$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: oo72BiMYAczsiGzc3w2QjoJPGjVAni1p49C4iJYLft8= Subject key identifier: AE:78:FD:59:49:01:1E:C3:6D:0C:0C:79:42:88:9C:93:98:52:D1:71 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 0488 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 0482 Signing time: Thu 15 May 2025 00:05:50 +0000 Manifest this update: Thu 15 May 2025 00:05:49 +0000 Manifest next update: Thu 22 May 2025 00:05:49 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: bsz59NvSTGETs0DoS+9GwJ+YJXy8m+hc+Vnz46FmhHI=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: May 15 00:05:49 2025 GMT Not After : May 22 00:05:49 2025 GMT Subject: CN=68252fde-3e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6b:c4:06:33:20:73:20:d9:70:e8:a5:09:b7: 68:97:87:a7:df:6e:29:86:1b:38:5a:0a:c3:e2:79: e6:60:0d:2f:be:69:fe:34:19:27:b4:70:38:91:55: d2:c3:45:88:98:66:61:3b:1b:90:bd:d3:7f:47:b8: 13:38:8f:8c:be:1d:52:67:b1:ec:fd:b3:ef:16:a8: 0b:78:73:7f:01:77:49:60:42:21:f2:f0:50:e8:1b: 7b:07:47:2e:b8:28:d9:20:5e:ba:50:65:6e:17:8b: 3c:df:b3:32:84:20:70:4a:e8:91:31:c6:99:0e:59: 34:70:dc:93:f6:96:b9:e3:23:90:e3:0f:5d:70:98: 4c:8d:80:af:c9:51:9f:fb:e3:6c:0d:84:f7:17:63: 2e:29:41:85:55:32:1b:26:2d:b5:44:c3:d5:7d:c6: a3:c9:36:96:47:63:c7:32:17:20:a5:6f:d1:52:fb: 87:b4:19:ff:12:65:c2:34:23:bd:7f:0f:a8:95:6f: 46:69:4f:eb:d9:4a:5b:cd:c6:ef:91:c5:43:99:93: ae:15:93:d4:66:65:33:78:96:f7:06:2d:0a:c7:bf: 53:fa:75:22:6c:4d:b5:75:95:46:4c:e3:4a:ed:3b: 24:e1:0b:6e:8b:32:f5:bc:47:93:bb:eb:2d:45:bb: 07:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:78:FD:59:49:01:1E:C3:6D:0C:0C:79:42:88:9C:93:98:52:D1:71 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:74:ba:a0:33:a3:28:a4:d7:8b:0a:38:77:30:98:2d:c3:60: a4:74:9d:67:26:42:66:d0:12:7f:82:64:6e:40:4f:fe:17:8b: 70:45:c6:b1:fe:8b:32:61:28:bb:c7:b5:d5:da:3a:d7:91:64: ea:81:70:f7:b9:af:5a:37:38:0f:10:2c:f8:03:92:7e:07:3b: 55:73:de:67:ee:ec:0e:8f:46:3a:c7:63:00:f3:a6:aa:e9:23: 87:b7:a5:e2:65:aa:35:5f:04:7d:b4:ce:2d:8f:11:3f:7d:bb: 18:ad:77:85:b6:35:ea:ea:8a:27:fe:14:33:37:9f:d8:18:b6: 6d:3c:c4:87:af:db:4b:3c:8d:e7:95:6c:82:be:33:d5:82:5e: 54:a4:25:40:3e:af:f8:ff:ed:4a:2a:e8:d0:85:0f:b2:9d:bc: 42:d6:72:98:e3:3d:e0:29:f8:82:6a:dc:34:8f:02:39:57:e7: b6:e8:09:b4:36:05:b4:e0:15:bf:98:9a:e5:ef:ea:2a:a7:cf: 6a:40:ad:37:63:8c:5a:12:ee:ee:c6:5f:7e:c5:a0:a6:e4:1f: dd:18:6e:59:06:68:0d:70:ac:69:51:98:c6:03:44:a5:8c:1c: f4:9a:5b:99:60:0b:ca:e4:db:8d:ff:74:94:60:43:ec:91:22: 1c:0c:3a:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUwNTE1MDAwNTQ5WhcNMjUwNTIyMDAwNTQ5WjAYMRYwFAYD VQQDEw02ODI1MmZkZS0zZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WvEBjMgcyDZcOilCbdol4en324phhs4WgrD4nnmYA0vvmn+NBkntHA4kVXS w0WImGZhOxuQvdN/R7gTOI+Mvh1SZ7Hs/bPvFqgLeHN/AXdJYEIh8vBQ6Bt7B0cu uCjZIF66UGVuF4s837MyhCBwSuiRMcaZDlk0cNyT9pa54yOQ4w9dcJhMjYCvyVGf ++NsDYT3F2MuKUGFVTIbJi21RMPVfcajyTaWR2PHMhcgpW/RUvuHtBn/EmXCNCO9 fw+olW9GaU/r2UpbzcbvkcVDmZOuFZPUZmUzeJb3Bi0Kx79T+nUibE21dZVGTONK 7Tsk4QtuizL1vEeTu+stRbsHwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK54/VlJ AR7DbQwMeUKInJOYUtFxMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8dLqgM6MopNeLCjh3MJgtw2CkdJ1nJkJm0BJ/gmRuQE/+F4twRcax /osyYSi7x7XV2jrXkWTqgXD3ua9aNzgPECz4A5J+BztVc95n7uwOj0Y6x2MA86aq 6SOHt6XiZao1XwR9tM4tjxE/fbsYrXeFtjXq6oon/hQzN5/YGLZtPMSHr9tLPI3n lWyCvjPVgl5UpCVAPq/4/+1KKujQhQ+ynbxC1nKY4z3gKfiCatw0jwI5V+e26Am0 NgW04BW/mJrl7+oqp89qQK03Y4xaEu7uxl9+xaCm5B/dGG5ZBmgNcKxpUZjGA0Sl jBz0mluZYAvK5NuN/3SUYEPskSIcDDos -----END CERTIFICATE-----Generated at Thu May 15 03:48:33 2025 by rpki-client