$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: rpl+BBSrUKervRv8iySboK7aZeYRWP+WjO51O8tBF8A= Subject key identifier: D4:70:2F:69:23:67:54:3D:54:4E:7D:99:D9:5C:CA:C1:98:71:34:D7 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 0180 Signing time: Thu 03 Apr 2025 02:59:51 +0000 Manifest this update: Thu 03 Apr 2025 02:59:50 +0000 Manifest next update: Thu 10 Apr 2025 02:59:50 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: FREVSyjSTxZUCeeTi10/CfYCWFJ8d06wpntNKydZhFg=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7 Validity Not Before: Apr 3 02:59:50 2025 GMT Not After : Apr 10 02:59:50 2025 GMT Subject: CN=67edf9a6-fd4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0e:fb:93:99:28:b2:d8:2b:a9:32:cf:e5:87: 3b:c2:9a:95:87:91:80:d0:ef:f6:ca:a5:94:da:92: 32:9c:a2:dc:ea:91:2a:d6:e5:b4:d9:06:83:6c:10: 92:eb:09:1f:6c:29:76:52:65:62:4f:c1:19:5f:fe: c5:b7:26:41:fe:5c:90:cb:d0:05:66:07:78:b0:94: 11:6c:31:69:13:90:e7:39:c3:01:85:85:c4:7a:f6: 98:d4:ba:16:e1:42:79:4c:97:b3:46:ca:a0:5d:9f: 8b:d2:9a:45:be:17:76:f6:33:d5:97:92:a5:63:17: 94:e3:ff:21:45:e8:f3:c6:ac:8d:21:8b:ea:c8:3d: b2:0b:32:1b:6d:ea:e1:98:86:f0:61:40:56:7f:ec: 8a:26:8c:b2:89:2c:8f:a6:bf:ab:41:95:57:b7:86: 41:89:a2:a4:de:fe:88:30:f6:02:4c:54:a4:8f:c1: e3:59:f2:47:6c:74:39:ee:a6:a1:a1:19:6e:a3:f3: 56:e5:c8:14:2d:6d:e0:ce:24:22:81:8f:2e:0e:69: 6a:aa:06:6d:e5:29:0b:ba:64:33:a1:e8:d0:00:4d: fa:9e:d8:34:7a:55:98:79:4a:ef:73:03:be:a6:96: 79:47:77:f9:ab:d2:94:da:10:ce:7f:26:9f:ec:aa: 4a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:70:2F:69:23:67:54:3D:54:4E:7D:99:D9:5C:CA:C1:98:71:34:D7 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:19:68:ea:60:75:61:08:ca:34:f5:b1:29:be:2f:c7:bf:76: 62:a1:cd:9d:ed:ce:56:69:fd:bc:60:ed:8e:6f:32:26:1b:3f: 8a:4d:52:e2:63:47:f2:6f:37:d2:2d:52:67:f0:f9:8e:1c:b1: 0f:04:0b:6a:a3:7d:d9:89:62:c2:70:c4:ad:d5:0b:92:52:77: 51:c7:6d:16:ad:17:ef:18:d2:d0:25:5b:09:c3:e0:33:78:96: 60:e2:6f:59:d3:f4:0c:a2:d8:52:69:1a:a9:51:2e:e7:dc:99: 73:f7:01:78:bb:e6:0e:8d:22:01:78:c3:59:32:b0:a1:b0:e0: b0:d7:a2:39:1e:5d:62:ea:19:09:54:54:a8:14:bc:a9:8b:50: 9f:16:bb:50:3b:3b:e1:f0:49:0c:88:d3:9c:6e:09:a6:36:08: 62:86:53:4e:78:6b:de:93:b7:da:0f:84:df:b3:48:4f:f9:b2: ba:d0:08:bd:00:6c:d1:1b:8b:bb:4e:97:ca:32:76:d0:e9:92: 25:77:ae:74:bb:49:9c:5f:7c:9b:92:12:6f:21:f8:03:34:06: 01:81:d1:ad:64:17:4c:1d:5b:3e:b6:c5:85:88:33:f3:0f:76: d4:05:43:af:2e:3f:61:4e:a9:65:3c:7b:49:13:96:ef:30:fc: 05:bb:02:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUwNDAzMDI1OTUwWhcNMjUwNDEwMDI1OTUwWjAYMRYwFAYD VQQDEw02N2VkZjlhNi1mZDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtg77k5kostgrqTLP5Yc7wpqVh5GA0O/2yqWU2pIynKLc6pEq1uW02QaDbBCS 6wkfbCl2UmViT8EZX/7FtyZB/lyQy9AFZgd4sJQRbDFpE5DnOcMBhYXEevaY1LoW 4UJ5TJezRsqgXZ+L0ppFvhd29jPVl5KlYxeU4/8hRejzxqyNIYvqyD2yCzIbberh mIbwYUBWf+yKJoyyiSyPpr+rQZVXt4ZBiaKk3v6IMPYCTFSkj8HjWfJHbHQ57qah oRluo/NW5cgULW3gziQigY8uDmlqqgZt5SkLumQzoejQAE36ntg0elWYeUrvcwO+ ppZ5R3f5q9KU2hDOfyaf7KpKvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRwL2kj Z1Q9VE59mdlcysGYcTTXMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwGWjqYHVhCMo09bEpvi/Hv3Zioc2d7c5Waf28YO2ObzImGz+KTVLi Y0fybzfSLVJn8PmOHLEPBAtqo33ZiWLCcMSt1QuSUndRx20WrRfvGNLQJVsJw+Az eJZg4m9Z0/QMothSaRqpUS7n3Jlz9wF4u+YOjSIBeMNZMrChsOCw16I5Hl1i6hkJ VFSoFLypi1CfFrtQOzvh8EkMiNOcbgmmNghihlNOeGvek7faD4Tfs0hP+bK60Ai9 AGzRG4u7TpfKMnbQ6ZIld650u0mcX3ybkhJvIfgDNAYBgdGtZBdMHVs+tsWFiDPz D3bUBUOvLj9hTqllPHtJE5bvMPwFuwJR -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:54 2025 by rpki-client