$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: vJxmowebtrp/4bKwRixV4heNtO7xYx27VFP758ntUb4= Subject key identifier: F1:6E:8E:19:16:0B:4C:A8:27:E0:32:91:99:D7:48:21:60:9C:62:DF Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 04CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 04C9 Signing time: Sat 10 May 2025 23:24:22 +0000 Manifest this update: Sat 10 May 2025 23:24:21 +0000 Manifest next update: Sat 17 May 2025 23:24:21 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: bhmvShSFp+AgkQSYnh2gCcD2x+qObDDG2Nfk36O9xaY=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1230 (0x4ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: May 10 23:24:21 2025 GMT Not After : May 17 23:24:21 2025 GMT Subject: CN=681fe026-dff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c9:79:9d:1b:8e:70:2f:0c:24:71:5d:3d:0a: 0a:bb:42:96:0f:cb:57:f1:84:48:ef:ec:c0:93:76: 72:e2:1d:5a:db:1a:ba:bd:d0:04:09:98:98:a4:b2: 36:ef:1c:47:1e:6c:9d:b9:06:0b:44:26:de:55:27: 12:a7:a2:5c:79:36:19:03:28:d3:b4:cd:a8:cb:69: 51:62:01:b0:4c:cc:52:2f:ec:3e:90:95:ee:bb:0f: ae:84:66:5b:d5:e4:60:dc:55:f1:f0:3e:56:cd:39: 70:8a:81:04:e2:8b:13:98:8b:73:7b:4d:71:35:4b: 8a:16:7c:05:bb:54:30:ea:b7:ee:57:82:ab:3d:63: 25:c3:95:b4:8b:11:6d:6d:25:dc:a7:b5:fa:fa:39: df:c5:4c:94:76:e2:13:6d:ab:29:aa:46:30:04:c0: 72:42:1d:aa:85:0c:74:a9:22:37:fc:32:db:e0:63: c7:28:5a:7f:6e:d5:72:a8:54:aa:8b:bb:73:84:09: 79:f1:83:7f:b3:1a:1b:dd:cb:d1:b5:8a:d9:9a:53: 61:ef:a5:3e:af:65:31:a2:fe:16:ab:bb:22:7f:6b: 45:f3:e0:69:58:b9:22:35:51:7c:b9:12:2b:9c:45: f0:5b:68:04:5b:90:5a:a8:ba:16:f2:d1:91:a2:07: 0e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6E:8E:19:16:0B:4C:A8:27:E0:32:91:99:D7:48:21:60:9C:62:DF X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:cd:36:ce:ad:9b:46:c2:67:11:70:42:85:a1:7c:7c:24:b0: b4:1d:b2:0c:dc:6c:65:d7:c9:55:c4:f9:c6:68:01:28:92:8c: af:ec:af:69:44:96:95:db:f1:b7:92:0e:a1:89:1c:56:47:13: bf:04:b8:0b:a4:43:a9:05:e7:44:94:18:d7:b6:c1:a8:69:9b: 73:73:b4:b2:43:b1:4b:56:82:ce:39:90:b8:b3:e9:d1:a5:f6: d9:eb:6a:58:35:21:6c:12:51:9a:d7:72:cf:66:21:f8:0b:8a: 49:bc:ca:13:e6:15:97:55:a8:80:de:22:5d:6d:3c:88:fc:9f: f5:2c:4b:92:73:32:b6:ed:cd:5c:06:b0:40:ea:c2:ce:39:4c: a3:22:07:31:a5:69:60:96:2c:6e:de:bb:d7:75:01:8c:77:47: 0f:ff:1d:7b:8a:cd:7d:0d:b3:9c:1c:92:9b:48:ef:5b:58:07: d2:d9:23:92:ae:6c:6f:39:51:c0:eb:20:63:88:02:d6:ec:86: 17:57:c5:0e:9c:2f:b9:82:cb:7f:3d:a9:be:cc:fa:6c:67:c6: 70:d6:21:2a:ef:89:5e:d9:8d:b7:22:95:29:26:01:ee:f4:13: 54:ec:ef:07:5c:1b:cc:b0:83:52:85:54:e3:4f:a5:c7:ab:39: c6:37:53:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUwNTEwMjMyNDIxWhcNMjUwNTE3MjMyNDIxWjAYMRYwFAYD VQQDEw02ODFmZTAyNi1kZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMl5nRuOcC8MJHFdPQoKu0KWD8tX8YRI7+zAk3Zy4h1a2xq6vdAECZiYpLI2 7xxHHmyduQYLRCbeVScSp6JceTYZAyjTtM2oy2lRYgGwTMxSL+w+kJXuuw+uhGZb 1eRg3FXx8D5WzTlwioEE4osTmItze01xNUuKFnwFu1Qw6rfuV4KrPWMlw5W0ixFt bSXcp7X6+jnfxUyUduITbaspqkYwBMByQh2qhQx0qSI3/DLb4GPHKFp/btVyqFSq i7tzhAl58YN/sxob3cvRtYrZmlNh76U+r2Uxov4Wq7sif2tF8+BpWLkiNVF8uRIr nEXwW2gEW5BaqLoW8tGRogcO2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFujhkW C0yoJ+AykZnXSCFgnGLfMB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqzTbOrZtGwmcRcEKFoXx8JLC0HbIM3Gxl18lVxPnGaAEokoyv7K9p RJaV2/G3kg6hiRxWRxO/BLgLpEOpBedElBjXtsGoaZtzc7SyQ7FLVoLOOZC4s+nR pfbZ62pYNSFsElGa13LPZiH4C4pJvMoT5hWXVaiA3iJdbTyI/J/1LEuSczK27c1c BrBA6sLOOUyjIgcxpWlglixu3rvXdQGMd0cP/x17is19DbOcHJKbSO9bWAfS2SOS rmxvOVHA6yBjiALW7IYXV8UOnC+5gst/Pam+zPpsZ8Zw1iEq74le2Y23IpUpJgHu 9BNU7O8HXBvMsINShVTjT6XHqznGN1PE -----END CERTIFICATE-----Generated at Sun May 11 18:56:55 2025 by rpki-client