$ rpki-client -vvf rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft File: pK73BplO997sjIomg0NykQSEsbA.mft (raw, json) Hash identifier: SKw2Q3+NGpYGA4rvTugRsgUH0zBKKXVQjh6lp5rEWcE= Subject key identifier: 3A:BC:85:89:79:65:41:7A:2B:92:AA:4F:DC:FA:5D:BD:5A:7F:F6:CD Authority key identifier: A4:AE:F7:06:99:4E:F7:DE:EC:8C:8A:26:83:43:72:91:04:84:B1:B0 Certificate issuer: /CN=A9196412/serialNumber=A4AEF706994EF7DEEC8C8A26834372910484B1B0 Certificate serial: 069A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft Manifest number: 068C Signing time: Thu 24 Apr 2025 22:05:09 +0000 Manifest this update: Thu 24 Apr 2025 22:05:08 +0000 Manifest next update: Thu 01 May 2025 22:05:08 +0000 Files and hashes: 1: pK73BplO997sjIomg0NykQSEsbA.crl (hash: dg0pc5R2MN44XqurrtZgGl6CrsKQoU8+g1yUmTsUNk8=) 2: 7568D85E731211EBAFF0B481C4F9AE02.roa (hash: 4hu+Ea1WW3aPEC6/j9KPgOfcmbDhbVy01ftALoJDrTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.crl rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196412, serialNumber=A4AEF706994EF7DEEC8C8A26834372910484B1B0 Validity Not Before: Apr 24 22:05:08 2025 GMT Not After : May 1 22:05:08 2025 GMT Subject: CN=680ab594-9b8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ce:ef:27:24:ca:96:6b:69:10:9b:16:97:49: 06:6b:10:a4:fb:28:ab:d3:ce:d7:50:f7:d9:b9:92: a9:d9:3d:9a:7f:48:84:54:1b:04:b3:b4:ec:b1:6f: 92:a2:a6:7b:54:d6:be:bd:e7:bc:d4:16:47:17:a8: 72:ea:ec:4d:48:da:ff:a6:75:62:fc:9d:89:ed:c7: 2d:1a:9e:a0:9a:cf:2e:3e:49:8c:f2:80:3c:f4:78: 24:80:11:db:87:f9:fe:3b:0b:7b:c4:e6:45:54:b5: 63:c1:4a:6d:12:60:e1:46:4b:0e:5c:ab:3a:47:39: 9c:98:4c:38:f4:8e:fc:ff:e1:b9:4e:e4:98:de:7b: f2:27:aa:ce:33:30:d5:fe:ac:8b:aa:55:53:82:ce: d7:11:dd:6c:4a:f8:63:60:95:87:1a:71:b1:2d:77: 8e:ff:77:b5:a1:5d:7a:27:09:1f:08:15:e8:4c:d1: 36:4a:10:b7:61:a1:7c:d7:82:3d:e5:33:41:b7:08: ab:30:51:db:9d:83:2e:48:90:c7:79:8c:32:65:23: 33:e7:0e:ab:3c:8c:0c:a5:8f:ce:7e:55:2a:04:d8: 8d:91:8a:98:cf:c0:a7:5a:29:90:8a:75:0e:70:3c: 15:34:ce:49:b6:a8:70:60:a2:b5:8c:cc:03:2d:b8: 0c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:BC:85:89:79:65:41:7A:2B:92:AA:4F:DC:FA:5D:BD:5A:7F:F6:CD X509v3 Authority Key Identifier: keyid:A4:AE:F7:06:99:4E:F7:DE:EC:8C:8A:26:83:43:72:91:04:84:B1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:2b:d1:a9:64:13:8a:a4:76:ff:7e:1f:cd:56:ec:dc:5f:24: e6:ac:3c:68:1b:8c:ad:b7:54:5d:3d:cc:96:f5:11:5b:1c:33: 75:5b:db:67:e7:94:0d:41:29:3e:aa:92:46:9e:a1:30:97:26: 0c:28:8d:54:f7:77:3b:3c:a9:47:66:8b:aa:55:f4:18:30:4a: bd:e1:31:af:96:49:6d:3e:a9:49:e8:63:fd:9c:d0:39:00:16: d5:73:f7:ca:48:3e:e7:21:76:15:28:85:4e:d8:b3:3d:59:fb: f7:ec:4d:58:39:c6:55:81:d9:10:0f:e0:3b:8a:53:cb:d9:70: 95:8f:de:d2:ec:45:86:a3:6d:9f:ae:94:1b:93:a2:ac:a2:2b: 40:c0:87:8c:79:f9:3a:43:02:2e:30:b9:0f:80:3a:cd:b8:b2: 97:b7:e4:e1:55:22:16:f8:44:46:02:cc:2d:88:e0:b7:2e:53: f8:0e:40:c3:02:eb:73:00:63:92:84:a7:a1:12:09:8d:52:29: 54:dd:4e:99:c6:d0:c4:4e:1b:ad:ae:8c:7f:f1:51:ac:de:72: 78:cf:95:b1:6d:f1:69:d5:a6:b4:bb:13:e6:01:80:5e:43:28: 85:24:9d:54:48:cf:94:f7:94:06:b2:15:81:d6:7c:11:91:14: e7:94:c2:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0MTIxMTAvBgNVBAUTKEE0QUVGNzA2OTk0RUY3REVFQzhDOEEyNjgzNDM3Mjkx MDQ4NEIxQjAwHhcNMjUwNDI0MjIwNTA4WhcNMjUwNTAxMjIwNTA4WjAYMRYwFAYD VQQDEw02ODBhYjU5NC05YjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1s7vJyTKlmtpEJsWl0kGaxCk+yir087XUPfZuZKp2T2af0iEVBsEs7TssW+S oqZ7VNa+vee81BZHF6hy6uxNSNr/pnVi/J2J7cctGp6gms8uPkmM8oA89HgkgBHb h/n+Owt7xOZFVLVjwUptEmDhRksOXKs6RzmcmEw49I78/+G5TuSY3nvyJ6rOMzDV /qyLqlVTgs7XEd1sSvhjYJWHGnGxLXeO/3e1oV16JwkfCBXoTNE2ShC3YaF814I9 5TNBtwirMFHbnYMuSJDHeYwyZSMz5w6rPIwMpY/OflUqBNiNkYqYz8CnWimQinUO cDwVNM5JtqhwYKK1jMwDLbgMvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDq8hYl5 ZUF6K5KqT9z6Xb1af/bNMB8GA1UdIwQYMBaAFKSu9waZTvfe7IyKJoNDcpEEhLGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjQxMi9BOEQ2NjI0MDZG OUExMUVCOEExM0RGMTdDNEY5QUUwMi9wSzczQnBsTzk5N3NqSW9tZzBOeWtRU0Vz YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BLNzNCcGxPOTk3c2pJb21nME55a1FTRXNiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjQxMi9BOEQ2NjI0MDZGOUExMUVCOEExM0RGMTdDNEY5QUUwMi9wSzczQnBsTzk5 N3NqSW9tZzBOeWtRU0VzYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXK9GpZBOKpHb/fh/NVuzcXyTmrDxoG4ytt1RdPcyW9RFbHDN1W9tn 55QNQSk+qpJGnqEwlyYMKI1U93c7PKlHZouqVfQYMEq94TGvlkltPqlJ6GP9nNA5 ABbVc/fKSD7nIXYVKIVO2LM9Wfv37E1YOcZVgdkQD+A7ilPL2XCVj97S7EWGo22f rpQbk6KsoitAwIeMefk6QwIuMLkPgDrNuLKXt+ThVSIW+ERGAswtiOC3LlP4DkDD AutzAGOShKehEgmNUilU3U6ZxtDEThutrox/8VGs3nJ4z5WxbfFp1aa0uxPmAYBe QyiFJJ1USM+U95QGshWB1nwRkRTnlMIs -----END CERTIFICATE-----Generated at Sat Apr 26 04:50:28 2025 by rpki-client