$ rpki-client -vvf rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft File: pRz7iig43CPyh2RKRzXvwT2MMRM.mft (raw, json) Hash identifier: mMXhPWgRYvymo0+GXnm88QBYckkbXVS64zRrjHqHeWk= Subject key identifier: 29:E5:D3:97:77:27:1F:A5:4E:6D:DA:E4:C0:DB:27:15:D4:49:EC:9A Authority key identifier: A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 Certificate issuer: /CN=A9197724/serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft Manifest number: 66 Signing time: Sat 03 May 2025 06:19:41 +0000 Manifest this update: Sat 03 May 2025 06:19:41 +0000 Manifest next update: Sat 10 May 2025 06:19:41 +0000 Files and hashes: 1: pRz7iig43CPyh2RKRzXvwT2MMRM.crl (hash: ZG7EWT5jUtkIqCj8mlk8QDDXkY1OkCKJMJ9/+yB2Uig=) 2: A2C3AA7E904E11EF9FC6B922C4F9AE02.roa (hash: bRFbzj6pr/OF3ESUy9ky5waEguFBGACn3nS0+utKTXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 06:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197724, serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Validity Not Before: May 3 06:19:41 2025 GMT Not After : May 10 06:19:41 2025 GMT Subject: CN=6815b57d-ea81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f8:e2:83:2f:a4:7e:4c:65:b6:03:ac:4c:4c: c2:c2:ff:38:84:2b:36:9a:b0:5a:1e:7e:d4:ed:cd: af:01:d6:89:2d:5c:8d:aa:a0:b4:d7:3f:b9:84:e7: 1c:22:7e:3b:fb:3e:c2:1e:38:8c:64:4a:9a:34:12: c0:83:92:b4:af:6c:7b:43:60:dc:17:0c:dd:1a:14: 1a:e3:91:33:c3:39:5f:35:3b:56:a8:1b:ff:37:fc: 01:48:29:2f:fd:4e:c0:af:14:ee:ea:e4:e6:8e:88: de:46:be:cd:20:00:be:d5:ef:f2:63:56:4f:7e:84: 3a:8d:5d:63:0a:3c:e9:41:a4:ce:12:16:2a:0c:e1: fd:9c:4b:12:3b:f9:41:ca:f5:21:c7:83:70:18:41: 9c:87:c7:56:bc:95:7d:58:e4:07:b3:a9:a2:ab:88: 26:96:20:8d:48:a0:c7:6e:76:ab:2a:af:73:c9:2b: 74:ac:bb:40:8c:68:e5:88:3e:bf:04:97:5b:fb:62: 39:9d:93:7d:83:ad:fd:fd:7c:c6:14:3d:40:f3:3e: 30:ba:cc:34:ad:74:b1:50:ee:e2:b2:4b:0f:3d:79: 1b:3b:23:98:56:d5:65:d8:a9:bf:5d:e6:a1:0a:e2: 7e:89:99:d4:b6:8f:cd:d9:99:1a:c6:0e:03:de:63: 48:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E5:D3:97:77:27:1F:A5:4E:6D:DA:E4:C0:DB:27:15:D4:49:EC:9A X509v3 Authority Key Identifier: keyid:A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:05:00:8b:9b:53:61:fd:f4:73:33:f4:fe:5e:06:35:45:02: 9b:35:4a:00:fe:0d:af:08:ac:02:22:be:3b:ac:39:1e:95:98: 7e:0c:54:30:0f:77:5c:19:28:69:d1:da:b2:90:19:a9:81:6f: f9:ae:f5:e2:4e:68:eb:1d:81:3b:f0:61:74:02:9a:1c:f2:ed: 8a:95:c3:7c:2a:83:b0:54:4f:08:d0:46:93:15:13:b5:87:e3: 86:12:74:c1:ee:9a:e5:24:00:22:a0:56:a1:cb:1b:b2:3c:ca: 5e:c8:f8:eb:8c:a5:29:1b:d7:8a:0c:21:18:43:b5:fa:62:5d: 16:c4:d3:54:b7:97:e3:b7:7b:98:80:f5:ee:46:ca:e6:46:d1: a4:b6:e3:39:82:67:77:07:0c:0e:8c:16:5a:09:63:60:e6:f8: 57:74:43:6d:b5:6c:d3:15:27:8a:eb:38:4d:db:7a:0a:92:03: 8e:13:69:d1:49:bf:fe:d6:fd:98:00:0b:f0:3d:a7:42:87:06: 28:2d:e6:e7:87:7e:49:3b:d9:e7:5c:73:ae:98:88:7e:8a:8b: 3c:06:28:cf:3d:55:6c:fc:74:b6:e5:af:88:25:b8:13:71:53: 4b:58:6d:4b:e0:e4:c2:4f:a0:e6:09:51:9d:58:7e:d1:64:69: 7f:81:b0:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzcyNDExMC8GA1UEBRMoQTUxQ0ZCOEEyODM4REMyM0YyODc2NDRBNDczNUVGQzEz RDhDMzExMzAeFw0yNTA1MDMwNjE5NDFaFw0yNTA1MTAwNjE5NDFaMBgxFjAUBgNV BAMTDTY4MTViNTdkLWVhODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDa+OKDL6R+TGW2A6xMTMLC/ziEKzaasFoeftTtza8B1oktXI2qoLTXP7mE5xwi fjv7PsIeOIxkSpo0EsCDkrSvbHtDYNwXDN0aFBrjkTPDOV81O1aoG/83/AFIKS/9 TsCvFO7q5OaOiN5Gvs0gAL7V7/JjVk9+hDqNXWMKPOlBpM4SFioM4f2cSxI7+UHK 9SHHg3AYQZyHx1a8lX1Y5AezqaKriCaWII1IoMdudqsqr3PJK3Ssu0CMaOWIPr8E l1v7Yjmdk32Drf39fMYUPUDzPjC6zDStdLFQ7uKySw89eRs7I5hW1WXYqb9d5qEK 4n6JmdS2j83ZmRrGDgPeY0gJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKeXTl3cn H6VObdrkwNsnFdRJ7JowHwYDVR0jBBgwFoAUpRz7iig43CPyh2RKRzXvwT2MMRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3NzI0LzU2QzY3MDc2OTA0 RDExRUZBMTEwMzg2NEM0RjlBRTAyL3BSejdpaWc0M0NQeWgyUktSelh2d1QyTU1S TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFJ6N2lpZzQzQ1B5aDJSS1J6WHZ3VDJNTVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 NzI0LzU2QzY3MDc2OTA0RDExRUZBMTEwMzg2NEM0RjlBRTAyL3BSejdpaWc0M0NQ eWgyUktSelh2d1QyTU1STS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANcFAIubU2H99HMz9P5eBjVFAps1SgD+Da8IrAIivjusOR6VmH4MVDAP d1wZKGnR2rKQGamBb/mu9eJOaOsdgTvwYXQCmhzy7YqVw3wqg7BUTwjQRpMVE7WH 44YSdMHumuUkACKgVqHLG7I8yl7I+OuMpSkb14oMIRhDtfpiXRbE01S3l+O3e5iA 9e5GyuZG0aS24zmCZ3cHDA6MFloJY2Dm+Fd0Q221bNMVJ4rrOE3begqSA44TadFJ v/7W/ZgAC/A9p0KHBigt5ueHfkk72edcc66YiH6KizwGKM89VWz8dLblr4gluBNx U0tYbUvg5MJPoOYJUZ1YftFkaX+BsCo= -----END CERTIFICATE-----Generated at Sat May 3 22:11:26 2025 by rpki-client