$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: KYVJS6xEqvhWlzgRHrkh54JY08gjl3OK3nlLFRp4Plc= Subject key identifier: BE:A2:7B:FB:D6:3D:6F:41:8D:5C:9E:2D:9C:F9:B0:9E:79:C9:73:B8 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 0274 Signing time: Fri 25 Apr 2025 01:28:47 +0000 Manifest this update: Fri 25 Apr 2025 01:28:47 +0000 Manifest next update: Fri 02 May 2025 01:28:47 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: euemAI4hLi83DIJYl21lAg5fmRP4kHKAoYS2duY0HoM=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: yZy+TqtowAyp3q8j4FvJTBd3TEpqHb7gUX+ZaoqGeKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Apr 25 01:28:47 2025 GMT Not After : May 2 01:28:47 2025 GMT Subject: CN=680ae54f-b695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1e:c6:d1:b8:54:a5:27:a9:87:25:37:1f:18: 69:77:bb:aa:46:45:27:bb:ed:51:d0:05:54:cb:c1: 63:8a:71:bd:c3:09:cc:b3:95:82:eb:5c:51:75:b9: 94:c2:61:69:57:91:ea:0c:15:0e:b6:c3:f2:4b:0c: 0a:a2:48:9c:88:2d:55:b3:79:00:9b:50:26:d6:9d: 59:c9:c6:4c:42:79:29:0e:6b:8d:d7:12:b5:0d:ce: 3e:0b:c6:78:42:e5:5b:62:53:34:70:29:63:d5:de: bc:55:4e:4a:1a:97:d3:d5:af:17:de:44:75:57:a6: 12:ba:67:e5:73:a9:ae:12:36:f1:6a:c1:6b:a3:69: 76:c3:ad:7f:8a:31:62:70:88:72:b8:ce:13:08:60: e3:0f:5d:47:51:08:c4:84:b0:78:39:b4:59:c6:64: c4:78:93:23:de:8c:84:a7:19:62:74:2b:ab:d2:95: 84:1e:85:89:fe:aa:0b:3a:83:f6:83:42:71:44:17: 6a:6e:06:d2:17:cc:df:dc:02:18:52:f8:96:7e:9e: 7c:12:7b:1b:50:f8:33:ab:0e:dd:49:03:aa:5c:7a: 79:c8:e4:be:be:b0:94:12:17:ce:e7:dc:d6:23:2a: 59:4f:0c:49:67:c7:95:4e:1f:6e:78:38:9a:2c:14: af:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A2:7B:FB:D6:3D:6F:41:8D:5C:9E:2D:9C:F9:B0:9E:79:C9:73:B8 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:5e:2d:80:f1:35:a8:3a:4a:1c:66:5a:07:7c:9b:6b:ba:ff: df:44:5e:22:b3:d2:d4:f1:64:e5:ee:27:0c:69:7f:6f:04:9d: 3b:3d:04:c6:35:13:ac:45:89:93:fc:d7:01:9f:88:52:5a:2a: 0d:84:6e:6b:c3:d0:c4:07:6f:d9:c4:bd:7d:29:5f:ec:f6:34: 60:b7:b8:38:52:39:95:5c:2e:a3:d2:56:59:81:24:b6:b6:fb: 1b:83:98:09:26:81:8f:aa:9e:96:77:a6:da:1f:77:99:5e:c0: c3:a9:a3:37:dd:25:da:1e:aa:5e:eb:47:a9:78:0c:bb:52:d1: 69:08:72:0f:eb:a8:f2:fb:1a:2b:7e:d2:89:32:a8:bb:3b:47: 17:bf:66:b5:76:4e:40:b8:60:20:12:50:ae:11:3d:13:c6:14: e9:0d:38:9c:df:c9:01:8a:b2:71:d2:61:a4:80:d6:ba:a2:35: be:19:22:c2:58:0e:d0:2c:64:10:be:9c:4e:fb:29:e9:14:3e: 0f:1d:53:5f:9c:29:05:67:5f:6d:de:b9:38:2b:33:71:d5:20: 6e:8f:84:3a:fb:ea:48:ab:04:59:3f:c0:99:de:5a:b2:93:60: 7d:f5:87:02:ec:ee:04:f8:30:8f:4a:35:61:ec:3f:76:6d:64: e4:01:6f:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUwNDI1MDEyODQ3WhcNMjUwNTAyMDEyODQ3WjAYMRYwFAYD VQQDEw02ODBhZTU0Zi1iNjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1x7G0bhUpSephyU3Hxhpd7uqRkUnu+1R0AVUy8FjinG9wwnMs5WC61xRdbmU wmFpV5HqDBUOtsPySwwKokiciC1Vs3kAm1Am1p1ZycZMQnkpDmuN1xK1Dc4+C8Z4 QuVbYlM0cClj1d68VU5KGpfT1a8X3kR1V6YSumflc6muEjbxasFro2l2w61/ijFi cIhyuM4TCGDjD11HUQjEhLB4ObRZxmTEeJMj3oyEpxlidCur0pWEHoWJ/qoLOoP2 g0JxRBdqbgbSF8zf3AIYUviWfp58EnsbUPgzqw7dSQOqXHp5yOS+vrCUEhfO59zW IypZTwxJZ8eVTh9ueDiaLBSvqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6ie/vW PW9BjVyeLZz5sJ55yXO4MB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnXi2A8TWoOkocZloHfJtruv/fRF4is9LU8WTl7icMaX9vBJ07PQTG NROsRYmT/NcBn4hSWioNhG5rw9DEB2/ZxL19KV/s9jRgt7g4UjmVXC6j0lZZgSS2 tvsbg5gJJoGPqp6Wd6baH3eZXsDDqaM33SXaHqpe60epeAy7UtFpCHIP66jy+xor ftKJMqi7O0cXv2a1dk5AuGAgElCuET0TxhTpDTic38kBirJx0mGkgNa6ojW+GSLC WA7QLGQQvpxO+ynpFD4PHVNfnCkFZ19t3rk4KzNx1SBuj4Q6++pIqwRZP8CZ3lqy k2B99YcC7O4E+DCPSjVh7D92bWTkAW8v -----END CERTIFICATE-----Generated at Sat Apr 26 04:25:26 2025 by rpki-client