$ rpki-client -vvf rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft File: PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft (raw, json) Hash identifier: 2k1OzNAhEUPW8PvTyeh2nXle+JiWaVyS7S2W3zZ9EF0= Subject key identifier: 5F:02:33:B7:E2:EF:9C:3B:1D:28:09:C3:B9:75:AE:AA:BE:DE:22:87 Authority key identifier: 3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 Certificate issuer: /CN=A915A39E/serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Certificate serial: 047A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft Manifest number: 0476 Signing time: Thu 15 May 2025 00:07:36 +0000 Manifest this update: Thu 15 May 2025 00:07:36 +0000 Manifest next update: Thu 22 May 2025 00:07:36 +0000 Files and hashes: 1: PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl (hash: eZQ/EcrFNWFkVVuPFwIKwmjJVYWAMn+B+8Ez4QiNSs4=) 2: 47A72A7441ED11EC9B02377AC4F9AE02.roa (hash: JRIJmi6CkdzwRl9tqXcDbUlpayemlqeCYja07bnQOys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1146 (0x47a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A39E, serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Validity Not Before: May 15 00:07:36 2025 GMT Not After : May 22 00:07:36 2025 GMT Subject: CN=68253048-24b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3b:8d:3d:54:2e:52:c2:b5:d5:f0:8b:c3:bb: 57:a9:33:a4:77:01:fd:40:11:53:56:5d:d9:9e:ac: fa:04:3b:e8:af:e3:4e:ce:34:63:cb:7e:bc:52:f7: 98:d9:39:37:72:12:e9:a1:14:2b:5c:4b:ef:de:79: d4:a9:43:91:a9:d4:14:84:fb:97:f9:40:eb:0d:58: b1:50:cc:20:68:4d:96:8d:96:61:6e:26:51:52:44: 98:95:b9:0a:88:42:b5:60:dc:3a:b7:56:5b:ac:b3: 07:a5:32:b4:29:64:f4:c7:b4:fe:f5:2a:56:c7:fb: 16:d6:42:32:be:66:98:74:7c:93:56:e0:bf:8f:8e: 73:c8:ae:2e:92:36:7b:81:b6:04:ec:03:54:56:01: 0d:df:f7:ef:77:59:33:0e:27:e1:70:54:05:c3:61: 0c:80:bf:7f:fe:82:bb:fd:c8:75:24:b8:d0:c6:57: bc:7e:2c:e4:eb:fb:5e:8e:ec:3b:a6:07:1b:ed:c4: 4e:2f:df:e2:e5:a1:18:82:19:78:3f:8d:d9:36:75: c7:db:e0:87:55:93:73:c9:1a:2e:1e:cd:04:80:c6: 2b:65:0c:96:85:3e:26:46:55:71:a8:ac:57:cc:14: f3:0c:a5:87:ab:f1:98:21:57:ea:30:6b:c0:2f:d9: 91:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:02:33:B7:E2:EF:9C:3B:1D:28:09:C3:B9:75:AE:AA:BE:DE:22:87 X509v3 Authority Key Identifier: keyid:3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:b4:c2:9b:f6:c5:3b:55:7c:ec:ad:b4:95:48:12:64:e6:e1: d4:68:09:a2:91:ef:de:31:42:d4:d1:02:0b:46:a3:73:44:1c: 1f:f8:c2:9b:a9:2d:4f:69:76:e8:3a:e9:fc:83:8b:17:6c:ad: a5:b1:da:b7:c0:21:5d:c2:49:36:04:0d:12:c8:2e:17:68:c5: 87:cd:6f:84:a4:28:2c:64:e3:f4:fc:32:cb:20:97:5f:5d:9c: c3:29:57:62:37:b5:5f:b7:f8:26:07:17:77:2b:47:9c:41:48: 5c:46:a8:92:2d:e2:8c:58:09:57:86:fa:9b:14:33:c6:13:6e: 04:b4:3a:39:49:ba:3f:99:d7:a3:3f:ef:93:0b:08:7a:16:d8: b2:dc:e5:0e:db:a5:41:b8:34:44:c1:5f:53:e5:6f:1e:5e:ef: a5:e7:01:48:79:b7:64:ac:d0:89:a8:f0:c2:e3:58:71:d6:3a: f7:b3:a7:ef:a0:8c:c6:ce:89:a2:3b:c0:a8:38:e3:2b:33:2e: 72:f8:b7:26:ce:b8:a3:16:c6:b7:f5:b4:c0:21:3b:9b:ed:2b: cd:8f:f7:62:d9:0b:43:67:f5:bd:ab:97:66:57:38:87:e9:45: 68:77:4d:3c:3e:90:cf:d1:7a:0d:bb:ac:0e:3c:79:36:fa:bc: db:75:31:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEzOUUxMTAvBgNVBAUTKDNFNDJEMzMzNEExQ0UxODg5REZDNjdFNDJERjYyODU4 MjE4NTI1MTkwHhcNMjUwNTE1MDAwNzM2WhcNMjUwNTIyMDAwNzM2WjAYMRYwFAYD VQQDEw02ODI1MzA0OC0yNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjuNPVQuUsK11fCLw7tXqTOkdwH9QBFTVl3Znqz6BDvor+NOzjRjy368UveY 2Tk3chLpoRQrXEvv3nnUqUORqdQUhPuX+UDrDVixUMwgaE2WjZZhbiZRUkSYlbkK iEK1YNw6t1ZbrLMHpTK0KWT0x7T+9SpWx/sW1kIyvmaYdHyTVuC/j45zyK4ukjZ7 gbYE7ANUVgEN3/fvd1kzDifhcFQFw2EMgL9//oK7/ch1JLjQxle8fizk6/tejuw7 pgcb7cROL9/i5aEYghl4P43ZNnXH2+CHVZNzyRouHs0EgMYrZQyWhT4mRlVxqKxX zBTzDKWHq/GYIVfqMGvAL9mR4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8CM7fi 75w7HSgJw7l1rqq+3iKHMB8GA1UdIwQYMBaAFD5C0zNKHOGInfxn5C32KFghhSUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTM5RS9DQTMxNjg5NjQx RTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZaWRfR2ZrTGZZb1dDR0ZK UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrTFRNMG9jNFlpZF9HZmtMZllvV0NHRkpSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTM5RS9DQTMxNjg5NjQxRTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZ aWRfR2ZrTGZZb1dDR0ZKUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAytMKb9sU7VXzsrbSVSBJk5uHUaAmike/eMULU0QILRqNzRBwf+MKb qS1PaXboOun8g4sXbK2lsdq3wCFdwkk2BA0SyC4XaMWHzW+EpCgsZOP0/DLLIJdf XZzDKVdiN7Vft/gmBxd3K0ecQUhcRqiSLeKMWAlXhvqbFDPGE24EtDo5Sbo/mdej P++TCwh6Ftiy3OUO26VBuDREwV9T5W8eXu+l5wFIebdkrNCJqPDC41hx1jr3s6fv oIzGzomiO8CoOOMrMy5y+LcmzrijFsa39bTAITub7SvNj/di2QtDZ/W9q5dmVziH 6UVod008PpDP0XoNu6wOPHk2+rzbdTHf -----END CERTIFICATE-----Generated at Fri May 16 00:53:34 2025 by rpki-client