$ rpki-client -vvf rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.mft File: PM59J4idCNUwg0kqqJygm2jw5fA.mft (raw, json) Hash identifier: Ek9FUT9xo4yN0rAPGFDCKRl0b2XusKhikrPN7NNJeWk= Subject key identifier: 24:99:1F:F6:24:C3:6F:19:C3:BB:BF:60:96:FC:AC:7D:51:05:35:3E Authority key identifier: 3C:CE:7D:27:88:9D:08:D5:30:83:49:2A:A8:9C:A0:9B:68:F0:E5:F0 Certificate issuer: /CN=A9173161/serialNumber=3CCE7D27889D08D53083492AA89CA09B68F0E5F0 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM59J4idCNUwg0kqqJygm2jw5fA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.mft Manifest number: 38 Signing time: Fri 09 May 2025 06:36:14 +0000 Manifest this update: Fri 09 May 2025 06:36:13 +0000 Manifest next update: Fri 16 May 2025 06:36:13 +0000 Files and hashes: 1: PM59J4idCNUwg0kqqJygm2jw5fA.crl (hash: 9OFnOWsSmxpiL16SJ3eBnbompT5aHacVshhcDRLB2E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.crl rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM59J4idCNUwg0kqqJygm2jw5fA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173161, serialNumber=3CCE7D27889D08D53083492AA89CA09B68F0E5F0 Validity Not Before: May 9 06:36:13 2025 GMT Not After : May 16 06:36:13 2025 GMT Subject: CN=681da25e-9f93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:67:ed:9d:47:a0:0b:29:a5:7d:b3:16:9d: 40:2d:ec:cb:a1:16:5d:ac:bd:4e:bb:39:84:30:b4: 1d:ea:4c:13:27:28:48:d2:0d:4a:a1:9a:16:4c:1e: 4d:f5:3d:ab:a3:8e:1e:e3:d4:98:34:88:2c:0b:d3: 81:19:26:20:06:86:4c:90:9b:7e:f3:8c:cc:b8:2e: ba:93:b1:56:ca:da:39:11:4c:18:95:d2:04:51:8e: c4:ae:55:97:65:a8:2e:5d:c2:42:a7:49:4d:86:9a: ee:ff:8b:95:fb:ff:fc:27:68:7b:51:d0:bc:7c:5d: 16:87:55:70:3e:60:67:f0:58:4c:d0:dd:95:44:c0: c0:34:89:47:08:6a:5b:f3:a4:bf:9a:1b:60:e1:7a: 18:4c:85:c4:1a:e4:a6:72:8f:cc:ee:68:76:37:39: 82:76:2f:78:59:61:92:42:58:47:ed:1d:1d:61:55: 82:6f:ec:7f:b2:d5:90:8b:a7:e5:41:c6:a4:a3:06: d1:98:ec:ce:ac:2a:7d:d9:71:25:40:b6:6a:dc:a0: b8:a1:9c:10:5c:23:e5:21:cb:22:98:fc:ee:d0:b1: 50:1b:dd:46:90:76:4b:bd:66:7d:e0:36:53:3a:8c: 63:ce:93:9e:04:ea:68:46:dc:89:ed:f6:ca:a1:69: 75:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:99:1F:F6:24:C3:6F:19:C3:BB:BF:60:96:FC:AC:7D:51:05:35:3E X509v3 Authority Key Identifier: keyid:3C:CE:7D:27:88:9D:08:D5:30:83:49:2A:A8:9C:A0:9B:68:F0:E5:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM59J4idCNUwg0kqqJygm2jw5fA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:73:52:ee:78:2b:64:4e:e1:8d:10:09:5e:8e:b4:89:8c:8e: 30:8c:37:b8:23:ae:78:fa:bc:8d:ce:45:d4:a3:1d:ec:9e:c4: d9:c3:ca:17:1f:83:df:3b:16:66:11:ef:f0:7c:bf:18:7c:a2: 5d:de:6a:a7:a1:c5:42:f6:14:73:59:0c:ed:73:71:a9:c9:0f: 63:91:2b:a6:b0:c6:5d:f8:8e:0c:b2:fa:e9:9b:1b:8b:88:8f: ef:d7:7a:e9:6e:45:15:17:ee:ab:54:dd:49:f5:40:b7:51:a3: ef:7b:3e:fb:f0:b5:f4:4b:42:0b:9b:f1:bd:3a:a2:9d:06:9e: 0c:89:38:3d:ac:04:5e:a9:07:31:67:77:ce:df:23:bd:a5:64: e0:b5:48:b4:21:f3:98:0b:13:48:d9:0e:81:a6:0e:0e:2a:09: d6:c6:f1:d6:19:81:94:b2:f9:17:bd:3e:6f:05:20:f9:48:0f: 63:6f:a6:33:a6:99:b6:66:f6:84:c2:6a:86:96:8e:5f:bd:2a: 32:74:5c:2d:18:ad:5f:a6:f1:d2:c1:f7:de:8f:16:c9:87:db: a4:4a:11:49:e7:a8:89:a5:50:62:59:66:f3:3b:e9:d8:9b:34: 11:7d:eb:18:62:d9:bb:4e:b5:cb:fa:45:d5:a0:86:ba:34:6f: 11:3f:72:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzE2MTExMC8GA1UEBRMoM0NDRTdEMjc4ODlEMDhENTMwODM0OTJBQTg5Q0EwOUI2 OEYwRTVGMDAeFw0yNTA1MDkwNjM2MTNaFw0yNTA1MTYwNjM2MTNaMBgxFjAUBgNV BAMTDTY4MWRhMjVlLTlmOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9XGftnUegCymlfbMWnUAt7MuhFl2svU67OYQwtB3qTBMnKEjSDUqhmhZMHk31 Paujjh7j1Jg0iCwL04EZJiAGhkyQm37zjMy4LrqTsVbK2jkRTBiV0gRRjsSuVZdl qC5dwkKnSU2Gmu7/i5X7//wnaHtR0Lx8XRaHVXA+YGfwWEzQ3ZVEwMA0iUcIalvz pL+aG2DhehhMhcQa5KZyj8zuaHY3OYJ2L3hZYZJCWEftHR1hVYJv7H+y1ZCLp+VB xqSjBtGY7M6sKn3ZcSVAtmrcoLihnBBcI+UhyyKY/O7QsVAb3UaQdku9Zn3gNlM6 jGPOk54E6mhG3Int9sqhaXWZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJJkf9iTD bxnDu79glvysfVEFNT4wHwYDVR0jBBgwFoAUPM59J4idCNUwg0kqqJygm2jw5fAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczMTYxLzc5QjVGQ0Q0RDkw NzExRUZCMjdGNzg1N0M0RjlBRTAyL1BNNTlKNGlkQ05Vd2cwa3FxSnlnbTJqdzVm QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUE01OUo0aWRDTlV3ZzBrcXFKeWdtMmp3NWZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz MTYxLzc5QjVGQ0Q0RDkwNzExRUZCMjdGNzg1N0M0RjlBRTAyL1BNNTlKNGlkQ05V d2cwa3FxSnlnbTJqdzVmQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALVzUu54K2RO4Y0QCV6OtImMjjCMN7gjrnj6vI3ORdSjHeyexNnDyhcf g987FmYR7/B8vxh8ol3eaqehxUL2FHNZDO1zcanJD2ORK6awxl34jgyy+umbG4uI j+/XeuluRRUX7qtU3Un1QLdRo+97PvvwtfRLQgub8b06op0GngyJOD2sBF6pBzFn d87fI72lZOC1SLQh85gLE0jZDoGmDg4qCdbG8dYZgZSy+Re9Pm8FIPlID2NvpjOm mbZm9oTCaoaWjl+9KjJ0XC0YrV+m8dLB996PFsmH26RKEUnnqImlUGJZZvM76dib NBF96xhi2btOtcv6RdWghro0bxE/cnc= -----END CERTIFICATE-----Generated at Sun May 11 01:13:24 2025 by rpki-client