$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: FeU2+aj2O2yLkiKbZMh7jJTIB4TZZbLv24gsiAbtmks= Subject key identifier: 50:56:AA:C8:A6:C3:18:5B:E8:99:0D:9D:AF:7A:3A:E7:C2:40:F5:58 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 0464 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 045E Signing time: Sun 04 May 2025 23:47:24 +0000 Manifest this update: Sun 04 May 2025 23:47:24 +0000 Manifest next update: Sun 11 May 2025 23:47:24 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: 8UqjHaOq+SfklYW/GEbYP5hyStVCEU00g8ZNwXRFyw8=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: VtnOs46KlpQVSJ9THDVnSS8EzLS3A9xUSm3n/4RNrWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 23:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: May 4 23:47:24 2025 GMT Not After : May 11 23:47:24 2025 GMT Subject: CN=6817fc8c-99f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:59:0a:07:27:3a:b8:01:5b:a5:40:b9:39: bf:39:56:50:ba:e6:a1:91:8b:43:c8:96:97:29:2a: 18:cd:b2:d9:62:a4:87:79:b2:23:69:b8:92:43:48: 46:3b:6f:3e:00:b9:8d:a8:e5:07:85:5c:70:d5:fa: 0d:36:a7:e6:ee:e9:e7:94:bd:32:06:5c:44:11:42: a4:0d:29:a9:28:01:83:3e:37:ea:d1:a9:b6:31:b7: ec:11:1c:0f:9c:65:fd:87:eb:0d:6e:d6:d2:72:7a: 4e:c7:e8:5c:e9:a2:be:5c:0a:be:bf:c2:d6:b4:86: bd:b6:06:ad:e8:09:02:68:5f:56:ea:d9:ae:99:9a: f5:6e:87:97:d6:7c:df:e2:66:39:4d:7f:73:c5:40: 7e:39:94:a1:e9:4a:16:57:65:b8:6b:ee:18:a1:6e: ff:97:a1:f2:fe:a0:08:93:42:66:74:e7:92:bf:56: 62:ac:39:67:76:cd:b5:a8:a3:f4:8d:d1:09:f4:90: 73:89:75:98:bd:40:31:5c:ab:d6:1e:6d:ee:79:4b: dc:82:7d:12:29:33:bd:88:8a:8c:21:37:b4:44:f9: 73:2f:fb:65:af:04:f1:d4:62:c2:95:08:64:ae:b7: 91:53:57:78:75:a0:0f:92:50:44:70:3c:a8:ed:8a: eb:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:56:AA:C8:A6:C3:18:5B:E8:99:0D:9D:AF:7A:3A:E7:C2:40:F5:58 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:97:c1:33:b0:6c:fe:3e:c5:c0:65:86:fa:bb:f3:6d:29:df: a4:dd:90:db:fc:32:7c:ff:ce:eb:66:9d:2a:d1:6d:20:59:37: 57:ce:09:03:05:58:82:0e:51:f6:04:23:f2:e6:d3:56:ba:a2: 19:34:83:b4:5e:88:30:2b:be:be:1e:d4:18:75:02:5a:97:f0: 3b:fc:5a:97:be:b7:bd:84:24:4c:3e:ce:69:d3:e2:f2:af:2f: a2:7c:20:0a:a2:7b:f1:b5:4d:ac:3a:96:85:0f:3d:51:a6:73: 9c:eb:80:14:55:6a:96:39:26:14:55:8d:81:50:8f:bc:a1:bb: 90:7b:35:06:1d:39:00:f6:82:a3:d6:6b:f5:19:d5:d7:66:69: 35:e1:13:eb:06:19:a3:8b:d6:e9:43:2f:48:a2:22:0c:66:fe: a7:f0:06:15:d6:7e:70:dd:8d:4c:24:84:62:c0:7d:a7:58:96: fb:8e:e0:f5:85:c0:5c:b8:bb:1f:f4:19:68:ae:3c:ab:8d:cb: 20:6f:6b:69:6f:47:7e:9d:6e:39:5c:f3:0e:ae:47:78:7f:b0: 3b:04:1c:d0:f8:d1:82:57:2a:fa:01:3f:da:48:ad:3c:af:3d: f4:39:e3:5a:25:5f:e0:49:06:00:4f:0b:1a:fa:af:05:9a:60: 42:35:37:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUwNTA0MjM0NzI0WhcNMjUwNTExMjM0NzI0WjAYMRYwFAYD VQQDEw02ODE3ZmM4Yy05OWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNFZCgcnOrgBW6VAuTm/OVZQuuahkYtDyJaXKSoYzbLZYqSHebIjabiSQ0hG O28+ALmNqOUHhVxw1foNNqfm7unnlL0yBlxEEUKkDSmpKAGDPjfq0am2MbfsERwP nGX9h+sNbtbScnpOx+hc6aK+XAq+v8LWtIa9tgat6AkCaF9W6tmumZr1boeX1nzf 4mY5TX9zxUB+OZSh6UoWV2W4a+4YoW7/l6Hy/qAIk0JmdOeSv1ZirDlnds21qKP0 jdEJ9JBziXWYvUAxXKvWHm3ueUvcgn0SKTO9iIqMITe0RPlzL/tlrwTx1GLClQhk rreRU1d4daAPklBEcDyo7YrrZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBWqsim wxhb6JkNna96OufCQPVYMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9l8EzsGz+PsXAZYb6u/NtKd+k3ZDb/DJ8/87rZp0q0W0gWTdXzgkD BViCDlH2BCPy5tNWuqIZNIO0XogwK76+HtQYdQJal/A7/FqXvre9hCRMPs5p0+Ly ry+ifCAKonvxtU2sOpaFDz1RpnOc64AUVWqWOSYUVY2BUI+8obuQezUGHTkA9oKj 1mv1GdXXZmk14RPrBhmji9bpQy9IoiIMZv6n8AYV1n5w3Y1MJIRiwH2nWJb7juD1 hcBcuLsf9Blorjyrjcsgb2tpb0d+nW45XPMOrkd4f7A7BBzQ+NGCVyr6AT/aSK08 rz30OeNaJV/gSQYATwsa+q8FmmBCNTdM -----END CERTIFICATE-----Generated at Tue May 6 10:27:05 2025 by rpki-client