$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: XwCb3nfcnO4NDajIEhKudVadUl3xoMQDQPqgL6gaOeM= Subject key identifier: C7:E1:DC:D1:04:2A:97:84:1E:37:BE:77:32:95:E8:60:02:10:1D:97 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 346B Signing time: Fri 04 Apr 2025 15:16:18 +0000 Manifest this update: Fri 04 Apr 2025 15:16:17 +0000 Manifest next update: Fri 11 Apr 2025 15:16:17 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: icZwM76mQRJb8s+FElRBWiVx8l8X2irjn2rwUNnCrO4=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13430 (0x3476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753 Validity Not Before: Apr 4 15:16:17 2025 GMT Not After : Apr 11 15:16:17 2025 GMT Subject: CN=67eff7c2-43c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:13:d5:5c:11:fe:8e:2c:35:39:06:f1:43: 98:75:d1:a3:c1:10:15:cb:55:bf:ce:4f:7c:3e:fb: c8:54:88:f3:13:8f:5d:c4:37:1e:c5:b6:72:f3:f5: 7e:7c:25:0f:84:5e:33:74:80:4b:71:95:6b:5d:a9: aa:8f:cc:6e:d5:3c:9d:30:79:46:23:bd:04:dd:44: 1c:14:05:92:0d:aa:39:31:bc:c2:59:74:c3:65:59: 52:d1:50:fc:af:8f:71:67:cb:62:c4:80:67:33:76: a7:08:0f:9d:1f:23:17:6d:0c:f9:73:37:d9:3d:63: df:9f:7d:4c:8f:27:bd:0d:25:ab:be:5c:ed:e9:30: 79:18:dc:8a:44:38:6b:d2:d8:06:e1:87:e6:d6:59: 38:84:0c:7b:93:e1:1f:7f:18:fa:cc:e4:1f:d5:46: 99:9b:2f:d4:99:2a:6a:41:1b:04:18:52:55:1c:6e: 72:2f:e7:f3:60:2c:59:c8:4a:a6:04:ae:79:1f:3e: 42:b7:e1:b7:25:8e:ea:a5:a3:3f:99:44:18:f9:34: 0e:20:77:a3:ec:93:f2:b3:90:b3:25:c5:38:5c:08: ff:54:5c:7b:a8:41:27:0a:d8:e3:e5:ed:25:71:6e: 91:42:90:36:ca:67:7e:f2:16:4f:57:84:fb:47:d7: 4c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E1:DC:D1:04:2A:97:84:1E:37:BE:77:32:95:E8:60:02:10:1D:97 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:8e:cf:19:08:63:4f:20:72:6d:9b:7b:79:61:99:6e:fd:40: 32:a9:3d:2b:54:73:63:1f:6b:26:df:fb:93:99:1c:7d:92:84: 2c:75:ab:7c:5e:d2:d8:a7:eb:dc:9f:ce:f1:22:9f:70:95:67: 75:36:85:35:73:db:6d:e2:37:23:cb:11:8c:1c:86:3c:8f:b0: c2:be:32:cd:74:a6:af:87:5f:21:2c:29:72:c3:47:f6:0a:d3: b9:bd:94:14:13:ba:79:b7:9b:ea:71:89:82:00:8f:e9:9a:da: 79:89:3a:3c:66:54:a3:68:9e:a4:76:52:72:75:7e:a6:99:bd: 4e:34:8e:fb:9f:55:95:0c:ee:89:3a:ef:31:1c:3b:fd:92:16: 2c:67:7d:95:b6:0d:89:48:08:aa:fc:18:ef:b9:de:42:db:d9: 39:01:bf:84:38:94:fc:7d:2d:b5:85:9e:9b:b4:86:cb:09:c6: b8:71:d1:e2:47:7b:a1:fe:0e:1e:cb:83:d4:d9:ac:75:2c:cd: 61:0a:eb:63:13:8a:42:44:b1:7b:67:a2:cf:ec:9e:96:37:3c: 98:6a:5a:54:01:24:2c:ad:04:c8:9e:10:16:19:38:32:40:3f: e1:4c:5d:1e:54:4b:65:95:3c:7e:26:94:cf:b3:3f:2b:a5:f5: a8:13:cc:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwNDA0MTUxNjE3WhcNMjUwNDExMTUxNjE3WjAYMRYwFAYD VQQDEw02N2VmZjdjMi00M2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHMT1VwR/o4sNTkG8UOYddGjwRAVy1W/zk98PvvIVIjzE49dxDcexbZy8/V+ fCUPhF4zdIBLcZVrXamqj8xu1TydMHlGI70E3UQcFAWSDao5MbzCWXTDZVlS0VD8 r49xZ8tixIBnM3anCA+dHyMXbQz5czfZPWPfn31Mjye9DSWrvlzt6TB5GNyKRDhr 0tgG4Yfm1lk4hAx7k+Effxj6zOQf1UaZmy/UmSpqQRsEGFJVHG5yL+fzYCxZyEqm BK55Hz5Ct+G3JY7qpaM/mUQY+TQOIHej7JPys5CzJcU4XAj/VFx7qEEnCtjj5e0l cW6RQpA2ymd+8hZPV4T7R9dMpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfh3NEE KpeEHje+dzKV6GACEB2XMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKjs8ZCGNPIHJtm3t5YZlu/UAyqT0rVHNjH2sm3/uTmRx9koQsdat8 XtLYp+vcn87xIp9wlWd1NoU1c9tt4jcjyxGMHIY8j7DCvjLNdKavh18hLClyw0f2 CtO5vZQUE7p5t5vqcYmCAI/pmtp5iTo8ZlSjaJ6kdlJydX6mmb1ONI77n1WVDO6J Ou8xHDv9khYsZ32Vtg2JSAiq/Bjvud5C29k5Ab+EOJT8fS21hZ6btIbLCca4cdHi R3uh/g4ey4PU2ax1LM1hCutjE4pCRLF7Z6LP7J6WNzyYalpUASQsrQTInhAWGTgy QD/hTF0eVEtllTx+JpTPsz8rpfWoE8z9 -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:47 2025 by rpki-client