$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: VMRyrOZk7a5gkcjrryDMK4svvaoivd/5791a4VkNPZ8= Subject key identifier: 54:6C:41:EF:19:BD:AD:DD:B9:54:2E:81:EE:E6:7E:CA:8C:C9:3D:E3 Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 03 Signing time: Fri 25 Apr 2025 07:12:17 +0000 Manifest this update: Fri 25 Apr 2025 07:12:16 +0000 Manifest next update: Fri 02 May 2025 07:12:16 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: 6VC6dOuNAe6AgXXQfQ4eF70oiU2H55JSqgvJjk9YWqM=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Apr 25 07:12:16 2025 GMT Not After : May 2 07:12:16 2025 GMT Subject: CN=680b35d1-a85d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:17:1e:a2:26:84:63:e7:49:87:fe:5d:f2:6d: ad:4f:47:7a:6c:b7:99:5c:00:0a:2d:c7:d5:c5:d1: 06:b6:68:10:78:17:42:0c:b3:a7:e3:43:72:63:3e: 67:09:ae:ca:af:7f:c3:8b:a1:c1:fd:0b:eb:23:e6: 18:c1:1d:0c:48:49:fa:0c:44:c2:e8:c3:dd:60:f7: fc:1f:df:84:f7:e4:15:be:da:23:d3:d5:ca:c9:b0: c2:5b:64:c9:8a:4c:40:3c:52:48:83:cd:1a:a4:c4: ce:17:33:90:c4:dc:b0:fb:14:3c:8e:93:53:f1:e9: 1a:e0:0b:08:9b:69:84:78:a0:89:72:ad:a7:f4:09: 4c:15:c8:83:6a:22:70:25:a6:e9:15:67:c1:d4:c1: 4b:ca:aa:d7:c6:f6:d5:3b:cb:a8:95:72:04:b5:07: 95:8c:b9:96:29:fb:b7:71:38:1d:f4:70:b8:41:ef: e1:40:5e:2c:23:5f:b9:af:09:85:81:be:cb:b0:6d: 76:da:88:10:62:9a:43:44:37:43:96:1f:1c:92:2b: b3:0e:44:66:82:e1:bd:2c:84:7d:07:72:32:af:16: ab:d1:79:ed:03:f1:69:19:fb:a2:4a:22:28:7d:bd: fc:16:49:65:28:5f:7e:db:21:86:d2:5e:79:f4:52: ed:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:6C:41:EF:19:BD:AD:DD:B9:54:2E:81:EE:E6:7E:CA:8C:C9:3D:E3 X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:bb:08:48:e4:9f:7a:c8:3c:ad:56:c5:f0:24:e8:95:2d:e5: ca:cd:20:03:96:e4:3e:8d:ea:19:03:1f:2e:2f:7f:aa:4a:50: be:9c:27:ef:e8:02:aa:88:f2:3c:6b:18:d0:fe:60:e8:71:47: 6d:de:3c:43:ec:13:25:49:4c:90:dc:28:9a:81:22:8f:01:13: 6e:a9:66:f9:5d:ac:ac:7e:64:7a:be:fd:03:d8:d3:2a:97:2c: 3f:7c:5d:89:6c:d6:60:af:83:9f:ef:06:31:72:a2:ab:37:e7: b5:b8:0a:34:a6:34:d9:82:51:3f:63:29:be:81:a5:0e:1d:9b: 00:19:65:9f:8c:21:35:bb:f5:f1:e8:67:41:c6:eb:5e:1a:25: d6:d3:ad:08:6b:db:d2:1f:08:a0:96:bb:9b:e8:cc:dc:eb:4c: 48:51:22:9f:d5:ec:6c:29:bf:f0:2e:18:ea:9f:d2:ae:48:a6: 17:e1:01:ea:d3:20:89:ee:7f:d3:78:8f:62:2c:59:c0:4f:c8: 11:fa:6b:9e:51:f9:b1:2a:fd:08:68:4e:87:94:db:6e:f5:b3: 93:91:1a:a7:19:36:f4:07:39:ae:ff:d3:5b:a9:d0:c6:3d:19: de:3d:e1:29:66:2e:a2:ce:c5:69:c2:b8:e3:49:6b:0a:9d:07: 7f:84:6a:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTA0MjUwNzEyMTZaFw0yNTA1MDIwNzEyMTZaMBgxFjAUBgNV BAMTDTY4MGIzNWQxLWE4NWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqFx6iJoRj50mH/l3yba1PR3pst5lcAAotx9XF0Qa2aBB4F0IMs6fjQ3JjPmcJ rsqvf8OLocH9C+sj5hjBHQxISfoMRMLow91g9/wf34T35BW+2iPT1crJsMJbZMmK TEA8UkiDzRqkxM4XM5DE3LD7FDyOk1Px6RrgCwibaYR4oIlyraf0CUwVyINqInAl pukVZ8HUwUvKqtfG9tU7y6iVcgS1B5WMuZYp+7dxOB30cLhB7+FAXiwjX7mvCYWB vsuwbXbaiBBimkNEN0OWHxySK7MORGaC4b0shH0HcjKvFqvRee0D8WkZ+6JKIih9 vfwWSWUoX37bIYbSXnn0Uu2NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVGxB7xm9 rd25VC6B7uZ+yozJPeMwHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 NkIyL0M0RjE1NDcyMjAxNjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEw NDNaTHFHb25vaUhGQU9qRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKi7CEjkn3rIPK1WxfAk6JUt5crNIAOW5D6N6hkDHy4vf6pKUL6cJ+/o AqqI8jxrGND+YOhxR23ePEPsEyVJTJDcKJqBIo8BE26pZvldrKx+ZHq+/QPY0yqX LD98XYls1mCvg5/vBjFyoqs357W4CjSmNNmCUT9jKb6BpQ4dmwAZZZ+MITW79fHo Z0HG614aJdbTrQhr29IfCKCWu5vozNzrTEhRIp/V7Gwpv/AuGOqf0q5IphfhAerT IInuf9N4j2IsWcBPyBH6a55R+bEq/QhoToeU2271s5ORGqcZNvQHOa7/01up0MY9 Gd494SlmLqLOxWnCuONJawqdB3+Eano= -----END CERTIFICATE-----Generated at Sat Apr 26 04:49:02 2025 by rpki-client