$ rpki-client -vvf rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft File: tO2w1sy18AyTBDdO6B9eJhrmcck.mft (raw, json) Hash identifier: WXfm6n7Aq8kD15HCGKHjwO4dTE2rh0SFZC+v57UV01U= Subject key identifier: 63:F1:14:6E:00:9A:92:E7:4F:F6:76:24:D3:DB:A0:11:A8:8F:9D:D3 Authority key identifier: B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 Certificate issuer: /CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft Manifest number: 010B Signing time: Sat 29 Mar 2025 04:25:50 +0000 Manifest this update: Sat 29 Mar 2025 04:25:50 +0000 Manifest next update: Sat 05 Apr 2025 04:25:50 +0000 Files and hashes: 1: tO2w1sy18AyTBDdO6B9eJhrmcck.crl (hash: PObysItR5cqyN9zSSDnIzY36SxSjJDeauN0V7PoE6Zw=) 2: 34DED1A2798711EEA7D73423C4F9AE02.roa (hash: SUwPdVpyD78LluiuQbCbX3WP+GiH5YDeeAZtixdrMe0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116AC6 Validity Not Before: Mar 29 04:25:50 2025 GMT Not After : Apr 5 04:25:50 2025 GMT Subject: CN=67e7764e-2a2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ab:eb:c9:1e:3f:9f:f3:b3:04:84:30:03:76: 4d:53:4e:4f:ff:31:e5:c8:3d:e0:78:19:0a:55:60: 6d:71:1e:18:36:79:ca:6e:26:33:bd:c9:90:8f:2c: 13:2a:79:d4:aa:84:77:2c:5a:06:07:58:24:d5:6e: 3f:dd:65:a7:31:25:f0:0d:30:2c:50:33:cf:55:be: 16:00:51:d9:61:16:a3:e7:ab:5c:6e:d8:ff:eb:c5: 9d:82:4b:c3:59:e5:b8:f1:ae:b1:33:9d:22:89:0d: 40:a5:75:be:e1:ed:d0:34:84:b6:f6:1b:82:d0:bf: e2:4d:f2:1f:2f:4d:c6:29:c4:e0:82:f4:77:a7:f0: 08:6f:dc:95:3b:bb:18:20:2f:39:8a:b6:72:ae:ff: 41:8b:9e:ab:a5:f4:03:f8:e6:7a:e1:01:7b:60:61: 0f:a9:a5:da:eb:db:c5:e7:f9:84:a1:b9:ea:40:ce: de:52:f6:99:90:0b:c8:f7:7c:98:a9:f5:4e:bf:6a: ff:20:12:70:50:8f:2c:83:77:45:d8:8d:e2:bc:52: 5e:0b:b5:46:88:2c:ea:f9:86:af:fc:30:e9:b1:f3: 05:b4:1e:0c:40:1f:a8:56:10:d5:92:3d:e6:c3:1a: 03:35:9e:67:1f:7b:76:36:24:6e:7c:ae:b8:3f:63: 8b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F1:14:6E:00:9A:92:E7:4F:F6:76:24:D3:DB:A0:11:A8:8F:9D:D3 X509v3 Authority Key Identifier: keyid:B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:91:a6:94:f4:a2:5a:32:d6:b0:e1:ca:2b:cf:2b:a9:d1:35: 34:c2:59:b1:41:76:7b:08:dc:92:e6:28:d7:e4:66:c0:39:f0: fb:c6:27:ab:14:da:f8:e4:03:fa:23:de:99:0e:0f:1d:c2:b5: f7:44:c2:21:b5:8f:c4:c5:13:af:2e:89:82:75:f7:12:9a:4f: 13:96:7e:ca:d2:02:21:af:c9:5f:36:72:b0:a1:27:66:5e:a4: 8e:de:10:cd:69:e3:89:2d:10:65:10:1e:b4:54:aa:36:51:73: c3:21:3e:ba:0b:62:e7:c8:f5:a1:47:38:47:56:5e:18:70:f1: 23:89:ab:d5:b9:c9:a8:e9:de:f4:af:f6:7e:26:fc:02:56:04: 3a:64:60:31:a8:4d:cf:62:81:ac:a7:39:54:61:72:b8:d5:f4: d9:ce:43:b5:d3:14:51:a8:7d:25:e8:0c:53:6c:d9:d0:a1:7a: b9:2a:4e:a9:bb:63:c5:0c:ac:b7:11:65:b7:2f:54:6a:d9:f5: 46:f2:b2:fb:ed:b3:a4:12:1b:4b:c6:2f:b9:a4:84:91:a7:79: 27:65:80:18:1d:92:b0:0c:f4:bb:fd:ff:19:a9:f8:f0:72:dd: bb:30:7e:3f:54:8d:b0:31:ae:7d:a3:05:dc:95:2f:dd:7c:2c: 92:4d:b1:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZBQzYxMTAvBgNVBAUTKEI0RURCMEQ2Q0NCNUYwMEM5MzA0Mzc0RUU4MUY1RTI2 MUFFNjcxQzkwHhcNMjUwMzI5MDQyNTUwWhcNMjUwNDA1MDQyNTUwWjAYMRYwFAYD VQQDEw02N2U3NzY0ZS0yYTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6vryR4/n/OzBIQwA3ZNU05P/zHlyD3geBkKVWBtcR4YNnnKbiYzvcmQjywT KnnUqoR3LFoGB1gk1W4/3WWnMSXwDTAsUDPPVb4WAFHZYRaj56tcbtj/68WdgkvD WeW48a6xM50iiQ1ApXW+4e3QNIS29huC0L/iTfIfL03GKcTggvR3p/AIb9yVO7sY IC85irZyrv9Bi56rpfQD+OZ64QF7YGEPqaXa69vF5/mEobnqQM7eUvaZkAvI93yY qfVOv2r/IBJwUI8sg3dF2I3ivFJeC7VGiCzq+Yav/DDpsfMFtB4MQB+oVhDVkj3m wxoDNZ5nH3t2NiRufK64P2OLUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPxFG4A mpLnT/Z2JNPboBGoj53TMB8GA1UdIwQYMBaAFLTtsNbMtfAMkwQ3TugfXiYa5nHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkFDNi9BMUI2Q0JFQTc5 N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi90TzJ3MXN5MThBeVRCRGRPNkI5ZUpocm1j Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPMncxc3kxOEF5VEJEZE82QjllSmhybWNjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkFDNi9BMUI2Q0JFQTc5N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi90TzJ3MXN5MThB eVRCRGRPNkI5ZUpocm1jY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCckaaU9KJaMtaw4corzyup0TU0wlmxQXZ7CNyS5ijX5GbAOfD7xier FNr45AP6I96ZDg8dwrX3RMIhtY/ExROvLomCdfcSmk8Tln7K0gIhr8lfNnKwoSdm XqSO3hDNaeOJLRBlEB60VKo2UXPDIT66C2LnyPWhRzhHVl4YcPEjiavVucmo6d70 r/Z+JvwCVgQ6ZGAxqE3PYoGspzlUYXK41fTZzkO10xRRqH0l6AxTbNnQoXq5Kk6p u2PFDKy3EWW3L1Rq2fVG8rL77bOkEhtLxi+5pISRp3knZYAYHZKwDPS7/f8Zqfjw ct27MH4/VI2wMa59owXclS/dfCySTbEJ -----END CERTIFICATE-----Generated at Fri Apr 4 22:14:57 2025 by rpki-client