$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft File: PMd5DiA3Zl70liuB2tL9B-1G-LI.mft (raw, json) Hash identifier: TYD5yfNcGgS7ucxWcQsVHazEOzO+7kSlriq/00wN26w= Subject key identifier: 8B:67:26:17:A6:70:AB:27:48:56:03:62:6D:01:F2:C1:86:9E:CA:5A Authority key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 Certificate issuer: /CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft Manifest number: 7C Signing time: Thu 03 Apr 2025 05:53:41 +0000 Manifest this update: Thu 03 Apr 2025 05:53:40 +0000 Manifest next update: Thu 10 Apr 2025 05:53:40 +0000 Files and hashes: 1: PMd5DiA3Zl70liuB2tL9B-1G-LI.crl (hash: yWWJ4fPOW/kVl6B2GBgqOAO5hAmYyXKXphXyZFMNVwc=) 2: A6449CBA54A011EFB35AED26C4F9AE02.roa (hash: MkKraPCVKYSh4EUGWEmc6lPBWcmV9tHqmd6kNTqMDpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EB9 Validity Not Before: Apr 3 05:53:40 2025 GMT Not After : Apr 10 05:53:40 2025 GMT Subject: CN=67ee2265-c978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:de:d2:04:53:ac:40:dc:f9:20:72:aa:88:51: af:c8:0f:9e:ca:6e:03:c3:68:0b:2a:21:69:41:35: 49:01:da:1e:87:77:83:a1:cf:7b:e5:cd:3d:b4:5d: 98:19:3c:24:4e:9f:0e:18:22:7f:c0:f7:b0:30:e2: 43:c6:75:73:18:69:98:31:1c:f9:8c:3a:1d:ed:0c: 18:0f:72:9d:cb:bb:93:1a:5c:96:e4:73:6f:3b:72: bc:5b:ac:29:01:50:c0:35:2b:f3:2e:c2:34:b9:3d: d5:50:e6:26:74:0f:d2:52:a8:d2:35:7b:ea:89:ad: 97:56:e0:32:86:b4:85:d2:06:6d:ed:31:4c:1f:35: 0d:57:23:ac:2f:62:b4:21:d1:38:c3:5e:80:e9:cc: 04:5d:7f:fa:c7:30:f1:46:c2:d7:56:44:24:71:d2: 1a:dc:d0:52:45:b9:16:7e:7f:99:35:0f:58:04:5e: e0:ee:6f:19:8d:af:0e:b3:be:db:9e:2f:ba:30:87: e6:4d:de:7b:21:1e:58:2f:43:68:61:42:a1:75:a5: 7f:d6:de:e2:f1:a4:1b:52:ae:c9:c7:02:2d:ae:e7: 22:72:79:69:ac:a9:f0:e1:b1:95:e9:00:9a:5e:b8: e4:d4:98:7d:da:0e:36:4f:46:71:25:1e:bf:7c:e9: 8f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:67:26:17:A6:70:AB:27:48:56:03:62:6D:01:F2:C1:86:9E:CA:5A X509v3 Authority Key Identifier: keyid:3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:b6:a6:55:17:08:b7:7c:ad:fd:31:95:7c:67:0d:7d:13:cf: 75:fb:d6:63:c0:ee:c5:c3:98:01:77:45:68:c3:d9:86:0a:79: ad:49:5a:9b:41:99:47:40:82:c9:d6:c4:2f:43:69:2b:db:24: 23:5e:4c:ac:23:b4:e1:fc:b1:e6:39:a9:ac:68:6d:c3:8a:67: 01:91:c8:c9:fa:9a:e2:04:a3:1e:d0:56:6e:8f:6a:20:1d:74: d5:a3:b6:94:5b:9e:1a:45:96:a2:b8:fc:84:10:22:ef:3b:56: 31:b6:56:02:ea:51:a4:14:3c:d0:83:1d:bf:a2:00:a1:e2:0f: de:13:d3:aa:d1:bd:c9:be:31:a1:ee:3b:fa:99:e8:e5:84:45: 95:d7:6c:8e:b4:48:43:57:47:a4:c1:92:ba:ee:f2:a0:80:07: c0:04:60:59:92:36:f0:12:aa:a9:b1:02:6d:48:1e:35:4e:dd: d1:bf:55:00:7c:2f:0d:e3:7b:cb:e3:ac:17:36:2f:10:5d:6f: 99:77:03:6c:01:72:3b:55:74:69:fd:2e:ce:5c:c6:a2:d2:0c: e3:5b:0b:78:5a:91:3d:0b:d6:18:2d:fe:79:76:45:5a:dd:fd: ca:dc:a4:dc:db:b3:33:7b:dc:fa:61:7d:d2:32:e5:00:67:59: b1:37:fa:d5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 M0VCOTExMC8GA1UEBRMoM0NDNzc5MEUyMDM3NjY1RUY0OTYyQjgxREFEMkZEMDdF RDQ2RjhCMjAeFw0yNTA0MDMwNTUzNDBaFw0yNTA0MTAwNTUzNDBaMBgxFjAUBgNV BAMTDTY3ZWUyMjY1LWM5NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl3tIEU6xA3PkgcqqIUa/ID57KbgPDaAsqIWlBNUkB2h6Hd4Ohz3vlzT20XZgZ PCROnw4YIn/A97Aw4kPGdXMYaZgxHPmMOh3tDBgPcp3Lu5MaXJbkc287crxbrCkB UMA1K/MuwjS5PdVQ5iZ0D9JSqNI1e+qJrZdW4DKGtIXSBm3tMUwfNQ1XI6wvYrQh 0TjDXoDpzARdf/rHMPFGwtdWRCRx0hrc0FJFuRZ+f5k1D1gEXuDubxmNrw6zvtue L7owh+ZN3nshHlgvQ2hhQqF1pX/W3uLxpBtSrsnHAi2u5yJyeWmsqfDhsZXpAJpe uOTUmH3aDjZPRnElHr986Y/JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi2cmF6Zw qydIVgNibQHywYaeylowHwYDVR0jBBgwFoAUPMd5DiA3Zl70liuB2tL9B+1G+LIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYzRUI5LzA1MUM5RTY0NTRB MDExRUY4NkFFNTkyMkM0RjlBRTAyL1BNZDVEaUEzWmw3MGxpdUIydEw5Qi0xRy1M SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUE1kNURpQTNabDcwbGl1QjJ0TDlCLTFHLUxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYz RUI5LzA1MUM5RTY0NTRBMDExRUY4NkFFNTkyMkM0RjlBRTAyL1BNZDVEaUEzWmw3 MGxpdUIydEw5Qi0xRy1MSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGG2plUXCLd8rf0xlXxnDX0Tz3X71mPA7sXDmAF3RWjD2YYKea1JWptB mUdAgsnWxC9DaSvbJCNeTKwjtOH8seY5qaxobcOKZwGRyMn6muIEox7QVm6PaiAd dNWjtpRbnhpFlqK4/IQQIu87VjG2VgLqUaQUPNCDHb+iAKHiD94T06rRvcm+MaHu O/qZ6OWERZXXbI60SENXR6TBkrru8qCAB8AEYFmSNvASqqmxAm1IHjVO3dG/VQB8 Lw3je8vjrBc2LxBdb5l3A2wBcjtVdGn9Ls5cxqLSDONbC3hakT0L1hgt/nl2RVrd /crcpNzbszN73PphfdIy5QBnWbE3+tU= -----END CERTIFICATE-----Generated at Fri Apr 4 22:30:04 2025 by rpki-client