$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: OrU5pMklL4Affmlkvip7Ha9RimcyBDoVAPl40YN/s9c= Subject key identifier: 9D:D8:D9:E0:CF:7E:71:0A:E1:B6:91:0B:C6:19:9E:A1:F7:71:17:2D Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2AAA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2A88 Signing time: Sat 10 May 2025 15:32:06 +0000 Manifest this update: Sat 10 May 2025 15:32:05 +0000 Manifest next update: Sat 17 May 2025 15:32:05 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: JaEV7P1ygTr2D36J/993kKgEQGuP7lyGFlbqxw2rWGI=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: h6LaGc6kyZukCUqqYzIxqwzDNG7IrAkyoRHl1/dzGpU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: fvGOEcDamDrvii5lTVdwqyxJJEnDbSq0cSF/6Idf/Qk=) 4: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: tuJy1jz8I76zoSkWOckZshXRuwxgYv1SGerZsew2KCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10922 (0x2aaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: May 10 15:32:05 2025 GMT Not After : May 17 15:32:05 2025 GMT Subject: CN=681f7176-7399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a3:3f:96:df:ae:53:20:7d:a0:57:66:0b:71: a1:0f:e1:db:3f:c1:06:20:d2:50:de:7e:d3:a2:58: eb:4f:32:02:e4:bc:e8:28:89:0f:cd:29:80:49:df: 77:81:5e:21:06:a4:f3:15:e9:a3:f0:2a:9e:db:84: e0:e4:c2:9d:9f:31:49:b1:fb:b6:35:51:ea:e1:65: 17:bf:50:70:bc:57:d0:91:6b:9f:5d:d3:d3:77:7f: b1:a9:ef:99:3e:4f:a8:15:ea:8e:1d:39:87:5a:c3: 6c:e1:65:ad:d9:f2:3a:03:45:b3:7d:1c:53:67:11: 37:ae:c0:84:61:84:5c:95:b3:48:ef:03:36:3f:7c: 4d:6f:7f:73:00:c4:c4:45:69:3d:bc:3f:c0:25:86: 2c:96:75:6f:da:90:79:d3:82:57:23:eb:11:c4:8d: ce:a4:f9:3f:65:14:d1:99:bf:a2:65:71:44:1e:bb: 9d:4a:b6:18:03:40:4e:39:e4:e3:a8:9e:de:f7:5d: 85:35:63:40:e1:90:1d:9d:1b:84:a2:22:c7:a1:dc: 1a:86:71:84:58:ef:57:c6:fd:ab:27:af:9e:63:12: de:05:95:56:3d:7c:85:01:93:c6:a0:62:cf:92:ee: 22:74:c8:0f:e1:f1:09:86:69:e5:58:07:a3:27:cd: d4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D8:D9:E0:CF:7E:71:0A:E1:B6:91:0B:C6:19:9E:A1:F7:71:17:2D X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:7c:f3:10:ac:41:30:8d:a3:64:84:d5:80:9e:ce:a1:fb:e0: 07:76:f1:9e:d7:d8:13:1d:74:6a:89:e9:40:a5:d0:53:3a:12: be:49:60:87:98:69:f3:2e:b6:56:6b:66:1a:b2:dc:92:b6:5a: 9d:3e:30:1f:e3:c2:c9:0d:3b:95:59:db:d3:04:36:38:ff:bb: 1a:04:b5:0f:6e:5c:15:f9:2c:bc:fa:58:65:4f:0f:91:16:7e: 24:b2:75:a2:0b:6e:8d:07:93:dd:65:10:e6:d5:c2:8d:26:fc: 77:f0:54:e8:44:1f:00:b6:0b:2b:e9:df:28:00:36:f6:0b:c9: ef:61:6a:c6:69:7d:d4:aa:f8:4a:41:63:0c:82:68:00:a7:9f: aa:d9:2d:92:7d:dc:fa:99:52:2c:e4:95:ff:42:47:f9:1d:8b: df:cb:0f:8e:13:15:8d:c2:03:72:18:84:9e:2b:93:d1:b5:81: ee:c4:21:20:d8:d5:00:5c:a9:76:f2:75:31:4f:a7:2a:96:cc: 3a:11:f8:a4:bf:f2:65:f3:20:b1:f9:a9:7f:30:d5:4a:7a:f6: 42:1d:cd:6d:b5:23:32:24:a6:dc:c9:26:cf:72:c2:57:58:29: 42:b6:30:e2:93:31:b7:4a:f8:87:66:f8:14:8a:46:a2:05:ce: 54:4a:2d:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUwNTEwMTUzMjA1WhcNMjUwNTE3MTUzMjA1WjAYMRYwFAYD VQQDEw02ODFmNzE3Ni03Mzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKM/lt+uUyB9oFdmC3GhD+HbP8EGINJQ3n7ToljrTzIC5LzoKIkPzSmASd93 gV4hBqTzFemj8Cqe24Tg5MKdnzFJsfu2NVHq4WUXv1BwvFfQkWufXdPTd3+xqe+Z Pk+oFeqOHTmHWsNs4WWt2fI6A0WzfRxTZxE3rsCEYYRclbNI7wM2P3xNb39zAMTE RWk9vD/AJYYslnVv2pB504JXI+sRxI3OpPk/ZRTRmb+iZXFEHrudSrYYA0BOOeTj qJ7e912FNWNA4ZAdnRuEoiLHodwahnGEWO9Xxv2rJ6+eYxLeBZVWPXyFAZPGoGLP ku4idMgP4fEJhmnlWAejJ83U+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3Y2eDP fnEK4baRC8YZnqH3cRctMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADfPMQrEEwjaNkhNWAns6h++AHdvGe19gTHXRqielApdBTOhK+SWCH mGnzLrZWa2YastyStlqdPjAf48LJDTuVWdvTBDY4/7saBLUPblwV+Sy8+lhlTw+R Fn4ksnWiC26NB5PdZRDm1cKNJvx38FToRB8Atgsr6d8oADb2C8nvYWrGaX3UqvhK QWMMgmgAp5+q2S2Sfdz6mVIs5JX/Qkf5HYvfyw+OExWNwgNyGISeK5PRtYHuxCEg 2NUAXKl28nUxT6cqlsw6Efikv/Jl8yCx+al/MNVKevZCHc1ttSMyJKbcySbPcsJX WClCtjDikzG3SviHZvgUikaiBc5USi3D -----END CERTIFICATE-----Generated at Sun May 11 10:27:46 2025 by rpki-client