$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: SKdihjVHa8Qbkgx2+Qm/INKjMMa3V574R1toozckL1w= Subject key identifier: 38:77:AC:78:AD:F4:A1:F7:ED:84:28:BF:1C:F6:4B:FC:E5:85:08:B8 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 0144 Signing time: Tue 13 May 2025 03:35:32 +0000 Manifest this update: Tue 13 May 2025 03:35:31 +0000 Manifest next update: Tue 20 May 2025 03:35:31 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: 9hegk2Ou935Z1BfAS0IB2Dl7ChIio1cPcxP41m2Bpxw=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: May 13 03:35:31 2025 GMT Not After : May 20 03:35:31 2025 GMT Subject: CN=6822be04-59f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e4:60:36:dc:15:31:04:b6:ee:74:4c:a9:78: b4:d7:33:c1:6c:33:ea:bd:24:bf:c6:68:e7:1a:29: e3:36:b4:dd:e2:3d:2e:c1:ac:80:bb:8c:a6:1d:c1: 09:6c:b0:b5:f1:0b:bc:17:25:0d:f7:c8:ac:98:9c: 26:b3:c1:b0:64:c2:c0:34:f7:22:0f:ac:dc:53:33: b1:71:57:9b:a0:7f:30:3a:f5:2b:83:3d:b5:da:32: 2b:35:67:1e:21:23:37:e8:7a:e3:b9:e1:b3:4f:0f: a8:33:99:b5:d3:91:4e:85:2d:84:94:6a:0a:0c:4d: a3:60:a9:fa:61:9d:1d:f4:b0:d6:cf:09:ab:61:7a: 1b:0c:0b:3e:b5:5d:b0:12:8d:fd:10:8b:e1:3b:dc: 9d:56:89:1d:a6:b1:da:63:a3:bd:e5:3e:8a:32:4f: 9f:e6:d6:9a:38:ad:a9:38:eb:a9:86:b9:65:aa:0e: 84:50:39:f6:04:a6:93:00:43:59:17:84:31:4c:db: f4:65:2e:42:17:7e:ee:4f:e2:c0:9d:75:18:05:cb: b3:b4:fc:49:c7:eb:de:67:e3:da:a8:b9:4d:e8:40: 11:31:d2:c9:f5:72:9e:c3:d8:67:64:01:80:43:d1: 99:82:a3:07:de:0e:95:f9:87:f4:eb:a2:a8:12:9e: 7e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:77:AC:78:AD:F4:A1:F7:ED:84:28:BF:1C:F6:4B:FC:E5:85:08:B8 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:14:bc:06:a2:ba:cc:20:31:48:5d:33:dd:98:74:99:78:3c: 1d:c1:e2:af:82:70:78:1d:2f:7a:2d:46:3a:2e:32:19:65:36: ce:b2:56:4c:cc:70:56:02:e2:ad:64:0d:3a:d6:20:fd:92:8c: dd:e6:a3:f6:34:fa:79:e1:98:20:7d:df:87:1f:98:42:94:36: 7e:66:47:80:23:de:a6:02:6f:2c:ca:3c:8f:56:ab:0f:c4:3c: e9:5e:3b:bc:68:d4:05:67:7b:3e:cb:ff:44:41:18:7f:14:29: 7b:df:1c:80:01:6f:d1:a5:8f:7f:d0:40:e7:1c:8a:3a:e7:1a: e2:fe:e4:26:6f:e8:63:19:7a:c8:a7:bb:7e:01:36:64:f5:bf: 08:ce:41:c3:09:5b:2e:75:b4:f0:a5:a8:89:b2:35:9e:f4:c6: e5:72:67:45:c5:be:fd:40:de:40:59:ba:d7:2f:7f:b7:95:c2: 09:4b:da:4c:4d:50:16:e6:cf:aa:62:39:36:fe:ad:29:b8:2b: 10:07:93:13:31:bf:75:37:b6:e0:51:e6:7a:62:2d:27:87:ab: 73:f8:81:5a:b5:66:30:4a:b0:1a:58:66:bc:50:a3:28:8c:57: f2:f0:70:cd:68:0a:a2:b2:6e:10:4e:97:81:9c:66:4d:65:b0: 2d:05:e8:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUwNTEzMDMzNTMxWhcNMjUwNTIwMDMzNTMxWjAYMRYwFAYD VQQDEw02ODIyYmUwNC01OWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ORgNtwVMQS27nRMqXi01zPBbDPqvSS/xmjnGinjNrTd4j0uwayAu4ymHcEJ bLC18Qu8FyUN98ismJwms8GwZMLANPciD6zcUzOxcVeboH8wOvUrgz212jIrNWce ISM36HrjueGzTw+oM5m105FOhS2ElGoKDE2jYKn6YZ0d9LDWzwmrYXobDAs+tV2w Eo39EIvhO9ydVokdprHaY6O95T6KMk+f5taaOK2pOOuphrllqg6EUDn2BKaTAENZ F4QxTNv0ZS5CF37uT+LAnXUYBcuztPxJx+veZ+PaqLlN6EARMdLJ9XKew9hnZAGA Q9GZgqMH3g6V+Yf066KoEp5+qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDh3rHit 9KH37YQovxz2S/zlhQi4MB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmFLwGorrMIDFIXTPdmHSZeDwdweKvgnB4HS96LUY6LjIZZTbOslZM zHBWAuKtZA061iD9kozd5qP2NPp54Zggfd+HH5hClDZ+ZkeAI96mAm8syjyPVqsP xDzpXju8aNQFZ3s+y/9EQRh/FCl73xyAAW/RpY9/0EDnHIo65xri/uQmb+hjGXrI p7t+ATZk9b8IzkHDCVsudbTwpaiJsjWe9MblcmdFxb79QN5AWbrXL3+3lcIJS9pM TVAW5s+qYjk2/q0puCsQB5MTMb91N7bgUeZ6Yi0nh6tz+IFatWYwSrAaWGa8UKMo jFfy8HDNaAqism4QTpeBnGZNZbAtBegI -----END CERTIFICATE-----Generated at Tue May 13 18:17:58 2025 by rpki-client