$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft File: pVDumUQoL8_DhLCCv_qI-G2wQXk.mft (raw, json) Hash identifier: Tcy1enRYPlykKgB3EyrMYpK9OL4We4DTYyHDaDANG6c= Subject key identifier: 19:BA:2E:CE:14:56:D5:4F:E7:69:F4:33:A5:CF:7A:21:C2:38:CA:0A Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft Manifest number: 015C Signing time: Fri 25 Apr 2025 03:13:01 +0000 Manifest this update: Fri 25 Apr 2025 03:13:01 +0000 Manifest next update: Fri 02 May 2025 03:13:01 +0000 Files and hashes: 1: pVDumUQoL8_DhLCCv_qI-G2wQXk.crl (hash: d4XSg6DGXUdsphW4EBcIJI0U3Z1kBwYkESiEc3Uqx0o=) 2: 6C1498CE9B1811EFAEB7E76EC4F9AE02.roa (hash: yOtTIq0fcuWqwPlV5sPcr1ebgyRQ1WaOBXCbzpyrda0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD5B5, serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Validity Not Before: Apr 25 03:13:01 2025 GMT Not After : May 2 03:13:01 2025 GMT Subject: CN=680afdbd-c842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f8:91:09:fd:8e:01:a7:4a:81:2a:e0:37:23: 58:66:e6:5d:f1:30:8b:28:46:94:09:61:56:df:da: 14:f3:76:b7:70:12:e1:88:68:41:5d:98:d4:bb:d6: 2c:ec:99:a6:5a:a7:26:f3:b9:e9:1d:fd:a0:f0:4e: 3a:44:06:8f:58:22:ac:9e:40:3d:4d:72:f9:52:db: 64:bb:04:32:c7:ae:2e:26:80:af:05:d1:3e:50:95: 95:35:7f:5e:3c:12:8c:e9:e9:0c:b0:26:25:74:fb: 7f:33:e5:80:62:18:a3:9e:0a:82:45:78:80:23:50: 46:cd:7e:27:a0:4c:5b:89:e5:53:2b:a5:c1:f6:7d: f7:56:aa:4c:dd:d6:79:d3:ee:bc:36:a7:7c:c0:91: a3:25:15:2f:2f:ad:fc:65:5a:73:c2:27:0f:58:dc: 8d:5b:04:2f:15:3c:f7:0b:77:25:65:0e:bf:41:92: ad:a6:bd:04:ae:38:25:fe:0e:57:ce:d8:6c:fa:36: 8e:60:c9:3d:f2:e6:b3:f5:20:f4:ae:8d:2f:bc:17: 37:31:af:82:81:00:3c:f6:10:4e:07:a9:ae:de:f6: 61:f1:c5:3e:35:33:1a:0c:e9:c4:a1:1c:d6:d6:6f: db:8b:29:c3:8f:ea:d0:8e:07:5a:61:57:64:e9:1d: 53:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BA:2E:CE:14:56:D5:4F:E7:69:F4:33:A5:CF:7A:21:C2:38:CA:0A X509v3 Authority Key Identifier: keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:6f:16:6d:e1:63:42:7d:8e:81:0c:d2:bb:d7:9f:d5:af:1f: 6c:83:cd:ac:8e:3c:e9:a1:ce:4c:7e:eb:ae:82:ca:41:d0:ac: 95:8c:d4:94:e2:e2:eb:98:61:d7:3b:48:9c:60:b9:5b:e6:c5: b0:fa:f7:29:d7:4d:c4:ad:88:84:db:1e:6f:1c:ea:1c:6c:d6: 9b:9d:96:d5:c0:27:3a:d3:1b:ec:e1:6d:22:8c:10:64:9e:fc: bf:f9:9a:18:a7:ce:7f:0a:04:e3:bf:e9:bc:69:ad:3c:df:80: 50:ce:0a:2b:36:a0:bd:2b:2c:e3:04:3e:f2:6e:ba:57:1a:82: d3:7f:74:c9:9e:55:ff:db:96:c7:12:83:6e:d2:37:03:4d:48: f6:16:e3:fd:b0:cd:24:e4:a8:b5:12:58:57:b4:8d:15:a5:9c: a4:3f:6d:c6:86:c0:15:f1:6b:a1:52:70:c3:d7:ef:58:22:97: ea:40:45:f1:85:73:ab:97:a8:74:21:ab:3a:d6:ef:6e:6c:19: 17:6c:7d:98:50:f6:ca:a0:dc:14:e9:31:ea:f8:47:9e:58:00: 70:98:cc:1f:dc:a6:0f:19:03:cc:a0:9b:26:0d:a0:ee:e2:54: 77:a1:aa:a4:cb:d8:8b:c5:8a:34:8a:56:53:3d:97:bc:e4:ca: 30:9d:b0:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q1QjUxMTAvBgNVBAUTKEE1NTBFRTk5NDQyODJGQ0ZDMzg0QjA4MkJGRkE4OEY4 NkRCMDQxNzkwHhcNMjUwNDI1MDMxMzAxWhcNMjUwNTAyMDMxMzAxWjAYMRYwFAYD VQQDEw02ODBhZmRiZC1jODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfiRCf2OAadKgSrgNyNYZuZd8TCLKEaUCWFW39oU83a3cBLhiGhBXZjUu9Ys 7JmmWqcm87npHf2g8E46RAaPWCKsnkA9TXL5UttkuwQyx64uJoCvBdE+UJWVNX9e PBKM6ekMsCYldPt/M+WAYhijngqCRXiAI1BGzX4noExbieVTK6XB9n33VqpM3dZ5 0+68Nqd8wJGjJRUvL638ZVpzwicPWNyNWwQvFTz3C3clZQ6/QZKtpr0Erjgl/g5X zths+jaOYMk98uaz9SD0ro0vvBc3Ma+CgQA89hBOB6mu3vZh8cU+NTMaDOnEoRzW 1m/biynDj+rQjgdaYVdk6R1T2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBm6Ls4U VtVP52n0M6XPeiHCOMoKMB8GA1UdIwQYMBaAFKVQ7plEKC/Pw4Swgr/6iPhtsEF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDVCNS9BNDZCOTkxMjE2 NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4X0RoTENDdl9xSS1HMndR WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWRHVtVVFvTDhfRGhMQ0N2X3FJLUcyd1FYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDVCNS9BNDZCOTkxMjE2NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4 X0RoTENDdl9xSS1HMndRWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBbxZt4WNCfY6BDNK715/Vrx9sg82sjjzpoc5MfuuugspB0KyVjNSU 4uLrmGHXO0icYLlb5sWw+vcp103ErYiE2x5vHOocbNabnZbVwCc60xvs4W0ijBBk nvy/+ZoYp85/CgTjv+m8aa0834BQzgorNqC9KyzjBD7ybrpXGoLTf3TJnlX/25bH EoNu0jcDTUj2FuP9sM0k5Ki1ElhXtI0VpZykP23GhsAV8WuhUnDD1+9YIpfqQEXx hXOrl6h0Ias61u9ubBkXbH2YUPbKoNwU6THq+EeeWABwmMwf3KYPGQPMoJsmDaDu 4lR3oaqky9iLxYo0ilZTPZe85MownbCL -----END CERTIFICATE-----Generated at Sat Apr 26 13:46:41 2025 by rpki-client