$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft File: P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft (raw, json) Hash identifier: AcVOqgOqlRTC9hqEzXb+2YHc4POmGi6qBduVwpi1+bw= Subject key identifier: 0C:3C:33:4A:CC:B6:58:FB:3B:A9:9B:29:39:33:4C:D6:A9:DF:6D:AA Authority key identifier: 3F:C1:70:E8:DF:5A:DB:FA:1B:63:70:B7:45:0F:28:FA:E0:B3:5A:18 Certificate issuer: /CN=A917357E/serialNumber=3FC170E8DF5ADBFA1B6370B7450F28FAE0B35A18 Certificate serial: 0432 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft Manifest number: 0621 Signing time: Fri 25 Apr 2025 00:08:12 +0000 Manifest this update: Fri 25 Apr 2025 00:08:11 +0000 Manifest next update: Fri 02 May 2025 00:08:11 +0000 Files and hashes: 1: P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl (hash: b7pL11L4kduKP24Qirg93TnY1CtwVcwnTTK+op6a2LI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1074 (0x432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=3FC170E8DF5ADBFA1B6370B7450F28FAE0B35A18 Validity Not Before: Apr 25 00:08:11 2025 GMT Not After : May 2 00:08:11 2025 GMT Subject: CN=680ad26c-07dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ea:f3:be:b6:45:bb:5c:04:bc:79:06:8a:d0: 4d:78:1b:ff:9e:08:92:95:42:9c:39:5e:d6:3a:b8: 16:57:de:d7:3f:7c:6f:a0:8e:db:95:68:b2:68:28: 7d:f2:a6:ef:e2:db:b0:6b:2e:75:46:ac:00:cd:73: 44:ed:4a:6e:87:82:85:2a:25:b1:4a:55:af:13:45: 3f:b7:6d:f3:20:37:3e:95:11:ab:09:df:25:6e:61: 1a:56:a1:c5:14:89:52:9d:2c:f8:b1:e7:10:e0:22: 90:ca:0c:10:8c:66:1d:e0:ae:65:5a:13:53:8c:d2: 0c:fc:61:07:33:3b:b2:c3:34:99:f7:06:c2:4c:e3: 40:0a:5e:41:0f:94:07:64:ed:f8:71:53:a8:2d:3b: ce:2b:68:57:c7:02:b4:c2:d9:96:5d:d3:0f:c6:d2: b8:7d:9f:e0:f4:07:f6:86:38:4d:59:78:43:43:1b: 79:e3:8b:cc:54:c0:f9:cd:83:b4:87:4b:c3:28:b6: 67:8a:08:50:72:47:b9:ed:2c:f7:2d:03:44:c8:f4: 54:7c:ea:fa:05:a8:ec:c3:ae:af:54:97:74:9d:29: 0a:c5:36:06:10:16:9f:84:37:49:a0:b9:61:3d:d4: e1:9f:bc:9a:77:78:2f:9c:9c:db:eb:c2:f8:16:75: 29:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:3C:33:4A:CC:B6:58:FB:3B:A9:9B:29:39:33:4C:D6:A9:DF:6D:AA X509v3 Authority Key Identifier: keyid:3F:C1:70:E8:DF:5A:DB:FA:1B:63:70:B7:45:0F:28:FA:E0:B3:5A:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d3:2e:25:e4:51:6b:8f:f5:b0:78:f7:dc:7d:a2:93:91:8d: 32:ed:ef:64:4b:96:f3:8b:f8:e6:d1:ef:3b:c1:c5:71:5e:f7: 3b:9f:ec:b3:d7:34:5f:b6:9a:fe:dd:fe:77:73:7d:6d:bc:80: ef:23:7f:e2:a2:d2:44:6b:79:95:a8:df:ee:16:dd:d3:38:04: cb:01:e7:ff:dd:2d:62:fe:f8:06:f8:a8:65:2b:a0:56:0a:a6: bd:79:93:b2:66:0a:47:07:e9:78:9f:31:ee:05:5c:46:72:26: a0:9e:8c:5a:02:7c:ab:71:ae:67:0d:9a:1e:39:85:14:f3:96: 24:b9:8a:d0:4b:ae:f6:5e:9e:6d:5d:38:51:ec:39:d4:cd:fe: be:f1:37:45:19:07:05:ca:6f:f3:92:59:0d:9f:d6:b8:f4:b7: 34:fd:27:6f:38:ea:8d:4a:7d:9a:a0:b6:bf:e3:ae:4c:15:bc: cd:08:cc:f5:77:81:07:f0:0a:ea:cd:03:54:d4:4d:48:14:0c: dd:52:5c:5e:4f:2c:f3:18:44:b0:bc:26:da:8a:a5:db:92:68: 03:16:00:70:03:a2:62:bf:e9:1d:96:e9:ab:3d:2f:d0:47:e2: ec:71:0b:bb:cf:e8:a9:ec:b8:1b:f9:5f:ed:c0:24:6c:e8:2e: c9:ff:90:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDNGQzE3MEU4REY1QURCRkExQjYzNzBCNzQ1MEYyOEZB RTBCMzVBMTgwHhcNMjUwNDI1MDAwODExWhcNMjUwNTAyMDAwODExWjAYMRYwFAYD VQQDEw02ODBhZDI2Yy0wN2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1erzvrZFu1wEvHkGitBNeBv/ngiSlUKcOV7WOrgWV97XP3xvoI7blWiyaCh9 8qbv4tuway51RqwAzXNE7Upuh4KFKiWxSlWvE0U/t23zIDc+lRGrCd8lbmEaVqHF FIlSnSz4secQ4CKQygwQjGYd4K5lWhNTjNIM/GEHMzuywzSZ9wbCTONACl5BD5QH ZO34cVOoLTvOK2hXxwK0wtmWXdMPxtK4fZ/g9Af2hjhNWXhDQxt544vMVMD5zYO0 h0vDKLZnighQcke57Sz3LQNEyPRUfOr6Bajsw66vVJd0nSkKxTYGEBafhDdJoLlh PdThn7yad3gvnJzb68L4FnUpUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAw8M0rM tlj7O6mbKTkzTNap322qMB8GA1UdIwQYMBaAFD/BcOjfWtv6G2Nwt0UPKPrgs1oY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9QOEZ3Nk45YTJfb2JZM0MzUlE4by11Q3pX aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A4Rnc2TjlhMl9vYlkzQzNSUThvLXVDeldoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9QOEZ3Nk45YTJf b2JZM0MzUlE4by11Q3pXaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH0y4l5FFrj/WwePfcfaKTkY0y7e9kS5bzi/jm0e87wcVxXvc7n+yz 1zRftpr+3f53c31tvIDvI3/iotJEa3mVqN/uFt3TOATLAef/3S1i/vgG+KhlK6BW Cqa9eZOyZgpHB+l4nzHuBVxGciagnoxaAnyrca5nDZoeOYUU85YkuYrQS672Xp5t XThR7DnUzf6+8TdFGQcFym/zklkNn9a49Lc0/SdvOOqNSn2aoLa/465MFbzNCMz1 d4EH8ArqzQNU1E1IFAzdUlxeTyzzGESwvCbaiqXbkmgDFgBwA6Jiv+kdlumrPS/Q R+LscQu7z+ip7Lgb+V/twCRs6C7J/5Co -----END CERTIFICATE-----Generated at Sat Apr 26 08:01:16 2025 by rpki-client