$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json) Hash identifier: WzvWcUutAzCx+uRzs29IZLIb0/LkK2asCladg8VWnE8= Subject key identifier: B6:71:1E:96:BF:34:BE:9D:B5:64:BC:0D:9D:CA:19:7D:DF:7B:49:02 Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Certificate serial: 3479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft Manifest number: 5FF9 Signing time: Thu 24 Apr 2025 14:15:23 +0000 Manifest this update: Thu 24 Apr 2025 14:15:23 +0000 Manifest next update: Thu 01 May 2025 14:15:23 +0000 Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: OzKJm3b9xDezdHz/9s2LJMk4yR3fxNd97ytadwxwEf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13433 (0x3479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Validity Not Before: Apr 24 14:15:23 2025 GMT Not After : May 1 14:15:23 2025 GMT Subject: CN=680a477b-185e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:08:19:7a:79:83:49:34:84:91:64:21:83: a9:87:4b:56:76:06:3c:c5:f4:49:c8:5a:b9:bf:f0: a0:ab:88:0b:d9:87:78:5a:34:55:f3:b8:f4:09:6d: 0f:99:df:9e:b5:2b:83:74:3c:ce:d7:fe:aa:e8:6d: 58:95:d0:06:34:72:bc:8d:44:d2:91:ea:63:65:e3: be:b4:1e:dc:18:2d:d1:23:15:b1:1f:a0:11:27:80: 2d:9e:a9:e4:4a:db:34:3f:ef:62:29:82:31:22:da: 3e:a0:a3:e3:43:de:20:8f:23:ac:f4:08:ba:be:93: 3d:50:98:8c:d6:f2:1a:08:fa:fa:05:46:74:6c:4b: e7:91:9e:9c:c3:08:5d:3f:b4:85:b0:e8:8c:2d:2a: e1:53:2a:5f:32:c6:75:54:62:0d:c2:d0:34:a4:60: 67:65:82:0c:12:f2:5c:c2:ad:cb:21:71:cd:df:5d: c3:ef:fd:bf:e8:5b:5a:df:dc:a9:e9:31:14:a9:14: 42:56:2a:50:a3:58:39:f4:11:87:d2:46:60:9d:3b: d1:f7:9f:d1:fa:26:f0:cb:76:4b:d2:33:7a:0f:80: 69:ee:9e:0a:9b:25:3e:2f:e0:b3:ce:df:d7:a5:3f: 44:21:a1:97:b1:b3:a4:12:57:f7:1c:40:58:c8:f0: bc:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:71:1E:96:BF:34:BE:9D:B5:64:BC:0D:9D:CA:19:7D:DF:7B:49:02 X509v3 Authority Key Identifier: keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:f0:a9:5b:c3:b6:9e:b2:e8:98:41:c1:36:b0:b9:66:29:75: 1f:50:1b:b6:85:6c:95:34:3b:e8:02:b6:45:b6:e2:e3:bf:af: 54:5e:64:a5:34:7e:fd:94:91:f9:7d:4a:03:b9:a9:59:82:48: 3e:5a:f2:2f:a3:15:08:82:01:8d:d9:1d:0e:e0:90:df:26:83: 97:b9:5b:59:7e:d6:62:41:4a:5d:67:ed:8f:e6:aa:b3:81:af: 8b:fb:91:ba:d4:d9:bc:27:21:9a:fa:bc:03:54:36:b7:5b:cb: 35:3d:2b:a0:8a:87:08:be:44:10:03:16:0d:c2:92:8b:22:ae: bb:a7:70:af:c5:a0:0e:b4:69:70:70:b5:55:31:aa:c8:69:19: 7a:51:5a:87:d0:b1:56:44:0e:17:29:e9:a3:52:91:41:7e:5c: 06:ea:43:7f:a9:83:c0:ea:16:cf:c4:01:61:37:4c:cb:91:10: 0d:19:34:f5:8d:59:cc:a4:e5:43:d0:14:71:39:76:39:21:b9: 7f:79:c6:fc:a0:39:ff:d4:7c:54:82:d6:c0:c1:33:d3:ca:40: 6a:1b:85:2c:4f:50:bb:b2:cf:b4:87:e2:dd:5c:12:f6:66:f6: 4b:45:7d:b9:1c:59:bb:9a:71:24:cd:f9:1d:68:1c:2a:9d:de: 58:db:28:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNGNDFFMDQ4RDIyQjJBMUFFQTRDRTBCODQ0OTUyQTRB MzlENkNCMzcwHhcNMjUwNDI0MTQxNTIzWhcNMjUwNTAxMTQxNTIzWjAYMRYwFAYD VQQDEw02ODBhNDc3Yi0xODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTkIGXp5g0k0hJFkIYOph0tWdgY8xfRJyFq5v/Cgq4gL2Yd4WjRV87j0CW0P md+etSuDdDzO1/6q6G1YldAGNHK8jUTSkepjZeO+tB7cGC3RIxWxH6ARJ4Atnqnk Sts0P+9iKYIxIto+oKPjQ94gjyOs9Ai6vpM9UJiM1vIaCPr6BUZ0bEvnkZ6cwwhd P7SFsOiMLSrhUypfMsZ1VGINwtA0pGBnZYIMEvJcwq3LIXHN313D7/2/6Fta39yp 6TEUqRRCVipQo1g59BGH0kZgnTvR95/R+ibwy3ZL0jN6D4Bp7p4KmyU+L+Czzt/X pT9EIaGXsbOkElf3HEBYyPC8EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZxHpa/ NL6dtWS8DZ3KGX3fe0kCMB8GA1UdIwQYMBaAFD9B4EjSKyoa6kzguESVKko51ss3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05JcktocnFUT0M0UkpVcVNqbld5 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwSGdTTklyS2hycVRPQzRSSlVxU2puV3l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05Jckto cnFUT0M0UkpVcVNqbld5emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe8Klbw7aesuiYQcE2sLlmKXUfUBu2hWyVNDvoArZFtuLjv69UXmSl NH79lJH5fUoDualZgkg+WvIvoxUIggGN2R0O4JDfJoOXuVtZftZiQUpdZ+2P5qqz ga+L+5G61Nm8JyGa+rwDVDa3W8s1PSugiocIvkQQAxYNwpKLIq67p3CvxaAOtGlw cLVVMarIaRl6UVqH0LFWRA4XKemjUpFBflwG6kN/qYPA6hbPxAFhN0zLkRANGTT1 jVnMpOVD0BRxOXY5Ibl/ecb8oDn/1HxUgtbAwTPTykBqG4UsT1C7ss+0h+LdXBL2 ZvZLRX25HFm7mnEkzfkdaBwqnd5Y2yjX -----END CERTIFICATE-----Generated at Sat Apr 26 03:24:53 2025 by rpki-client