$ rpki-client -vvf rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft File: PNcVUq-qATj5pk4BYO7wYJYGUyM.mft (raw, json) Hash identifier: GMiZIyCndMeDtzV21w63C8OXxNve0LI6zqPCckRlMt8= Subject key identifier: 3C:7C:3E:03:21:07:23:79:3A:63:40:FB:EF:D1:9A:9C:CC:68:D3:86 Authority key identifier: 3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 Certificate issuer: /CN=A9196CE1/serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft Manifest number: 0111 Signing time: Fri 25 Apr 2025 03:58:59 +0000 Manifest this update: Fri 25 Apr 2025 03:58:58 +0000 Manifest next update: Fri 02 May 2025 03:58:58 +0000 Files and hashes: 1: PNcVUq-qATj5pk4BYO7wYJYGUyM.crl (hash: UmGwPw7YDiXlni8SvxCGTtq7kNCALxqvx5eMD4kyGKM=) 2: 4F7CFB9A82B711EE997EB92AC4F9AE02.roa (hash: VY07hPoAnZ6HhFnmDGOrse/S2/32FKp0YWgAY+x8IqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196CE1, serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323 Validity Not Before: Apr 25 03:58:58 2025 GMT Not After : May 2 03:58:58 2025 GMT Subject: CN=680b0883-72d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:69:4a:23:0e:af:53:50:4e:f7:91:6c:01:97: b1:9f:cb:d6:39:fc:f8:ab:bb:57:08:49:31:d5:d9: 80:28:99:f3:6b:17:54:44:d3:74:58:fa:bf:5f:5a: ea:e9:33:92:e8:9b:62:ff:35:3a:a9:a3:7d:87:73: 28:77:01:a8:f5:8a:73:38:43:c1:44:b6:0c:6a:20: 25:b1:bd:d7:e8:98:b3:27:03:93:b5:1f:d5:76:02: b1:0d:6d:4a:ad:38:45:ea:ee:79:8e:d5:cc:09:a8: ec:a6:3e:dd:41:fb:21:2a:e4:5b:01:7e:31:63:f5: 26:6f:01:61:09:d3:f4:2f:4b:b5:49:33:8a:dc:52: 72:cd:f7:3a:cc:ba:cf:52:c0:66:a1:0a:d1:40:b6: b5:5b:ce:50:07:12:a4:17:a7:63:d3:a6:dd:e1:2d: 40:8a:8a:d8:4c:c5:d2:1c:15:0b:2f:31:78:a5:e6: f1:f4:17:df:35:78:71:54:de:7b:9e:1d:7a:18:fd: be:ff:d4:90:72:6d:61:70:a8:f4:bf:07:d3:1c:10: f2:2a:09:3a:ea:60:24:4d:56:7e:14:52:4e:d3:7b: 0f:0e:d1:ff:ed:34:8f:30:0b:7d:16:73:33:7b:0a: 4d:d6:e1:11:49:f0:e0:8b:74:71:51:e0:04:f8:ad: 5b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7C:3E:03:21:07:23:79:3A:63:40:FB:EF:D1:9A:9C:CC:68:D3:86 X509v3 Authority Key Identifier: keyid:3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:06:f3:35:f5:94:10:8e:59:e9:7b:16:0a:a5:c9:2c:76:75: e2:84:e1:b3:c2:55:fd:3c:14:62:36:0d:4e:cd:df:3b:55:6d: 25:59:70:2c:0f:a3:12:b4:fc:71:22:de:76:73:f2:44:8d:68: fe:1b:0d:c0:b5:59:c7:e6:25:c8:3b:44:6d:3d:ce:13:b9:32: bc:70:93:63:2e:fa:b0:02:de:63:20:7e:a3:56:1c:06:fa:56: 8a:8d:a4:15:e2:7b:0f:00:4b:10:ce:59:14:dd:bd:ee:48:20: f3:1e:3a:0a:3c:b9:ca:83:02:86:d9:69:01:de:5b:09:0d:1d: 7b:32:78:d3:61:52:e9:41:c5:fd:93:ac:e4:61:8f:2f:18:01: e8:9f:54:7a:df:7c:6f:2f:24:04:fc:c0:39:06:ea:05:55:70: e6:4d:32:0e:93:63:e0:b0:8c:ae:90:bb:48:13:41:b2:0e:7b: 9b:55:a1:22:c0:1a:49:38:1f:7c:83:73:63:d5:f0:37:50:ef: bd:b4:3b:34:a9:70:8c:91:bc:ad:4d:42:e6:a4:7d:fc:35:87: 1d:10:6e:79:5c:01:8e:67:09:84:5a:a2:b5:78:75:6c:70:18: 04:29:5c:17:16:19:23:68:20:4c:2b:51:21:1c:3c:05:76:35: f3:5e:af:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZDRTExMTAvBgNVBAUTKDNDRDcxNTUyQUZBQTAxMzhGOUE2NEUwMTYwRUVGMDYw OTYwNjUzMjMwHhcNMjUwNDI1MDM1ODU4WhcNMjUwNTAyMDM1ODU4WjAYMRYwFAYD VQQDEw02ODBiMDg4My03MmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGlKIw6vU1BO95FsAZexn8vWOfz4q7tXCEkx1dmAKJnzaxdURNN0WPq/X1rq 6TOS6Jti/zU6qaN9h3ModwGo9YpzOEPBRLYMaiAlsb3X6JizJwOTtR/VdgKxDW1K rThF6u55jtXMCajspj7dQfshKuRbAX4xY/UmbwFhCdP0L0u1STOK3FJyzfc6zLrP UsBmoQrRQLa1W85QBxKkF6dj06bd4S1AiorYTMXSHBULLzF4pebx9BffNXhxVN57 nh16GP2+/9SQcm1hcKj0vwfTHBDyKgk66mAkTVZ+FFJO03sPDtH/7TSPMAt9FnMz ewpN1uERSfDgi3RxUeAE+K1bnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDx8PgMh ByN5OmNA++/RmpzMaNOGMB8GA1UdIwQYMBaAFDzXFVKvqgE4+aZOAWDu8GCWBlMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkNFMS9FODgxRThFQzgy QjYxMUVFOUJGQzA2MURDNEY5QUUwMi9QTmNWVXEtcUFUajVwazRCWU83d1lKWUdV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOY1ZVcS1xQVRqNXBrNEJZTzd3WUpZR1V5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkNFMS9FODgxRThFQzgyQjYxMUVFOUJGQzA2MURDNEY5QUUwMi9QTmNWVXEtcUFU ajVwazRCWU83d1lKWUdVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFBvM19ZQQjlnpexYKpcksdnXihOGzwlX9PBRiNg1Ozd87VW0lWXAs D6MStPxxIt52c/JEjWj+Gw3AtVnH5iXIO0RtPc4TuTK8cJNjLvqwAt5jIH6jVhwG +laKjaQV4nsPAEsQzlkU3b3uSCDzHjoKPLnKgwKG2WkB3lsJDR17MnjTYVLpQcX9 k6zkYY8vGAHon1R633xvLyQE/MA5BuoFVXDmTTIOk2PgsIyukLtIE0GyDnubVaEi wBpJOB98g3Nj1fA3UO+9tDs0qXCMkbytTULmpH38NYcdEG55XAGOZwmEWqK1eHVs cBgEKVwXFhkjaCBMK1EhHDwFdjXzXq+w -----END CERTIFICATE-----Generated at Sat Apr 26 14:12:58 2025 by rpki-client