$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft File: CUyLxdrczZwvs89F0UZN7s86HGA.mft (raw, json) Hash identifier: 1j/YOgiPW6RO1GFYFt64oTZJ20sN+zOSd+vaqEf71rg= Subject key identifier: AC:33:22:FC:50:88:DE:C1:3A:CD:56:B9:5E:32:B7:CC:DD:DF:8D:4A Authority key identifier: 09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60 Certificate issuer: /CN=A9164164/serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft Manifest number: 4A Signing time: Thu 03 Apr 2025 06:34:16 +0000 Manifest this update: Thu 03 Apr 2025 06:34:15 +0000 Manifest next update: Thu 10 Apr 2025 06:34:15 +0000 Files and hashes: 1: CUyLxdrczZwvs89F0UZN7s86HGA.crl (hash: yQVf8U/2Rf1zc2Mxz7rgGHosPEO+5vC1hz0FkSz4Kvk=) 2: F1B3D754A18211EFA2B7E923C4F9AE02.roa (hash: ZgB4/zOUlrbnr+66F7inM4U41pNR0yS6V1N2ZkRjXXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164 Validity Not Before: Apr 3 06:34:15 2025 GMT Not After : Apr 10 06:34:15 2025 GMT Subject: CN=67ee2be7-aad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:95:5a:6a:0c:c1:03:4a:fb:2c:54:5e:2e:9f: b5:27:df:7e:1e:27:a3:67:c8:92:7d:28:6e:b8:7c: 90:13:e3:af:1e:74:85:92:93:39:6b:5c:13:99:db: c7:e0:79:16:57:88:aa:e3:a4:f0:34:4e:df:89:0c: 98:91:c8:1f:e6:2b:da:5a:78:05:f2:34:c8:92:d2: 96:6b:03:fb:ed:02:28:4e:f2:aa:c4:48:d4:17:9e: c5:62:23:c0:10:8d:e3:9b:2b:ba:7a:0b:cd:df:2f: d2:74:7b:41:cd:02:66:43:18:62:6d:c6:ea:fb:f1: ad:e1:e3:5b:73:af:8d:c2:a7:a6:9b:63:63:14:45: c4:94:10:be:a2:a4:bd:ca:41:93:60:19:87:07:d6: a1:cd:31:29:34:7a:5d:2c:1f:e8:e6:34:15:75:fe: 91:23:f6:66:27:6d:65:95:1b:97:48:3e:11:e2:f1: 58:a9:28:ae:e6:7b:3b:15:1f:82:bc:d7:cb:5a:4e: b9:c7:07:12:da:43:a9:88:2a:38:f2:1d:b3:df:98: 31:7b:31:6e:9e:7b:99:b0:5e:01:a2:8b:db:c6:ab: 01:a5:bc:6d:bc:fe:55:49:ba:2a:66:21:d6:8d:80: 9b:dc:c3:3c:10:7a:cb:d1:1a:d1:90:8e:88:08:51: 58:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:33:22:FC:50:88:DE:C1:3A:CD:56:B9:5E:32:B7:CC:DD:DF:8D:4A X509v3 Authority Key Identifier: keyid:09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:93:73:d2:54:6b:2c:92:b8:71:bd:3b:66:fc:12:9c:e3:2e: 23:49:31:bf:f1:c9:61:80:cc:b2:2e:2c:f2:2e:78:5f:d0:a4: 42:d9:e6:d0:81:c4:b6:df:39:5f:9f:e0:e5:dd:7c:d8:d4:cc: 38:a1:8b:c4:ee:35:b3:90:cf:d7:dc:0d:3f:c4:73:27:ca:27: 4b:76:79:33:48:8e:90:16:a0:9a:d6:9a:ac:86:cc:f5:32:b3: d8:32:18:6f:bc:7e:bd:0f:fb:1a:3f:06:d9:44:60:0e:4a:d9: 07:fe:d7:62:69:4d:05:60:15:14:54:97:91:9d:d3:77:8f:4c: 1d:14:59:5e:64:d0:8a:ee:88:66:6f:85:cd:61:ed:aa:b7:9d: bf:00:f8:db:6a:bb:ca:22:33:79:56:d9:69:7e:dd:fd:f8:d0: f8:95:20:c1:fd:94:97:ee:84:d7:4a:9b:bd:d9:49:46:52:36: 0a:9b:31:a4:d2:d4:34:e1:de:f1:67:d1:4a:17:b5:f2:49:2a: d4:e3:26:63:c3:a0:cd:1b:42:c6:e5:98:47:1b:02:f7:64:b0: a7:24:3c:44:ac:6d:e8:3e:ca:ec:50:77:c9:f7:08:50:48:0d: b1:30:fd:32:3b:ee:ef:13:01:88:fe:c4:69:36:92:97:f4:33: da:b7:1a:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDE2NDExMC8GA1UEBRMoMDk0QzhCQzVEQURDQ0Q5QzJGQjNDRjQ1RDE0NjRERUVD RjNBMUM2MDAeFw0yNTA0MDMwNjM0MTVaFw0yNTA0MTAwNjM0MTVaMBgxFjAUBgNV BAMTDTY3ZWUyYmU3LWFhZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSlVpqDMEDSvssVF4un7Un334eJ6NnyJJ9KG64fJAT468edIWSkzlrXBOZ28fg eRZXiKrjpPA0Tt+JDJiRyB/mK9paeAXyNMiS0pZrA/vtAihO8qrESNQXnsViI8AQ jeObK7p6C83fL9J0e0HNAmZDGGJtxur78a3h41tzr43Cp6abY2MURcSUEL6ipL3K QZNgGYcH1qHNMSk0el0sH+jmNBV1/pEj9mYnbWWVG5dIPhHi8VipKK7mezsVH4K8 18taTrnHBxLaQ6mIKjjyHbPfmDF7MW6ee5mwXgGii9vGqwGlvG28/lVJuipmIdaN gJvcwzwQesvRGtGQjogIUVgDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrDMi/FCI 3sE6zVa5XjK3zN3fjUowHwYDVR0jBBgwFoAUCUyLxdrczZwvs89F0UZN7s86HGAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0MTY0L0FFNzIyODlDQTE4 MjExRUY4RjRFMTYyM0M0RjlBRTAyL0NVeUx4ZHJjelp3dnM4OUYwVVpON3M4NkhH QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ1V5THhkcmN6Wnd2czg5RjBVWk43czg2SEdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 MTY0L0FFNzIyODlDQTE4MjExRUY4RjRFMTYyM0M0RjlBRTAyL0NVeUx4ZHJjelp3 dnM4OUYwVVpON3M4NkhHQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE2Tc9JUayySuHG9O2b8EpzjLiNJMb/xyWGAzLIuLPIueF/QpELZ5tCB xLbfOV+f4OXdfNjUzDihi8TuNbOQz9fcDT/EcyfKJ0t2eTNIjpAWoJrWmqyGzPUy s9gyGG+8fr0P+xo/BtlEYA5K2Qf+12JpTQVgFRRUl5Gd03ePTB0UWV5k0IruiGZv hc1h7aq3nb8A+Ntqu8oiM3lW2Wl+3f340PiVIMH9lJfuhNdKm73ZSUZSNgqbMaTS 1DTh3vFn0UoXtfJJKtTjJmPDoM0bQsblmEcbAvdksKckPESsbeg+yuxQd8n3CFBI DbEw/TI77u8TAYj+xGk2kpf0M9q3GuE= -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:54 2025 by rpki-client