$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: tT0JG6PMDYVVm0WRJPFyQVloswIc0YwrcxVTZHeEFuA= Subject key identifier: 83:90:8F:35:E6:BD:ED:B8:CA:54:17:BB:CD:72:77:67:9C:F3:B2:B3 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 049D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 0499 Signing time: Thu 24 Apr 2025 23:45:55 +0000 Manifest this update: Thu 24 Apr 2025 23:45:54 +0000 Manifest next update: Thu 01 May 2025 23:45:54 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: rtFkfSFpN3xWTw6dAsWbQwl6WkFKyGrM6hjjaY6u1/8=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: e5DQN0gUt317ERWZVtRRumZ22rqenKdlnkwt5HATBok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: Apr 24 23:45:54 2025 GMT Not After : May 1 23:45:54 2025 GMT Subject: CN=680acd33-92c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bf:1b:57:b3:bd:7e:14:71:31:ea:7f:d4:6a: fc:37:42:3c:28:44:82:18:f7:03:d6:a4:00:7f:94: a4:a6:c9:58:24:11:8d:02:02:45:13:30:22:06:4d: cf:88:3b:85:4e:f7:5c:18:fd:51:a8:d0:de:5d:61: 0b:49:96:e2:37:36:cc:90:66:f1:5f:f2:2b:c8:ed: af:e9:2a:54:4b:8a:d3:05:4d:c0:cd:3e:b6:f1:9f: d3:58:04:47:90:b5:62:57:a7:0c:3f:21:93:f6:c8: b6:4a:df:28:76:22:70:96:5a:7f:b1:05:63:d4:5a: df:86:3d:53:36:53:df:39:7a:44:b4:c8:4b:04:9c: 85:e7:a8:0c:31:be:15:aa:4c:7a:bc:cc:e1:25:d7: 2c:3c:e5:6a:2e:6d:48:ca:05:40:e0:12:70:d6:bc: 5e:ab:08:d8:d7:fb:3a:28:2f:3e:69:db:02:a1:4f: 64:a6:e0:89:a3:4d:d8:5d:30:56:93:8d:2a:b6:78: 70:1c:ea:00:00:be:6b:0f:b1:a6:c5:6c:b9:ea:87: f7:be:9c:4d:f0:78:85:23:60:da:99:00:76:25:5f: c4:3f:37:04:cf:e8:53:7c:c4:f4:b8:40:23:4d:d2: 36:81:75:27:71:ad:f4:60:db:7e:3d:67:fb:24:24: 55:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:90:8F:35:E6:BD:ED:B8:CA:54:17:BB:CD:72:77:67:9C:F3:B2:B3 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:60:a2:a1:95:ae:a5:84:60:32:a4:82:3a:63:5c:94:1a:fd: 8c:3d:21:80:de:f1:c9:8e:43:51:bd:e1:0b:f3:b0:10:89:ba: aa:8f:04:d5:57:f2:5c:85:2e:6c:bb:34:dd:62:f6:8a:45:44: fe:d7:70:55:e3:ef:0f:d8:ec:d3:24:42:6d:b0:70:5a:9d:8a: 9e:00:d3:32:8e:1c:f5:07:b0:13:34:36:40:c9:22:1f:80:68: 61:ff:18:5a:c3:63:bd:ae:b6:36:3f:2f:18:0d:2f:ca:dc:53: da:da:e5:60:4b:9f:92:89:12:96:80:ae:a7:78:f7:eb:7d:a3: 09:ad:ff:32:31:de:5d:18:b0:a8:08:b6:7c:f5:cd:ad:3f:41: 41:4b:0a:c3:1a:72:7a:f0:33:75:1e:70:74:60:8d:fb:09:7c: 51:9d:7c:a6:b6:31:ba:d9:48:28:8d:2a:a2:0b:ce:d2:fe:a6: 33:2f:d7:38:2e:cf:43:5b:39:db:29:f0:d4:2e:5d:4a:82:9e: 0a:c6:a5:3b:0d:da:fd:4c:0a:42:d9:c2:02:07:12:93:e4:ca: c4:0b:8b:80:df:d6:02:31:d0:90:4b:bd:59:fd:f3:56:f3:33: 74:6f:5c:90:54:68:66:43:d1:63:b7:a5:f9:c2:52:15:2d:20: 7d:59:1d:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUwNDI0MjM0NTU0WhcNMjUwNTAxMjM0NTU0WjAYMRYwFAYD VQQDEw02ODBhY2QzMy05MmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArr8bV7O9fhRxMep/1Gr8N0I8KESCGPcD1qQAf5SkpslYJBGNAgJFEzAiBk3P iDuFTvdcGP1RqNDeXWELSZbiNzbMkGbxX/IryO2v6SpUS4rTBU3AzT628Z/TWARH kLViV6cMPyGT9si2St8odiJwllp/sQVj1Frfhj1TNlPfOXpEtMhLBJyF56gMMb4V qkx6vMzhJdcsPOVqLm1IygVA4BJw1rxeqwjY1/s6KC8+adsCoU9kpuCJo03YXTBW k40qtnhwHOoAAL5rD7GmxWy56of3vpxN8HiFI2DamQB2JV/EPzcEz+hTfMT0uEAj TdI2gXUnca30YNt+PWf7JCRVQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOQjzXm ve24ylQXu81yd2ec87KzMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALYKKhla6lhGAypII6Y1yUGv2MPSGA3vHJjkNRveEL87AQibqqjwTV V/JchS5suzTdYvaKRUT+13BV4+8P2OzTJEJtsHBanYqeANMyjhz1B7ATNDZAySIf gGhh/xhaw2O9rrY2Py8YDS/K3FPa2uVgS5+SiRKWgK6nePfrfaMJrf8yMd5dGLCo CLZ89c2tP0FBSwrDGnJ68DN1HnB0YI37CXxRnXymtjG62UgojSqiC87S/qYzL9c4 Ls9DWznbKfDULl1Kgp4KxqU7Ddr9TApC2cICBxKT5MrEC4uA39YCMdCQS71Z/fNW 8zN0b1yQVGhmQ9Fjt6X5wlIVLSB9WR1E -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:40 2025 by rpki-client