$ rpki-client -vvf rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft File: pjicd02tZdiN8ubU9D3ioLVy7no.mft (raw, json) Hash identifier: WFXLNXiuofqjhYs9YCb2Jc8XTltNC1ukr0TtQLjKjEA= Subject key identifier: AA:33:40:A5:56:5F:7D:48:64:45:58:58:4D:C5:9A:57:E9:67:5A:4D Authority key identifier: A6:38:9C:77:4D:AD:65:D8:8D:F2:E6:D4:F4:3D:E2:A0:B5:72:EE:7A Certificate issuer: /CN=A9194522/serialNumber=A6389C774DAD65D88DF2E6D4F43DE2A0B572EE7A Certificate serial: 023B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft Manifest number: 0232 Signing time: Fri 25 Apr 2025 01:42:58 +0000 Manifest this update: Fri 25 Apr 2025 01:42:58 +0000 Manifest next update: Fri 02 May 2025 01:42:58 +0000 Files and hashes: 1: pjicd02tZdiN8ubU9D3ioLVy7no.crl (hash: QtLhMJz7lC1Kpkin6k0GM1pliCRrk2wmKcAU7XVwjSE=) 2: 9995D8D6276011EDAF21D06DC4F9AE02.roa (hash: De/y5SymwOEb9D5+rzbdyyNd+/EfQtgf39FuJEq4RYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.crl rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194522, serialNumber=A6389C774DAD65D88DF2E6D4F43DE2A0B572EE7A Validity Not Before: Apr 25 01:42:58 2025 GMT Not After : May 2 01:42:58 2025 GMT Subject: CN=680ae8a2-2dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4e:53:ad:95:d6:f1:d7:60:f1:cc:25:01:b9: a8:03:17:65:79:69:f5:89:8e:8c:71:43:9c:98:32: 7b:13:63:8e:a9:2d:58:4d:78:27:37:e0:bb:45:52: 3b:42:db:70:07:c8:b6:07:52:3d:1e:08:a7:44:fb: 09:60:c3:b5:02:f5:cf:81:0e:88:73:f3:0d:f2:45: c4:b1:9d:cd:fe:3a:b8:0e:31:66:49:08:12:4e:63: 69:e3:2b:09:68:89:7b:98:85:04:21:92:51:9f:e5: 82:34:61:a1:69:a1:82:89:17:9e:db:a0:84:02:c5: c0:33:b9:bd:20:0f:6b:03:ff:2a:4f:eb:6a:92:71: 99:01:4e:cb:1b:99:7a:22:20:4f:f5:19:0c:4b:b2: c1:fd:fa:73:cf:32:56:fc:45:51:a8:c5:db:4e:54: 88:62:58:f3:f5:42:d0:42:30:3c:fc:19:af:94:96: 10:4c:c2:f1:8b:9d:f1:45:3a:82:2f:d2:05:09:1b: 00:b4:d1:f6:74:57:eb:ac:29:2e:51:b6:86:f8:45: b3:88:32:85:59:d9:a8:ed:9a:1b:78:e3:85:cb:42: 80:cb:b0:1d:40:fa:f5:2f:49:a4:ea:e4:49:ef:19: 17:7f:3a:ec:2c:47:eb:e9:43:9a:7c:d3:a9:20:a4: 4d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:33:40:A5:56:5F:7D:48:64:45:58:58:4D:C5:9A:57:E9:67:5A:4D X509v3 Authority Key Identifier: keyid:A6:38:9C:77:4D:AD:65:D8:8D:F2:E6:D4:F4:3D:E2:A0:B5:72:EE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:df:b5:a1:09:bd:fb:a4:b2:b5:a3:3f:de:20:d3:e0:ac:eb: cc:65:32:36:e0:4d:3b:49:d9:9c:62:7a:6e:17:7a:6e:1b:32: c8:7a:d6:b2:32:5c:70:42:bc:c1:45:b8:7a:66:ac:af:9c:39: d8:eb:f0:ff:68:a7:7f:1f:8a:7d:ed:f7:a5:0f:22:12:16:32: 89:0c:fa:11:98:24:64:33:f6:3e:c4:75:fe:e6:bc:48:63:5b: aa:64:6c:b4:6b:10:bc:ed:f7:65:e2:e3:8b:c7:5c:50:a6:f6: 35:f1:75:fa:cb:77:02:fa:76:c4:a6:fe:22:80:df:3e:e6:89: a2:18:9b:5e:b7:8f:ee:9d:e8:ed:12:84:b5:99:86:46:3d:00: 89:f9:4c:ba:24:0a:b6:09:c6:c5:08:25:51:cb:80:67:1e:11: 00:79:f3:aa:c4:67:00:14:4d:06:d1:15:86:04:2b:76:9c:45: f0:ef:4a:ba:98:cf:bf:4b:86:2d:b2:3b:54:fb:70:15:97:61: 72:eb:5d:cf:08:91:40:d9:c9:64:1a:10:d0:11:5e:9a:a8:8b: de:2c:f7:6d:6b:02:08:6d:4a:4f:fb:b9:e2:1e:0e:56:ab:6d: 39:89:93:06:06:c5:51:e3:1a:87:6e:83:13:48:8a:99:22:ee: 28:c6:ed:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ1MjIxMTAvBgNVBAUTKEE2Mzg5Qzc3NERBRDY1RDg4REYyRTZENEY0M0RFMkEw QjU3MkVFN0EwHhcNMjUwNDI1MDE0MjU4WhcNMjUwNTAyMDE0MjU4WjAYMRYwFAYD VQQDEw02ODBhZThhMi0yZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuk5TrZXW8ddg8cwlAbmoAxdleWn1iY6McUOcmDJ7E2OOqS1YTXgnN+C7RVI7 QttwB8i2B1I9HginRPsJYMO1AvXPgQ6Ic/MN8kXEsZ3N/jq4DjFmSQgSTmNp4ysJ aIl7mIUEIZJRn+WCNGGhaaGCiRee26CEAsXAM7m9IA9rA/8qT+tqknGZAU7LG5l6 IiBP9RkMS7LB/fpzzzJW/EVRqMXbTlSIYljz9ULQQjA8/BmvlJYQTMLxi53xRTqC L9IFCRsAtNH2dFfrrCkuUbaG+EWziDKFWdmo7ZobeOOFy0KAy7AdQPr1L0mk6uRJ 7xkXfzrsLEfr6UOafNOpIKRNuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKozQKVW X31IZEVYWE3FmlfpZ1pNMB8GA1UdIwQYMBaAFKY4nHdNrWXYjfLm1PQ94qC1cu56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDUyMi9ERTIwRkM5NjI3 NUMxMUVEOERBQzZBNjhDNEY5QUUwMi9wamljZDAydFpkaU44dWJVOUQzaW9MVnk3 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BqaWNkMDJ0WmRpTjh1YlU5RDNpb0xWeTduby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDUyMi9ERTIwRkM5NjI3NUMxMUVEOERBQzZBNjhDNEY5QUUwMi9wamljZDAydFpk aU44dWJVOUQzaW9MVnk3bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu37WhCb37pLK1oz/eINPgrOvMZTI24E07SdmcYnpuF3puGzLIetay MlxwQrzBRbh6ZqyvnDnY6/D/aKd/H4p97felDyISFjKJDPoRmCRkM/Y+xHX+5rxI Y1uqZGy0axC87fdl4uOLx1xQpvY18XX6y3cC+nbEpv4igN8+5omiGJtet4/unejt EoS1mYZGPQCJ+Uy6JAq2CcbFCCVRy4BnHhEAefOqxGcAFE0G0RWGBCt2nEXw70q6 mM+/S4YtsjtU+3AVl2Fy613PCJFA2clkGhDQEV6aqIveLPdtawIIbUpP+7niHg5W q205iZMGBsVR4xqHboMTSIqZIu4oxu1o -----END CERTIFICATE-----Generated at Sat Apr 26 13:11:26 2025 by rpki-client