$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft File: PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft (raw, json) Hash identifier: qurGRngH7dFv7MwehKBJSuaCDo9h5RBDQlOdZm78qnQ= Subject key identifier: 09:F8:04:CB:5B:55:BB:18:16:50:F7:55:3B:C2:B8:20:6A:76:45:99 Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 0381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft Manifest number: 037C Signing time: Fri 25 Apr 2025 00:40:15 +0000 Manifest this update: Fri 25 Apr 2025 00:40:14 +0000 Manifest next update: Fri 02 May 2025 00:40:14 +0000 Files and hashes: 1: PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl (hash: BUaUmbfWg7cQUXsTwHyp4i1nqD3Co2NEc7vz2vNoLtM=) 2: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (hash: eYkm574zXfPZBssf+KqgdlPvB8riPVJCVgCP7O8B6S0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9, serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Apr 25 00:40:14 2025 GMT Not After : May 2 00:40:14 2025 GMT Subject: CN=680ad9ef-9664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b2:d1:07:f9:33:38:dc:36:66:bd:4b:9d:04: 04:b6:1f:8f:e4:a7:64:cf:61:46:66:86:f4:10:e5: dc:f1:02:e4:8d:28:19:ad:8a:0e:36:e3:bb:be:32: 7e:53:95:54:19:b2:ea:69:53:92:b2:ff:ca:7d:d7: 3a:f6:10:6a:aa:1f:e6:60:90:3f:e9:e7:85:a0:fd: 98:2f:e4:68:75:9a:9b:34:5f:6c:4e:04:72:fb:e7: ca:ab:ec:79:ca:cb:3d:71:16:96:22:a4:31:6b:ff: 73:6c:59:0f:ff:4b:6a:f5:4c:9a:b8:43:cc:44:64: 5a:5d:67:d3:fd:f2:8b:2a:7e:78:a4:82:89:85:73: 1a:a4:e1:c6:ac:24:a3:b7:91:e8:df:28:30:46:ab: d4:0c:0d:8e:2b:bb:4c:5a:0b:30:c2:ed:c2:47:ec: b2:33:71:27:f6:ee:04:e0:b6:c9:cc:2a:3b:19:3d: af:96:30:e5:4d:c4:9a:57:8c:e0:d1:df:10:ec:5d: 0c:bc:37:31:f0:dc:fc:95:18:3c:4a:fc:8f:71:41: bd:d7:ca:c6:ab:8f:05:00:0e:5c:60:67:4e:95:58: 52:b0:32:3d:52:60:30:37:41:70:16:21:69:08:6e: 47:d0:f0:62:51:3b:0a:28:c7:c5:a4:e6:d5:cf:5e: 10:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F8:04:CB:5B:55:BB:18:16:50:F7:55:3B:C2:B8:20:6A:76:45:99 X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:37:a3:37:70:b6:f7:17:9b:bb:2d:a9:98:7f:fd:eb:7a:dd: a8:6c:41:89:0a:0f:fa:b0:b9:3f:3e:57:fe:f3:50:6e:89:c7: 34:33:97:1b:5a:20:21:b1:2e:b8:31:30:1e:be:4c:4c:bd:8d: 17:f2:67:49:5e:42:63:d9:98:87:91:74:3e:17:94:52:a4:46: 43:ea:fa:d3:7d:d2:e7:b9:f6:4a:90:d7:c9:40:ac:08:fc:d8: 64:a2:e4:97:d4:42:86:86:80:00:0d:9e:58:e6:cc:85:3f:e7: 87:fd:bd:db:11:31:71:2b:db:96:e7:9d:e4:a1:a9:83:8b:b1: be:bc:57:6c:51:ef:bc:04:1d:64:3d:26:88:f8:0e:cb:73:78: 37:7e:21:16:7e:a7:a7:c7:06:ba:d7:ee:6a:07:54:fb:ce:b5: be:40:28:28:e6:be:8b:b5:8d:fe:f3:e6:cd:59:27:0d:4b:66: 6e:d7:76:60:df:a0:8a:19:2d:c1:35:6a:13:20:f1:15:8c:c9: e8:af:24:55:9e:a8:1a:a1:61:69:50:66:1f:b6:97:a7:57:55: ed:87:98:f7:87:c2:7b:13:08:b6:6b:22:17:2b:14:14:47:dc: 2e:29:ac:d8:23:e3:43:1d:34:d3:fe:87:25:37:8d:8e:b9:5c: 56:f0:62:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjUwNDI1MDA0MDE0WhcNMjUwNTAyMDA0MDE0WjAYMRYwFAYD VQQDEw02ODBhZDllZi05NjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurLRB/kzONw2Zr1LnQQEth+P5Kdkz2FGZob0EOXc8QLkjSgZrYoONuO7vjJ+ U5VUGbLqaVOSsv/Kfdc69hBqqh/mYJA/6eeFoP2YL+RodZqbNF9sTgRy++fKq+x5 yss9cRaWIqQxa/9zbFkP/0tq9UyauEPMRGRaXWfT/fKLKn54pIKJhXMapOHGrCSj t5Ho3ygwRqvUDA2OK7tMWgswwu3CR+yyM3En9u4E4LbJzCo7GT2vljDlTcSaV4zg 0d8Q7F0MvDcx8Nz8lRg8SvyPcUG918rGq48FAA5cYGdOlVhSsDI9UmAwN0FwFiFp CG5H0PBiUTsKKMfFpObVz14Q0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAn4BMtb VbsYFlD3VTvCuCBqdkWZMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTBCOS9EMTNCRUFBQUEwRkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdz Vmp0a0psSmlpUjFOcEdwNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1N6M3cLb3F5u7LamYf/3ret2obEGJCg/6sLk/Plf+81Buicc0M5cb WiAhsS64MTAevkxMvY0X8mdJXkJj2ZiHkXQ+F5RSpEZD6vrTfdLnufZKkNfJQKwI /NhkouSX1EKGhoAADZ5Y5syFP+eH/b3bETFxK9uW553koamDi7G+vFdsUe+8BB1k PSaI+A7Lc3g3fiEWfqenxwa61+5qB1T7zrW+QCgo5r6LtY3+8+bNWScNS2Zu13Zg 36CKGS3BNWoTIPEVjMnoryRVnqgaoWFpUGYftpenV1Xth5j3h8J7Ewi2ayIXKxQU R9wuKazYI+NDHTTT/oclN42OuVxW8GIE -----END CERTIFICATE-----Generated at Sat Apr 26 04:48:15 2025 by rpki-client