$ rpki-client -vvf rpki.apnic.net/member_repository/A91B92DC/563287F6812911EDA5B15073C4F9AE02/PtImrpJ_g5gXgFRs42LzNp7bJLM.mft File: PtImrpJ_g5gXgFRs42LzNp7bJLM.mft (raw, json) Hash identifier: wot7HLbV4fEH56zAD5KIBY2rFBGAwiEF3870HFF6dD8= Subject key identifier: 40:34:89:7B:55:06:33:A1:F2:DD:93:8B:9D:27:B2:33:CF:5C:4D:83 Authority key identifier: 3E:D2:26:AE:92:7F:83:98:17:80:54:6C:E3:62:F3:36:9E:DB:24:B3 Certificate issuer: /CN=A91B92DC/serialNumber=3ED226AE927F83981780546CE362F3369EDB24B3 Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtImrpJ_g5gXgFRs42LzNp7bJLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B92DC/563287F6812911EDA5B15073C4F9AE02/PtImrpJ_g5gXgFRs42LzNp7bJLM.mft Manifest number: 01B7 Signing time: Fri 25 Apr 2025 02:18:03 +0000 Manifest this update: Fri 25 Apr 2025 02:18:02 +0000 Manifest next update: Fri 02 May 2025 02:18:02 +0000 Files and hashes: 1: PtImrpJ_g5gXgFRs42LzNp7bJLM.crl (hash: OKSgXDgyqLavJWrJLsdDO/39+hlvco+ih169VD2DPv4=) 2: 3CD61DC8812D11ED9C04940EC4F9AE02.roa (hash: 4r+FPODWlYAg3R0bTGG1po2dllmEFZLNMXrI5xbY0sU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B92DC/563287F6812911EDA5B15073C4F9AE02/PtImrpJ_g5gXgFRs42LzNp7bJLM.crl rsync://rpki.apnic.net/member_repository/A91B92DC/563287F6812911EDA5B15073C4F9AE02/PtImrpJ_g5gXgFRs42LzNp7bJLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtImrpJ_g5gXgFRs42LzNp7bJLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B92DC, serialNumber=3ED226AE927F83981780546CE362F3369EDB24B3 Validity Not Before: Apr 25 02:18:02 2025 GMT Not After : May 2 02:18:02 2025 GMT Subject: CN=680af0db-0456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:dd:ac:1d:8b:e3:bc:da:27:9c:08:9f:2f:9f: b4:22:c3:c7:20:40:39:76:ad:64:5c:6b:31:77:6f: aa:bf:19:33:29:4e:3d:57:aa:17:c6:aa:c3:21:2a: 5c:d1:61:93:27:2a:37:67:75:d7:26:16:e3:1a:de: f5:57:99:05:c7:7f:34:3e:88:fa:82:ad:92:7c:20: f2:79:75:17:05:c0:48:48:5a:a2:f4:da:ef:2c:f1: e3:32:70:b1:15:44:e9:e0:35:99:23:4c:b9:19:4c: 5e:c0:e2:06:f1:c9:c6:9b:6a:7a:21:43:a8:3b:70: 8c:96:25:99:f9:5c:d6:ba:03:1b:75:93:d7:db:f1: 6c:a8:b7:12:2c:e7:f7:34:96:07:7f:2c:90:71:ad: 3f:3e:1f:11:52:ad:c0:d5:22:b8:8f:7e:66:98:ec: bf:bf:a9:ee:a0:10:93:6a:e4:2c:1d:4a:81:6d:f2: 37:18:ec:a6:0e:0e:68:69:03:8e:e3:d8:ea:59:4a: d0:6d:f8:92:eb:66:00:27:8a:ec:75:43:fb:4a:61: 58:78:19:cc:de:3f:c3:2f:18:8d:3b:73:2d:a5:e0: 68:0c:72:eb:32:cb:74:64:ed:4f:81:25:76:d4:a3: af:0f:a7:41:1b:9e:8b:46:f3:64:27:48:e4:69:74: b1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:34:89:7B:55:06:33:A1:F2:DD:93:8B:9D:27:B2:33:CF:5C:4D:83 X509v3 Authority Key Identifier: keyid:3E:D2:26:AE:92:7F:83:98:17:80:54:6C:E3:62:F3:36:9E:DB:24:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B92DC/563287F6812911EDA5B15073C4F9AE02/PtImrpJ_g5gXgFRs42LzNp7bJLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtImrpJ_g5gXgFRs42LzNp7bJLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B92DC/563287F6812911EDA5B15073C4F9AE02/PtImrpJ_g5gXgFRs42LzNp7bJLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ef:8a:1b:69:43:53:5f:c1:9c:91:68:05:17:21:f9:64:ca: 12:99:6b:f7:d7:d2:c3:1a:49:9d:12:9b:c8:4a:3d:96:a9:c8: 5f:33:16:3f:48:3f:11:d4:bc:ff:f9:1b:a8:f9:17:8d:07:f9: 10:f0:e4:80:a2:5f:f2:8e:12:cd:f8:ae:53:84:d8:cc:d6:fa: 69:f2:77:e6:2c:d8:a4:75:97:a1:71:8e:c7:73:1d:c9:4a:a3: 01:f1:56:ca:b3:5a:03:85:fe:31:27:10:dc:b8:22:aa:6a:b7: 44:43:4b:08:15:95:71:66:36:d4:a3:9b:a4:58:fc:f7:f0:4c: 03:c7:29:e2:48:0d:a2:f4:0b:09:50:b6:2a:4e:8b:d3:82:97: c6:b9:b3:d3:2d:7c:ef:56:cd:d5:04:2a:c3:a5:4d:f3:ec:4b: 1c:9a:dc:06:80:52:11:13:2b:d4:af:dd:6d:c8:88:2b:29:18: 71:12:8c:a0:0e:5e:8c:79:32:b5:8f:45:83:6d:2f:37:af:35: 0e:53:5d:61:56:d5:89:cc:a1:03:cf:2a:02:6f:f0:19:76:2d: ee:4a:62:0f:f0:41:7b:60:20:8b:5d:9a:00:97:74:1b:18:80: bf:e2:64:2a:9b:ef:be:23:90:bb:b6:11:8f:ad:ed:31:23:0d: 5e:3f:76:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyREMxMTAvBgNVBAUTKDNFRDIyNkFFOTI3RjgzOTgxNzgwNTQ2Q0UzNjJGMzM2 OUVEQjI0QjMwHhcNMjUwNDI1MDIxODAyWhcNMjUwNTAyMDIxODAyWjAYMRYwFAYD VQQDEw02ODBhZjBkYi0wNDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvN2sHYvjvNonnAifL5+0IsPHIEA5dq1kXGsxd2+qvxkzKU49V6oXxqrDISpc 0WGTJyo3Z3XXJhbjGt71V5kFx380Poj6gq2SfCDyeXUXBcBISFqi9NrvLPHjMnCx FUTp4DWZI0y5GUxewOIG8cnGm2p6IUOoO3CMliWZ+VzWugMbdZPX2/FsqLcSLOf3 NJYHfyyQca0/Ph8RUq3A1SK4j35mmOy/v6nuoBCTauQsHUqBbfI3GOymDg5oaQOO 49jqWUrQbfiS62YAJ4rsdUP7SmFYeBnM3j/DLxiNO3MtpeBoDHLrMst0ZO1PgSV2 1KOvD6dBG56LRvNkJ0jkaXSxNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEA0iXtV BjOh8t2Ti50nsjPPXE2DMB8GA1UdIwQYMBaAFD7SJq6Sf4OYF4BUbONi8zae2ySz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTJEQy81NjMyODdGNjgx MjkxMUVEQTVCMTUwNzNDNEY5QUUwMi9QdEltcnBKX2c1Z1hnRlJzNDJMek5wN2JK TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B0SW1ycEpfZzVnWGdGUnM0Mkx6TnA3YkpMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTJEQy81NjMyODdGNjgxMjkxMUVEQTVCMTUwNzNDNEY5QUUwMi9QdEltcnBKX2c1 Z1hnRlJzNDJMek5wN2JKTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz74obaUNTX8GckWgFFyH5ZMoSmWv319LDGkmdEpvISj2WqchfMxY/ SD8R1Lz/+Ruo+ReNB/kQ8OSAol/yjhLN+K5ThNjM1vpp8nfmLNikdZehcY7Hcx3J SqMB8VbKs1oDhf4xJxDcuCKqardEQ0sIFZVxZjbUo5ukWPz38EwDxyniSA2i9AsJ ULYqTovTgpfGubPTLXzvVs3VBCrDpU3z7EscmtwGgFIREyvUr91tyIgrKRhxEoyg Dl6MeTK1j0WDbS83rzUOU11hVtWJzKEDzyoCb/AZdi3uSmIP8EF7YCCLXZoAl3Qb GIC/4mQqm+++I5C7thGPre0xIw1eP3aq -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:12 2025 by rpki-client