$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft File: 065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json) Hash identifier: ENVMbS8qmc9T8TC9EMjJEi9kdnjqfi1XBOf76puWjCw= Subject key identifier: 10:9A:50:00:CD:4C:96:DB:09:6E:06:74:05:7C:BC:17:40:BB:5E:6A Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF Certificate issuer: /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft Manifest number: 0162 Signing time: Thu 03 Apr 2025 03:18:59 +0000 Manifest this update: Thu 03 Apr 2025 03:18:58 +0000 Manifest next update: Thu 10 Apr 2025 03:18:58 +0000 Files and hashes: 1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: wmTs/JJ7R+ILNAS8lShzu+vlRD3YnhsV4t0oWX7MvI0=) 2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: Odfpid+S8/X10dkHkByuVcfAeQDpGtmiKeMq57hIa04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163B62 Validity Not Before: Apr 3 03:18:58 2025 GMT Not After : Apr 10 03:18:58 2025 GMT Subject: CN=67edfe22-142f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3b:85:3d:72:4a:5b:91:07:e2:ea:19:4e:fa: 30:ed:7c:3d:37:02:db:0c:4b:16:4f:8d:37:d5:ae: f9:bd:bd:53:b4:d8:29:be:df:61:58:64:0a:35:1b: db:cd:a2:3e:4e:3e:4c:ec:7f:1d:db:b8:ee:6a:f8: 0d:5d:e7:c7:7f:68:3f:48:a8:2f:69:73:f8:b0:df: c9:9b:44:e3:35:3c:76:51:01:a5:87:e5:28:b3:92: 45:72:6a:05:e8:60:1f:30:f1:d5:14:a3:04:07:04: 7f:0e:d2:01:b1:40:50:04:8e:b8:d8:42:3b:f4:ad: ca:e8:27:5d:60:db:6a:94:c6:69:15:cc:8d:36:bb: 64:43:8f:1c:73:20:81:42:6f:33:cc:ce:9e:2b:97: df:88:de:f9:71:e1:2b:05:61:a7:66:b6:13:95:77: 02:ae:15:7e:0b:19:92:83:0e:14:a9:e0:a8:1f:9b: e3:f4:e0:6d:5e:4f:b8:9b:73:ab:b9:ce:cc:17:18: 2d:8d:de:70:20:97:09:e7:f0:c2:13:a3:c9:ea:52: e6:be:49:4d:ba:70:6d:e0:b3:ca:b9:c9:0f:d0:a3: 8e:e9:dd:b1:42:de:2a:c2:e5:14:ef:8c:b9:cd:63: 7f:24:1d:61:49:5b:9d:cc:cd:4a:28:46:ad:5b:10: b3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:9A:50:00:CD:4C:96:DB:09:6E:06:74:05:7C:BC:17:40:BB:5E:6A X509v3 Authority Key Identifier: keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:18:24:84:88:17:78:b8:e1:e3:4a:f9:c0:56:1a:9d:65:34: d0:a4:9e:b8:a0:5d:17:4f:a4:71:60:0c:a4:5f:e7:eb:2f:5b: 45:84:b1:a0:6f:71:59:cd:1f:23:85:1b:a6:c7:d9:17:a8:88: c0:6b:ee:79:56:54:5b:3a:c2:35:f6:7e:c0:d4:2a:d6:f4:66: b4:40:89:71:8a:74:e4:30:f5:2d:32:ed:36:7f:4d:40:46:3a: 5c:9b:8d:1f:29:5b:fc:a6:65:0d:45:b4:cf:a5:ff:05:81:df: 35:48:a4:13:8a:9f:62:14:01:ab:14:32:18:9e:ae:eb:60:2c: 4f:ce:6a:35:f5:b4:96:92:a3:9b:08:51:ae:ff:d5:24:d4:9f: ef:b5:11:97:92:d6:f8:2e:6d:f5:c4:1a:76:02:9c:61:28:c7: 7e:a3:e9:ea:09:0f:75:14:75:5b:06:e8:d3:f4:f0:cd:4a:17: 23:82:52:95:bb:d0:4e:f8:b4:68:34:56:cc:b2:6f:1b:6a:0e: 80:e0:9b:7e:e0:41:ee:e4:06:b4:05:cf:16:bb:d0:1d:c9:06: d1:6e:0e:2b:fb:d2:84:10:c1:a4:2a:61:1b:cd:79:69:fa:07: 30:47:1c:87:71:8e:c3:14:c1:28:86:b4:c7:1b:d2:12:6d:ce: 74:00:c1:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCNjIxMTAvBgNVBAUTKEQzQUU2MjY0NDlDM0E5REQwRTc3OThCQ0U4QkNCQjM5 NjYyQTI3RkYwHhcNMjUwNDAzMDMxODU4WhcNMjUwNDEwMDMxODU4WjAYMRYwFAYD VQQDEw02N2VkZmUyMi0xNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujuFPXJKW5EH4uoZTvow7Xw9NwLbDEsWT4031a75vb1TtNgpvt9hWGQKNRvb zaI+Tj5M7H8d27juavgNXefHf2g/SKgvaXP4sN/Jm0TjNTx2UQGlh+Uos5JFcmoF 6GAfMPHVFKMEBwR/DtIBsUBQBI642EI79K3K6CddYNtqlMZpFcyNNrtkQ48ccyCB Qm8zzM6eK5ffiN75ceErBWGnZrYTlXcCrhV+CxmSgw4UqeCoH5vj9OBtXk+4m3Or uc7MFxgtjd5wIJcJ5/DCE6PJ6lLmvklNunBt4LPKuckP0KOO6d2xQt4qwuUU74y5 zWN/JB1hSVudzM1KKEatWxCzkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCaUADN TJbbCW4GdAV8vBdAu15qMB8GA1UdIwQYMBaAFNOuYmRJw6ndDneYvOi8uzlmKif/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0I2Mi80RTlCNzZEMkZC RDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFkME9kNWk4Nkx5N09XWXFK XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFk ME9kNWk4Nkx5N09XWXFKXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmGCSEiBd4uOHjSvnAVhqdZTTQpJ64oF0XT6RxYAykX+frL1tFhLGg b3FZzR8jhRumx9kXqIjAa+55VlRbOsI19n7A1CrW9Ga0QIlxinTkMPUtMu02f01A Rjpcm40fKVv8pmUNRbTPpf8Fgd81SKQTip9iFAGrFDIYnq7rYCxPzmo19bSWkqOb CFGu/9Uk1J/vtRGXktb4Lm31xBp2ApxhKMd+o+nqCQ91FHVbBujT9PDNShcjglKV u9BO+LRoNFbMsm8bag6A4Jt+4EHu5Aa0Bc8Wu9AdyQbRbg4r+9KEEMGkKmEbzXlp +gcwRxyHcY7DFMEohrTHG9ISbc50AMFU -----END CERTIFICATE-----Generated at Fri Apr 4 22:27:04 2025 by rpki-client