$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: gxZZbHbZP/4fd4dEQ/n1UHwor+i2v17QJY4L0GccbUw= Subject key identifier: 76:19:EF:26:65:BC:70:F1:18:23:2B:2C:C3:BE:70:E9:C2:08:E5:BD Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 048E Signing time: Thu 03 Apr 2025 00:01:56 +0000 Manifest this update: Thu 03 Apr 2025 00:01:56 +0000 Manifest next update: Thu 10 Apr 2025 00:01:56 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: n8BwDJjhxvbQu0I2mwyTBjkNSQZhCR/+gCH5Ty21JPk=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: e5DQN0gUt317ERWZVtRRumZ22rqenKdlnkwt5HATBok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59 Validity Not Before: Apr 3 00:01:56 2025 GMT Not After : Apr 10 00:01:56 2025 GMT Subject: CN=67edcff4-53e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:91:2e:92:9a:62:8c:eb:2f:10:34:c9:b8:65: b5:48:69:61:8c:52:e5:08:45:95:a6:e8:28:b4:a6: 5c:67:e6:18:4a:ff:12:42:2d:5d:26:96:5d:a4:5c: cd:36:1b:cc:87:c3:66:32:96:25:1f:e7:5c:d2:ed: 21:50:6b:02:00:11:70:26:3d:dd:eb:1e:5b:06:d9: cf:0a:eb:5f:7a:14:25:85:7d:0e:0a:06:67:8c:10: c8:d2:fc:b7:5c:ef:18:f7:15:c6:86:38:f5:15:b2: 8d:3d:a4:a1:66:47:88:ca:e5:2a:ec:6c:25:bd:bb: 84:25:06:fe:a8:f8:ee:09:71:85:c3:f3:35:9e:0a: 22:c7:d6:2a:11:7b:84:04:3e:dc:83:ec:d6:48:7a: 5e:44:37:c8:f1:d9:7e:8c:d5:09:95:9c:f9:15:a8: e1:e3:1e:f3:f2:ac:c1:be:4f:63:4f:12:a9:d4:d5: f5:a9:96:85:72:e8:bf:f7:a2:79:57:b3:96:e9:9b: 02:0f:73:73:57:23:b3:a3:71:e8:32:cd:b6:96:fe: 1c:19:8f:a4:ec:3a:3d:b8:ad:82:78:58:4d:c0:f8: 85:73:ce:56:c4:df:6e:6d:4f:fa:4a:f5:97:ad:79: 7e:75:de:1a:1a:5d:e8:e4:8a:0d:3e:a7:6b:8f:74: ba:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:19:EF:26:65:BC:70:F1:18:23:2B:2C:C3:BE:70:E9:C2:08:E5:BD X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:19:0d:9c:63:aa:ab:64:43:92:ff:6d:38:cf:df:a5:c0:b4: af:da:13:35:ab:3e:e0:58:c2:31:f5:92:e6:ae:08:b1:15:75: f1:c9:be:05:39:c0:83:84:be:49:8d:a6:c6:20:a0:bd:2f:5e: 67:b3:c6:32:51:24:cd:82:a3:9a:4e:14:36:43:68:ca:fb:4a: 51:2e:95:90:70:30:cb:53:70:f0:eb:39:ff:c4:ae:1c:ca:32: 35:48:cc:5a:1d:2d:1d:40:83:57:32:b6:c6:a6:a4:38:59:5b: 57:73:e0:d0:8a:ed:66:ef:ff:e6:f3:99:8a:ec:eb:8a:93:29: 24:bf:79:8c:31:21:19:84:52:e6:84:00:16:3d:41:b9:75:28: fd:ce:ac:b5:01:c3:e2:81:d6:64:a6:2a:35:39:ae:84:27:37: ac:e4:a2:87:4f:28:5d:1a:bb:79:89:cf:dd:c9:83:95:7b:1b: 4c:fa:fd:9c:34:e9:c3:ed:da:02:b1:84:7c:f0:9b:b3:04:84: b7:cd:e4:b6:a0:5d:b8:3b:df:29:17:23:77:04:ef:39:d3:0f: 40:b1:c9:ae:c2:ac:9f:66:a7:18:78:34:b4:a3:6b:8e:ed:1a: 60:c8:cd:ba:1e:6d:3b:80:cf:32:a2:df:7f:52:1d:1b:92:91: 2d:91:47:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUwNDAzMDAwMTU2WhcNMjUwNDEwMDAwMTU2WjAYMRYwFAYD VQQDEw02N2VkY2ZmNC01M2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpEukppijOsvEDTJuGW1SGlhjFLlCEWVpugotKZcZ+YYSv8SQi1dJpZdpFzN NhvMh8NmMpYlH+dc0u0hUGsCABFwJj3d6x5bBtnPCutfehQlhX0OCgZnjBDI0vy3 XO8Y9xXGhjj1FbKNPaShZkeIyuUq7GwlvbuEJQb+qPjuCXGFw/M1ngoix9YqEXuE BD7cg+zWSHpeRDfI8dl+jNUJlZz5Fajh4x7z8qzBvk9jTxKp1NX1qZaFcui/96J5 V7OW6ZsCD3NzVyOzo3HoMs22lv4cGY+k7Do9uK2CeFhNwPiFc85WxN9ubU/6SvWX rXl+dd4aGl3o5IoNPqdrj3S6KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYZ7yZl vHDxGCMrLMO+cOnCCOW9MB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkGQ2cY6qrZEOS/204z9+lwLSv2hM1qz7gWMIx9ZLmrgixFXXxyb4F OcCDhL5JjabGIKC9L15ns8YyUSTNgqOaThQ2Q2jK+0pRLpWQcDDLU3Dw6zn/xK4c yjI1SMxaHS0dQINXMrbGpqQ4WVtXc+DQiu1m7//m85mK7OuKkykkv3mMMSEZhFLm hAAWPUG5dSj9zqy1AcPigdZkpio1Oa6EJzes5KKHTyhdGrt5ic/dyYOVextM+v2c NOnD7doCsYR88JuzBIS3zeS2oF24O98pFyN3BO850w9AscmuwqyfZqcYeDS0o2uO 7RpgyM26Hm07gM8yot9/Uh0bkpEtkUdA -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:38 2025 by rpki-client