ad:6e:8f:67:ed:89:21:c3:f4: ec:ed:37:56:39:57:fe:5b:4e:40:fa:f7:5e:29:f7: ce:52:fc:46:25:f3:1c:8f:0d:ae:56:d5:25:5c:7f: 16:8b:41:ed:c0:e7:e1:05:33:2c:83:2e:10:dd:fd: f2:ab:9f:05:6d:78:62:06:23:46:7f:51:21:88:12: d7:e9:24:4e:5d:2e:58:4d:89:27:9e:65:2a:5a:45: 11:e3:a0:ef:f5:a8:72:fe:07:05:6b:d1:86:8a:cd: cf:50:8f:1d:7e:e5:d9:3f:53:7d:41:b7:78:b0:62: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B2:47:42:F8:B0:5B:4B:1F:AB:7B:A3:11:5B:6C:E8:ED:A9:79:22 X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:13:1a:c1:b3:0c:cf:e3:29:cf:f1:b6:5e:eb:63:23:10:92: be:cb:89:58:f7:1b:e8:4f:9e:b7:a0:b0:d2:24:9d:9a:f0:40: ff:ac:2d:bf:f0:e3:41:78:e1:bd:6d:ad:65:44:c3:63:66:0c: 9d:d9:0f:22:6d:64:86:7a:36:69:69:ea:26:9a:e8:c2:70:c1: 64:ab:16:d3:08:98:e5:17:45:44:88:94:2e:54:91:dd:3a:00: ea:8a:36:4d:f7:cc:c2:8c:47:34:3e:43:c5:70:bb:e6:d5:0c: 61:50:ed:2e:ad:91:06:9a:18:ba:63:85:59:fc:72:6e:31:3c: 4f:b5:51:3a:56:76:32:f6:89:b7:60:00:29:fa:85:83:24:19: 2c:07:a3:2c:8b:ba:82:b7:d5:71:af:cd:e5:cb:e3:90:85:74: 11:b7:27:97:bc:d5:d7:ed:23:a5:a9:03:b4:95:ac:05:bf:e7: db:30:58:6a:7e:e4:9e:28:2d:78:51:6d:94:c0:53:0b:25:c0: c6:a2:c5:8b:04:80:6c:b9:e4:ae:94:1d:e2:5e:f3:29:e7:1d: a9:05:aa:33:92:62:b6:19:14:e9:6b:e8:44:6c:2c:03:7f:cc: fa:40:9d:18:b7:6a:e4:f3:7d:92:91:75:57:f7:63:4b:e0:0f: 86:8a:fa:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUwNDI0MjEyNTM0WhcNMjUwNTAxMjEyNTM0WjAYMRYwFAYD VQQDEw02ODBhYWM0ZS01ZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXwMKganTTtSRaqWRLUw95Ealo0ScmC084duw2QaFyurzM8Zi9PZzVpV9zL+ ktq5gSarYYLVqTiU0qQW3xrdPBGbyxLZjrFgYioZczpKP6D/ksFi8eD05sgs1Qp6 9Uu+QZoNuyFZz6V9pejrMyu4obOVUUNBEI3Hl1yEL6XSuV3zVhFHdd2z0KT1ST+t bo9n7Ykhw/Ts7TdWOVf+W05A+vdeKffOUvxGJfMcjw2uVtUlXH8Wi0HtwOfhBTMs gy4Q3f3yq58FbXhiBiNGf1EhiBLX6SROXS5YTYknnmUqWkUR46Dv9ahy/gcFa9GG is3PUI8dfuXZP1N9Qbd4sGIzBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACyR0L4 sFtLH6t7oxFbbOjtqXkiMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoExrBswzP4ynP8bZe62MjEJK+y4lY9xvoT563oLDSJJ2a8ED/rC2/ 8ONBeOG9ba1lRMNjZgyd2Q8ibWSGejZpaeommujCcMFkqxbTCJjlF0VEiJQuVJHd OgDqijZN98zCjEc0PkPFcLvm1QxhUO0urZEGmhi6Y4VZ/HJuMTxPtVE6VnYy9om3 YAAp+oWDJBksB6Msi7qCt9Vxr83ly+OQhXQRtyeXvNXX7SOlqQO0lawFv+fbMFhq fuSeKC14UW2UwFMLJcDGosWLBIBsueSulB3iXvMp5x2pBaozkmK2GRTpa+hEbCwD f8z6QJ0Yt2rk832SkXVX92NL4A+Givph -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:51 2025 by rpki-client