$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.mft File: puZHuaRPqqc-u4IEBQzGTMpFmOo.mft (raw, json) Hash identifier: XMaUr5ssdrSEkzslgzBCS20HYtMrR4H1X4i9BpdESdM= Subject key identifier: D3:83:AC:AB:8B:0B:3C:F3:56:88:E1:E0:E4:13:31:CC:B0:9E:A5:02 Authority key identifier: A6:E6:47:B9:A4:4F:AA:A7:3E:BB:82:04:05:0C:C6:4C:CA:45:98:EA Certificate issuer: /CN=A91C5319/serialNumber=A6E647B9A44FAAA73EBB8204050CC64CCA4598EA Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/puZHuaRPqqc-u4IEBQzGTMpFmOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.mft Manifest number: 63 Signing time: Fri 25 Apr 2025 06:00:13 +0000 Manifest this update: Fri 25 Apr 2025 06:00:13 +0000 Manifest next update: Fri 02 May 2025 06:00:13 +0000 Files and hashes: 1: puZHuaRPqqc-u4IEBQzGTMpFmOo.crl (hash: ymdQ2DGOS4Gd4jmWAb9M/VPiglMByXfx840nsHeVlHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.crl rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/puZHuaRPqqc-u4IEBQzGTMpFmOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319, serialNumber=A6E647B9A44FAAA73EBB8204050CC64CCA4598EA Validity Not Before: Apr 25 06:00:13 2025 GMT Not After : May 2 06:00:13 2025 GMT Subject: CN=680b24ed-30e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bd:9d:e0:7c:54:21:2a:ca:f5:ac:d8:9c:b7: 81:fc:88:48:b3:01:5b:df:f5:f6:1b:07:13:3f:ff: 6c:42:6f:e9:eb:5b:2b:ce:d4:6f:f4:35:07:c1:b3: 0c:fc:dc:d6:4a:92:32:4c:ca:f0:3d:40:1c:e0:c7: 0d:63:9a:71:d1:9e:d7:38:cb:f7:d1:b1:78:58:a9: fc:2e:6f:2d:2d:3b:51:67:17:4c:70:41:7f:4c:95: ae:3e:1e:5c:43:37:4c:a0:44:5d:11:83:7e:61:c6: 7c:91:58:fd:53:69:ee:ce:c1:4c:ae:fa:7a:1c:4e: e9:42:c6:14:9a:a8:2a:24:6f:52:34:50:61:ff:2e: 04:e9:d3:10:cf:ac:91:37:cd:dd:01:c5:18:ff:21: 19:01:01:3e:55:c0:1c:bd:d4:58:82:b7:60:a7:f0: 0c:37:29:ba:e9:c7:9e:04:0e:8b:07:07:fe:36:4c: cc:92:98:43:8b:a4:1e:55:50:d2:15:77:72:f1:d9: dd:52:7c:ee:bf:01:76:5e:74:74:a4:92:07:9c:64: 92:2c:4d:09:de:46:df:26:85:0e:c3:5a:ce:a7:8e: 3f:86:d1:79:e4:7a:95:7b:66:8a:4d:30:b3:ae:e4: 0f:8d:0d:4f:88:6f:77:8a:61:f1:f2:45:24:0a:cd: a1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:83:AC:AB:8B:0B:3C:F3:56:88:E1:E0:E4:13:31:CC:B0:9E:A5:02 X509v3 Authority Key Identifier: keyid:A6:E6:47:B9:A4:4F:AA:A7:3E:BB:82:04:05:0C:C6:4C:CA:45:98:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/puZHuaRPqqc-u4IEBQzGTMpFmOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/025D7B5C8C2D11EF8122EC11C4F9AE02/puZHuaRPqqc-u4IEBQzGTMpFmOo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:3c:f3:3a:dd:08:0c:a0:6f:d1:92:d6:36:3a:63:a5:e7:bb: 59:77:70:95:9b:c0:45:fa:9e:f8:4d:5a:f1:94:e1:fb:15:b3: b2:59:80:89:28:6a:71:1c:eb:4e:7c:9d:0c:f4:bb:e7:95:f6: ad:66:ee:87:9d:fd:54:d9:4a:a1:9c:21:97:be:a7:78:55:75: 3a:24:3e:37:c7:98:43:ef:8c:a2:56:54:a6:62:66:33:f7:7d: 30:fd:18:cd:cb:bf:96:6d:23:58:c5:74:c8:b2:62:60:24:5d: 5d:f9:37:6e:f0:2b:d2:ed:82:b8:7a:86:4a:91:31:0a:18:08: c0:ce:87:00:e6:b3:da:29:e9:6c:f3:9d:cd:99:13:1f:3a:5e: 2d:87:30:f6:a3:57:ca:49:94:3e:bc:f4:b5:cc:ea:5e:06:07: bd:47:eb:74:e4:2e:35:07:f6:60:e1:46:fd:a8:cf:a8:42:c2: 67:a3:bf:fd:0c:a2:ca:87:d8:4c:a3:f6:34:5b:ea:f4:42:eb: 79:21:21:59:64:01:99:24:70:12:48:4b:77:52:39:24:85:b3: 84:5d:25:af:f5:3b:ba:7b:e4:2b:77:9e:4e:e5:dc:d6:59:36: 71:4d:f8:12:3f:11:fd:69:16:6c:c9:89:62:08:51:c2:b4:af: 75:ae:a1:c1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTMxOTExMC8GA1UEBRMoQTZFNjQ3QjlBNDRGQUFBNzNFQkI4MjA0MDUwQ0M2NEND QTQ1OThFQTAeFw0yNTA0MjUwNjAwMTNaFw0yNTA1MDIwNjAwMTNaMBgxFjAUBgNV BAMTDTY4MGIyNGVkLTMwZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJvZ3gfFQhKsr1rNict4H8iEizAVvf9fYbBxM//2xCb+nrWyvO1G/0NQfBswz8 3NZKkjJMyvA9QBzgxw1jmnHRntc4y/fRsXhYqfwuby0tO1FnF0xwQX9Mla4+HlxD N0ygRF0Rg35hxnyRWP1Tae7OwUyu+nocTulCxhSaqCokb1I0UGH/LgTp0xDPrJE3 zd0BxRj/IRkBAT5VwBy91FiCt2Cn8Aw3Kbrpx54EDosHB/42TMySmEOLpB5VUNIV d3Lx2d1SfO6/AXZedHSkkgecZJIsTQneRt8mhQ7DWs6njj+G0XnkepV7ZopNMLOu 5A+NDU+Ib3eKYfHyRSQKzaFXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU04Osq4sL PPNWiOHg5BMxzLCepQIwHwYDVR0jBBgwFoAUpuZHuaRPqqc+u4IEBQzGTMpFmOow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1MzE5LzAyNUQ3QjVDOEMy RDExRUY4MTIyRUMxMUM0RjlBRTAyL3B1Wkh1YVJQcXFjLXU0SUVCUXpHVE1wRm1P by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcHVaSHVhUlBxcWMtdTRJRUJRekdUTXBGbU9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 MzE5LzAyNUQ3QjVDOEMyRDExRUY4MTIyRUMxMUM0RjlBRTAyL3B1Wkh1YVJQcXFj LXU0SUVCUXpHVE1wRm1Pby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIY88zrdCAygb9GS1jY6Y6Xnu1l3cJWbwEX6nvhNWvGU4fsVs7JZgIko anEc6058nQz0u+eV9q1m7oed/VTZSqGcIZe+p3hVdTokPjfHmEPvjKJWVKZiZjP3 fTD9GM3Lv5ZtI1jFdMiyYmAkXV35N27wK9Ltgrh6hkqRMQoYCMDOhwDms9op6Wzz nc2ZEx86Xi2HMPajV8pJlD689LXM6l4GB71H63TkLjUH9mDhRv2oz6hCwmejv/0M osqH2Eyj9jRb6vRC63khIVlkAZkkcBJIS3dSOSSFs4RdJa/1O7p75Ct3nk7l3NZZ NnFN+BI/Ef1pFmzJiWIIUcK0r3WuocE= -----END CERTIFICATE-----Generated at Sat Apr 26 05:10:09 2025 by rpki-client