$ rpki-client -vvf rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft File: pGM3j5KTiRbgseQTrw8MinPCH08.mft (raw, json) Hash identifier: LesAczWvhRXPkshQGgjVDqhq64B+UHWd9B3/ne90PU0= Subject key identifier: 3A:DF:60:0C:62:D4:39:EC:FD:85:91:33:68:BC:7A:87:22:BA:68:AC Authority key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F Certificate issuer: /CN=A917C3A7/serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Certificate serial: 0444 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft Manifest number: 0444 Signing time: Fri 25 Apr 2025 00:01:49 +0000 Manifest this update: Fri 25 Apr 2025 00:01:48 +0000 Manifest next update: Fri 02 May 2025 00:01:48 +0000 Files and hashes: 1: pGM3j5KTiRbgseQTrw8MinPCH08.crl (hash: rRQk1rOBm3KuEn51ejQfBEGzY+b1XT6cAWIgxSGbaEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1092 (0x444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C3A7, serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Validity Not Before: Apr 25 00:01:48 2025 GMT Not After : May 2 00:01:48 2025 GMT Subject: CN=680ad0ed-ac75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:71:db:a1:8f:0a:67:4d:d8:18:23:cf:7c:d4: 0b:84:d6:b1:05:12:63:c3:d9:16:f3:57:b0:77:ef: 04:88:5c:a4:4f:a8:01:bc:20:1e:f4:41:de:dc:0c: 15:d0:6e:c9:da:40:4f:02:45:cc:0f:a4:88:ca:1e: 43:8a:c0:bc:80:5d:76:99:97:b6:ff:5e:c7:93:98: 3d:86:d5:e3:44:55:73:c6:88:07:3e:04:24:7a:84: a7:3d:ad:0b:09:44:91:97:81:77:12:34:41:f5:6c: e6:ae:b1:48:46:b1:3d:e0:2f:21:93:96:53:1a:16: 34:45:11:ea:71:57:d7:e6:09:21:0b:e6:a3:2f:2c: d7:1b:0a:7d:d4:e7:03:69:35:45:80:d1:f7:23:a5: 21:5f:58:56:81:39:b3:e2:b5:3e:07:37:ea:3b:8e: 6b:84:a8:dc:8a:e0:50:bb:32:4f:2e:66:10:53:4e: 4a:0f:84:c0:b9:d4:f6:f6:dc:7c:16:16:cc:f8:ce: 5d:6e:c6:04:f2:1c:35:ad:28:01:97:a7:a5:5a:30: 66:e7:d7:66:ca:6a:04:70:ac:4a:35:85:5a:ce:f9: e7:50:c8:cd:4c:0f:f6:7b:bb:23:43:18:7b:35:8c: fd:c2:f7:77:51:32:7d:d9:9c:cd:79:31:93:d6:35: be:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:DF:60:0C:62:D4:39:EC:FD:85:91:33:68:BC:7A:87:22:BA:68:AC X509v3 Authority Key Identifier: keyid:A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:86:51:bd:29:5c:7e:9d:f7:85:61:66:55:de:4a:f8:53:97: 76:09:e8:5f:d0:61:53:b8:66:48:63:1d:6b:e8:b4:7c:7a:b8: 5e:13:1b:bf:96:77:14:0e:e8:9e:88:98:6e:f3:13:38:5d:10: 09:6a:42:c6:18:00:1e:a0:75:95:39:eb:c6:af:14:e3:29:54: 28:09:39:19:25:30:9e:ba:70:c8:af:09:bd:d4:c5:41:e4:b5: e7:a2:5a:f2:c3:09:da:70:1e:33:70:38:0e:5e:de:93:89:fc: aa:88:20:fb:bc:9e:ad:12:f3:6e:b2:6c:e5:c1:41:23:08:36: 61:a8:8b:ea:07:07:ed:80:f8:61:e0:8b:8b:0f:b3:32:76:f0: 49:08:44:21:e4:10:cc:b0:b0:0c:8c:bb:91:bc:f2:68:04:69: a5:87:be:ae:96:fe:cc:00:fd:24:00:ef:f7:05:95:db:88:b9: 75:5c:c3:49:e9:40:59:5a:05:c9:5c:f2:24:50:1b:5b:8c:0d: 05:ea:76:6d:19:be:59:5f:ef:24:68:70:aa:35:b6:f9:04:05: ca:4a:8b:f2:db:c2:93:d8:36:70:fe:b4:60:62:1d:3c:e3:35: db:5f:a0:04:e9:68:92:44:c2:aa:4b:4b:0a:cc:dc:09:21:94: 3a:7a:6c:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzQTcxMTAvBgNVBAUTKEE0NjMzNzhGOTI5Mzg5MTZFMEIxRTQxM0FGMEYwQzhB NzNDMjFGNEYwHhcNMjUwNDI1MDAwMTQ4WhcNMjUwNTAyMDAwMTQ4WjAYMRYwFAYD VQQDEw02ODBhZDBlZC1hYzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHHboY8KZ03YGCPPfNQLhNaxBRJjw9kW81ewd+8EiFykT6gBvCAe9EHe3AwV 0G7J2kBPAkXMD6SIyh5DisC8gF12mZe2/17Hk5g9htXjRFVzxogHPgQkeoSnPa0L CUSRl4F3EjRB9WzmrrFIRrE94C8hk5ZTGhY0RRHqcVfX5gkhC+ajLyzXGwp91OcD aTVFgNH3I6UhX1hWgTmz4rU+BzfqO45rhKjciuBQuzJPLmYQU05KD4TAudT29tx8 FhbM+M5dbsYE8hw1rSgBl6elWjBm59dmymoEcKxKNYVazvnnUMjNTA/2e7sjQxh7 NYz9wvd3UTJ92ZzNeTGT1jW+GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrfYAxi 1Dns/YWRM2i8eociumisMB8GA1UdIwQYMBaAFKRjN4+Sk4kW4LHkE68PDIpzwh9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzNBNy9FNDFGRjBBNjUz MjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlSYmdzZVFUcnc4TWluUENI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHTTNqNUtUaVJiZ3NlUVRydzhNaW5QQ0gwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzNBNy9FNDFGRjBBNjUzMjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlS YmdzZVFUcnc4TWluUENIMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwhlG9KVx+nfeFYWZV3kr4U5d2Cehf0GFTuGZIYx1r6LR8erheExu/ lncUDuieiJhu8xM4XRAJakLGGAAeoHWVOevGrxTjKVQoCTkZJTCeunDIrwm91MVB 5LXnolrywwnacB4zcDgOXt6TifyqiCD7vJ6tEvNusmzlwUEjCDZhqIvqBwftgPhh 4IuLD7MydvBJCEQh5BDMsLAMjLuRvPJoBGmlh76ulv7MAP0kAO/3BZXbiLl1XMNJ 6UBZWgXJXPIkUBtbjA0F6nZtGb5ZX+8kaHCqNbb5BAXKSovy28KT2DZw/rRgYh08 4zXbX6AE6WiSRMKqS0sKzNwJIZQ6emz8 -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:23 2025 by rpki-client