$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: GZUx8652Uh8QFQ7SN4iqZnxarL9tBxBPQ1EeBJbWzFQ= Subject key identifier: 4D:BD:06:3D:8B:07:9E:45:80:D1:06:5F:90:78:FB:99:85:9B:A4:89 Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 046F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 0449 Signing time: Thu 15 May 2025 00:20:19 +0000 Manifest this update: Thu 15 May 2025 00:20:18 +0000 Manifest next update: Thu 22 May 2025 00:20:18 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: 1GKTkMNI+HerFyQXZaw8RhV5eq4UV7OUPSeHIX4t0os=) 2: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: 264WZ0f5FSYRLcE55bzQKj/lfReOWZZQL9W6/+XrL50=) 3: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: vRD5gvetOl4M72g0Ox/17wn2gRRkZ+MKIO7MmLjvLgg=) 4: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: K/T3wX+b6EJFTbJdX5T/49+xTnSJoc5fKtBw2NmgoBw=) 5: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: MrOehOXflQUhc9W+FdP7kViEOIm0zhC3RKvz9jpM7pY=) 6: 27992F96832811EFA1BAAC4FC4F9AE02.roa (hash: 9hr8e6Q+evY4tAAVgrktH6R5E0K57yFV9RXeFdQNtLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11, serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: May 15 00:20:18 2025 GMT Not After : May 22 00:20:18 2025 GMT Subject: CN=68253342-ffe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e7:69:81:55:c4:47:94:27:74:10:a9:96:77: 31:7b:09:ef:47:4c:67:68:39:ec:21:eb:7f:8b:2b: a2:c0:d8:65:53:aa:e3:cf:91:e3:b6:4a:90:7c:e1: 72:67:4f:6e:67:f4:e2:d2:2a:fe:f8:36:99:7d:13: 2c:b1:b4:03:a5:d6:79:93:e6:be:6c:25:f0:c3:e0: 71:38:c5:81:40:44:f1:6d:3d:21:fe:79:54:02:4d: 9a:32:b0:42:47:f1:86:c5:81:e4:c3:79:9e:a9:e0: 01:bd:e1:aa:81:6c:74:7d:bc:0f:82:e8:fa:ea:75: 8d:7b:3a:90:36:01:96:99:3d:8d:a2:85:9c:05:1f: 37:1b:df:20:e5:67:29:20:94:0a:46:fd:65:ec:f6: bb:1b:ac:21:dc:fe:93:1a:f9:38:61:17:17:24:14: cf:f0:b8:6f:9f:09:13:88:47:97:b3:cd:f9:ed:bc: 59:df:82:38:53:3d:50:a9:44:6b:13:96:03:bf:01: 9b:3a:b4:4e:69:1d:ed:18:9a:13:f3:93:2e:65:72: 61:29:39:99:5d:cd:18:0a:d4:db:9b:64:df:a6:db: af:bc:03:13:98:0a:13:c0:14:80:b0:07:43:ce:c1: ab:dc:6c:90:9d:f1:ac:5d:72:4a:29:b2:26:f2:32: 16:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BD:06:3D:8B:07:9E:45:80:D1:06:5F:90:78:FB:99:85:9B:A4:89 X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:94:0a:8c:b2:1d:51:c2:18:9f:e5:2f:70:b7:98:6d:a3:17: 69:b5:1f:e3:01:29:f5:9b:74:09:70:fc:c1:61:2e:4b:7c:d4: 65:f8:1e:90:cc:2a:41:d1:12:d0:26:0c:0d:ba:63:36:d3:c7: d9:0e:82:32:ec:7c:84:df:10:32:a2:c9:9b:53:bf:53:93:29: ff:e6:10:c8:44:8e:0b:c7:15:f5:1b:ca:5c:4b:be:30:3a:16: 83:e9:0f:b2:13:c9:48:ac:a7:3c:65:e4:b6:56:d5:44:48:1e: cb:76:20:d0:fd:92:9c:1f:66:1f:3c:67:32:06:8b:4c:70:ca: c7:06:67:7e:e6:4b:ba:26:fe:f2:28:b7:91:e9:09:cd:3f:26: 37:0c:5e:e3:43:3c:7d:c9:9f:cd:28:b2:98:6c:f2:27:54:9d: dc:92:ea:95:e6:04:38:4f:73:e5:bc:ef:7d:dc:95:42:bf:7a: b1:95:85:4a:44:bf:42:18:03:19:c4:e7:f4:0a:a5:a1:d2:1e: b2:0d:25:2e:72:23:28:f2:c9:71:1f:0c:52:56:02:ae:73:94: fb:b2:70:73:8f:51:9f:44:d5:f7:da:36:6c:17:27:03:2f:8e: bf:df:64:bf:1b:15:95:6f:e8:4f:ba:21:12:2d:d5:59:a4:14: 48:b3:d6:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjUwNTE1MDAyMDE4WhcNMjUwNTIyMDAyMDE4WjAYMRYwFAYD VQQDEw02ODI1MzM0Mi1mZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+dpgVXER5QndBCplncxewnvR0xnaDnsIet/iyuiwNhlU6rjz5HjtkqQfOFy Z09uZ/Ti0ir++DaZfRMssbQDpdZ5k+a+bCXww+BxOMWBQETxbT0h/nlUAk2aMrBC R/GGxYHkw3meqeABveGqgWx0fbwPguj66nWNezqQNgGWmT2NooWcBR83G98g5Wcp IJQKRv1l7Pa7G6wh3P6TGvk4YRcXJBTP8LhvnwkTiEeXs8357bxZ34I4Uz1QqURr E5YDvwGbOrROaR3tGJoT85MuZXJhKTmZXc0YCtTbm2TfptuvvAMTmAoTwBSAsAdD zsGr3GyQnfGsXXJKKbIm8jIW+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE29Bj2L B55FgNEGX5B4+5mFm6SJMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADlAqMsh1Rwhif5S9wt5htoxdptR/jASn1m3QJcPzBYS5LfNRl+B6Q zCpB0RLQJgwNumM208fZDoIy7HyE3xAyosmbU79Tkyn/5hDIRI4LxxX1G8pcS74w OhaD6Q+yE8lIrKc8ZeS2VtVESB7LdiDQ/ZKcH2YfPGcyBotMcMrHBmd+5ku6Jv7y KLeR6QnNPyY3DF7jQzx9yZ/NKLKYbPInVJ3ckuqV5gQ4T3PlvO993JVCv3qxlYVK RL9CGAMZxOf0CqWh0h6yDSUuciMo8slxHwxSVgKuc5T7snBzj1GfRNX32jZsFycD L46/32S/GxWVb+hPuiESLdVZpBRIs9Zh -----END CERTIFICATE-----Generated at Fri May 16 21:43:32 2025 by rpki-client