$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: FsjTuxf8493TusFTG4pmE3VsJgDB16AfDoTz7Qh0l7I= Subject key identifier: DD:96:DA:17:17:98:24:CE:3E:50:9B:90:BE:19:39:CE:29:41:E8:E4 Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: 58 Signing time: Tue 13 May 2025 06:22:06 +0000 Manifest this update: Tue 13 May 2025 06:22:05 +0000 Manifest next update: Tue 20 May 2025 06:22:05 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: DA5Krmrlv0K0H58V6hh1+WfTeVoJmdbYUiv4CG+okr4=) 2: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (hash: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: May 13 06:22:05 2025 GMT Not After : May 20 06:22:05 2025 GMT Subject: CN=6822e50e-820d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:16:eb:fe:7d:54:48:f5:60:3e:84:22:37:fb: 98:9c:44:65:4f:ee:96:aa:8d:62:6a:e2:c7:a6:f1: 9d:bb:de:80:ea:70:1b:88:cd:42:14:49:44:0c:73: 75:19:eb:71:d0:2a:34:38:44:99:5c:b7:8a:53:27: 34:69:c3:2c:47:b2:0f:5d:9c:d7:5d:ce:9d:3c:7f: 15:1f:e8:cc:08:67:f2:19:42:1e:75:93:aa:94:fd: 80:23:81:90:f3:f8:d3:ef:eb:41:aa:15:ca:34:5c: 8d:58:4c:23:0e:08:13:4e:54:b8:5f:c1:a4:a6:6a: b0:76:e6:29:94:50:c0:e8:ff:99:b3:27:e9:57:88: 17:d1:4e:e6:81:27:79:90:f1:09:c3:30:a3:2d:5c: 44:9a:8b:7b:a0:28:3a:80:ae:fa:ec:76:0e:c0:01: 49:68:30:06:3d:0a:18:c1:ff:4a:61:04:86:cd:8b: 50:ee:1d:5b:ee:49:ce:b1:f2:bf:04:52:4a:43:e0: 28:84:b9:75:22:5c:e6:89:46:73:48:fe:f1:ab:f6: 5c:13:fa:46:47:7b:2b:bf:ed:09:e8:e7:3e:9e:7e: bd:17:ed:b0:0f:36:12:0f:8f:a7:51:fe:b9:6f:55: d4:ca:43:b4:48:76:76:ce:eb:4d:98:89:c7:86:24: 5a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:96:DA:17:17:98:24:CE:3E:50:9B:90:BE:19:39:CE:29:41:E8:E4 X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:1c:f9:b6:6f:21:c5:3c:70:5b:49:ba:2f:6e:18:01:30:97: 71:6c:61:a4:df:95:7a:d6:f3:5e:fa:dd:18:c0:a2:0d:24:5f: 90:e5:a0:12:53:c2:d7:5d:0c:8e:de:0d:b6:3d:2a:17:9b:36: 8f:3f:23:1a:da:86:a8:5f:c2:6a:f5:7b:e8:4d:60:0f:84:a9: ab:66:e4:be:64:fb:a1:37:29:67:77:53:29:d6:c4:b8:08:0f: 60:e5:ed:cf:9a:7a:b2:0f:1e:3b:83:70:cf:03:1c:29:6a:37: 4c:16:15:f3:56:a4:84:ad:43:b8:c0:2a:86:4d:45:5d:d7:ff: 88:62:e4:7b:4d:6c:04:ca:63:71:fa:46:e7:1b:82:f5:b1:91: 44:69:24:21:ab:3d:1a:a7:55:14:56:9e:28:60:be:5a:33:cb: 64:6f:dd:4d:7c:01:b1:07:47:ab:d5:f5:b7:fb:a1:01:70:a4: 45:21:ac:54:d0:00:20:e2:b5:ba:94:04:07:a2:4f:82:80:27: 0a:ea:b6:56:d9:8c:0d:ae:88:5d:c8:ac:a6:5d:d5:86:e0:5f: 63:96:29:5d:52:1d:a5:cb:93:fe:54:b0:a4:eb:fe:03:44:0d: 57:b0:67:78:41:4f:fd:66:3c:ad:35:b0:ec:f7:7e:32:60:1f: cc:89:a0:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjE3OTExMC8GA1UEBRMoQTYyM0RDMDVFRTdDMjM3MENBNDQ0MzEwODRERTUxMzIx RjM3QTcwNDAeFw0yNTA1MTMwNjIyMDVaFw0yNTA1MjAwNjIyMDVaMBgxFjAUBgNV BAMTDTY4MjJlNTBlLTgyMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAFuv+fVRI9WA+hCI3+5icRGVP7paqjWJq4sem8Z273oDqcBuIzUIUSUQMc3UZ 63HQKjQ4RJlct4pTJzRpwyxHsg9dnNddzp08fxUf6MwIZ/IZQh51k6qU/YAjgZDz +NPv60GqFco0XI1YTCMOCBNOVLhfwaSmarB25imUUMDo/5mzJ+lXiBfRTuaBJ3mQ 8QnDMKMtXESai3ugKDqArvrsdg7AAUloMAY9ChjB/0phBIbNi1DuHVvuSc6x8r8E UkpD4CiEuXUiXOaJRnNI/vGr9lwT+kZHeyu/7Qno5z6efr0X7bAPNhIPj6dR/rlv VdTKQ7RIdnbO602YiceGJFoPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3ZbaFxeY JM4+UJuQvhk5zilB6OQwHwYDVR0jBBgwFoAUpiPcBe58I3DKREMQhN5RMh83pwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2MTc5LzRCRkQ5QkJDQUE3 QzExRUZBMzNCRkQ3N0M0RjlBRTAyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGlQY0JlNThJM0RLUkVNUWhONVJNaDgzcHdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 MTc5LzRCRkQ5QkJDQUE3QzExRUZBMzNCRkQ3N0M0RjlBRTAyL3BpUGNCZTU4STNE S1JFTVFoTjVSTWg4M3B3US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJQc+bZvIcU8cFtJui9uGAEwl3FsYaTflXrW81763RjAog0kX5DloBJT wtddDI7eDbY9KhebNo8/Ixrahqhfwmr1e+hNYA+Eqatm5L5k+6E3KWd3UynWxLgI D2Dl7c+aerIPHjuDcM8DHClqN0wWFfNWpIStQ7jAKoZNRV3X/4hi5HtNbATKY3H6 RucbgvWxkURpJCGrPRqnVRRWnihgvlozy2Rv3U18AbEHR6vV9bf7oQFwpEUhrFTQ ACDitbqUBAeiT4KAJwrqtlbZjA2uiF3IrKZd1YbgX2OWKV1SHaXLk/5UsKTr/gNE DVewZ3hBT/1mPK01sOz3fjJgH8yJoNM= -----END CERTIFICATE-----Generated at Wed May 14 03:43:22 2025 by rpki-client