$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: pZRG6fLGqRFqM0U7dX7+dSUo6NRwivfEkYbwJl0uajM= Subject key identifier: 27:46:80:17:83:9F:17:62:A6:0C:80:6B:14:72:76:10:48:EE:C5:B3 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 044F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 043C Signing time: Thu 24 Apr 2025 17:08:21 +0000 Manifest this update: Thu 24 Apr 2025 17:08:21 +0000 Manifest next update: Thu 01 May 2025 17:08:21 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: x75K0jhU6P4OXKRrlGpz6lP+rBYJvJ4MozitcXUqicA=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: BSTa7sI/Wxp7paF8iFEhYcOXczYzjvqpGs3tFatgPsE=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: EM7EONiwHXhiPFzyfONkaOBX/AROwU9rjV4ETvuVQDQ=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: TLiIvWlCkSUznKaCtTmASc45uAF4Q8KIvn7LhcKxI18=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HMDK7qPjAO3ncQEJzX6SKnODDt4e7glxidti8sfhV1k=) 6: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Z/SQA8GAHBj69mDXnfsLMK8qu+tlZ5LxlzdXDGduFGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1103 (0x44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Apr 24 17:08:21 2025 GMT Not After : May 1 17:08:21 2025 GMT Subject: CN=680a7005-0a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d9:ed:ad:f2:70:05:b9:a7:fb:0f:87:bd:82: bf:bb:bd:4f:75:5a:71:4f:5d:de:40:db:64:cb:e1: 81:69:f7:df:ba:9d:fb:0f:67:61:69:08:16:46:0c: fe:1b:32:5e:71:25:37:6a:99:bb:d9:76:08:b1:da: dc:b9:7c:ab:c3:c1:28:f4:bc:d6:ae:73:a8:de:e4: 9d:a6:ac:8d:8a:2a:01:96:a0:1a:41:cb:f0:1d:5c: e5:57:3e:28:fb:d1:5a:dd:d9:67:70:27:96:04:bf: 81:ff:86:9d:15:f6:3f:b6:76:06:10:66:6a:68:61: 19:38:5b:fc:ef:83:d6:41:f1:21:7c:c7:d3:b1:93: f1:04:47:3a:e9:48:d3:5d:74:12:de:fe:94:11:9e: d4:e4:69:59:45:82:b1:09:94:33:df:28:dc:11:8b: d6:c9:1e:e3:4f:58:3b:94:52:1d:d5:b8:78:e3:87: 52:ba:80:3d:1c:52:00:95:25:a7:07:cc:23:91:4a: 0a:16:13:2d:5f:46:92:b1:a3:e1:54:67:29:bf:3f: 52:6a:33:ec:29:9a:a5:b5:19:20:dc:b7:e5:1e:33: 3a:d1:8e:5e:d3:26:64:70:f8:39:ae:c2:53:64:33: 8f:c2:4e:f7:79:ad:ec:0d:dc:3b:60:06:27:cc:f4: 77:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:46:80:17:83:9F:17:62:A6:0C:80:6B:14:72:76:10:48:EE:C5:B3 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:cb:c7:76:27:e2:d4:0e:de:f4:84:64:29:ab:4e:ff:e6:ad: 1e:c9:71:de:d8:79:b6:ae:50:ed:6a:ee:10:15:b1:ad:b3:e1: 7e:7b:a6:1b:0c:7e:99:5d:5e:41:d3:f6:66:97:b5:ff:4e:0b: ee:d6:7d:eb:6d:f0:82:cc:07:8e:21:92:17:f7:fc:58:16:a4: 26:c3:4e:8e:2e:63:db:1e:5e:3a:31:0b:35:41:5c:d6:20:e2: 11:9b:bc:53:9d:39:3c:1c:d3:5e:00:1f:f4:29:18:12:3e:8a: 62:be:5d:01:f3:ca:26:a1:6b:a7:5d:af:c7:03:aa:ed:d6:a5: 27:9d:b6:f3:3e:d8:a6:75:46:82:03:8e:4d:90:ef:99:e4:4f: 77:c2:38:43:81:5f:07:94:25:bd:5f:45:e0:df:18:ca:10:52: 0a:09:57:30:3c:6f:83:83:0f:fb:e7:14:f8:04:da:84:f1:c1: b4:94:22:ff:5b:76:c6:02:aa:cd:24:20:7a:e9:ba:41:d2:e4: db:10:7f:2a:7b:1c:1a:df:2f:98:0e:71:41:09:4e:42:ec:7e: 67:1f:8b:61:09:87:a6:bf:96:79:38:57:42:78:3e:e8:2f:c2: 9b:46:76:f2:df:03:ab:1a:da:b9:83:9a:b3:f6:7b:27:e4:e9: 78:6b:23:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUwNDI0MTcwODIxWhcNMjUwNTAxMTcwODIxWjAYMRYwFAYD VQQDEw02ODBhNzAwNS0wYTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09ntrfJwBbmn+w+HvYK/u71PdVpxT13eQNtky+GBafffup37D2dhaQgWRgz+ GzJecSU3apm72XYIsdrcuXyrw8Eo9LzWrnOo3uSdpqyNiioBlqAaQcvwHVzlVz4o +9Fa3dlncCeWBL+B/4adFfY/tnYGEGZqaGEZOFv874PWQfEhfMfTsZPxBEc66UjT XXQS3v6UEZ7U5GlZRYKxCZQz3yjcEYvWyR7jT1g7lFId1bh444dSuoA9HFIAlSWn B8wjkUoKFhMtX0aSsaPhVGcpvz9SajPsKZqltRkg3LflHjM60Y5e0yZkcPg5rsJT ZDOPwk73ea3sDdw7YAYnzPR3vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdGgBeD nxdipgyAaxRydhBI7sWzMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOy8d2J+LUDt70hGQpq07/5q0eyXHe2Hm2rlDtau4QFbGts+F+e6Yb DH6ZXV5B0/Zml7X/Tgvu1n3rbfCCzAeOIZIX9/xYFqQmw06OLmPbHl46MQs1QVzW IOIRm7xTnTk8HNNeAB/0KRgSPopivl0B88omoWunXa/HA6rt1qUnnbbzPtimdUaC A45NkO+Z5E93wjhDgV8HlCW9X0Xg3xjKEFIKCVcwPG+Dgw/75xT4BNqE8cG0lCL/ W3bGAqrNJCB66bpB0uTbEH8qexwa3y+YDnFBCU5C7H5nH4thCYemv5Z5OFdCeD7o L8KbRnby3wOrGtq5g5qz9nsn5Ol4ayMa -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:28 2025 by rpki-client