$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft File: A3uPBfSQLZ2otCTDk0CGXz2smyY.mft (raw, json) Hash identifier: JaOYM/58G6SqXamTEfOkv9PVCPNiL1LtrQOJrK+/VGo= Subject key identifier: 79:9D:89:45:EF:89:87:4E:B6:8D:BA:4E:1D:96:EA:18:89:0A:D4:D9 Authority key identifier: 03:7B:8F:05:F4:90:2D:9D:A8:B4:24:C3:93:40:86:5F:3D:AC:9B:26 Certificate issuer: /CN=A9167D07/serialNumber=037B8F05F4902D9DA8B424C39340865F3DAC9B26 Certificate serial: 1614 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft Manifest number: 15FE Signing time: Thu 10 Apr 2025 16:46:30 +0000 Manifest this update: Thu 10 Apr 2025 16:46:30 +0000 Manifest next update: Thu 17 Apr 2025 16:46:30 +0000 Files and hashes: 1: A3uPBfSQLZ2otCTDk0CGXz2smyY.crl (hash: fyO2rlpysPuIWkks4Y1xPXQVSKXx+7lelhZfJsTNPxo=) 2: EFE8CDF6C8D111EE95249F25C4F9AE02.roa (hash: 8hTBYho7Wl/PAQj3XMQdwTxzLXCHLSq50BmnZke9xMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.crl rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 16:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5652 (0x1614) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D07, serialNumber=037B8F05F4902D9DA8B424C39340865F3DAC9B26 Validity Not Before: Apr 10 16:46:30 2025 GMT Not After : Apr 17 16:46:30 2025 GMT Subject: CN=67f7f5e6-2d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e0:9b:45:01:33:59:f7:37:fa:66:2d:70:16: 88:1b:21:23:ab:91:84:17:12:0a:66:b5:11:1f:d5: ad:be:db:05:cd:81:c3:21:ac:b8:74:51:2d:30:2c: 7a:85:b8:ca:11:b7:7d:1c:88:d2:0e:04:0b:eb:2d: 8c:0b:eb:e2:a0:ef:d8:46:a9:23:dc:ff:b4:58:7c: 62:c9:ef:4e:3a:73:80:9c:ed:5e:f7:c5:0f:04:5a: 93:2d:bd:fa:89:76:23:a6:2e:8d:86:8d:77:e2:ad: fa:d8:2f:dd:b4:db:9c:4c:3c:e5:41:70:72:75:b6: 97:df:34:3d:53:6d:8c:00:6c:3a:fc:6b:e2:08:99: 93:f3:39:28:ae:a0:15:7f:59:70:a9:fd:ab:cf:9b: 5d:94:dd:38:23:46:59:4b:db:8e:8c:d8:1a:0e:42: a7:5a:0c:f8:0b:cb:5e:e6:49:b0:09:52:51:44:ab: 0f:fc:01:98:3b:70:64:63:5a:23:90:69:cc:49:b5: 77:ab:39:43:26:2b:4b:a9:d4:0f:a9:ee:cc:08:3c: ad:4c:a0:d5:f8:61:c1:f5:b7:8a:3d:2e:17:47:9c: 66:1f:dd:5e:e7:a1:67:30:d6:01:8f:3e:e8:26:e1: 3a:8b:de:9c:fd:7e:a1:0f:9b:55:a9:a6:8d:64:6a: 86:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:9D:89:45:EF:89:87:4E:B6:8D:BA:4E:1D:96:EA:18:89:0A:D4:D9 X509v3 Authority Key Identifier: keyid:03:7B:8F:05:F4:90:2D:9D:A8:B4:24:C3:93:40:86:5F:3D:AC:9B:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:28:2b:48:e9:0c:75:7f:bb:82:67:27:81:3c:9d:33:f0:23: 23:99:cf:bd:3c:5f:d6:24:a2:ad:e6:5a:35:fb:7c:53:70:ae: fe:96:4f:11:78:95:90:2a:61:78:33:cf:64:37:91:bc:10:f0: d2:01:24:4c:a5:a0:2e:5d:9e:75:28:ae:81:4a:af:b6:07:81: 93:10:fd:21:79:50:99:1b:2f:92:65:89:be:25:7b:af:be:e2: d4:b5:09:8c:82:86:89:3b:46:b3:b9:cb:dc:48:4a:0b:28:e2: 34:95:b0:03:2a:3e:b0:05:40:12:52:51:fe:75:d6:ff:10:3e: a4:9a:fd:02:31:8e:96:14:29:6b:83:c7:19:ec:1a:c4:26:73: 9b:f4:ed:63:a1:82:6d:ce:ee:46:c4:bb:79:34:77:06:71:e0: 6b:f4:db:0f:de:f9:a4:d8:48:9c:ac:77:42:11:b5:a7:fc:ff: d0:78:91:54:3a:4e:be:97:61:f5:ef:e3:82:11:04:ee:1f:30: af:25:a1:7c:6d:60:86:59:f0:93:f7:65:ec:29:88:0e:0e:ed: 0d:5f:44:fb:39:3b:2e:8e:fb:59:71:fb:53:c0:cc:a4:82:e4: 1c:b4:f4:90:63:23:b2:51:60:4c:22:1c:d1:fc:41:99:97:23: 6c:2c:4f:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEMDcxMTAvBgNVBAUTKDAzN0I4RjA1RjQ5MDJEOURBOEI0MjRDMzkzNDA4NjVG M0RBQzlCMjYwHhcNMjUwNDEwMTY0NjMwWhcNMjUwNDE3MTY0NjMwWjAYMRYwFAYD VQQDEw02N2Y3ZjVlNi0yZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuCbRQEzWfc3+mYtcBaIGyEjq5GEFxIKZrURH9WtvtsFzYHDIay4dFEtMCx6 hbjKEbd9HIjSDgQL6y2MC+vioO/YRqkj3P+0WHxiye9OOnOAnO1e98UPBFqTLb36 iXYjpi6Nho134q362C/dtNucTDzlQXBydbaX3zQ9U22MAGw6/GviCJmT8zkorqAV f1lwqf2rz5tdlN04I0ZZS9uOjNgaDkKnWgz4C8te5kmwCVJRRKsP/AGYO3BkY1oj kGnMSbV3qzlDJitLqdQPqe7MCDytTKDV+GHB9beKPS4XR5xmH91e56FnMNYBjz7o JuE6i96c/X6hD5tVqaaNZGqG4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmdiUXv iYdOto26Th2W6hiJCtTZMB8GA1UdIwQYMBaAFAN7jwX0kC2dqLQkw5NAhl89rJsm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0QwNy9ENzRBRTI3NDFC QTkxMUU4QThGNTc4NjVDNEY5QUUwMi9BM3VQQmZTUUxaMm90Q1REazBDR1h6MnNt eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzdVBCZlNRTFoyb3RDVERrMENHWHoyc215WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0QwNy9ENzRBRTI3NDFCQTkxMUU4QThGNTc4NjVDNEY5QUUwMi9BM3VQQmZTUUxa Mm90Q1REazBDR1h6MnNteVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaKCtI6Qx1f7uCZyeBPJ0z8CMjmc+9PF/WJKKt5lo1+3xTcK7+lk8R eJWQKmF4M89kN5G8EPDSASRMpaAuXZ51KK6BSq+2B4GTEP0heVCZGy+SZYm+JXuv vuLUtQmMgoaJO0azucvcSEoLKOI0lbADKj6wBUASUlH+ddb/ED6kmv0CMY6WFClr g8cZ7BrEJnOb9O1joYJtzu5GxLt5NHcGceBr9NsP3vmk2EicrHdCEbWn/P/QeJFU Ok6+l2H17+OCEQTuHzCvJaF8bWCGWfCT92XsKYgODu0NX0T7OTsujvtZcftTwMyk guQctPSQYyOyUWBMIhzR/EGZlyNsLE8B -----END CERTIFICATE-----Generated at Sat Apr 12 14:54:19 2025 by rpki-client