$ rpki-client -vvf rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft File: phmVDMpkZIerm9RKQff2ybQJs9c.mft (raw, json) Hash identifier: m59+BeCORAa9GawB5/qfxvGwH8NAtk2SQXH+oWBLPTA= Subject key identifier: 17:17:5D:A0:C5:44:5A:6B:DB:D2:85:B9:AA:49:55:F7:EE:E6:C3:67 Authority key identifier: A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 Certificate issuer: /CN=A9138EEB/serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft Manifest number: A4 Signing time: Fri 25 Apr 2025 05:12:09 +0000 Manifest this update: Fri 25 Apr 2025 05:12:08 +0000 Manifest next update: Fri 02 May 2025 05:12:08 +0000 Files and hashes: 1: phmVDMpkZIerm9RKQff2ybQJs9c.crl (hash: XgG5b2h9iV4eC2oQlE/fC+iFB8uGtmMX1rHOQeEu10M=) 2: DBF621F42C7211EF8FB22F85C4F9AE02.roa (hash: fEV4Nv9YEsz1gwlF4scqWCuSbskSixTpqMCtGjgZ1FA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138EEB, serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Validity Not Before: Apr 25 05:12:08 2025 GMT Not After : May 2 05:12:08 2025 GMT Subject: CN=680b19a9-27a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d0:16:c3:f2:9c:30:c2:fd:8c:95:3f:89:65: ca:84:6c:d0:d1:2c:2c:4c:f2:8c:25:50:b1:2e:26: 01:a1:62:34:2b:db:96:3c:3d:31:a7:39:b4:b5:be: b6:41:e6:f9:01:72:2a:e1:33:08:67:ba:b7:61:6f: f9:24:11:3c:a8:cc:c5:89:cc:fa:26:4b:01:f3:d7: 95:24:de:a8:eb:2c:bc:70:e8:88:e9:d2:a8:e7:96: f4:fb:e1:6a:78:85:27:64:d1:e0:57:c6:ed:2c:17: 94:01:b3:9d:82:07:e1:8d:e9:75:d4:d6:8c:ec:7b: ac:69:5b:cc:b9:17:50:ee:0f:c0:59:94:88:c6:91: 96:e9:24:ad:08:b4:b4:ca:22:af:bd:a3:fe:61:17: 09:ba:87:55:b5:f4:a8:84:c1:f4:35:2b:e2:6f:ff: a0:b4:8f:9e:c0:4e:1f:48:72:1d:20:4a:c7:98:95: 1c:a2:3b:8e:de:ec:c0:4f:52:48:5d:2a:57:ba:24: d5:eb:5e:f0:e6:93:ed:e5:ff:ca:e1:b5:8c:40:94: 7d:55:cd:2e:e3:fe:d4:8a:17:79:da:7f:e8:ad:27: f5:f2:c4:41:59:b6:ec:b1:03:de:d3:f0:75:01:09: 7c:4b:dd:f5:80:98:ac:fc:49:1f:a3:28:68:5a:c8: 7d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:17:5D:A0:C5:44:5A:6B:DB:D2:85:B9:AA:49:55:F7:EE:E6:C3:67 X509v3 Authority Key Identifier: keyid:A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:25:27:49:ab:48:12:6c:60:60:5e:25:36:9b:15:e4:16:04: 4a:f1:b3:c9:d3:a9:3a:a8:03:d3:33:93:e2:93:ec:9a:09:f1: f3:37:e8:03:37:6a:2f:31:6e:81:5d:79:7f:b4:30:70:0a:0d: 6d:b2:3f:0b:da:80:1a:ed:39:bc:f8:1a:de:9f:d6:28:b2:32: 3d:bf:78:4a:92:2f:04:77:57:36:34:86:1b:85:6e:ab:d5:b8: ba:bd:43:82:f5:c8:a0:e4:70:e8:6a:52:2b:98:59:49:11:92: 85:f6:da:18:b2:3c:07:78:f6:eb:94:e9:27:3b:00:dc:5f:3d: e8:d2:44:2b:84:9c:c5:c5:71:8b:21:96:0e:a7:18:03:f6:a4: ae:1b:a4:43:4b:7a:a0:61:22:c0:ee:52:f1:34:3f:d8:2b:6a: cd:12:09:37:e4:95:96:84:00:f5:77:87:d7:f1:8e:e5:97:31: 29:95:78:40:6e:17:47:47:87:50:31:11:16:71:84:ec:61:29: 29:b9:a9:f8:18:15:68:44:b1:b6:70:97:48:c4:45:30:b3:1c: ea:a9:53:99:e4:20:c1:c0:a0:2d:15:5b:21:a6:38:c7:66:f5: 8b:70:a6:02:a7:3c:1a:17:8e:0c:3d:80:18:53:f7:d0:cc:22: 65:35:34:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhFRUIxMTAvBgNVBAUTKEE2MTk5NTBDQ0E2NDY0ODdBQjlCRDQ0QTQxRjdGNkM5 QjQwOUIzRDcwHhcNMjUwNDI1MDUxMjA4WhcNMjUwNTAyMDUxMjA4WjAYMRYwFAYD VQQDEw02ODBiMTlhOS0yN2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69AWw/KcMML9jJU/iWXKhGzQ0SwsTPKMJVCxLiYBoWI0K9uWPD0xpzm0tb62 Qeb5AXIq4TMIZ7q3YW/5JBE8qMzFicz6JksB89eVJN6o6yy8cOiI6dKo55b0++Fq eIUnZNHgV8btLBeUAbOdggfhjel11NaM7HusaVvMuRdQ7g/AWZSIxpGW6SStCLS0 yiKvvaP+YRcJuodVtfSohMH0NSvib/+gtI+ewE4fSHIdIErHmJUcojuO3uzAT1JI XSpXuiTV617w5pPt5f/K4bWMQJR9Vc0u4/7Uihd52n/orSf18sRBWbbssQPe0/B1 AQl8S931gJis/EkfoyhoWsh9iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcXXaDF RFpr29KFuapJVffu5sNnMB8GA1UdIwQYMBaAFKYZlQzKZGSHq5vUSkH39sm0CbPX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEVFQi9GNDkxMTQ4MDJC QzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9waG1WRE1wa1pJZXJtOVJLUWZmMnliUUpz OWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BobVZETXBrWkllcm05UktRZmYyeWJRSnM5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEVFQi9GNDkxMTQ4MDJCQzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9waG1WRE1wa1pJ ZXJtOVJLUWZmMnliUUpzOWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGJSdJq0gSbGBgXiU2mxXkFgRK8bPJ06k6qAPTM5Pik+yaCfHzN+gD N2ovMW6BXXl/tDBwCg1tsj8L2oAa7Tm8+Bren9YosjI9v3hKki8Ed1c2NIYbhW6r 1bi6vUOC9cig5HDoalIrmFlJEZKF9toYsjwHePbrlOknOwDcXz3o0kQrhJzFxXGL IZYOpxgD9qSuG6RDS3qgYSLA7lLxND/YK2rNEgk35JWWhAD1d4fX8Y7llzEplXhA bhdHR4dQMREWcYTsYSkpuan4GBVoRLG2cJdIxEUwsxzqqVOZ5CDBwKAtFVshpjjH ZvWLcKYCpzwaF44MPYAYU/fQzCJlNTTQ -----END CERTIFICATE-----Generated at Sat Apr 26 13:39:01 2025 by rpki-client