$ rpki-client -vvf rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft File: pK73BplO997sjIomg0NykQSEsbA.mft (raw, json) Hash identifier: 4NtKNu83c6nuUN4GDd9CA0XK+65O7iAXon60569Q8dk= Subject key identifier: 2D:EE:44:77:7E:A2:6B:A9:A9:9A:0A:38:FF:14:26:A5:38:44:79:D0 Authority key identifier: A4:AE:F7:06:99:4E:F7:DE:EC:8C:8A:26:83:43:72:91:04:84:B1:B0 Certificate issuer: /CN=A9196412/serialNumber=A4AEF706994EF7DEEC8C8A26834372910484B1B0 Certificate serial: 069F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft Manifest number: 0691 Signing time: Sun 04 May 2025 21:56:28 +0000 Manifest this update: Sun 04 May 2025 21:56:28 +0000 Manifest next update: Sun 11 May 2025 21:56:28 +0000 Files and hashes: 1: pK73BplO997sjIomg0NykQSEsbA.crl (hash: HXXo7bH4UsyxZV5gQYiujIqcDq39a5kd1Z3Hiv3xb+4=) 2: 7568D85E731211EBAFF0B481C4F9AE02.roa (hash: 4hu+Ea1WW3aPEC6/j9KPgOfcmbDhbVy01ftALoJDrTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.crl rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 21:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1695 (0x69f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196412, serialNumber=A4AEF706994EF7DEEC8C8A26834372910484B1B0 Validity Not Before: May 4 21:56:28 2025 GMT Not After : May 11 21:56:28 2025 GMT Subject: CN=6817e28c-9c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:95:db:5a:90:21:02:2c:48:e6:ea:b4:07:19: 42:c9:79:f7:c2:8a:df:02:85:86:d4:7e:5d:f4:99: 02:19:ba:a6:7e:f0:ac:35:5f:71:c3:a8:e1:6d:5f: 4c:43:7f:73:7c:c4:a8:ce:b9:4a:6c:60:0e:b0:30: ae:a1:ea:96:50:e4:6e:3a:04:e2:37:15:01:5a:33: 99:13:3c:b9:21:7f:fa:cf:ed:2a:a2:45:96:c1:44: 7b:cf:49:11:dc:a8:7a:28:ed:c7:7d:6b:30:07:49: 67:cf:16:2d:cd:ee:9b:87:a8:ac:7b:12:d3:84:d6: 64:46:a1:a9:f4:97:90:29:f2:3c:d7:46:78:71:ed: c6:50:ab:8f:e1:6d:a3:38:f3:d7:dd:94:03:92:29: b6:c7:52:22:03:34:dd:d9:00:9c:d8:ce:5b:52:e1: b9:f5:13:3f:b6:52:8e:84:b8:6c:a4:12:42:db:8b: a9:c0:47:54:17:3c:f4:b7:1c:b5:22:82:b7:11:92: 43:3c:4a:5c:6f:80:2a:61:5d:3d:f9:34:c5:c2:31: 77:5b:b9:dc:13:35:4e:cb:92:d0:03:09:c1:e6:f8: ca:bf:30:31:00:f2:db:40:63:25:17:9b:c0:27:e4: e0:2f:ec:2d:a2:e2:27:b0:13:d1:ae:37:68:22:47: 94:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EE:44:77:7E:A2:6B:A9:A9:9A:0A:38:FF:14:26:A5:38:44:79:D0 X509v3 Authority Key Identifier: keyid:A4:AE:F7:06:99:4E:F7:DE:EC:8C:8A:26:83:43:72:91:04:84:B1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:32:3a:42:ed:d7:a8:f7:6d:1f:fa:0f:72:89:3e:87:cf:9f: e8:55:f1:4a:9b:fd:a2:ae:05:40:de:f6:25:a0:44:a5:69:82: d0:34:ca:a3:a3:b4:77:1d:ac:28:97:48:7f:d2:0d:27:95:19: 3f:55:84:09:8a:8a:c8:7b:94:ad:cb:9d:e4:3a:f6:29:b8:9a: ae:c1:3a:ee:21:fc:bb:e7:d6:de:dc:ca:5f:35:d7:86:0c:60: 40:39:62:62:ad:52:11:38:9f:d6:e9:7e:2e:72:f9:1f:cf:3d: 25:30:42:ac:6d:71:a6:29:60:c7:8e:2b:49:09:f6:a5:69:1f: 32:91:cf:2c:e9:eb:8d:ee:a5:99:4e:59:36:1a:df:ca:7d:88: 44:48:87:85:6c:be:fd:1a:48:41:c8:87:67:bb:94:3c:8f:f9: 1c:44:e3:03:5d:2d:1b:b8:14:6e:b8:17:91:6e:fc:17:d9:9c: cd:f0:45:ca:f1:c9:61:ed:b8:69:2d:96:0d:fb:d3:34:0f:55: fe:78:57:dc:df:a8:5a:da:70:d0:03:97:21:c4:34:d5:7a:48: 24:9d:16:e7:12:f0:08:7b:fd:7b:f2:80:3a:65:88:af:ee:86: 7a:3a:cb:f8:fd:47:80:d0:5d:76:cc:a1:71:cd:fd:35:e0:8b: 21:cd:12:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0MTIxMTAvBgNVBAUTKEE0QUVGNzA2OTk0RUY3REVFQzhDOEEyNjgzNDM3Mjkx MDQ4NEIxQjAwHhcNMjUwNTA0MjE1NjI4WhcNMjUwNTExMjE1NjI4WjAYMRYwFAYD VQQDEw02ODE3ZTI4Yy05YzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5XbWpAhAixI5uq0BxlCyXn3worfAoWG1H5d9JkCGbqmfvCsNV9xw6jhbV9M Q39zfMSozrlKbGAOsDCuoeqWUORuOgTiNxUBWjOZEzy5IX/6z+0qokWWwUR7z0kR 3Kh6KO3HfWswB0lnzxYtze6bh6isexLThNZkRqGp9JeQKfI810Z4ce3GUKuP4W2j OPPX3ZQDkim2x1IiAzTd2QCc2M5bUuG59RM/tlKOhLhspBJC24upwEdUFzz0txy1 IoK3EZJDPEpcb4AqYV09+TTFwjF3W7ncEzVOy5LQAwnB5vjKvzAxAPLbQGMlF5vA J+TgL+wtouInsBPRrjdoIkeUSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3uRHd+ omupqZoKOP8UJqU4RHnQMB8GA1UdIwQYMBaAFKSu9waZTvfe7IyKJoNDcpEEhLGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjQxMi9BOEQ2NjI0MDZG OUExMUVCOEExM0RGMTdDNEY5QUUwMi9wSzczQnBsTzk5N3NqSW9tZzBOeWtRU0Vz YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BLNzNCcGxPOTk3c2pJb21nME55a1FTRXNiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjQxMi9BOEQ2NjI0MDZGOUExMUVCOEExM0RGMTdDNEY5QUUwMi9wSzczQnBsTzk5 N3NqSW9tZzBOeWtRU0VzYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWMjpC7deo920f+g9yiT6Hz5/oVfFKm/2irgVA3vYloESlaYLQNMqj o7R3Hawol0h/0g0nlRk/VYQJiorIe5Sty53kOvYpuJquwTruIfy759be3MpfNdeG DGBAOWJirVIROJ/W6X4ucvkfzz0lMEKsbXGmKWDHjitJCfalaR8ykc8s6euN7qWZ Tlk2Gt/KfYhESIeFbL79GkhByIdnu5Q8j/kcROMDXS0buBRuuBeRbvwX2ZzN8EXK 8clh7bhpLZYN+9M0D1X+eFfc36ha2nDQA5chxDTVekgknRbnEvAIe/178oA6ZYiv 7oZ6Osv4/UeA0F12zKFxzf014IshzRKW -----END CERTIFICATE-----Generated at Mon May 5 15:16:39 2025 by rpki-client