$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft File: PX_qy2M6a4KTI7HplE1K-Y3do3I.mft (raw, json) Hash identifier: 84dt/wPj6J9Jv/EmjnvLddw5/K1whl1Yu6hZAyBPyK4= Subject key identifier: FD:B4:B3:AA:EE:8F:3B:79:F0:7A:21:FE:0A:8A:D8:5A:0C:DB:7A:45 Authority key identifier: 3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 Certificate issuer: /CN=A9172BD3/serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft Manifest number: FE Signing time: Sun 11 May 2025 04:01:25 +0000 Manifest this update: Sun 11 May 2025 04:01:24 +0000 Manifest next update: Sun 18 May 2025 04:01:24 +0000 Files and hashes: 1: PX_qy2M6a4KTI7HplE1K-Y3do3I.crl (hash: 5C0ZHMvXO+2auEueO6bD615nB+CM5Ru6R9WyCXLrfYo=) 2: 78321A66068D11EF92608943C4F9AE02.roa (hash: blVnz565/hVxOKVO1xLhYGke1dIuGSft6BcnljQwFaw=) 3: 97F15FD8068D11EF839A3054C4F9AE02.roa (hash: mLl/OI3EV7/JM4Fr1G9RnDxTwZqnfUJgsg+LaOLb7Wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3, serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Validity Not Before: May 11 04:01:24 2025 GMT Not After : May 18 04:01:24 2025 GMT Subject: CN=68202114-3e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e5:0f:a2:ac:17:7e:11:90:01:a5:37:8f:33: 1f:a7:50:ba:85:3f:26:9b:dc:40:11:7a:9d:64:de: 66:82:03:04:72:43:c3:d8:5d:47:3c:79:b4:0f:e5: a0:1b:b4:36:03:df:53:7e:07:42:50:a7:40:39:c4: 46:bd:91:08:86:64:93:da:80:1e:6f:de:e0:02:fe: 21:e4:96:02:e9:9f:40:b5:42:88:80:14:e0:f1:0b: 55:ec:39:9f:11:e2:82:08:63:47:da:9d:c6:09:41: 01:4f:09:63:01:af:80:dd:df:d4:9d:08:79:27:48: f7:45:9e:15:1a:d9:10:12:cd:61:82:9f:10:16:f3: be:ea:7a:db:38:07:fd:49:d3:98:8c:9d:0b:2e:a3: 92:c1:0c:9e:1c:29:8d:55:9e:56:a3:0f:c4:9a:a2: 8f:ea:33:da:a6:dd:d5:86:02:f7:42:e2:19:fd:05: 19:e2:b5:51:e8:fb:b4:ac:d8:80:bb:28:54:4a:50: 2f:a9:19:20:f9:39:17:6b:18:e6:f6:0d:2b:9b:b3: 45:48:53:c1:53:60:cc:02:6b:75:4e:cb:51:83:8b: e8:5a:ff:4a:b9:00:d2:e9:c2:2a:01:64:2b:8a:33: e9:87:d6:ab:65:eb:26:37:59:19:70:02:df:e4:d9: 96:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B4:B3:AA:EE:8F:3B:79:F0:7A:21:FE:0A:8A:D8:5A:0C:DB:7A:45 X509v3 Authority Key Identifier: keyid:3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:11:1a:62:8d:42:62:36:e0:f8:0f:81:f0:eb:70:65:ad:f7: 84:84:c6:b0:e7:01:55:8b:30:6a:29:01:41:55:77:18:dd:44: e5:d4:a3:d1:d4:a3:b6:9d:e2:30:d6:ea:a6:c6:df:08:d4:63: 2c:e5:d2:17:8d:df:38:e3:6b:c4:5d:9d:1f:6f:1a:d3:4b:a5: ec:14:53:4b:c1:6a:6c:56:bf:c0:8c:a5:26:f8:8f:90:6f:a7: 43:83:3c:24:dd:d3:b9:f0:06:2f:9d:35:aa:97:54:89:98:3c: 2c:ef:4d:9a:22:df:aa:54:b1:9a:21:12:fb:cf:0e:dd:e9:9e: 06:3d:b5:3f:90:66:d1:95:1c:cf:f6:64:fb:e8:58:18:e7:5b: d4:ae:18:b9:83:49:6f:36:93:a5:7e:f6:87:5e:0b:6d:74:7a: a2:6b:69:3f:ba:e7:4d:30:46:b0:95:1f:28:12:eb:78:3c:da: 85:75:61:72:07:4b:63:49:0b:b9:28:b6:28:c8:e9:b7:90:4c: 24:45:be:1c:01:d9:42:8f:9f:d1:bc:51:0d:52:e2:61:f9:6b: 7d:59:bf:9b:9e:f0:f1:68:15:07:d2:f8:b8:bf:71:92:70:cd: 65:9d:a0:a8:5d:2f:e5:11:ef:7b:c9:3b:10:d8:62:67:8d:2c: 9f:c8:34:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCRDMxMTAvBgNVBAUTKDNEN0ZFQUNCNjMzQTZCODI5MzIzQjFFOTk0NEQ0QUY5 OEREREEzNzIwHhcNMjUwNTExMDQwMTI0WhcNMjUwNTE4MDQwMTI0WjAYMRYwFAYD VQQDEw02ODIwMjExNC0zZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uUPoqwXfhGQAaU3jzMfp1C6hT8mm9xAEXqdZN5mggMEckPD2F1HPHm0D+Wg G7Q2A99TfgdCUKdAOcRGvZEIhmST2oAeb97gAv4h5JYC6Z9AtUKIgBTg8QtV7Dmf EeKCCGNH2p3GCUEBTwljAa+A3d/UnQh5J0j3RZ4VGtkQEs1hgp8QFvO+6nrbOAf9 SdOYjJ0LLqOSwQyeHCmNVZ5Wow/EmqKP6jPapt3VhgL3QuIZ/QUZ4rVR6Pu0rNiA uyhUSlAvqRkg+TkXaxjm9g0rm7NFSFPBU2DMAmt1TstRg4voWv9KuQDS6cIqAWQr ijPph9arZesmN1kZcALf5NmWowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP20s6ru jzt58Hoh/gqK2FoM23pFMB8GA1UdIwQYMBaAFD1/6stjOmuCkyOx6ZRNSvmN3aNy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkJEMy82NEJGRjE0RUIz RjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0S1RJN0hwbEUxSy1ZM2Rv M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYX3F5Mk02YTRLVEk3SHBsRTFLLVkzZG8zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkJEMy82NEJGRjE0RUIzRjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0 S1RJN0hwbEUxSy1ZM2RvM0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClERpijUJiNuD4D4Hw63BlrfeEhMaw5wFVizBqKQFBVXcY3UTl1KPR 1KO2neIw1uqmxt8I1GMs5dIXjd8442vEXZ0fbxrTS6XsFFNLwWpsVr/AjKUm+I+Q b6dDgzwk3dO58AYvnTWql1SJmDws702aIt+qVLGaIRL7zw7d6Z4GPbU/kGbRlRzP 9mT76FgY51vUrhi5g0lvNpOlfvaHXgttdHqia2k/uudNMEawlR8oEut4PNqFdWFy B0tjSQu5KLYoyOm3kEwkRb4cAdlCj5/RvFENUuJh+Wt9Wb+bnvDxaBUH0vi4v3GS cM1lnaCoXS/lEe97yTsQ2GJnjSyfyDRj -----END CERTIFICATE-----Generated at Tue May 13 02:23:37 2025 by rpki-client