$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: bOTZoszLYuDLiW5JeejyRYh8sKXsyQXca5GSk6vx8ks= Subject key identifier: D4:A1:4C:79:7A:47:46:48:84:00:58:61:9F:18:80:C2:0D:6B:52:AB Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2AC4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2AA0 Signing time: Mon 02 Jun 2025 15:44:41 +0000 Manifest this update: Mon 02 Jun 2025 15:44:40 +0000 Manifest next update: Mon 09 Jun 2025 15:44:40 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: /zXTSSBmAui3TiNbTXJtG7ESvsqjZ4guTXcbAp8CEjY=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: h6LaGc6kyZukCUqqYzIxqwzDNG7IrAkyoRHl1/dzGpU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: fvGOEcDamDrvii5lTVdwqyxJJEnDbSq0cSF/6Idf/Qk=) 4: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: FFTz06zJWJ6iZpeQ1wgw2MSgfSJo5OaRNASidfTNms8=) 5: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: tuJy1jz8I76zoSkWOckZshXRuwxgYv1SGerZsew2KCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10948 (0x2ac4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Jun 2 15:44:40 2025 GMT Not After : Jun 9 15:44:40 2025 GMT Subject: CN=683dc6e9-29e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b8:6f:45:ee:c2:f4:68:52:d0:e0:78:27:2c: 11:5c:2f:6a:cc:d1:34:6f:57:36:fa:c3:17:0d:e6: 28:1e:39:d0:dd:51:f3:d1:43:19:66:27:9b:32:73: 0a:38:86:6c:5a:ab:a0:d6:26:78:09:66:48:c0:9f: 46:c0:5c:e0:39:aa:44:56:93:f5:c7:af:aa:4a:a3: ee:ae:82:42:c4:66:e0:fa:69:cb:84:d1:df:6b:73: 6b:12:a2:a3:3f:bc:46:4d:41:77:04:56:4c:2d:c4: 61:49:dd:9a:ac:b5:3f:e6:9e:af:a2:3a:ad:46:36: e5:bb:2c:fe:00:3c:69:8c:27:64:69:cc:dc:fc:57: e8:3d:2e:34:39:6f:f7:88:1a:7c:c6:56:3c:ef:54: 77:79:5d:90:ae:c3:1c:9c:98:99:b2:c2:b2:46:f8: 4c:9d:48:c3:b0:8c:0c:39:f2:cc:36:9f:ae:3d:f3: 99:74:c3:5b:ce:28:a5:c1:34:7d:85:e2:10:65:64: 13:4d:a3:23:7a:cf:6b:f5:d5:5c:7e:c9:29:bb:2e: 27:53:57:64:5f:fe:ff:47:dd:03:f9:dd:c3:d5:8f: cb:59:fd:a8:39:11:ad:b8:60:b9:92:02:3d:52:24: c6:ff:dc:16:fc:12:f3:06:d6:af:ec:5a:41:f6:02: 0b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A1:4C:79:7A:47:46:48:84:00:58:61:9F:18:80:C2:0D:6B:52:AB X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:54:22:a4:dd:94:28:ba:a4:7e:3c:2c:70:1b:9f:6a:60:3c: 35:6c:b8:00:c7:d5:43:98:59:55:79:47:c8:5d:68:2a:ac:33: 21:85:61:ba:49:bd:be:b0:7a:c6:c4:98:df:8f:2a:87:40:51: 76:b7:e9:39:eb:2d:8e:8b:a1:4a:42:ca:df:4f:1a:3a:36:69: fc:9b:86:d9:09:71:14:1c:d2:77:33:39:a5:11:50:01:bd:a5: fd:ce:e1:10:45:9b:b8:c4:35:6d:36:75:bd:c3:c8:f4:37:c0: 77:29:3b:40:0b:88:e3:27:dd:3f:56:3d:21:7a:79:00:3c:9e: 14:4b:93:43:70:73:7d:b7:0a:bc:94:52:4f:4b:8c:5b:15:b6: 4c:ca:fe:68:bb:66:ee:98:0c:2e:6c:c5:92:fd:25:d4:fe:b9: 1b:4a:8c:15:9c:39:07:15:af:a8:ed:ac:71:b2:23:0a:5c:60: f3:14:77:36:b5:dd:ce:89:c6:d6:90:ab:24:92:80:02:ca:89: 92:ea:0f:7b:f3:cb:a3:f3:08:37:3d:3f:d2:f1:21:fd:7d:9d: e8:ca:ad:6d:6f:e6:5b:9e:73:34:45:e7:0c:ad:6d:10:35:4e: e6:08:d9:70:7b:1a:ec:34:fe:f4:1b:80:1a:d5:29:a5:b4:f9: dd:2d:6b:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUwNjAyMTU0NDQwWhcNMjUwNjA5MTU0NDQwWjAYMRYwFAYD VQQDEw02ODNkYzZlOS0yOWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLhvRe7C9GhS0OB4JywRXC9qzNE0b1c2+sMXDeYoHjnQ3VHz0UMZZiebMnMK OIZsWqug1iZ4CWZIwJ9GwFzgOapEVpP1x6+qSqPuroJCxGbg+mnLhNHfa3NrEqKj P7xGTUF3BFZMLcRhSd2arLU/5p6vojqtRjbluyz+ADxpjCdkaczc/FfoPS40OW/3 iBp8xlY871R3eV2QrsMcnJiZssKyRvhMnUjDsIwMOfLMNp+uPfOZdMNbziilwTR9 heIQZWQTTaMjes9r9dVcfskpuy4nU1dkX/7/R90D+d3D1Y/LWf2oORGtuGC5kgI9 UiTG/9wW/BLzBtav7FpB9gILbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNShTHl6 R0ZIhABYYZ8YgMINa1KrMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHVCKk3ZQouqR+PCxwG59qYDw1bLgAx9VDmFlVeUfIXWgqrDMhhWG6 Sb2+sHrGxJjfjyqHQFF2t+k56y2Oi6FKQsrfTxo6Nmn8m4bZCXEUHNJ3MzmlEVAB vaX9zuEQRZu4xDVtNnW9w8j0N8B3KTtAC4jjJ90/Vj0henkAPJ4US5NDcHN9twq8 lFJPS4xbFbZMyv5ou2bumAwubMWS/SXU/rkbSowVnDkHFa+o7axxsiMKXGDzFHc2 td3OicbWkKskkoACyomS6g9788uj8wg3PT/S8SH9fZ3oyq1tb+ZbnnM0RecMrW0Q NU7mCNlwexrsNP70G4Aa1SmltPndLWuN -----END CERTIFICATE-----Generated at Tue Jun 3 23:44:29 2025 by rpki-client