$ rpki-client -vvf rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft File: P9UxYCV9sBsu4O8BPB4tQusaKI0.mft (raw, json) Hash identifier: 4Z7DttF44GhTAOP8tet13UUr1vqhlILbx/BqdrIF2FA= Subject key identifier: 02:CA:C5:19:4F:76:1F:60:39:73:34:3D:CE:E2:98:E3:13:CD:8D:7D Authority key identifier: 3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D Certificate issuer: /CN=A911D51C/serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft Manifest number: 04D3 Signing time: Wed 02 Apr 2025 23:48:21 +0000 Manifest this update: Wed 02 Apr 2025 23:48:21 +0000 Manifest next update: Wed 09 Apr 2025 23:48:21 +0000 Files and hashes: 1: P9UxYCV9sBsu4O8BPB4tQusaKI0.crl (hash: DpTvJMuMVHPHIilFE4bM36ryR4GHws1XUitJcgU4mBI=) 2: A7493DA6145611ECAA3B5769C4F9AE02.roa (hash: ECduF6HgxTLoDLFAm0PdDIfSdNYqt9EVcY+nm8e4XyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.crl rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D51C Validity Not Before: Apr 2 23:48:21 2025 GMT Not After : Apr 9 23:48:21 2025 GMT Subject: CN=67edccc5-3cfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:75:24:6c:12:20:97:66:9a:d4:db:df:1a:5c: ce:ce:83:7e:04:af:58:5b:2a:24:db:a8:63:fc:78: 92:33:82:6b:4d:b2:41:25:ba:07:0e:f0:ac:15:e2: 72:16:ae:79:84:32:fc:ee:15:f2:64:79:dd:8e:dc: a3:05:d7:27:62:3f:87:eb:4c:28:be:9e:5f:05:be: 21:f0:5d:42:ec:e5:99:cc:ad:ce:10:5a:fc:33:37: 5f:f6:7a:b3:67:80:21:e5:3d:9b:98:7e:22:28:4b: b9:9d:30:8a:66:d2:b6:c7:03:d3:c8:fa:37:df:5a: dc:66:6f:61:2a:d1:1a:80:b7:57:69:0d:7d:5d:8d: 73:11:a1:c5:a6:61:07:58:ef:56:c4:a7:97:90:a3: 4c:fd:44:90:f2:5c:bf:b7:11:14:d1:7c:00:f7:de: d0:94:e2:78:ff:ed:50:29:c4:fc:f8:bb:b5:fd:69: 12:86:dd:c6:08:89:4e:15:43:27:c2:ce:be:43:bb: 11:52:f6:d4:87:54:d5:1d:d4:70:83:bb:3a:1a:e6: 4f:a4:e9:0f:bb:04:d1:99:93:23:3c:d3:4e:89:9b: 87:50:7a:54:e9:1e:55:f8:6c:74:6f:b1:fa:b3:cd: 7c:97:ad:87:77:a9:c7:14:d2:75:5d:ce:6e:c2:a7: 2d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CA:C5:19:4F:76:1F:60:39:73:34:3D:CE:E2:98:E3:13:CD:8D:7D X509v3 Authority Key Identifier: keyid:3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:f0:12:28:01:ce:e5:19:73:db:a0:52:e9:5b:dc:76:4a:5c: 27:b4:73:86:76:e9:6d:c6:f9:d2:f9:49:96:06:c3:5e:10:dc: 6b:1a:f8:86:84:d2:68:63:e1:6e:7b:a2:6b:9e:5f:39:55:42: 5f:d4:3d:d6:5f:c6:1d:01:7c:81:e7:91:b6:25:d5:49:24:f5: 9b:74:09:a5:75:23:8c:01:92:27:e9:e6:3a:ee:19:df:c5:7d: 29:bf:1b:b8:59:a9:d6:63:83:e5:c8:27:c1:be:68:5f:b9:7c: f3:49:be:7e:76:36:96:2b:9b:40:db:23:a9:29:ea:6b:fc:f9: 9b:79:ad:87:60:11:2c:99:77:ba:85:d6:70:49:bb:aa:d3:86: 6c:ff:0d:53:93:85:39:fc:d0:2e:51:42:04:22:62:a0:47:12: c3:ed:1c:cf:28:c5:90:7a:e2:c1:33:7c:40:fe:11:ca:85:cd: 98:ef:7d:39:57:c1:a9:14:3c:2b:ed:22:59:34:bc:0d:25:f5: b6:db:ec:bf:ce:e1:82:60:d1:79:c1:a0:ea:94:b2:6c:99:a0: 09:01:69:c5:11:01:59:63:f5:ab:34:94:6e:8c:8f:6d:85:23: 02:5b:c4:7f:3f:4d:07:5a:78:50:6e:24:76:0c:11:15:ac:75: de:fc:a0:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ1MUMxMTAvBgNVBAUTKDNGRDUzMTYwMjU3REIwMUIyRUUwRUYwMTNDMUUyRDQy RUIxQTI4OEQwHhcNMjUwNDAyMjM0ODIxWhcNMjUwNDA5MjM0ODIxWjAYMRYwFAYD VQQDEw02N2VkY2NjNS0zY2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3UkbBIgl2aa1NvfGlzOzoN+BK9YWyok26hj/HiSM4JrTbJBJboHDvCsFeJy Fq55hDL87hXyZHndjtyjBdcnYj+H60wovp5fBb4h8F1C7OWZzK3OEFr8Mzdf9nqz Z4Ah5T2bmH4iKEu5nTCKZtK2xwPTyPo331rcZm9hKtEagLdXaQ19XY1zEaHFpmEH WO9WxKeXkKNM/USQ8ly/txEU0XwA997QlOJ4/+1QKcT8+Lu1/WkSht3GCIlOFUMn ws6+Q7sRUvbUh1TVHdRwg7s6GuZPpOkPuwTRmZMjPNNOiZuHUHpU6R5V+Gx0b7H6 s818l62Hd6nHFNJ1Xc5uwqcttwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALKxRlP dh9gOXM0Pc7imOMTzY19MB8GA1UdIwQYMBaAFD/VMWAlfbAbLuDvATweLULrGiiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDUxQy9CRDMxMjcxNjE0 NTQxMUVDQTQ2ODcyNjhDNEY5QUUwMi9QOVV4WUNWOXNCc3U0TzhCUEI0dFF1c2FL STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5VXhZQ1Y5c0JzdTRPOEJQQjR0UXVzYUtJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDUxQy9CRDMxMjcxNjE0NTQxMUVDQTQ2ODcyNjhDNEY5QUUwMi9QOVV4WUNWOXNC c3U0TzhCUEI0dFF1c2FLSTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi8BIoAc7lGXPboFLpW9x2SlwntHOGdultxvnS+UmWBsNeENxrGviG hNJoY+Fue6Jrnl85VUJf1D3WX8YdAXyB55G2JdVJJPWbdAmldSOMAZIn6eY67hnf xX0pvxu4WanWY4PlyCfBvmhfuXzzSb5+djaWK5tA2yOpKepr/Pmbea2HYBEsmXe6 hdZwSbuq04Zs/w1Tk4U5/NAuUUIEImKgRxLD7RzPKMWQeuLBM3xA/hHKhc2Y7305 V8GpFDwr7SJZNLwNJfW22+y/zuGCYNF5waDqlLJsmaAJAWnFEQFZY/WrNJRujI9t hSMCW8R/P00HWnhQbiR2DBEVrHXe/KAU -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:52 2025 by rpki-client