$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: N12VnjBAVIWzLBp4cvqn6mquqv6GiROvDWzHuiD1Lm8= Subject key identifier: 48:A0:11:1B:8A:3A:DC:F7:E6:D7:AF:78:1B:29:EE:98:19:A1:BC:2A Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: 4B Signing time: Thu 17 Apr 2025 06:08:29 +0000 Manifest this update: Thu 17 Apr 2025 06:08:28 +0000 Manifest next update: Thu 24 Apr 2025 06:08:28 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: P0hzMv55AbIhhBD2Z7xRhYV7Vd024xd4Fl1gD7zpiaU=) 2: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (hash: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 06:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Apr 17 06:08:28 2025 GMT Not After : Apr 24 06:08:28 2025 GMT Subject: CN=68009add-a65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:bf:f8:17:47:7c:5a:04:e8:26:ac:9f:b8: 7c:57:1b:5e:cd:0c:98:2d:7a:40:99:4d:23:f5:30: fa:11:d7:c9:d5:9a:90:b3:64:49:09:02:17:e6:a8: 17:b6:5a:fa:52:30:ed:4d:a5:4c:be:0e:ea:65:49: ae:03:e9:17:3c:ed:4b:58:dc:4d:d5:a3:5f:1f:a3: 2b:74:19:1c:09:da:01:0d:1e:fc:56:33:73:c4:bc: ec:31:1f:73:5d:91:5f:e3:b2:d3:c2:f5:06:eb:99: ff:a7:f5:3f:d4:0c:99:97:00:80:a8:03:17:34:98: b8:b4:29:38:55:2c:86:12:68:b3:8b:a0:c3:33:ef: e9:c4:b3:6b:f5:68:a5:7a:7b:ff:03:82:d7:45:76: a1:62:70:1e:dc:d8:88:b7:a1:6f:d4:34:f8:92:df: 13:ac:33:23:89:6b:6f:e8:f6:f2:06:15:00:16:6c: 12:21:c0:a7:c4:9c:7d:64:6d:c8:d0:6f:d7:b0:f2: 66:10:f7:ae:70:f9:89:45:0c:80:2c:ea:b2:67:7b: b2:14:ef:21:06:57:20:22:11:1c:e7:be:5a:fa:95: a8:6c:36:62:09:09:7d:36:90:69:36:ab:c7:01:6a: 1c:1d:7d:80:28:5c:cd:ae:fb:76:da:71:cd:14:34: 9b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A0:11:1B:8A:3A:DC:F7:E6:D7:AF:78:1B:29:EE:98:19:A1:BC:2A X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:44:04:28:5f:2f:2e:b4:e8:fe:e8:64:c9:20:47:ce:99:0d: 68:78:90:bb:9d:5c:03:9f:6e:f2:bd:5f:f8:c7:41:79:dc:40: ca:b3:46:bd:96:d5:d0:98:83:dc:f7:46:3e:84:74:4e:7a:55: 21:2b:f5:04:6f:7b:ed:54:16:f5:a6:66:01:fb:b4:73:94:d3: e0:7d:0a:69:a3:cc:a2:9d:9c:d1:9c:19:36:99:f4:c4:6a:1f: 28:e3:6e:27:f7:0b:53:b7:28:01:ba:44:5b:66:c4:c3:3d:6b: 0b:0f:9d:d9:48:28:bf:d4:32:16:32:db:ab:44:3a:05:6c:35: 68:3e:db:9c:5d:2f:39:12:b2:81:ea:bf:47:40:09:62:ab:61: 8b:38:2a:ae:c3:b0:fe:d0:69:3c:9d:33:f2:6c:8e:32:66:ef: fc:44:6b:e7:73:34:64:cb:4f:21:f3:78:05:70:b8:69:18:74: b5:84:64:bb:63:6c:f0:ee:9e:c6:c8:b2:d7:0b:97:05:f4:1f: fb:aa:35:cc:67:a2:61:f2:e1:6e:79:e8:3c:75:cc:0b:9a:25: bb:ce:5c:3a:8c:48:03:ba:df:01:9b:28:a5:62:f7:ca:77:b0: e9:b2:f5:08:34:1f:86:47:2d:a1:ea:07:50:9d:32:cb:a1:37: ef:4b:8f:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjE3OTExMC8GA1UEBRMoQTYyM0RDMDVFRTdDMjM3MENBNDQ0MzEwODRERTUxMzIx RjM3QTcwNDAeFw0yNTA0MTcwNjA4MjhaFw0yNTA0MjQwNjA4MjhaMBgxFjAUBgNV BAMTDTY4MDA5YWRkLWE2NWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBsr/4F0d8WgToJqyfuHxXG17NDJgtekCZTSP1MPoR18nVmpCzZEkJAhfmqBe2 WvpSMO1NpUy+DuplSa4D6Rc87UtY3E3Vo18foyt0GRwJ2gENHvxWM3PEvOwxH3Nd kV/jstPC9Qbrmf+n9T/UDJmXAICoAxc0mLi0KThVLIYSaLOLoMMz7+nEs2v1aKV6 e/8DgtdFdqFicB7c2Ii3oW/UNPiS3xOsMyOJa2/o9vIGFQAWbBIhwKfEnH1kbcjQ b9ew8mYQ965w+YlFDIAs6rJne7IU7yEGVyAiERznvlr6lahsNmIJCX02kGk2q8cB ahwdfYAoXM2u+3bacc0UNJtzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSKARG4o6 3Pfm1694GynumBmhvCowHwYDVR0jBBgwFoAUpiPcBe58I3DKREMQhN5RMh83pwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2MTc5LzRCRkQ5QkJDQUE3 QzExRUZBMzNCRkQ3N0M0RjlBRTAyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGlQY0JlNThJM0RLUkVNUWhONVJNaDgzcHdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 MTc5LzRCRkQ5QkJDQUE3QzExRUZBMzNCRkQ3N0M0RjlBRTAyL3BpUGNCZTU4STNE S1JFTVFoTjVSTWg4M3B3US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAExEBChfLy606P7oZMkgR86ZDWh4kLudXAOfbvK9X/jHQXncQMqzRr2W 1dCYg9z3Rj6EdE56VSEr9QRve+1UFvWmZgH7tHOU0+B9CmmjzKKdnNGcGTaZ9MRq Hyjjbif3C1O3KAG6RFtmxMM9awsPndlIKL/UMhYy26tEOgVsNWg+25xdLzkSsoHq v0dACWKrYYs4Kq7DsP7QaTydM/JsjjJm7/xEa+dzNGTLTyHzeAVwuGkYdLWEZLtj bPDunsbIstcLlwX0H/uqNcxnomHy4W556Dx1zAuaJbvOXDqMSAO63wGbKKVi98p3 sOmy9Qg0H4ZHLaHqB1CdMsuhN+9LjzY= -----END CERTIFICATE-----Generated at Sat Apr 19 06:05:27 2025 by rpki-client