$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: 7bUBH/fFVMXEi9GuG1zHkLbSrSs9uzVeOpDe/9nxpEY= Subject key identifier: 6F:5C:0E:D6:DC:72:08:74:3E:DE:2E:F4:F3:88:18:D1:B2:7A:14:0A Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 0319 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0313 Signing time: Thu 03 Apr 2025 01:12:12 +0000 Manifest this update: Thu 03 Apr 2025 01:12:11 +0000 Manifest next update: Thu 10 Apr 2025 01:12:11 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: 18zCsOI4dB7Qplgi/QR0HVfr5ZWwVsqpJ1glPx+Zt+I=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: hQOYHlCjx2ScuN+oMwFJ/ejTbPq4orU4F7qi3kUTHdM=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: 7Gmx6aG6mVa6tW4ZmRdx25+Dm056uxm4nK4BIHzJbm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 793 (0x319) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71 Validity Not Before: Apr 3 01:12:11 2025 GMT Not After : Apr 10 01:12:11 2025 GMT Subject: CN=67ede06c-e4ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7f:1b:1c:d3:c4:04:47:21:04:01:f9:a2:44: 18:ca:10:2b:21:65:34:0c:90:c1:00:7a:b4:70:ec: 7d:06:09:38:9e:75:ae:1a:dd:1f:4b:a7:ef:79:2d: 60:d5:59:3d:5c:15:ca:bb:5a:f8:6f:a4:8a:8f:8a: 6b:76:21:8f:46:79:a0:d6:71:30:57:0a:05:9b:cf: ee:72:c7:e7:ca:fe:0d:43:a8:ac:76:8a:a8:c7:00: ba:d3:89:6b:74:9c:5b:1e:2d:70:63:d5:0a:6d:ca: 32:32:df:cd:b9:1f:1f:7b:3f:4d:8d:34:9e:f8:a4: b7:e1:e8:e5:1a:35:dc:4e:2c:7e:a0:ec:26:1b:47: a6:db:c0:63:dd:7c:a2:eb:e0:c6:ed:0b:8b:ad:f4: 02:d4:e0:b3:33:5b:4c:19:31:06:59:59:50:7a:0e: c4:13:12:6d:37:2b:9a:b2:20:d9:6f:e1:ce:4e:16: 8b:72:f8:5e:67:7c:c1:95:6c:df:96:de:a4:4e:8c: 09:9b:e1:84:40:55:65:37:41:2d:fa:f0:01:6e:3f: ca:f8:33:3e:60:2b:4d:03:e3:dd:1f:88:ac:2b:0a: 45:12:d4:b8:e3:45:e4:75:b3:f9:56:72:f6:e6:87: e9:c5:2b:2f:0f:0d:13:cd:63:26:8b:a8:d0:c2:bf: 22:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:5C:0E:D6:DC:72:08:74:3E:DE:2E:F4:F3:88:18:D1:B2:7A:14:0A X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ff:65:60:18:23:2b:3f:65:c7:d0:11:e5:90:40:ad:c4:04: 9f:0d:d4:b0:d8:86:dd:86:da:c8:fa:4b:11:5e:4f:a8:b9:28: 7e:8d:82:87:06:e3:83:ae:1d:99:37:d2:54:d0:5d:e3:49:58: e0:80:11:59:23:56:9c:87:04:ee:e7:97:06:3a:f9:5d:e2:c7: 50:55:c2:66:7a:54:82:0a:55:db:1f:a9:66:5e:d4:a9:04:36: 28:fb:cc:18:9f:88:63:e0:19:74:61:a5:30:e2:14:49:4a:f3: 2a:b4:22:89:49:4e:fd:6a:eb:5c:a6:96:63:2b:79:54:a4:c8: 68:52:63:6a:cc:08:3e:db:81:b3:61:bf:fc:da:d9:5a:1b:9b: 43:fb:2e:d2:18:6e:96:0e:ea:5a:1b:bc:36:c5:08:bf:ea:fc: 55:e1:ab:0b:7c:36:5a:2e:01:5f:4b:e5:2b:c0:ca:16:7a:a1: 90:8d:6b:b3:2e:5a:b5:eb:12:7e:68:db:0e:6f:ce:11:a1:c2: 5d:86:a6:47:e7:1b:1b:57:bb:ec:87:cb:50:b0:6c:aa:b2:bf: 97:c0:61:48:57:7f:5e:e1:7d:7c:38:fe:af:1d:19:83:68:ea: 7f:0e:5e:29:da:21:39:c7:f2:e4:bb:19:7c:24:2a:74:85:49: df:fc:c9:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUwNDAzMDExMjExWhcNMjUwNDEwMDExMjExWjAYMRYwFAYD VQQDEw02N2VkZTA2Yy1lNGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA138bHNPEBEchBAH5okQYyhArIWU0DJDBAHq0cOx9Bgk4nnWuGt0fS6fveS1g 1Vk9XBXKu1r4b6SKj4prdiGPRnmg1nEwVwoFm8/ucsfnyv4NQ6isdoqoxwC604lr dJxbHi1wY9UKbcoyMt/NuR8fez9NjTSe+KS34ejlGjXcTix+oOwmG0em28Bj3Xyi 6+DG7QuLrfQC1OCzM1tMGTEGWVlQeg7EExJtNyuasiDZb+HOThaLcvheZ3zBlWzf lt6kTowJm+GEQFVlN0Et+vABbj/K+DM+YCtNA+PdH4isKwpFEtS440XkdbP5VnL2 5ofpxSsvDw0TzWMmi6jQwr8ibQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9cDtbc cgh0Pt4u9POIGNGyehQKMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg/2VgGCMrP2XH0BHlkECtxASfDdSw2IbdhtrI+ksRXk+ouSh+jYKH BuODrh2ZN9JU0F3jSVjggBFZI1achwTu55cGOvld4sdQVcJmelSCClXbH6lmXtSp BDYo+8wYn4hj4Bl0YaUw4hRJSvMqtCKJSU79autcppZjK3lUpMhoUmNqzAg+24Gz Yb/82tlaG5tD+y7SGG6WDupaG7w2xQi/6vxV4asLfDZaLgFfS+UrwMoWeqGQjWuz Llq16xJ+aNsOb84RocJdhqZH5xsbV7vsh8tQsGyqsr+XwGFIV39e4X18OP6vHRmD aOp/Dl4p2iE5x/Lkuxl8JCp0hUnf/MkN -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:48 2025 by rpki-client