$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: VRPg50ejoQ98vEptbF+79OpyQ9CtM8+87A1CXJDAgq0= Subject key identifier: 34:E7:E2:A0:62:28:A7:44:06:88:72:72:71:29:60:1D:56:64:74:05 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: ED Signing time: Fri 25 Apr 2025 04:29:13 +0000 Manifest this update: Fri 25 Apr 2025 04:29:12 +0000 Manifest next update: Fri 02 May 2025 04:29:12 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: iFvqFxaCl5S79E8u+lSZ14xBGcvU6QCivLrXcNPiB1k=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: 3GOqN8PMZ/cxFE5yg/l01rtznIl/3wsy8K8LEuE8lEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51, serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: Apr 25 04:29:12 2025 GMT Not After : May 2 04:29:12 2025 GMT Subject: CN=680b0f99-c68b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:86:93:c1:82:75:7c:a7:4a:63:dd:41:13:2a: 3c:c2:87:ff:a3:18:22:8f:51:e1:fb:bd:6d:35:0c: 99:a2:b2:3a:15:e9:4e:64:ba:98:75:2d:26:b0:d6: 80:a0:a0:c6:3c:4b:40:78:29:e7:44:dd:1c:bc:02: 59:17:a6:33:fa:6b:43:12:6e:ee:c7:24:d5:49:8e: 13:4b:15:84:fc:8e:f2:27:27:d4:bc:9c:54:16:c6: d2:8d:a7:f9:ae:5a:13:3d:5c:8b:f1:02:6d:24:51: 43:27:3e:b8:9a:e6:f8:bc:12:b5:cf:be:d3:96:ec: 3b:f0:bd:f0:e3:62:37:e3:14:b9:f0:5f:15:a2:64: 60:f7:f0:15:37:48:e3:5a:c6:02:49:d2:fd:56:8b: 2a:7a:ad:7c:d0:d3:ed:b6:8e:01:3a:21:e0:57:d2: 44:d3:89:5c:31:a4:5b:1c:5c:5b:06:3a:0f:4e:a5: ca:1c:21:d0:a0:dd:8f:56:fa:38:8f:1f:be:95:31: 46:ea:71:79:ce:fc:6a:65:5d:1c:ab:15:c6:1c:c7: 37:36:86:3d:dd:58:0b:02:0c:5f:40:b4:f2:74:75: ba:73:41:e9:85:92:62:f2:3e:75:7e:b6:81:da:d8: 1e:6e:ed:09:d7:65:4a:d0:13:95:42:30:96:3e:80: db:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E7:E2:A0:62:28:A7:44:06:88:72:72:71:29:60:1D:56:64:74:05 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:41:75:b1:8b:66:2b:f6:b0:8b:c5:be:ee:c1:23:1b:9e:f9: 07:5e:e4:5c:cb:41:7d:70:1d:0b:13:b1:bb:4b:9a:9e:46:0a: c0:e7:75:b1:70:ac:a0:5e:53:5e:d4:3d:4d:ec:03:f7:18:1d: 64:4c:dc:1d:3d:ee:6b:8c:4d:78:c9:f3:81:eb:37:42:3d:e7: 73:b8:7b:00:ef:ac:92:a6:c3:28:c1:12:55:6a:25:f1:db:05: a0:07:7d:f4:df:24:67:4f:a4:e7:98:75:96:41:05:81:19:bf: 17:d0:d2:42:48:d4:22:25:d2:3e:35:9b:f1:f6:60:75:c8:28: 0c:f3:e5:45:a0:00:c6:f5:31:d6:ec:9c:b2:8b:1a:d7:55:1c: cc:42:79:30:f7:f0:6b:f0:1c:63:e1:57:c8:8d:9c:db:be:4a: d8:a6:d8:b1:d3:f5:6b:35:30:3c:f9:b9:56:00:d3:60:7a:17: 48:6f:ca:c6:4d:e8:de:16:16:34:28:5e:ec:0b:e7:9e:a3:0b: 90:47:bf:fc:8b:1e:fe:70:76:e7:07:a1:34:e5:bc:ec:70:02: 3e:51:f6:29:80:56:47:3f:d2:ec:eb:c6:6d:8a:e6:03:4d:ca: 76:72:47:0b:75:75:28:56:85:92:e6:6a:1f:31:45:c2:d2:aa: 25:10:a8:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjUwNDI1MDQyOTEyWhcNMjUwNTAyMDQyOTEyWjAYMRYwFAYD VQQDEw02ODBiMGY5OS1jNjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYaTwYJ1fKdKY91BEyo8wof/oxgij1Hh+71tNQyZorI6FelOZLqYdS0msNaA oKDGPEtAeCnnRN0cvAJZF6Yz+mtDEm7uxyTVSY4TSxWE/I7yJyfUvJxUFsbSjaf5 rloTPVyL8QJtJFFDJz64mub4vBK1z77Tluw78L3w42I34xS58F8VomRg9/AVN0jj WsYCSdL9Vosqeq180NPtto4BOiHgV9JE04lcMaRbHFxbBjoPTqXKHCHQoN2PVvo4 jx++lTFG6nF5zvxqZV0cqxXGHMc3NoY93VgLAgxfQLTydHW6c0HphZJi8j51fraB 2tgebu0J12VK0BOVQjCWPoDb2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDTn4qBi KKdEBohycnEpYB1WZHQFMB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1 dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCQXWxi2Yr9rCLxb7uwSMbnvkHXuRcy0F9cB0LE7G7S5qeRgrA53Wx cKygXlNe1D1N7AP3GB1kTNwdPe5rjE14yfOB6zdCPedzuHsA76ySpsMowRJVaiXx 2wWgB3303yRnT6TnmHWWQQWBGb8X0NJCSNQiJdI+NZvx9mB1yCgM8+VFoADG9THW 7JyyixrXVRzMQnkw9/Br8Bxj4VfIjZzbvkrYptix0/VrNTA8+blWANNgehdIb8rG TejeFhY0KF7sC+eeowuQR7/8ix7+cHbnB6E05bzscAI+UfYpgFZHP9Ls68ZtiuYD Tcp2ckcLdXUoVoWS5mofMUXC0qolEKin -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:18 2025 by rpki-client