$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: o1TivrM4WSLJNfUJ44/1QDiDpmy0OxMo4+jatVdW06w= Subject key identifier: 92:DC:9F:C4:D8:47:73:56:92:70:0D:A9:BB:A7:71:A1:31:32:CB:F0 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 3479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 3476 Signing time: Mon 12 May 2025 15:06:56 +0000 Manifest this update: Mon 12 May 2025 15:06:55 +0000 Manifest next update: Mon 19 May 2025 15:06:55 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: ICpUebVPItII78DngXy/Tho7w4G7bhiiDtOWVQv/CeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:06:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13433 (0x3479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: May 12 15:06:55 2025 GMT Not After : May 19 15:06:55 2025 GMT Subject: CN=68220e8f-c689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7a:36:fd:4c:fe:25:02:5f:1c:fe:91:9f:c9: 8a:70:f4:01:53:e3:5c:3c:0c:4d:57:a9:d3:f5:15: 37:53:d8:62:5b:13:4c:94:09:1c:e5:e7:6e:a4:fc: 25:fd:e6:50:1b:1b:8b:14:f5:1f:20:90:ac:a7:13: 08:68:dc:35:3b:dd:b5:d0:b5:1f:87:90:83:8b:dd: 75:44:12:7f:82:75:ba:2a:5c:6c:25:18:a7:9c:e0: ba:65:ba:47:1b:22:bf:97:09:c1:d0:db:3f:e4:92: 26:d0:6c:9b:78:6e:99:4d:7e:27:bf:be:39:72:9d: b0:fa:bd:e0:24:c8:62:e1:08:c7:4d:bc:d8:36:24: a9:75:be:e2:7e:34:10:25:bd:12:02:49:71:e2:36: 4e:aa:91:fd:02:6f:48:00:00:66:5c:ba:1d:2b:40: 57:91:c3:1c:c6:23:eb:b6:06:5a:80:b3:50:76:c6: a0:be:8e:94:86:0c:b8:ad:27:98:6c:1b:1a:fb:f4: 2e:79:53:e6:62:cd:1d:9e:0e:6e:58:a4:b8:55:ab: ba:31:81:12:70:15:4a:17:0f:6f:ad:1c:4d:7c:6d: 6b:15:47:ec:22:6d:a3:68:34:9a:27:44:d9:71:a9: 8f:50:93:da:78:f4:7d:e3:19:0c:6b:cd:6e:02:d7: b8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DC:9F:C4:D8:47:73:56:92:70:0D:A9:BB:A7:71:A1:31:32:CB:F0 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:64:9b:3c:19:82:67:0d:a2:34:b6:95:52:01:de:4b:30:0a: 45:62:c6:df:1d:6e:28:63:9a:91:63:8e:0c:cf:bf:43:42:92: 7d:cf:58:9e:d5:b6:4c:e2:05:e2:b7:67:be:f4:7b:4d:5e:af: 74:40:13:81:0c:fc:fb:02:e0:ca:75:3e:27:6b:6b:08:ee:dc: e0:dc:77:12:d4:d0:ef:33:85:c0:ce:13:af:62:5d:59:4c:a3: 2d:70:f3:b6:1f:5d:e1:17:a3:32:da:5e:79:df:57:b6:13:84: 5b:ce:ba:dc:cd:16:8e:5b:d2:9f:f7:68:9d:3c:9f:f1:ae:a4: dc:51:bd:f2:1a:7c:d2:dc:25:5d:83:7e:bf:84:64:c5:17:a3: 09:f9:29:9e:de:a9:db:65:09:90:bd:d8:10:55:c2:23:3b:f9: f4:5d:5a:a8:6f:87:7a:dc:e0:4a:87:29:8d:ad:c4:71:bb:ad: 69:35:8f:a5:cc:64:e9:16:5d:84:0d:c9:b1:48:85:63:f3:ee: 54:71:3d:16:3d:78:f3:5e:83:61:7a:28:f5:86:14:a2:4e:6b: d3:1f:8c:6e:8c:73:cd:aa:93:ae:2f:9c:f4:64:3d:5a:6c:f8: 9c:12:40:cb:2e:09:91:d4:59:58:39:6b:ce:d9:df:9f:c7:b5: af:fe:e2:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwNTEyMTUwNjU1WhcNMjUwNTE5MTUwNjU1WjAYMRYwFAYD VQQDEw02ODIyMGU4Zi1jNjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4no2/Uz+JQJfHP6Rn8mKcPQBU+NcPAxNV6nT9RU3U9hiWxNMlAkc5edupPwl /eZQGxuLFPUfIJCspxMIaNw1O9210LUfh5CDi911RBJ/gnW6KlxsJRinnOC6ZbpH GyK/lwnB0Ns/5JIm0GybeG6ZTX4nv745cp2w+r3gJMhi4QjHTbzYNiSpdb7ifjQQ Jb0SAklx4jZOqpH9Am9IAABmXLodK0BXkcMcxiPrtgZagLNQdsagvo6Uhgy4rSeY bBsa+/QueVPmYs0dng5uWKS4Vau6MYEScBVKFw9vrRxNfG1rFUfsIm2jaDSaJ0TZ camPUJPaePR94xkMa81uAte4IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLcn8TY R3NWknANqbuncaExMsvwMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7ZJs8GYJnDaI0tpVSAd5LMApFYsbfHW4oY5qRY44Mz79DQpJ9z1ie 1bZM4gXit2e+9HtNXq90QBOBDPz7AuDKdT4na2sI7tzg3HcS1NDvM4XAzhOvYl1Z TKMtcPO2H13hF6My2l5531e2E4RbzrrczRaOW9Kf92idPJ/xrqTcUb3yGnzS3CVd g36/hGTFF6MJ+Sme3qnbZQmQvdgQVcIjO/n0XVqob4d63OBKhymNrcRxu61pNY+l zGTpFl2EDcmxSIVj8+5UcT0WPXjzXoNheij1hhSiTmvTH4xujHPNqpOuL5z0ZD1a bPicEkDLLgmR1FlYOWvO2d+fx7Wv/uJ6 -----END CERTIFICATE-----Generated at Wed May 14 04:54:38 2025 by rpki-client