$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: DwVHdpftyCW5h0LME9YQ/mAuwvLsTIHzVGTnUY9LdIA= Subject key identifier: 06:A0:75:D4:4B:99:83:62:4A:D4:A4:5A:49:22:28:5D:C2:A4:BC:52 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 0172 Signing time: Wed 14 May 2025 19:16:11 +0000 Manifest this update: Wed 14 May 2025 19:16:10 +0000 Manifest next update: Wed 21 May 2025 19:16:10 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: PuKyP7DnHZG4tTtB/LSMHPDLyH7kmGUsA2bNwj07fxo=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: jx7hnJAbOWXi06R8EaUqGVH9j+g4HwGKu5sUmUZqpVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: May 14 19:16:10 2025 GMT Not After : May 21 19:16:10 2025 GMT Subject: CN=6824ebfb-b9d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0d:ce:39:62:65:3d:62:a5:c1:7e:23:b0:d4: 47:18:99:6f:03:38:26:f0:4f:d7:6c:72:d1:cf:66: 6e:b0:b1:db:88:81:ba:f9:71:18:00:5d:4d:dd:23: 88:d0:f4:28:1b:a9:d4:cd:4d:32:b6:29:ba:69:de: a5:13:cd:1e:58:64:33:fe:77:9d:7b:ce:d1:b6:59: 5f:7d:23:2b:45:2a:80:2f:96:9f:d8:c1:89:e2:22: 2f:7f:2c:ff:a0:bf:bd:fb:96:a7:63:f6:24:22:67: fd:3e:49:3d:10:07:92:2a:5b:99:b9:9a:03:1e:65: 38:70:15:a8:e8:d8:8d:1d:8f:8e:ab:95:13:79:4d: 2c:ef:31:bf:4e:3c:79:77:d2:0d:14:d6:08:92:f9: 55:44:7a:76:92:fb:46:37:25:f7:9a:a0:b0:25:ba: 3e:42:7c:63:0e:a7:1d:f4:8d:61:33:8a:99:b6:0c: ac:68:9a:4e:ad:1e:07:a9:33:f5:07:93:b3:e1:c3: 4a:c2:95:01:87:27:4c:b5:e2:11:62:da:b6:13:83: 20:27:d7:f2:7a:a5:7a:c8:7d:ee:d2:e9:e8:17:22: b3:e3:c2:13:f3:52:cd:65:22:83:d3:3d:31:ee:83: ee:11:ca:16:e5:9f:55:01:50:06:fe:36:fc:cc:cf: e7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A0:75:D4:4B:99:83:62:4A:D4:A4:5A:49:22:28:5D:C2:A4:BC:52 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:97:bd:5e:13:d8:93:62:5b:8a:6d:71:6d:b5:f3:be:19:b1: 72:46:a5:72:94:58:75:fd:69:05:97:b8:2e:50:9d:17:24:e7: ef:12:dd:4a:c0:0a:0d:ed:b2:8f:fe:c6:69:01:21:3e:5b:73: ed:29:2d:0b:11:7c:8b:db:9e:e8:6b:1e:f8:2f:e5:21:fe:2c: e1:4b:cb:86:28:ee:7f:64:a8:1d:62:49:1e:1c:1d:f5:e4:ab: cb:51:05:b8:35:22:e5:cc:3a:23:02:ce:f3:f7:95:41:d9:6e: 3e:bf:e2:a0:ae:c7:d3:a4:bb:1f:95:f9:e8:c1:e3:a4:c0:8b: 1b:da:0f:32:9d:5d:04:cc:10:3f:3d:47:ec:b7:e7:57:63:77: a3:8a:b8:e3:5b:03:28:b0:01:93:be:1b:86:e8:67:c4:aa:37: 08:c8:60:54:b6:b6:8f:3c:ef:f3:1c:bd:ba:b9:4d:66:d4:36: 65:d8:ed:b3:11:19:77:37:fd:21:5f:32:97:e6:dd:11:b5:6b: 37:98:25:7d:d9:cd:62:15:11:02:3a:d5:3b:27:e4:a0:d0:78: 1e:e1:e3:7f:dd:e2:7b:90:e6:ad:05:f4:af:62:f7:8a:42:cf: 35:03:f1:57:ec:f2:72:c4:a0:76:e9:72:8d:32:5b:ad:16:b3: 5e:90:c2:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUwNTE0MTkxNjEwWhcNMjUwNTIxMTkxNjEwWjAYMRYwFAYD VQQDEw02ODI0ZWJmYi1iOWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqw3OOWJlPWKlwX4jsNRHGJlvAzgm8E/XbHLRz2ZusLHbiIG6+XEYAF1N3SOI 0PQoG6nUzU0ytim6ad6lE80eWGQz/nede87RtllffSMrRSqAL5af2MGJ4iIvfyz/ oL+9+5anY/YkImf9Pkk9EAeSKluZuZoDHmU4cBWo6NiNHY+Oq5UTeU0s7zG/Tjx5 d9INFNYIkvlVRHp2kvtGNyX3mqCwJbo+QnxjDqcd9I1hM4qZtgysaJpOrR4HqTP1 B5Oz4cNKwpUBhydMteIRYtq2E4MgJ9fyeqV6yH3u0unoFyKz48IT81LNZSKD0z0x 7oPuEcoW5Z9VAVAG/jb8zM/n4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAagddRL mYNiStSkWkkiKF3CpLxSMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOl71eE9iTYluKbXFttfO+GbFyRqVylFh1/WkFl7guUJ0XJOfvEt1K wAoN7bKP/sZpASE+W3PtKS0LEXyL257oax74L+Uh/izhS8uGKO5/ZKgdYkkeHB31 5KvLUQW4NSLlzDojAs7z95VB2W4+v+KgrsfTpLsflfnoweOkwIsb2g8ynV0EzBA/ PUfst+dXY3ejirjjWwMosAGTvhuG6GfEqjcIyGBUtraPPO/zHL26uU1m1DZl2O2z ERl3N/0hXzKX5t0RtWs3mCV92c1iFRECOtU7J+Sg0Hge4eN/3eJ7kOatBfSvYveK Qs81A/FX7PJyxKB26XKNMlutFrNekMKr -----END CERTIFICATE-----Generated at Wed May 14 22:50:32 2025 by rpki-client