$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: G3LUY0xDm5r394eNbiINEqY9cLHmrTdBXP9Qkc0/p8E= Subject key identifier: C7:D8:20:9E:A3:D8:09:A6:4E:5B:AE:A2:DB:6A:68:22:37:12:D7:05 Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: 8A Signing time: Thu 15 May 2025 05:49:25 +0000 Manifest this update: Thu 15 May 2025 05:49:24 +0000 Manifest next update: Thu 22 May 2025 05:49:24 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: zKQ9KkMV9sBBhAhHXEszuHvmFeaBs4HQXg0xokt9WD4=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: hIohGLAEr9r6SYuLg+aGzwQmujzK2d8ao66pEwxDxz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: May 15 05:49:24 2025 GMT Not After : May 22 05:49:24 2025 GMT Subject: CN=68258064-55ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e3:75:29:c5:67:4d:36:88:f5:ec:f5:2c:7c: 5f:17:05:ee:81:1e:08:19:c5:a4:5c:d9:a6:6e:3d: 39:be:48:f9:db:ec:94:a9:29:5b:67:89:ad:90:54: fd:0b:9c:b1:ea:53:d8:c9:80:3d:62:14:09:19:01: c0:59:47:4a:4d:e6:b6:75:af:06:95:c1:d8:71:f0: c8:8b:e4:c4:23:05:d1:c4:5a:b4:69:40:d7:3f:35: 79:dc:16:cc:33:35:1c:2d:83:37:e7:10:d5:c6:14: 0e:a5:37:a9:ab:86:0c:4e:b4:da:19:40:0c:b2:92: ac:ba:51:cb:fb:a3:6d:76:62:d1:52:8b:67:2e:cc: 11:84:de:6a:55:fb:22:9c:fa:36:8e:95:d3:f2:0e: 05:1d:c7:d6:b8:28:18:9a:4d:45:b2:5d:88:49:46: 5c:c3:92:45:49:1d:b4:f0:6c:48:8a:75:af:6e:02: 7e:53:b5:ea:03:2c:ab:40:3e:09:b0:c4:58:a1:28: a3:f4:f8:85:eb:c3:df:1a:5e:65:25:23:54:94:ce: ae:51:b1:8a:74:51:ac:e4:f0:90:b6:71:7d:d9:c8: b5:90:67:49:3d:9a:9d:97:93:6e:17:bc:0f:98:07: b7:4c:d1:a6:d0:e0:c7:9e:a2:96:29:18:46:cd:dc: 41:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D8:20:9E:A3:D8:09:A6:4E:5B:AE:A2:DB:6A:68:22:37:12:D7:05 X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:0e:65:5e:52:57:e0:ce:69:43:0c:80:c1:be:38:73:9a:44: 9a:d2:27:2b:9e:bf:0c:3c:1e:03:b9:8e:0e:b5:bd:f4:dc:cd: 8e:a4:64:86:d2:2b:0e:4b:54:85:e0:e7:c0:01:05:02:ac:43: 5f:5a:2d:2b:43:78:79:05:5e:21:7d:9f:84:e2:ef:6a:09:ed: db:2d:85:ad:03:16:ae:cd:53:0b:78:40:3a:47:1d:ff:0c:d9: 35:78:f9:2a:f3:5b:70:e7:6b:84:ce:6e:00:9f:75:9b:74:76: 30:76:9d:c1:51:de:e0:85:ce:a5:1c:6c:59:8b:a9:06:89:7f: e7:90:79:51:4a:07:7c:c5:b8:1c:1d:27:b3:4b:db:1d:67:18: 7a:e2:15:54:21:00:f2:9a:96:0b:08:95:20:c1:44:a0:41:f5: c5:81:d2:2f:14:6d:c6:93:a4:f3:a4:7a:da:03:29:e8:55:53: 36:cb:4e:73:16:29:f3:f3:55:78:55:42:91:a0:04:49:c1:12: 43:74:f0:f6:f7:2f:96:ac:69:b2:0c:da:46:51:a7:ed:e3:c2: 9d:db:29:46:cc:93:11:c6:14:70:6c:6f:f3:61:90:17:fa:10: a0:d9:3d:f1:b7:96:59:2c:34:dc:af:df:ab:03:a3:45:8a:5e: 7e:2d:d2:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0 OTE3NThGMkIwHhcNMjUwNTE1MDU0OTI0WhcNMjUwNTIyMDU0OTI0WjAYMRYwFAYD VQQDEw02ODI1ODA2NC01NWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneN1KcVnTTaI9ez1LHxfFwXugR4IGcWkXNmmbj05vkj52+yUqSlbZ4mtkFT9 C5yx6lPYyYA9YhQJGQHAWUdKTea2da8GlcHYcfDIi+TEIwXRxFq0aUDXPzV53BbM MzUcLYM35xDVxhQOpTepq4YMTrTaGUAMspKsulHL+6NtdmLRUotnLswRhN5qVfsi nPo2jpXT8g4FHcfWuCgYmk1Fsl2ISUZcw5JFSR208GxIinWvbgJ+U7XqAyyrQD4J sMRYoSij9PiF68PfGl5lJSNUlM6uUbGKdFGs5PCQtnF92ci1kGdJPZqdl5NuF7wP mAe3TNGm0ODHnqKWKRhGzdxBJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfYIJ6j 2AmmTluuottqaCI3EtcFMB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw WWt5bUExU0tQakZKRjFqeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTDmVeUlfgzmlDDIDBvjhzmkSa0icrnr8MPB4DuY4Otb303M2OpGSG 0isOS1SF4OfAAQUCrENfWi0rQ3h5BV4hfZ+E4u9qCe3bLYWtAxauzVMLeEA6Rx3/ DNk1ePkq81tw52uEzm4An3WbdHYwdp3BUd7ghc6lHGxZi6kGiX/nkHlRSgd8xbgc HSezS9sdZxh64hVUIQDympYLCJUgwUSgQfXFgdIvFG3Gk6TzpHraAynoVVM2y05z Finz81V4VUKRoARJwRJDdPD29y+WrGmyDNpGUaft48Kd2ylGzJMRxhRwbG/zYZAX +hCg2T3xt5ZZLDTcr9+rA6NFil5+LdLC -----END CERTIFICATE-----Generated at Fri May 16 11:37:08 2025 by rpki-client