$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: 3ZG21k1yGia/ALL7J1hf2mdRDeGrg5Z7AZ3dTsKtAik= Subject key identifier: E0:E9:F4:34:03:7C:0A:A1:D1:B2:40:78:22:21:F2:3E:7A:C8:44:61 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 042E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0428 Signing time: Fri 25 Apr 2025 00:09:12 +0000 Manifest this update: Fri 25 Apr 2025 00:09:11 +0000 Manifest next update: Fri 02 May 2025 00:09:11 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: LWDaRQy1XrN3uEhFIHXixQqmXZ0H/kFcT1lwOZU/EJM=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1070 (0x42e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Apr 25 00:09:11 2025 GMT Not After : May 2 00:09:11 2025 GMT Subject: CN=680ad2a7-bf7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:3a:e2:f8:a5:61:ee:a3:08:0d:7e:ea:cd: e8:6c:2b:2e:b1:16:0f:76:20:3d:e3:2c:bc:86:d7: 78:ba:27:de:a5:66:5e:47:6f:7c:01:4d:5a:16:61: e4:0c:a5:37:e2:64:70:26:a3:98:b6:9d:89:e5:a9: eb:64:d6:8e:f7:9d:38:72:2f:70:54:bc:80:87:a5: 75:b0:07:3a:e8:4a:9d:82:7f:9b:f3:c0:16:1b:f3: 6a:16:4a:a1:13:a5:62:07:8e:b3:c6:ab:0c:0b:18: b9:f0:87:3b:18:43:c0:af:fb:63:c8:51:ef:3c:e8: e1:b5:b0:62:64:b7:3d:36:52:e0:13:c4:2c:a6:00: d3:d2:fd:e6:41:b3:d8:c2:0e:36:2d:b0:b4:4d:2f: 96:0d:4c:f0:82:6b:b6:33:2e:6d:a8:fd:9e:83:0b: 87:a9:ab:77:0c:d3:8b:df:49:e9:35:a5:d1:74:2d: d1:08:eb:95:5b:be:77:11:5f:4b:0d:f9:fd:2c:43: ca:12:fb:73:21:08:85:b9:12:63:e4:85:9a:50:85: c4:3f:5a:ed:a2:32:25:7e:31:81:15:bf:33:a8:3c: 5a:97:e0:b6:f7:71:d7:03:93:69:ca:c0:36:8b:29: d2:45:6b:e4:8f:42:fa:12:2d:a5:3e:db:a0:ca:e1: ff:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E9:F4:34:03:7C:0A:A1:D1:B2:40:78:22:21:F2:3E:7A:C8:44:61 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:49:0a:89:cc:31:87:ec:f4:ef:61:5b:c6:e6:ac:b4:12:f8: 89:12:97:b0:6a:39:50:86:3b:b1:a3:ce:0f:47:cf:81:8e:c7: 73:84:df:bf:30:a0:17:c5:65:e9:53:09:80:8b:c2:d8:a0:e9: 9f:f5:fb:8c:5a:23:dd:6a:ed:85:6b:c6:7c:1f:b2:8d:36:7f: 35:69:c9:e4:f2:da:c1:57:83:5b:65:4b:c2:86:97:e8:3c:20: a2:e4:f2:f4:12:a1:ae:bb:c1:10:2d:f0:40:95:7d:b7:fe:f3: f4:a0:00:c7:0e:01:47:cd:2f:29:99:90:81:d0:3e:0a:13:fd: af:9a:ed:4e:db:0d:99:2a:38:71:b1:ce:2e:75:1a:c9:2c:18: bc:93:5a:e3:81:cf:9b:86:56:51:77:de:d4:a6:d3:9c:27:70: b0:5b:c5:19:52:ea:6f:c8:e4:82:34:b8:9f:97:05:bd:1d:85: d0:bc:19:44:88:b8:c2:3a:42:90:4a:d0:1f:3a:c2:42:f6:fc: 8c:81:f6:1b:5c:d2:31:50:53:b7:99:6d:cf:d5:46:53:f3:6b: 54:7b:80:a7:b8:aa:15:8d:d1:48:90:76:95:74:18:5b:fd:4f: 6d:b8:cf:ec:5f:0f:ec:12:e6:db:f9:67:87:ad:39:0e:68:df: db:37:8b:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwNDI1MDAwOTExWhcNMjUwNTAyMDAwOTExWjAYMRYwFAYD VQQDEw02ODBhZDJhNy1iZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsms64vilYe6jCA1+6s3obCsusRYPdiA94yy8htd4uifepWZeR298AU1aFmHk DKU34mRwJqOYtp2J5anrZNaO9504ci9wVLyAh6V1sAc66Eqdgn+b88AWG/NqFkqh E6ViB46zxqsMCxi58Ic7GEPAr/tjyFHvPOjhtbBiZLc9NlLgE8QspgDT0v3mQbPY wg42LbC0TS+WDUzwgmu2My5tqP2egwuHqat3DNOL30npNaXRdC3RCOuVW753EV9L Dfn9LEPKEvtzIQiFuRJj5IWaUIXEP1rtojIlfjGBFb8zqDxal+C293HXA5NpysA2 iynSRWvkj0L6Ei2lPtugyuH/jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODp9DQD fAqh0bJAeCIh8j56yERhMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAISQqJzDGH7PTvYVvG5qy0EviJEpewajlQhjuxo84PR8+BjsdzhN+/ MKAXxWXpUwmAi8LYoOmf9fuMWiPdau2Fa8Z8H7KNNn81acnk8trBV4NbZUvChpfo PCCi5PL0EqGuu8EQLfBAlX23/vP0oADHDgFHzS8pmZCB0D4KE/2vmu1O2w2ZKjhx sc4udRrJLBi8k1rjgc+bhlZRd97UptOcJ3CwW8UZUupvyOSCNLiflwW9HYXQvBlE iLjCOkKQStAfOsJC9vyMgfYbXNIxUFO3mW3P1UZT82tUe4CnuKoVjdFIkHaVdBhb /U9tuM/sXw/sEubb+WeHrTkOaN/bN4v4 -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:14 2025 by rpki-client