$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: BRCqhI0n1ra95Lt7Y4HrVMUjp05kac8iaPSsSQVm0tw= Subject key identifier: 64:B8:E0:67:15:C0:80:07:17:A0:64:21:BA:54:33:49:06:34:71:A6 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 348A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 347F Signing time: Wed 14 May 2025 15:14:38 +0000 Manifest this update: Wed 14 May 2025 15:14:37 +0000 Manifest next update: Wed 21 May 2025 15:14:37 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: fZr41O4i8YsKjI37o+aMrm+os9Eb8dRCW9DnbLZ28qc=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13450 (0x348a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: May 14 15:14:37 2025 GMT Not After : May 21 15:14:37 2025 GMT Subject: CN=6824b35d-d89a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cf:f9:3c:2b:47:77:64:22:04:33:c6:79:d7: 6e:fe:2b:be:3a:09:68:5d:b1:93:b6:83:45:b9:a9: 4a:5f:77:86:a1:23:89:e9:e5:c1:07:64:cb:f9:46: af:2d:23:80:6c:f5:fb:ae:2b:b1:da:a1:e4:0e:b3: c1:86:bf:05:e7:71:7d:90:f5:2d:22:5a:8f:9b:5b: 2a:e1:d2:11:d1:28:58:c8:6a:43:92:69:ea:52:b1: 68:6f:44:b0:28:e5:7d:32:94:7d:46:59:ff:b7:7a: f2:37:b9:43:2c:50:ba:e7:34:db:b7:64:95:f0:82: 96:4e:69:03:1d:73:0d:c8:27:aa:42:b2:04:06:c7: e1:c5:18:dc:bf:ce:63:43:03:2a:ad:e0:d4:85:b4: e4:6b:97:ec:e0:e0:e7:e3:52:c0:38:0f:06:30:21: 0f:69:5c:96:c9:d1:f4:24:f2:bf:27:aa:67:57:54: 48:dd:7e:ff:25:31:10:28:5a:bd:e8:a4:22:55:83: a6:21:ff:d4:e9:9d:eb:90:74:ab:93:5f:8a:c2:13: 95:29:b9:07:81:ac:b1:df:20:be:dd:56:cd:0a:a4: fc:fe:d3:ca:8a:77:08:4a:da:16:51:12:f6:3d:aa: 6a:f5:c7:b3:7d:9d:46:24:68:33:e9:cc:1b:9e:d2: 91:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B8:E0:67:15:C0:80:07:17:A0:64:21:BA:54:33:49:06:34:71:A6 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f8:2c:5e:b9:19:5c:b1:38:e0:1e:2e:1a:5d:cd:e0:f4:cd: 84:a8:0c:36:2c:e9:96:9b:4d:4f:06:9d:20:66:b5:3b:5c:61: 0e:18:dc:74:b8:8b:39:e9:99:6b:39:70:af:7f:82:c9:cd:f9: 8c:85:06:82:16:d6:fd:d3:1e:03:e4:98:08:ed:3e:c3:ed:b0: 43:76:a1:89:11:04:94:dc:e4:1e:0e:56:9d:9c:66:0c:92:6d: 88:eb:8c:08:cf:12:20:78:fc:62:8a:e8:79:af:00:77:c6:0a: 64:c0:73:99:2c:29:5b:d8:b5:f3:22:18:7a:71:a4:be:3f:5f: 93:26:b0:ee:4b:f7:da:d8:1b:40:01:c7:8e:6b:c6:82:81:0b: 20:a4:46:a2:c1:26:97:46:ff:74:3e:01:36:44:fe:be:ce:df: b1:b1:e4:6e:07:e1:04:d2:6a:d3:a0:d3:0c:da:73:5f:1f:bf: f9:e6:07:74:93:a7:5c:0c:68:c0:04:9b:69:04:b0:03:48:d3: b6:ac:9c:bf:6a:80:e2:96:3e:7d:f9:c5:12:0b:f4:45:9c:b1: 86:07:37:11:8c:c7:1f:b7:3d:b4:51:74:a9:48:a7:91:79:1e: 21:87:8f:7b:8b:61:c2:14:1a:f2:1e:4a:07:30:5f:c8:0f:e8: 06:e6:c4:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwNTE0MTUxNDM3WhcNMjUwNTIxMTUxNDM3WjAYMRYwFAYD VQQDEw02ODI0YjM1ZC1kODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6c/5PCtHd2QiBDPGeddu/iu+OgloXbGTtoNFualKX3eGoSOJ6eXBB2TL+Uav LSOAbPX7riux2qHkDrPBhr8F53F9kPUtIlqPm1sq4dIR0ShYyGpDkmnqUrFob0Sw KOV9MpR9Rln/t3ryN7lDLFC65zTbt2SV8IKWTmkDHXMNyCeqQrIEBsfhxRjcv85j QwMqreDUhbTka5fs4ODn41LAOA8GMCEPaVyWydH0JPK/J6pnV1RI3X7/JTEQKFq9 6KQiVYOmIf/U6Z3rkHSrk1+KwhOVKbkHgayx3yC+3VbNCqT8/tPKincIStoWURL2 Papq9cezfZ1GJGgz6cwbntKRFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGS44GcV wIAHF6BkIbpUM0kGNHGmMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL+CxeuRlcsTjgHi4aXc3g9M2EqAw2LOmWm01PBp0gZrU7XGEOGNx0 uIs56ZlrOXCvf4LJzfmMhQaCFtb90x4D5JgI7T7D7bBDdqGJEQSU3OQeDladnGYM km2I64wIzxIgePxiiuh5rwB3xgpkwHOZLClb2LXzIhh6caS+P1+TJrDuS/fa2BtA AceOa8aCgQsgpEaiwSaXRv90PgE2RP6+zt+xseRuB+EE0mrToNMM2nNfH7/55gd0 k6dcDGjABJtpBLADSNO2rJy/aoDilj59+cUSC/RFnLGGBzcRjMcftz20UXSpSKeR eR4hh497i2HCFBryHkoHMF/ID+gG5sRR -----END CERTIFICATE-----Generated at Thu May 15 00:40:15 2025 by rpki-client