$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json) Hash identifier: JBh2xijtAtyOwz42P/X1+iLGbba6vB/qqBYyb2sA6eM= Subject key identifier: F8:8D:88:C7:CC:12:B2:C8:12:BE:34:23:79:E4:2D:E6:E0:D5:13:B5 Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Certificate serial: 3480 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft Manifest number: 600E Signing time: Thu 08 May 2025 14:15:26 +0000 Manifest this update: Thu 08 May 2025 14:15:26 +0000 Manifest next update: Thu 15 May 2025 14:15:26 +0000 Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: UPIuekG06BXv5nESkqRsZAnRIwoL/525gUQcnpwD71c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 14:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13440 (0x3480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Validity Not Before: May 8 14:15:26 2025 GMT Not After : May 15 14:15:26 2025 GMT Subject: CN=681cbc7e-650c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:cd:f2:64:df:2e:fc:3d:74:d7:b5:49:9d:34: 1a:a7:fd:0e:db:e6:a1:42:e0:c0:2c:6e:c3:d2:0b: 54:14:3f:b1:4f:ad:e1:a0:e5:0a:9f:c2:a7:26:00: ae:6a:7d:a7:0c:45:46:2d:22:74:c7:69:19:72:d7: 79:34:a6:e5:f0:ad:1f:fc:22:c6:63:87:c2:53:9f: 13:d4:e8:53:cf:95:1c:89:f8:f6:45:67:e4:02:87: d9:c4:da:07:36:be:d8:13:b7:1b:17:88:20:20:b3: e1:35:26:a4:aa:70:93:24:85:60:01:21:29:b8:bc: 30:7e:6b:b5:d4:d1:b5:af:f5:9d:43:e3:8f:35:a0: 0f:a0:02:19:ed:d2:dd:1f:6a:ae:7f:94:94:21:68: e2:a0:df:70:77:80:e3:3b:d6:a6:b8:aa:e4:33:41: 30:ee:34:ee:d3:8e:5d:cb:af:b0:01:8d:dc:da:80: 08:f7:53:a4:85:38:fa:b2:4f:22:f1:c2:ea:d4:74: 7a:0a:f0:3f:4e:37:73:73:f3:0c:e0:e0:d9:09:42: 38:9c:e6:a3:7c:f9:47:54:9d:4e:67:f0:8c:6a:28: d3:7e:2e:e9:38:75:db:0f:41:7f:1e:40:b0:b6:43: 3b:db:32:90:e8:af:db:45:e3:2c:72:a1:80:3a:0d: 8c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8D:88:C7:CC:12:B2:C8:12:BE:34:23:79:E4:2D:E6:E0:D5:13:B5 X509v3 Authority Key Identifier: keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:86:a6:be:f3:cb:1a:d2:34:d4:bd:3d:86:a3:6d:fe:c7:36: 9f:a2:f7:ab:e4:85:1f:1f:b0:8b:d7:02:e3:77:aa:1f:0a:cd: 80:fe:0e:c1:52:f6:ef:1a:de:47:36:06:6f:32:d9:de:e1:ca: 2c:70:0d:1f:41:d9:de:ed:6a:c1:cc:84:05:48:49:1f:72:14: 61:f5:11:d9:7b:f9:4a:06:77:31:b4:31:a5:09:b6:34:fe:72: dd:cb:0b:4a:89:63:ee:8b:17:d1:c4:5e:0d:d0:1f:7c:47:21: 3c:53:bc:3e:a6:6d:42:97:35:2b:5e:1c:5e:1b:5e:60:ac:fd: a7:1e:a8:13:75:9f:7d:8f:24:c6:3f:9b:91:91:4a:e3:ac:7f: f9:a8:b2:30:2f:f1:7b:b9:b8:f4:25:09:52:48:f6:92:c1:d2: 9f:89:fd:6f:c4:f4:92:ea:d3:0f:5e:9e:fc:9c:8f:21:b8:75: 40:6a:6d:b9:0a:79:05:10:b8:3c:b8:d1:4d:3e:69:c3:56:7a: af:85:5d:11:fe:79:f5:5a:3e:b5:69:e5:88:ac:ea:39:6a:8c: 13:d7:ef:cd:65:16:c1:eb:5c:43:a7:66:74:f3:17:fd:55:fa: 3c:78:2b:e3:30:8e:4c:31:14:6e:94:92:71:eb:93:86:1c:ff: 44:f7:56:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNGNDFFMDQ4RDIyQjJBMUFFQTRDRTBCODQ0OTUyQTRB MzlENkNCMzcwHhcNMjUwNTA4MTQxNTI2WhcNMjUwNTE1MTQxNTI2WjAYMRYwFAYD VQQDEw02ODFjYmM3ZS02NTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9M3yZN8u/D1017VJnTQap/0O2+ahQuDALG7D0gtUFD+xT63hoOUKn8KnJgCu an2nDEVGLSJ0x2kZctd5NKbl8K0f/CLGY4fCU58T1OhTz5Ucifj2RWfkAofZxNoH Nr7YE7cbF4ggILPhNSakqnCTJIVgASEpuLwwfmu11NG1r/WdQ+OPNaAPoAIZ7dLd H2quf5SUIWjioN9wd4DjO9amuKrkM0Ew7jTu045dy6+wAY3c2oAI91OkhTj6sk8i 8cLq1HR6CvA/Tjdzc/MM4ODZCUI4nOajfPlHVJ1OZ/CMaijTfi7pOHXbD0F/HkCw tkM72zKQ6K/bReMscqGAOg2M3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiNiMfM ErLIEr40I3nkLebg1RO1MB8GA1UdIwQYMBaAFD9B4EjSKyoa6kzguESVKko51ss3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05JcktocnFUT0M0UkpVcVNqbld5 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwSGdTTklyS2hycVRPQzRSSlVxU2puV3l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05Jckto cnFUT0M0UkpVcVNqbld5emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhhqa+88sa0jTUvT2Go23+xzafover5IUfH7CL1wLjd6ofCs2A/g7B UvbvGt5HNgZvMtne4coscA0fQdne7WrBzIQFSEkfchRh9RHZe/lKBncxtDGlCbY0 /nLdywtKiWPuixfRxF4N0B98RyE8U7w+pm1ClzUrXhxeG15grP2nHqgTdZ99jyTG P5uRkUrjrH/5qLIwL/F7ubj0JQlSSPaSwdKfif1vxPSS6tMPXp78nI8huHVAam25 CnkFELg8uNFNPmnDVnqvhV0R/nn1Wj61aeWIrOo5aowT1+/NZRbB61xDp2Z08xf9 Vfo8eCvjMI5MMRRulJJx65OGHP9E91Yq -----END CERTIFICATE-----Generated at Fri May 9 20:55:45 2025 by rpki-client