$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: 9LSE2JUQEcNIKH79CR4X0lEeOlOb6SJQQC59M58Krd8= Subject key identifier: D8:88:3A:E9:88:83:2D:B3:2D:AD:21:A5:27:B1:16:FC:CF:78:21:E0 Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: 10 Signing time: Thu 01 May 2025 07:06:53 +0000 Manifest this update: Thu 01 May 2025 07:06:53 +0000 Manifest next update: Thu 08 May 2025 07:06:53 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: 1tGqXI+YxyFStgOOPVNmKAuw+u4cNJsNMyOoenTx0RE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 07:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: May 1 07:06:53 2025 GMT Not After : May 8 07:06:53 2025 GMT Subject: CN=68131d8d-1e5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b8:a8:98:4c:12:75:79:a0:6b:fc:17:c4:0e: 18:47:60:8e:d9:ff:a5:80:d9:52:9c:81:6f:20:77: 86:5d:3b:67:16:9f:b9:81:2c:8c:05:d6:8b:f9:48: 83:ee:cd:a2:20:a0:84:84:3b:bd:d7:4a:2f:34:92: c4:0e:c2:e0:9e:57:e3:c1:16:c6:0f:94:1f:43:a9: 7b:01:7a:36:04:65:92:39:c4:3e:7c:4a:87:0a:92: 33:1c:f2:83:3f:bd:36:60:96:9a:90:84:8b:aa:50: de:b4:97:eb:ad:b4:f0:dc:64:0a:5e:47:8c:b5:7a: ae:7a:e5:64:dd:b9:4a:8e:6b:cc:f5:60:5b:69:b1: 76:5a:34:68:95:f2:e1:bc:a4:71:aa:f8:be:51:ea: 5a:d6:48:a2:83:25:d5:16:93:3e:50:f1:11:ed:f0: 36:2e:15:6e:4d:be:f9:36:52:f4:19:82:6a:78:a4: 80:33:0c:14:2f:bb:38:5f:65:93:67:e0:3d:cc:b7: 27:46:e9:6d:57:76:4a:c8:95:a2:78:78:d5:fc:ff: 68:e5:64:52:73:74:7b:43:dc:dd:bc:fd:2d:c8:a1: 5c:03:67:b1:56:c6:c0:14:b1:43:96:cc:1d:16:03: c1:0e:6a:1a:c7:a5:6d:c6:93:9e:9d:84:0a:af:94: 87:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:88:3A:E9:88:83:2D:B3:2D:AD:21:A5:27:B1:16:FC:CF:78:21:E0 X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:76:a5:64:2b:74:bd:62:b1:1a:a7:2d:c8:92:69:4a:51:f7: c7:07:35:33:bb:bf:6a:1a:8c:07:d9:68:cb:6f:e7:00:8d:3d: a1:ab:bf:55:fc:44:57:b4:af:30:fb:34:ea:41:98:45:7a:73: 52:de:1c:0d:a4:6f:43:12:59:13:14:72:12:14:4c:e1:1e:be: 7d:16:0e:c9:49:c3:34:71:23:ab:0c:d3:f4:be:be:08:3b:2e: 77:25:eb:89:e8:7a:57:c6:ad:80:35:67:0d:73:0f:2e:c6:18: bc:6f:db:f2:7f:0e:94:ae:aa:59:73:2e:46:82:19:bc:86:b5: be:f5:85:b9:c2:78:80:10:14:9f:43:40:95:94:5e:2c:9b:93: 8c:7d:fa:4c:a5:b2:27:8d:69:28:e9:43:3e:35:d4:1d:98:5c: 7e:df:24:4c:2a:ff:72:af:86:1b:3a:75:96:00:26:c0:28:ca: 35:63:30:b9:a0:1f:e7:ed:ba:5f:4f:1e:29:cd:22:b6:05:df: db:cd:73:55:8c:c2:07:cc:1c:3d:f3:5b:d2:4c:5d:97:10:14: 34:c4:ab:b0:84:25:15:5b:4f:b3:bf:c2:9f:c2:af:2e:28:2b: fa:1e:0d:07:e7:58:fc:2d:1a:08:c6:f4:ff:95:20:d4:79:3d: 84:39:98:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoM0YxQThFQTNEMkFEQzZFQ0IyMzYwRTBDMzc2Q0U1NTlC OUZGNzFGMjAeFw0yNTA1MDEwNzA2NTNaFw0yNTA1MDgwNzA2NTNaMBgxFjAUBgNV BAMTDTY4MTMxZDhkLTFlNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHuKiYTBJ1eaBr/BfEDhhHYI7Z/6WA2VKcgW8gd4ZdO2cWn7mBLIwF1ov5SIPu zaIgoISEO73XSi80ksQOwuCeV+PBFsYPlB9DqXsBejYEZZI5xD58SocKkjMc8oM/ vTZglpqQhIuqUN60l+uttPDcZApeR4y1eq565WTduUqOa8z1YFtpsXZaNGiV8uG8 pHGq+L5R6lrWSKKDJdUWkz5Q8RHt8DYuFW5Nvvk2UvQZgmp4pIAzDBQvuzhfZZNn 4D3MtydG6W1XdkrIlaJ4eNX8/2jlZFJzdHtD3N28/S3IoVwDZ7FWxsAUsUOWzB0W A8EOahrHpW3Gk56dhAqvlIcNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2Ig66YiD LbMtrSGlJ7EW/M94IeAwHwYDVR0jBBgwFoAUPxqOo9KtxuyyNg4MN2zlWbn/cfIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0I4RjVDNzZBMTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2Nm SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHhxT285S3R4dXl5Tmc0TU4yemxXYm5fY2ZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0I4RjVDNzZBMTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5 eU5nNE1OMnpsV2JuX2NmSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB92pWQrdL1isRqnLciSaUpR98cHNTO7v2oajAfZaMtv5wCNPaGrv1X8 RFe0rzD7NOpBmEV6c1LeHA2kb0MSWRMUchIUTOEevn0WDslJwzRxI6sM0/S+vgg7 Lncl64noelfGrYA1Zw1zDy7GGLxv2/J/DpSuqllzLkaCGbyGtb71hbnCeIAQFJ9D QJWUXiybk4x9+kylsieNaSjpQz411B2YXH7fJEwq/3Kvhhs6dZYAJsAoyjVjMLmg H+ftul9PHinNIrYF39vNc1WMwgfMHD3zW9JMXZcQFDTEq7CEJRVbT7O/wp/Cry4o K/oeDQfnWPwtGgjG9P+VINR5PYQ5mGU= -----END CERTIFICATE-----Generated at Fri May 2 19:57:01 2025 by rpki-client