$ rpki-client -vvf rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft File: pu8GtolYGCHHjIgpG731xRKjP0E.mft (raw, json) Hash identifier: MgPx+51Dpc3z+6i7Ua09Ou4kYZBCplLjZbcQNpkpmyM= Subject key identifier: AF:48:2E:C2:A0:A9:62:D0:23:7D:D8:9B:5D:9F:55:36:62:B8:9F:51 Authority key identifier: A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 Certificate issuer: /CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Certificate serial: 0D78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft Manifest number: 0D47 Signing time: Sun 06 Apr 2025 17:55:18 +0000 Manifest this update: Sun 06 Apr 2025 17:55:18 +0000 Manifest next update: Sun 13 Apr 2025 17:55:18 +0000 Files and hashes: 1: pu8GtolYGCHHjIgpG731xRKjP0E.crl (hash: iZfR+tePLcstakx78+DaRS8SLsiJasn9HrahWE7SsO0=) 2: C40CFBDED7E011EFBC9A924AC4F9AE02.roa (hash: KMP4fS0KJ0rV6tzyJoqXTC8btS2FqftO8fBCSBS+5IE=) 3: 6E3B2E4CB7DD11EFADA41824C4F9AE02.roa (hash: RVQKfSvs+RymaMikyvw4Y5AS7WPGj8lGMKZQ0myGItY=) 4: 7938B3C66FC111EC91536F62C4F9AE02.roa (hash: eIKfHf/XSmCHqSrtE/mqXSvnhQ2z8uL0Vg+6q1rOPNA=) 5: 7F7231ACE18011EF8702D74DC4F9AE02.roa (hash: WZVD3OFnLCd+Z+EztJUmZvetknrgOnaCpDqtEU+1mk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3448 (0xd78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198847 Validity Not Before: Apr 6 17:55:18 2025 GMT Not After : Apr 13 17:55:18 2025 GMT Subject: CN=67f2c006-b045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cb:24:82:53:08:b8:0a:f0:d9:68:1f:44:93: 87:eb:fd:9e:90:53:3b:81:9a:43:c7:e6:90:5d:c9: b0:d3:fa:0e:65:a1:76:fd:43:91:b1:6e:8a:7d:04: 1e:05:c4:37:00:7f:22:53:3b:bd:7e:d1:a2:21:0c: 2d:c7:49:f9:ae:42:00:c1:11:c9:37:86:ae:8e:da: 4b:52:bf:b5:c4:09:7d:68:a7:53:06:7e:bd:00:02: 9a:ed:97:7e:d0:0e:3d:46:76:48:83:8d:50:a9:18: 3c:99:a6:74:33:f6:46:9a:86:60:3e:38:1e:a2:68: 3b:c7:e4:b0:79:77:34:10:8a:9b:c1:fa:26:ce:eb: c4:b1:1b:63:d9:5d:ab:4c:2a:bd:eb:aa:dd:fb:ba: 88:f9:87:0f:6d:3d:6e:a0:4f:81:8c:d4:68:cf:de: e8:f1:0c:14:19:8a:79:42:8f:e9:cf:49:13:2a:1f: 92:97:6a:5e:64:b8:a3:2b:2d:34:1a:55:6b:43:44: a8:57:77:dd:b9:b3:64:e7:a4:47:1a:b4:d5:b2:a3: cd:67:1e:ad:e7:af:4a:db:ac:67:7f:7a:df:00:04: 71:ee:75:53:ca:9e:df:0a:99:b5:bd:68:99:6d:b4: 4b:2c:52:6e:bf:6c:8d:9f:85:86:a3:a1:ee:b0:f9: 28:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:48:2E:C2:A0:A9:62:D0:23:7D:D8:9B:5D:9F:55:36:62:B8:9F:51 X509v3 Authority Key Identifier: keyid:A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d1:d0:83:8a:46:63:87:56:09:fc:48:99:62:65:1f:bd:07: 0f:6c:df:5f:ed:8a:66:bb:b1:83:fe:f7:0b:3b:a0:49:7d:75: dd:e9:0d:4c:ea:d1:44:dd:ad:3f:63:18:fb:e8:c5:4e:ba:c8: 2c:3f:ad:94:7a:d5:43:97:b1:29:be:93:ee:a1:a6:d7:18:4b: 8b:4f:7e:b1:99:b0:88:f4:2a:0c:2c:44:d1:5f:b3:8e:a5:df: 2a:71:d3:25:48:12:0f:02:55:0d:b7:8f:84:ef:d1:61:81:c3: c8:c9:24:36:45:91:f1:76:f4:55:c5:ef:35:42:df:d0:2c:42: 09:ce:1f:00:75:12:c3:48:d1:8a:2d:a0:80:81:88:01:b0:ba: 99:45:4c:a6:75:58:12:2a:cc:a9:4e:69:7e:e9:03:b9:1b:6e: 79:13:d7:b5:61:67:a0:bb:7d:21:b2:a9:49:ee:df:98:b2:1a: bf:75:af:6d:8c:cc:66:78:28:56:36:78:ec:63:06:25:7c:6c: 56:51:47:1c:c8:fd:37:6d:66:7a:01:27:ff:b7:5c:08:08:59: 3a:98:9b:9c:63:29:33:eb:c9:c4:51:ad:5e:61:ce:f6:9a:8f: 5a:9d:78:f4:6f:c8:4d:5b:c8:f6:00:2d:93:bb:e3:26:80:35: f3:1c:36:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg4NDcxMTAvBgNVBAUTKEE2RUYwNkI2ODk1ODE4MjFDNzhDODgyOTFCQkRGNUM1 MTJBMzNGNDEwHhcNMjUwNDA2MTc1NTE4WhcNMjUwNDEzMTc1NTE4WjAYMRYwFAYD VQQDEw02N2YyYzAwNi1iMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycskglMIuArw2WgfRJOH6/2ekFM7gZpDx+aQXcmw0/oOZaF2/UORsW6KfQQe BcQ3AH8iUzu9ftGiIQwtx0n5rkIAwRHJN4aujtpLUr+1xAl9aKdTBn69AAKa7Zd+ 0A49RnZIg41QqRg8maZ0M/ZGmoZgPjgeomg7x+SweXc0EIqbwfomzuvEsRtj2V2r TCq966rd+7qI+YcPbT1uoE+BjNRoz97o8QwUGYp5Qo/pz0kTKh+Sl2peZLijKy00 GlVrQ0SoV3fdubNk56RHGrTVsqPNZx6t569K26xnf3rfAARx7nVTyp7fCpm1vWiZ bbRLLFJuv2yNn4WGo6HusPkokQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9ILsKg qWLQI33Ym12fVTZiuJ9RMB8GA1UdIwQYMBaAFKbvBraJWBghx4yIKRu99cUSoz9B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODg0Ny9EREZCQjBCOEQ3 ODExMUU5QjQyM0FDNEJDNEY5QUUwMi9wdThHdG9sWUdDSEhqSWdwRzczMXhSS2pQ MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B1OEd0b2xZR0NISGpJZ3BHNzMxeFJLalAwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODg0Ny9EREZCQjBCOEQ3ODExMUU5QjQyM0FDNEJDNEY5QUUwMi9wdThHdG9sWUdD SEhqSWdwRzczMXhSS2pQMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd0dCDikZjh1YJ/EiZYmUfvQcPbN9f7Ypmu7GD/vcLO6BJfXXd6Q1M 6tFE3a0/Yxj76MVOusgsP62UetVDl7EpvpPuoabXGEuLT36xmbCI9CoMLETRX7OO pd8qcdMlSBIPAlUNt4+E79FhgcPIySQ2RZHxdvRVxe81Qt/QLEIJzh8AdRLDSNGK LaCAgYgBsLqZRUymdVgSKsypTml+6QO5G255E9e1YWegu30hsqlJ7t+Yshq/da9t jMxmeChWNnjsYwYlfGxWUUccyP03bWZ6ASf/t1wICFk6mJucYykz68nEUa1eYc72 mo9anXj0b8hNW8j2AC2Tu+MmgDXzHDZQ -----END CERTIFICATE-----Generated at Sun Apr 6 21:17:19 2025 by rpki-client