$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft File: 065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json) Hash identifier: VIGHs5evFPi/TM1jdUF36DYu9poC7T/nt2kPU8sOh34= Subject key identifier: 6E:37:86:A7:1E:80:CB:99:7D:7C:DF:8A:1A:D2:B3:46:E5:EA:CE:B0 Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF Certificate issuer: /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft Manifest number: 016D Signing time: Fri 25 Apr 2025 03:03:01 +0000 Manifest this update: Fri 25 Apr 2025 03:03:00 +0000 Manifest next update: Fri 02 May 2025 03:03:00 +0000 Files and hashes: 1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: Hast7qDA3t0zZ7Yjm1/vUiEm3kJNdwd6qdFt5LdiBjQ=) 2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: Odfpid+S8/X10dkHkByuVcfAeQDpGtmiKeMq57hIa04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163B62, serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Validity Not Before: Apr 25 03:03:00 2025 GMT Not After : May 2 03:03:00 2025 GMT Subject: CN=680afb65-5119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c0:9e:22:75:3d:29:0f:17:4f:f6:63:dc:1e: 06:7d:e7:b6:06:1e:c6:94:4a:cf:91:4c:f7:53:58: 55:fe:a5:61:3e:22:b2:40:eb:10:d1:f5:17:24:1a: db:61:1f:cc:d5:8f:1e:8d:c4:99:a2:ba:d7:af:2f: a3:31:00:68:b5:7c:bd:87:49:98:2e:05:44:56:c1: 02:50:85:33:f6:f7:38:3a:f7:1b:1b:51:f9:be:2f: c5:a0:c6:81:90:cf:b9:63:89:71:96:26:ce:1b:15: 9c:a8:49:d3:9d:9d:19:81:6d:e3:26:f7:7f:4c:0d: c8:6c:91:f3:0a:3c:d5:71:5c:8a:ef:f8:1e:48:2a: 80:f7:a8:6b:0e:b0:44:8f:98:bf:bc:84:69:5e:fa: 53:2a:92:2c:2b:b5:55:36:74:54:51:3a:41:47:87: f6:e8:ae:c2:73:77:6b:cc:73:21:c3:66:33:c0:7a: a9:d9:b4:1e:32:10:5c:dc:1c:3c:0c:98:13:7f:22: 85:f0:32:cb:d0:db:cf:6d:66:6d:e6:b1:30:41:63: dd:07:55:ae:3f:41:c6:f5:5f:d2:b4:40:67:9d:5d: 39:24:be:de:ea:47:c2:25:25:21:bb:46:62:02:96: e1:73:71:d1:f9:4e:4a:d2:6b:b3:5d:f1:80:6b:f9: 8a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:37:86:A7:1E:80:CB:99:7D:7C:DF:8A:1A:D2:B3:46:E5:EA:CE:B0 X509v3 Authority Key Identifier: keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:8b:fa:ab:97:51:9c:c5:19:63:e0:72:45:f3:3e:51:92:c1: 5d:bf:7d:ed:f5:40:11:b3:73:6b:a4:40:4f:80:1e:75:37:ef: 0c:e5:6e:8a:e4:1e:43:fa:46:cb:65:8c:b9:6b:7a:0b:9e:c7: b6:fd:46:c4:86:95:0f:a3:cf:fd:d1:ee:41:7f:03:93:7a:7e: 85:2d:11:33:af:fc:d8:c0:68:4e:a3:fb:52:64:d6:34:7a:7f: 31:33:b6:1f:ac:9b:bd:0e:5f:2e:f1:3d:8a:1f:34:09:c7:ae: 3a:c3:bf:3e:ef:7e:99:20:6c:e3:00:26:32:20:0b:af:37:3b: 3f:07:73:a6:32:12:57:b6:fe:b7:e4:6f:c2:ac:80:a9:21:5e: ef:b8:96:a9:9b:74:dd:8c:5f:05:88:93:e3:60:5a:68:44:ba: 07:23:d6:fa:5b:f1:77:f4:ec:8f:c6:66:a5:50:6d:50:05:ae: af:0f:5b:e0:b2:d1:1c:ee:6b:af:15:7b:15:36:5a:98:36:ee: 7f:18:92:fa:1c:24:55:75:ed:f4:15:1a:55:06:5b:d2:f7:32: 00:e4:5d:d1:22:db:f5:7c:f3:ec:6b:e0:65:d3:c5:e2:a6:ec: 67:d2:e3:e9:1a:c0:e0:98:27:48:97:70:e7:c1:1e:af:c9:1b: 14:32:53:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCNjIxMTAvBgNVBAUTKEQzQUU2MjY0NDlDM0E5REQwRTc3OThCQ0U4QkNCQjM5 NjYyQTI3RkYwHhcNMjUwNDI1MDMwMzAwWhcNMjUwNTAyMDMwMzAwWjAYMRYwFAYD VQQDEw02ODBhZmI2NS01MTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycCeInU9KQ8XT/Zj3B4Gfee2Bh7GlErPkUz3U1hV/qVhPiKyQOsQ0fUXJBrb YR/M1Y8ejcSZorrXry+jMQBotXy9h0mYLgVEVsECUIUz9vc4OvcbG1H5vi/FoMaB kM+5Y4lxlibOGxWcqEnTnZ0ZgW3jJvd/TA3IbJHzCjzVcVyK7/geSCqA96hrDrBE j5i/vIRpXvpTKpIsK7VVNnRUUTpBR4f26K7Cc3drzHMhw2YzwHqp2bQeMhBc3Bw8 DJgTfyKF8DLL0NvPbWZt5rEwQWPdB1WuP0HG9V/StEBnnV05JL7e6kfCJSUhu0Zi Apbhc3HR+U5K0muzXfGAa/mKQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG43hqce gMuZfXzfihrSs0bl6s6wMB8GA1UdIwQYMBaAFNOuYmRJw6ndDneYvOi8uzlmKif/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0I2Mi80RTlCNzZEMkZC RDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFkME9kNWk4Nkx5N09XWXFK XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFk ME9kNWk4Nkx5N09XWXFKXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsi/qrl1GcxRlj4HJF8z5RksFdv33t9UARs3NrpEBPgB51N+8M5W6K 5B5D+kbLZYy5a3oLnse2/UbEhpUPo8/90e5BfwOTen6FLREzr/zYwGhOo/tSZNY0 en8xM7YfrJu9Dl8u8T2KHzQJx646w78+736ZIGzjACYyIAuvNzs/B3OmMhJXtv63 5G/CrICpIV7vuJapm3TdjF8FiJPjYFpoRLoHI9b6W/F39OyPxmalUG1QBa6vD1vg stEc7muvFXsVNlqYNu5/GJL6HCRVde30FRpVBlvS9zIA5F3RItv1fPPsa+Bl08Xi puxn0uPpGsDgmCdIl3DnwR6vyRsUMlOL -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:53 2025 by rpki-client