$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft File: C9q2CGF_PDGDxHD05hmyeV91w4k.mft (raw, json) Hash identifier: xn5plhkh5y4nEfGbLgpuVno7BMjDaMDDS4DXdG9so3Q= Subject key identifier: 72:C9:60:46:C5:0D:F1:73:D4:51:28:12:C2:23:D5:31:8E:51:5A:EC Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft Manifest number: C8 Signing time: Sat 05 Apr 2025 05:07:42 +0000 Manifest this update: Sat 05 Apr 2025 05:07:41 +0000 Manifest next update: Sat 12 Apr 2025 05:07:41 +0000 Files and hashes: 1: C9q2CGF_PDGDxHD05hmyeV91w4k.crl (hash: rdwqzcJj5me54oXVk3R0k9uZsQb8joV0vp81L/WWsO8=) 2: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (hash: EyKD4I3R8YSy4asXY+8xvf07IP4owJwI772hb1AAhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3 Validity Not Before: Apr 5 05:07:41 2025 GMT Not After : Apr 12 05:07:41 2025 GMT Subject: CN=67f0ba9d-2de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b8:b5:b0:98:aa:b1:0d:60:b8:86:ab:ac:8f: 6b:b1:de:a5:0f:66:5c:55:8d:38:fe:6d:fa:79:65: cf:01:9d:a7:f3:81:c0:06:c5:fe:ca:5c:87:49:99: 57:b4:11:c9:74:46:f6:fd:b6:6d:35:9a:6f:f2:9b: 13:45:2f:dc:b0:de:58:c1:9f:31:73:b7:b9:67:23: 78:8d:de:a8:de:4f:0d:43:c9:e9:90:fb:43:e3:88: c2:d3:d6:8a:f9:ca:04:2e:74:e4:90:6f:3f:43:09: 4c:12:a6:bc:c6:a7:dc:bc:ed:1e:32:a6:70:29:b6: 26:ae:d5:46:96:7c:8d:2a:79:45:fb:6b:14:28:85: 49:a8:a5:a3:43:0a:06:83:e9:8a:8d:7b:ef:2c:25: 0e:02:c6:42:f4:6c:4a:24:6b:29:ee:a2:86:2a:a3: 11:54:92:5d:c5:a8:97:15:dd:3b:9d:fe:93:72:87: ff:26:f0:11:29:89:55:d0:de:ad:cb:36:a0:c8:3f: 5f:25:95:4e:e3:0c:d6:05:5b:0b:40:12:8f:56:7f: 63:0c:62:ff:ec:3a:7e:06:94:db:62:1b:22:13:6a: 00:44:3b:da:5e:ba:89:88:3b:ca:36:da:7c:68:50: 64:f2:a1:d0:28:14:c2:93:a4:8d:45:2f:22:1f:a8: c5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C9:60:46:C5:0D:F1:73:D4:51:28:12:C2:23:D5:31:8E:51:5A:EC X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:a4:b3:c4:34:6d:21:ef:c7:72:b2:e3:51:d8:9d:74:f4:d7: 94:33:19:42:87:d6:8b:19:34:aa:e8:85:48:8b:36:d2:cf:fd: 4d:2f:cb:b0:1d:29:ec:eb:cf:21:ce:2f:c9:c1:f2:af:1b:88: 15:29:4c:c2:55:01:ff:8c:88:5c:a7:af:ba:be:04:7c:57:97: 95:55:75:28:ea:db:64:1c:21:9c:1b:e4:ef:26:f4:bc:b9:3e: e2:6b:1a:72:ec:9f:dd:d8:eb:a2:22:2d:23:c2:e1:fb:9a:1b: 9d:ae:31:c6:c1:bc:47:0d:e5:52:84:42:fc:c4:ad:48:ad:88: b8:59:48:d8:d7:9b:1f:8d:52:0e:90:8d:18:a2:8c:53:4f:5f: 63:31:74:59:fd:95:07:7f:46:ff:b6:89:17:8b:17:a6:0e:ff: bc:eb:ad:36:90:5d:07:30:5e:0d:20:7e:b1:1f:8c:84:0a:e9: 73:05:94:fd:00:6d:8e:cf:72:a0:28:ff:b0:83:a5:e2:3c:7e: bd:cb:57:bc:59:cf:96:62:f9:5d:a7:5f:9d:c6:b7:eb:39:22: 1a:70:54:8c:e4:d8:1a:5d:34:84:99:ad:6b:53:04:18:9f:1a: aa:e3:59:85:ce:93:c0:20:90:b2:33:cc:d5:02:68:da:b2:8c: f7:77:e1:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDBCREFCNjA4NjE3RjNDMzE4M0M0NzBGNEU2MTlCMjc5 NUY3NUMzODkwHhcNMjUwNDA1MDUwNzQxWhcNMjUwNDEyMDUwNzQxWjAYMRYwFAYD VQQDEw02N2YwYmE5ZC0yZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbi1sJiqsQ1guIarrI9rsd6lD2ZcVY04/m36eWXPAZ2n84HABsX+ylyHSZlX tBHJdEb2/bZtNZpv8psTRS/csN5YwZ8xc7e5ZyN4jd6o3k8NQ8npkPtD44jC09aK +coELnTkkG8/QwlMEqa8xqfcvO0eMqZwKbYmrtVGlnyNKnlF+2sUKIVJqKWjQwoG g+mKjXvvLCUOAsZC9GxKJGsp7qKGKqMRVJJdxaiXFd07nf6Tcof/JvARKYlV0N6t yzagyD9fJZVO4wzWBVsLQBKPVn9jDGL/7Dp+BpTbYhsiE2oARDvaXrqJiDvKNtp8 aFBk8qHQKBTCk6SNRS8iH6jFawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLJYEbF DfFz1FEoEsIj1TGOUVrsMB8GA1UdIwQYMBaAFAvatghhfzwxg8Rw9OYZsnlfdcOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DNTU0MjNBQUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BER0R4SEQwNWhteWVWOTF3 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DNTU0MjNBQUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BE R0R4SEQwNWhteWVWOTF3NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhpLPENG0h78dysuNR2J109NeUMxlCh9aLGTSq6IVIizbSz/1NL8uw HSns688hzi/JwfKvG4gVKUzCVQH/jIhcp6+6vgR8V5eVVXUo6ttkHCGcG+TvJvS8 uT7iaxpy7J/d2OuiIi0jwuH7mhudrjHGwbxHDeVShEL8xK1IrYi4WUjY15sfjVIO kI0YooxTT19jMXRZ/ZUHf0b/tokXixemDv+86602kF0HMF4NIH6xH4yECulzBZT9 AG2Oz3KgKP+wg6XiPH69y1e8Wc+WYvldp1+dxrfrOSIacFSM5NgaXTSEma1rUwQY nxqq41mFzpPAIJCyM8zVAmjasoz3d+EN -----END CERTIFICATE-----Generated at Sat Apr 5 23:46:41 2025 by rpki-client