$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: M8Pn4PxxC6o2cZi0ra21GHe8/o5uSrBLkoATyrpEwUE= Subject key identifier: DA:8A:48:B5:3E:E4:5E:CD:DE:7D:33:2C:23:59:B9:53:90:0F:63:58 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C28 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C25 Signing time: Thu 24 Apr 2025 14:25:58 +0000 Manifest this update: Thu 24 Apr 2025 14:25:57 +0000 Manifest next update: Thu 01 May 2025 14:25:57 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: f84OMYrUGZEc5FNnLnnylC5kwS9MpX2ZmWUOCoL+6C8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11304 (0x2c28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Apr 24 14:25:57 2025 GMT Not After : May 1 14:25:57 2025 GMT Subject: CN=680a49f5-1c5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:45:57:4c:2b:67:83:7e:cf:43:27:3f:78:38: 91:d2:05:57:8b:52:a4:05:e3:49:f7:ed:e8:9a:70: 44:6e:f1:ad:b8:f2:c6:6c:35:91:71:22:95:56:c2: c0:4e:4c:14:71:2d:5e:3e:32:3d:8e:82:24:a0:14: 19:d6:76:4f:a2:8b:82:18:a4:39:cd:69:8b:1d:d6: b3:50:01:c3:78:43:1d:78:f8:6f:53:ff:7c:a0:4d: 82:3e:4d:67:2b:2f:ba:61:56:8d:20:f1:28:42:79: d1:bf:85:b2:a4:44:be:e6:f8:77:c7:96:1f:b9:76: 31:22:60:54:ff:ee:fc:1b:09:e0:6f:54:a9:74:90: 9f:1d:72:a9:aa:28:04:08:26:13:1e:4b:df:c5:64: 2c:d1:94:56:ee:6c:24:13:5f:f0:15:e1:cb:61:b7: 23:a3:0f:35:57:e9:da:3f:5c:60:cc:ee:74:25:68: 64:b5:19:b0:4a:b4:ae:d7:88:83:de:3c:de:2f:99: 82:46:1d:bd:23:ce:be:4d:c6:75:c0:1e:fe:df:b1: 90:b3:bd:89:55:b6:d5:d3:e0:ad:d3:c3:b2:0a:3c: 0e:53:e7:f9:b8:df:20:e1:61:a1:ec:65:67:8d:4d: c5:63:6b:b3:30:6c:d7:ef:da:92:b3:87:41:c8:3d: 25:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:8A:48:B5:3E:E4:5E:CD:DE:7D:33:2C:23:59:B9:53:90:0F:63:58 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:eb:0e:31:56:8a:39:8f:0a:81:7c:c4:33:d9:3c:2e:53:51: b0:25:06:38:28:b5:f6:fb:20:bf:ad:4d:c9:4a:00:8f:8d:bb: 7b:fb:b8:e6:3d:04:9e:25:ff:ee:cf:54:04:1d:3e:48:3c:53: 78:c8:82:04:be:02:ad:88:0b:6c:74:65:c5:c8:ad:ff:f3:4f: 58:6d:ef:1f:e8:a9:98:d3:23:70:c8:48:c1:aa:c3:39:aa:2d: 8b:08:7f:71:64:c7:51:c6:3b:f2:b2:80:5a:af:d0:f4:dc:61: 4b:57:18:f2:ef:9b:f7:08:61:ea:43:01:58:4d:e5:05:89:8b: 71:87:5c:71:c1:ab:9a:d1:ee:f7:6e:67:be:ae:c2:c0:76:72: dd:53:ed:f7:f4:d8:2f:c4:f4:b1:58:1a:47:2f:99:24:93:f8: ff:95:af:66:5d:d9:d2:ad:aa:a1:c9:72:10:44:d7:00:4c:3e: 58:85:c5:b6:12:12:5a:e7:b8:c1:f7:24:0d:19:1d:7d:cf:88: f2:9a:70:76:16:59:8b:bd:dc:92:a1:0f:82:48:c0:31:89:20: 56:c7:6b:c4:de:5f:94:96:3f:5a:88:a0:9e:2e:2a:99:b9:5c: 94:c4:15:71:8f:c6:24:6d:0d:43:b1:bb:b6:cc:82:1f:7a:de: 26:52:a7:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUwNDI0MTQyNTU3WhcNMjUwNTAxMTQyNTU3WjAYMRYwFAYD VQQDEw02ODBhNDlmNS0xYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0VXTCtng37PQyc/eDiR0gVXi1KkBeNJ9+3omnBEbvGtuPLGbDWRcSKVVsLA TkwUcS1ePjI9joIkoBQZ1nZPoouCGKQ5zWmLHdazUAHDeEMdePhvU/98oE2CPk1n Ky+6YVaNIPEoQnnRv4WypES+5vh3x5YfuXYxImBU/+78Gwngb1SpdJCfHXKpqigE CCYTHkvfxWQs0ZRW7mwkE1/wFeHLYbcjow81V+naP1xgzO50JWhktRmwSrSu14iD 3jzeL5mCRh29I86+TcZ1wB7+37GQs72JVbbV0+Ct08OyCjwOU+f5uN8g4WGh7GVn jU3FY2uzMGzX79qSs4dByD0l8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqKSLU+ 5F7N3n0zLCNZuVOQD2NYMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN6w4xVoo5jwqBfMQz2TwuU1GwJQY4KLX2+yC/rU3JSgCPjbt7+7jm PQSeJf/uz1QEHT5IPFN4yIIEvgKtiAtsdGXFyK3/809Ybe8f6KmY0yNwyEjBqsM5 qi2LCH9xZMdRxjvysoBar9D03GFLVxjy75v3CGHqQwFYTeUFiYtxh1xxwaua0e73 bme+rsLAdnLdU+339NgvxPSxWBpHL5kkk/j/la9mXdnSraqhyXIQRNcATD5YhcW2 EhJa57jB9yQNGR19z4jymnB2FlmLvdySoQ+CSMAxiSBWx2vE3l+Ulj9aiKCeLiqZ uVyUxBVxj8YkbQ1Dsbu2zIIfet4mUqeH -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:42 2025 by rpki-client