$ rpki-client -vvf rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft File: Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft (raw, json) Hash identifier: LmGjaobULzpczopR8VLoCIjHOkium/+b2OM8ZiE2dpY= Subject key identifier: 00:30:E9:DA:62:6D:07:41:8E:94:EE:78:6F:40:C9:DD:79:6C:E3:E1 Authority key identifier: 3E:67:DB:F7:82:20:28:93:F1:FB:5A:F7:D6:FC:09:D0:01:8F:DF:06 Certificate issuer: /CN=A918AA54/serialNumber=3E67DBF782202893F1FB5AF7D6FC09D0018FDF06 Certificate serial: 02E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft Manifest number: 02E4 Signing time: Fri 25 Apr 2025 01:05:58 +0000 Manifest this update: Fri 25 Apr 2025 01:05:57 +0000 Manifest next update: Fri 02 May 2025 01:05:57 +0000 Files and hashes: 1: Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl (hash: TLCb2FDIbZz0+TRgeAb51iM4i4+NdC/wVdGbNlCqhG4=) 2: F7ACA074DC3F11EC8323B460C4F9AE02.roa (hash: pktrHR+QS/er0s+loh1K6z6/oPCthVtEcSW6fBSWLVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AA54, serialNumber=3E67DBF782202893F1FB5AF7D6FC09D0018FDF06 Validity Not Before: Apr 25 01:05:57 2025 GMT Not After : May 2 01:05:57 2025 GMT Subject: CN=680adff6-09b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5a:cc:67:f5:79:8d:23:27:7b:5e:02:27:56: ae:05:47:55:74:96:6d:e4:39:16:c3:59:b2:e9:43: 84:56:ee:89:0d:88:0a:68:ec:71:12:42:6b:47:f4: 80:f4:a2:12:4b:d5:10:d5:78:e2:ab:0c:b3:50:70: 39:f5:aa:2c:77:0a:42:19:f3:37:15:c8:c1:98:d8: fb:47:4f:a3:6c:0a:c8:bf:d6:64:69:e0:86:70:d5: 2d:93:d3:ca:60:f9:8c:4c:2f:eb:0a:a7:45:62:df: f8:61:c3:e7:29:8f:5b:be:2d:f1:a7:fa:21:90:24: 38:80:89:db:33:d7:12:8a:0b:ef:53:99:29:d8:0a: 68:30:cd:bb:91:57:48:ed:75:f6:88:1e:bb:1b:ee: 39:e0:1a:2f:53:a7:2f:5b:aa:7e:f8:dc:80:74:aa: 32:a4:7f:9e:3c:d7:84:c4:63:fa:7e:4b:2c:85:35: d0:58:97:c1:be:25:b7:67:be:74:37:bd:c5:24:f6: 04:b2:7c:8d:83:a6:dd:4d:29:4b:14:51:e8:3d:3f: 2f:d9:3c:f1:7a:9a:e2:c6:7b:0b:f5:0c:ce:57:0a: f7:80:a7:54:3c:3f:98:1b:4a:a4:be:e0:f4:63:aa: 7e:41:76:65:60:dc:55:7a:49:69:8d:0b:63:72:71: 57:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:30:E9:DA:62:6D:07:41:8E:94:EE:78:6F:40:C9:DD:79:6C:E3:E1 X509v3 Authority Key Identifier: keyid:3E:67:DB:F7:82:20:28:93:F1:FB:5A:F7:D6:FC:09:D0:01:8F:DF:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b7:86:a1:0b:7e:bc:17:8b:e9:c7:f6:43:54:dd:4a:41:35: 01:b0:af:18:d4:23:06:7d:cb:c1:e8:d5:cf:ac:73:5d:e9:0d: e1:1f:9f:dc:83:58:73:3a:2d:5b:de:f5:0c:94:5d:50:12:92: 27:8b:c4:9b:40:c7:30:49:35:fc:71:7b:83:e7:8a:4d:21:77: 79:b2:d7:83:68:0c:0d:81:56:be:f2:24:c7:be:26:f1:db:89: 4a:6a:fa:cf:8c:eb:d9:0c:85:57:2f:73:98:c0:ef:b6:9e:42: 85:37:9d:10:59:a4:83:f4:cd:25:5f:60:46:b8:05:f4:e3:f4: 52:fe:17:ca:21:a2:37:f6:64:fd:57:35:0e:8f:38:7d:29:6b: cd:1e:dc:de:50:8d:f7:a1:c2:81:fe:4d:55:86:05:96:fd:2f: c6:59:91:b5:9e:1a:4e:80:a8:e5:e2:d5:c7:0b:5e:42:7c:49: 61:80:81:34:05:33:9e:de:be:3a:e9:85:70:d0:f4:32:99:96: c5:19:96:b9:3a:be:82:72:27:67:09:c2:f9:08:5b:a5:dd:1b: 13:d8:5c:10:0b:ec:37:4a:b9:f2:b0:64:0a:5a:88:9a:f3:55: a5:79:61:8e:c8:4b:a5:12:ed:ac:50:d8:7f:a1:69:7c:68:59: fc:e9:74:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBNTQxMTAvBgNVBAUTKDNFNjdEQkY3ODIyMDI4OTNGMUZCNUFGN0Q2RkMwOUQw MDE4RkRGMDYwHhcNMjUwNDI1MDEwNTU3WhcNMjUwNTAyMDEwNTU3WjAYMRYwFAYD VQQDEw02ODBhZGZmNi0wOWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFrMZ/V5jSMne14CJ1auBUdVdJZt5DkWw1my6UOEVu6JDYgKaOxxEkJrR/SA 9KISS9UQ1XjiqwyzUHA59aosdwpCGfM3FcjBmNj7R0+jbArIv9ZkaeCGcNUtk9PK YPmMTC/rCqdFYt/4YcPnKY9bvi3xp/ohkCQ4gInbM9cSigvvU5kp2ApoMM27kVdI 7XX2iB67G+454BovU6cvW6p++NyAdKoypH+ePNeExGP6fksshTXQWJfBviW3Z750 N73FJPYEsnyNg6bdTSlLFFHoPT8v2TzxeprixnsL9QzOVwr3gKdUPD+YG0qkvuD0 Y6p+QXZlYNxVeklpjQtjcnFXpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAw6dpi bQdBjpTueG9Ayd15bOPhMB8GA1UdIwQYMBaAFD5n2/eCICiT8fta99b8CdABj98G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUE1NC9EODhDRDlENkRD MzgxMUVDOTM5MTBCNjhDNEY5QUUwMi9QbWZiOTRJZ0tKUHgtMXIzMXZ3SjBBR1Az d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BtZmI5NElnS0pQeC0xcjMxdndKMEFHUDN3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUE1NC9EODhDRDlENkRDMzgxMUVDOTM5MTBCNjhDNEY5QUUwMi9QbWZiOTRJZ0tK UHgtMXIzMXZ3SjBBR1Azd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKt4ahC368F4vpx/ZDVN1KQTUBsK8Y1CMGfcvB6NXPrHNd6Q3hH5/c g1hzOi1b3vUMlF1QEpIni8SbQMcwSTX8cXuD54pNIXd5steDaAwNgVa+8iTHvibx 24lKavrPjOvZDIVXL3OYwO+2nkKFN50QWaSD9M0lX2BGuAX04/RS/hfKIaI39mT9 VzUOjzh9KWvNHtzeUI33ocKB/k1VhgWW/S/GWZG1nhpOgKjl4tXHC15CfElhgIE0 BTOe3r466YVw0PQymZbFGZa5Or6CcidnCcL5CFul3RsT2FwQC+w3SrnysGQKWoia 81WleWGOyEulEu2sUNh/oWl8aFn86XSv -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:50 2025 by rpki-client