$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: bB0WYX8vvOxYy3Shnn21dkYS9OVyWOCR9gTY7UG6dlg= Subject key identifier: 0E:32:66:B0:D0:1F:6D:0B:3A:A0:1A:06:1A:69:4C:D4:63:DB:C2:48 Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 045A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 0434 Signing time: Thu 03 Apr 2025 00:22:34 +0000 Manifest this update: Thu 03 Apr 2025 00:22:33 +0000 Manifest next update: Thu 10 Apr 2025 00:22:33 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: Lkjw8fvZqpqIsNqpekKwHUsMR3zSqSKlviWo9GQRoaM=) 2: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: 264WZ0f5FSYRLcE55bzQKj/lfReOWZZQL9W6/+XrL50=) 3: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: vRD5gvetOl4M72g0Ox/17wn2gRRkZ+MKIO7MmLjvLgg=) 4: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: K/T3wX+b6EJFTbJdX5T/49+xTnSJoc5fKtBw2NmgoBw=) 5: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: MrOehOXflQUhc9W+FdP7kViEOIm0zhC3RKvz9jpM7pY=) 6: 27992F96832811EFA1BAAC4FC4F9AE02.roa (hash: 9hr8e6Q+evY4tAAVgrktH6R5E0K57yFV9RXeFdQNtLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11 Validity Not Before: Apr 3 00:22:33 2025 GMT Not After : Apr 10 00:22:33 2025 GMT Subject: CN=67edd4c9-96f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c7:90:a4:ae:82:64:f6:94:57:7e:a1:4c:f4: 4e:c3:3f:38:71:b2:0a:9d:66:4b:66:de:8d:cd:f7: 01:b7:f8:06:ad:db:1e:f5:6a:93:53:f0:4b:27:2c: 0a:7d:39:79:5e:56:07:cd:c3:b1:f0:85:ac:e7:54: da:1a:a9:a0:2e:2a:86:37:78:09:7c:d6:97:b3:30: ff:31:1b:b3:a0:85:95:3a:32:77:69:d6:00:9b:28: 8f:98:bd:8c:51:f2:a4:fb:13:8a:34:0e:f5:14:18: 5f:df:da:3e:68:2e:a4:ca:05:2b:9f:3a:e5:d3:57: 1c:a0:ca:6e:97:e9:37:e2:a5:41:0d:13:e9:5c:21: 45:de:fa:cb:3f:20:35:2d:28:0f:47:4d:56:ec:51: 7b:91:85:d8:2b:38:06:41:bd:d7:53:65:b3:ef:5e: b7:b3:1e:e0:a6:f2:88:d3:81:e7:e9:c1:0b:11:bf: e8:ec:0e:39:e3:ee:ef:30:d9:45:30:1b:2e:0d:ef: 86:84:6e:14:b1:6b:e9:a4:c1:b2:42:c8:7d:8f:db: 74:e7:e2:d8:19:ca:d2:b8:20:df:e3:5a:af:e1:8e: a3:99:21:84:76:d8:28:98:8f:a4:2c:22:24:fe:57: eb:43:70:87:fd:21:16:b7:42:bc:07:72:cc:b8:07: 2a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:32:66:B0:D0:1F:6D:0B:3A:A0:1A:06:1A:69:4C:D4:63:DB:C2:48 X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:28:30:e1:1d:0e:9d:3d:bb:e0:3c:c0:56:70:57:73:c7:bb: ea:c4:11:d3:3c:9b:d6:6d:01:6f:0a:2b:02:78:84:64:67:a5: 5a:ab:16:c6:55:d7:f7:a0:f8:9f:00:30:78:1a:06:5e:ec:b1: 86:df:fa:92:1c:e5:81:d7:f7:5e:c1:c3:22:ea:f9:22:72:d5: 0e:99:fb:06:46:2d:0c:50:14:bc:87:2e:fb:ab:df:44:1d:78: fd:b0:45:a0:a0:81:2b:23:55:3d:91:0a:59:c9:80:53:6d:49: 44:9a:26:ca:ad:17:83:a4:7b:28:69:5a:10:83:14:0e:ef:3c: 64:15:4f:89:6a:25:8d:fd:63:20:ce:9c:20:be:e6:e9:27:34: 63:8a:a8:6d:70:0c:10:5d:f7:b0:b0:f9:6b:f3:8e:83:5d:0d: 63:dd:72:74:6b:b5:ab:db:72:e5:2c:3d:fa:20:6a:8d:fc:7d: 7b:a1:c3:dc:02:d2:d4:c4:d5:ef:fa:27:9c:a6:2a:3e:89:38: 16:84:86:3a:a6:6d:40:91:9e:62:d0:00:5a:cd:b8:cb:d8:72: 0e:5d:e0:01:41:47:fa:70:93:0d:65:0a:5a:ab:0a:82:03:9b: 8d:2a:a1:97:91:5f:fa:93:37:16:7d:8d:29:51:b0:c3:e9:70: 7f:9a:1e:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjUwNDAzMDAyMjMzWhcNMjUwNDEwMDAyMjMzWjAYMRYwFAYD VQQDEw02N2VkZDRjOS05NmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8eQpK6CZPaUV36hTPROwz84cbIKnWZLZt6NzfcBt/gGrdse9WqTU/BLJywK fTl5XlYHzcOx8IWs51TaGqmgLiqGN3gJfNaXszD/MRuzoIWVOjJ3adYAmyiPmL2M UfKk+xOKNA71FBhf39o+aC6kygUrnzrl01ccoMpul+k34qVBDRPpXCFF3vrLPyA1 LSgPR01W7FF7kYXYKzgGQb3XU2Wz7163sx7gpvKI04Hn6cELEb/o7A454+7vMNlF MBsuDe+GhG4UsWvppMGyQsh9j9t05+LYGcrSuCDf41qv4Y6jmSGEdtgomI+kLCIk /lfrQ3CH/SEWt0K8B3LMuAcqPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4yZrDQ H20LOqAaBhppTNRj28JIMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyKDDhHQ6dPbvgPMBWcFdzx7vqxBHTPJvWbQFvCisCeIRkZ6VaqxbG Vdf3oPifADB4GgZe7LGG3/qSHOWB1/dewcMi6vkictUOmfsGRi0MUBS8hy77q99E HXj9sEWgoIErI1U9kQpZyYBTbUlEmibKrReDpHsoaVoQgxQO7zxkFU+JaiWN/WMg zpwgvubpJzRjiqhtcAwQXfewsPlr846DXQ1j3XJ0a7Wr23LlLD36IGqN/H17ocPc AtLUxNXv+iecpio+iTgWhIY6pm1AkZ5i0ABazbjL2HIOXeABQUf6cJMNZQpaqwqC A5uNKqGXkV/6kzcWfY0pUbDD6XB/mh5G -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:51 2025 by rpki-client