$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: 46rAxjfI5QxTroB/Jgl/dmM7g6w3O6+bT88Yiu1VOCg= Subject key identifier: D4:E6:5E:94:29:78:28:68:C0:9A:E7:BD:94:0D:ED:0D:98:72:3D:07 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 0459 Signing time: Thu 24 Apr 2025 23:57:26 +0000 Manifest this update: Thu 24 Apr 2025 23:57:26 +0000 Manifest next update: Thu 01 May 2025 23:57:26 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: 614SG6L0xKeRxBgsrlTlme0RraU1fy08DSY9TI9oPQ8=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: VtnOs46KlpQVSJ9THDVnSS8EzLS3A9xUSm3n/4RNrWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Apr 24 23:57:26 2025 GMT Not After : May 1 23:57:26 2025 GMT Subject: CN=680acfe6-0a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:88:6f:f3:d8:b0:df:60:cd:7d:61:4b:74:b4: bf:54:53:b6:50:4e:01:b8:c2:f8:41:79:59:6a:91: 13:1a:d0:c6:72:a6:a3:fc:86:23:24:d8:96:73:eb: ee:cf:b3:b5:61:d1:5d:f3:22:b6:ca:9f:2d:25:7d: bf:d4:6e:e1:5e:14:37:63:94:f6:49:d4:5b:91:22: f4:71:dc:6f:66:4c:eb:83:8b:05:7b:61:78:46:7a: 96:a9:d9:d4:57:6f:be:ce:e6:c6:40:fa:d6:88:ce: 16:c5:ca:65:6e:14:f7:3b:ed:a4:e9:58:9f:2a:d6: b4:1c:5f:6b:87:7a:b5:9f:1a:f0:46:b0:fa:e2:93: d5:4e:03:cb:98:b6:7c:43:92:b3:dd:ed:a1:b1:ab: b0:15:7b:50:28:89:55:32:82:d6:44:0f:ef:ae:44: b2:47:94:5a:5a:8d:e8:66:06:ab:1c:0b:c1:c0:fb: 93:68:55:13:fd:31:b8:b1:6f:fe:57:db:22:b7:ae: 63:44:9a:d2:6f:5b:54:3a:1b:ae:6b:65:7d:97:a1: c8:66:0c:b1:78:93:d6:67:46:fe:4a:89:93:95:29: 74:27:43:7d:72:90:dc:c4:b5:ea:14:ed:b4:a4:dd: 26:bf:c3:79:90:93:f2:7e:b0:30:18:39:7a:05:2d: 14:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E6:5E:94:29:78:28:68:C0:9A:E7:BD:94:0D:ED:0D:98:72:3D:07 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:84:47:64:67:21:bb:5f:5b:e5:56:d4:01:3d:7d:8c:72:dd: 08:6b:3c:55:ac:31:d9:0e:82:5e:31:25:99:99:6c:25:f0:00: 2d:de:df:a5:f1:a4:f0:bf:4e:b7:ec:f3:46:5e:af:3d:2d:26: 33:a9:2a:36:fa:e7:be:ca:f6:19:0e:bc:0d:f5:ab:74:c9:1b: eb:a0:7f:12:f6:40:f2:ba:f2:fd:3d:b6:8a:9a:72:33:a7:4e: ee:ee:b5:4f:dc:d1:ed:01:ae:b6:c7:94:d6:b9:d7:8c:77:24: 51:bc:4b:eb:3e:cf:db:36:bb:b8:f1:41:e1:77:bb:ac:89:d0: 8b:06:20:79:cb:6d:16:ae:0a:ef:02:b5:ab:bc:ab:96:95:36: 34:0c:73:bd:fc:e1:43:69:85:77:40:4c:64:ec:c8:20:0f:d2: 7a:ca:e6:12:75:a1:a9:dd:fb:45:ea:eb:23:16:f7:28:02:59: 64:14:7b:d6:61:f1:85:33:d0:04:91:93:8b:4d:d9:b7:4b:fc: c5:76:e7:75:4d:96:9f:2f:47:88:bc:89:24:18:04:1e:4f:52: 91:00:ab:f2:df:20:c7:0b:68:d1:a9:54:d8:1e:13:db:3f:f2: fa:e4:35:18:9e:85:fe:12:c3:f6:ef:7f:f4:01:d5:86:5b:88: ea:04:8e:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUwNDI0MjM1NzI2WhcNMjUwNTAxMjM1NzI2WjAYMRYwFAYD VQQDEw02ODBhY2ZlNi0wYTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqohv89iw32DNfWFLdLS/VFO2UE4BuML4QXlZapETGtDGcqaj/IYjJNiWc+vu z7O1YdFd8yK2yp8tJX2/1G7hXhQ3Y5T2SdRbkSL0cdxvZkzrg4sFe2F4RnqWqdnU V2++zubGQPrWiM4WxcplbhT3O+2k6VifKta0HF9rh3q1nxrwRrD64pPVTgPLmLZ8 Q5Kz3e2hsauwFXtQKIlVMoLWRA/vrkSyR5RaWo3oZgarHAvBwPuTaFUT/TG4sW/+ V9sit65jRJrSb1tUOhuua2V9l6HIZgyxeJPWZ0b+SomTlSl0J0N9cpDcxLXqFO20 pN0mv8N5kJPyfrAwGDl6BS0UPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTmXpQp eChowJrnvZQN7Q2Ycj0HMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCThEdkZyG7X1vlVtQBPX2Mct0IazxVrDHZDoJeMSWZmWwl8AAt3t+l 8aTwv0637PNGXq89LSYzqSo2+ue+yvYZDrwN9at0yRvroH8S9kDyuvL9PbaKmnIz p07u7rVP3NHtAa62x5TWudeMdyRRvEvrPs/bNru48UHhd7usidCLBiB5y20Wrgrv ArWrvKuWlTY0DHO9/OFDaYV3QExk7MggD9J6yuYSdaGp3ftF6usjFvcoAllkFHvW YfGFM9AEkZOLTdm3S/zFdud1TZafL0eIvIkkGAQeT1KRAKvy3yDHC2jRqVTYHhPb P/L65DUYnoX+EsP273/0AdWGW4jqBI5C -----END CERTIFICATE-----Generated at Sat Apr 26 12:53:00 2025 by rpki-client