$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft File: PVlGAD7uVIrZXXlssYi3UcV82sg.mft (raw, json) Hash identifier: ZiKChrkQENLWaErocIMHhVmqvJyIUSBhgQajj6Sg9go= Subject key identifier: 4F:10:39:0E:E8:08:0D:3E:53:0E:A5:3F:FD:3E:2D:09:B6:F3:28:44 Authority key identifier: 3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 Certificate issuer: /CN=A91F9E0A/serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft Manifest number: 9A Signing time: Fri 25 Apr 2025 05:21:24 +0000 Manifest this update: Fri 25 Apr 2025 05:21:23 +0000 Manifest next update: Fri 02 May 2025 05:21:23 +0000 Files and hashes: 1: PVlGAD7uVIrZXXlssYi3UcV82sg.crl (hash: jMe255MSchDaijpBrXQ9kGEX1LRBdbEYeJyldxtWRIw=) 2: D0CDFEEA406E11EFA085272AC4F9AE02.roa (hash: Ls+MqXGV/peb18S4iXh7J0QZNFdZuOz4J59MYeTRfFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Validity Not Before: Apr 25 05:21:23 2025 GMT Not After : May 2 05:21:23 2025 GMT Subject: CN=680b1bd3-93a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:83:fe:c2:e4:01:98:81:24:09:95:6b:44:c2: 8f:d3:9b:81:6b:2a:28:e0:03:bc:6f:47:a6:13:c1: a9:b7:2e:84:d6:3e:d9:86:54:01:34:27:a6:08:33: a7:2e:43:e3:2a:bc:9a:a5:cf:ad:9b:ad:4a:c8:e6: fe:e5:7a:ee:74:8e:a9:fe:b1:5e:0a:cc:16:f5:b5: 93:9c:06:6a:1c:23:bb:89:c8:31:67:ee:e0:58:04: a0:6d:ed:4d:78:4b:68:eb:57:35:5b:fb:23:aa:41: 79:37:30:1f:bb:bc:ef:79:65:e1:96:da:cb:da:a7: 13:02:83:5d:76:61:27:1c:49:08:9b:b3:c9:ba:7a: 6a:b3:c4:00:68:a3:37:69:d2:f8:d3:5e:4c:6a:3b: d5:58:d0:0b:d5:15:39:fb:d3:de:77:50:7e:13:e7: 65:25:4e:f9:b6:ca:77:23:cc:62:fe:c1:2e:ab:4a: 6c:26:81:4b:31:6b:bd:ae:db:d7:dd:a3:84:78:13: 89:81:33:c8:d4:b3:1b:bb:df:f3:b4:62:ab:0e:67: 65:34:4d:65:f6:cc:8e:8b:53:ae:0c:10:5c:4b:90: d3:19:c6:fc:03:29:e4:96:ca:b8:a1:32:2d:10:98: c2:3f:9f:53:8b:8f:cb:5f:bb:fb:d8:78:bc:f7:b0: 6f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:10:39:0E:E8:08:0D:3E:53:0E:A5:3F:FD:3E:2D:09:B6:F3:28:44 X509v3 Authority Key Identifier: keyid:3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:4f:10:8e:93:b0:b2:4f:6d:6b:a8:3c:e8:3d:9d:18:f1:31: 60:20:df:d7:e1:9e:e8:9d:69:25:aa:66:bc:20:95:d8:93:b0: 52:04:f8:79:56:82:39:59:c5:49:12:51:d8:e9:fe:9a:58:5d: 7a:49:54:4a:05:9a:63:48:18:c9:d2:c3:a3:85:41:13:32:05: 4b:a6:78:76:e4:db:e9:50:8c:df:fc:d3:fe:c9:3f:b0:c6:1f: 70:16:30:77:3c:4f:09:1e:7f:86:ef:a8:da:55:6c:ec:7e:eb: e4:de:f1:6d:f4:58:9e:01:f3:94:7a:8b:3b:dd:7e:66:c0:50: 0e:4f:80:1d:a8:bd:d6:88:10:69:7d:9d:9b:d9:47:a4:0a:0d: 5e:36:b8:b9:b7:8d:b0:08:e9:6e:89:76:26:08:32:cb:94:8a: ac:45:5e:90:52:b5:44:fc:ff:dd:ac:47:a0:50:e8:9c:41:e3: 75:94:2c:ec:91:bb:03:fd:47:b3:22:40:0a:c6:0b:fa:d2:a6: d0:f1:95:9b:88:15:55:04:29:1d:b1:93:5e:64:9c:8a:31:f8: 9d:0b:aa:3c:1f:ac:9a:29:36:2d:28:fe:c5:a8:23:44:0b:a8: 84:11:7c:c8:36:1a:83:fa:11:7f:02:a7:d6:9b:0d:c2:f8:30: 7c:7d:54:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDNENTk0NjAwM0VFRTU0OEFEOTVENzk2Q0IxODhCNzUx QzU3Q0RBQzgwHhcNMjUwNDI1MDUyMTIzWhcNMjUwNTAyMDUyMTIzWjAYMRYwFAYD VQQDEw02ODBiMWJkMy05M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA74P+wuQBmIEkCZVrRMKP05uBayoo4AO8b0emE8Gpty6E1j7ZhlQBNCemCDOn LkPjKryapc+tm61KyOb+5XrudI6p/rFeCswW9bWTnAZqHCO7icgxZ+7gWASgbe1N eEto61c1W/sjqkF5NzAfu7zveWXhltrL2qcTAoNddmEnHEkIm7PJunpqs8QAaKM3 adL4015MajvVWNAL1RU5+9Ped1B+E+dlJU75tsp3I8xi/sEuq0psJoFLMWu9rtvX 3aOEeBOJgTPI1LMbu9/ztGKrDmdlNE1l9syOi1OuDBBcS5DTGcb8Aynklsq4oTIt EJjCP59Ti4/LX7v72Hi897BvDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8QOQ7o CA0+Uw6lP/0+LQm28yhEMB8GA1UdIwQYMBaAFD1ZRgA+7lSK2V15bLGIt1HFfNrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wQkQ5ODVFODNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJclpYWGxzc1lpM1VjVjgy c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWbEdBRDd1VklyWlhYbHNzWWkzVWNWODJzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wQkQ5ODVFODNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJ clpYWGxzc1lpM1VjVjgyc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0TxCOk7CyT21rqDzoPZ0Y8TFgIN/X4Z7onWklqma8IJXYk7BSBPh5 VoI5WcVJElHY6f6aWF16SVRKBZpjSBjJ0sOjhUETMgVLpnh25NvpUIzf/NP+yT+w xh9wFjB3PE8JHn+G76jaVWzsfuvk3vFt9FieAfOUeos73X5mwFAOT4AdqL3WiBBp fZ2b2UekCg1eNri5t42wCOluiXYmCDLLlIqsRV6QUrVE/P/drEegUOicQeN1lCzs kbsD/UezIkAKxgv60qbQ8ZWbiBVVBCkdsZNeZJyKMfidC6o8H6yaKTYtKP7FqCNE C6iEEXzINhqD+hF/AqfWmw3C+DB8fVQ0 -----END CERTIFICATE-----Generated at Sat Apr 26 04:38:45 2025 by rpki-client