$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft File: s9da4ezu9vkr0X0MSzZRjVvndvE.mft (raw, json) Hash identifier: iJlOsIUT8AxIFlSG9dRUJEqPSIrNuBsxV/mZuCGclGI= Subject key identifier: 56:DE:12:A4:05:51:22:0E:9C:FB:A1:84:71:B3:82:4F:B8:3E:68:52 Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft Manifest number: B2 Signing time: Sat 05 Apr 2025 05:20:22 +0000 Manifest this update: Sat 05 Apr 2025 05:20:21 +0000 Manifest next update: Sat 12 Apr 2025 05:20:21 +0000 Files and hashes: 1: s9da4ezu9vkr0X0MSzZRjVvndvE.crl (hash: C0PVc4DMx5v5rJAelXIhQAMuFbhAE1Hab+JDyN72ZM8=) 2: 7E15FE0C27B711EF8867AA49C4F9AE02.roa (hash: bkjGd2fWeRuAi3rbmd0l8StmCAy/JWREckf9XTM50O8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA Validity Not Before: Apr 5 05:20:21 2025 GMT Not After : Apr 12 05:20:21 2025 GMT Subject: CN=67f0bd96-293a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:20:ed:7a:fa:a5:c8:b8:b0:04:ec:53:4f:26: 3a:11:3a:40:a7:a8:92:8f:7f:21:aa:f7:2d:2c:25: 30:55:cc:3d:24:83:b4:64:fc:b4:77:dc:1e:c4:31: a7:4e:01:ef:b7:44:4a:f6:a1:7d:08:0f:5f:df:12: e9:06:6a:eb:63:7c:42:99:3c:e1:60:6f:4f:57:34: ef:38:ec:05:20:4b:e9:e1:a8:00:24:93:58:0a:b9: ad:2f:69:fe:f1:c0:f0:55:66:6e:1d:6d:ff:86:92: 5d:b8:85:17:46:80:d5:e7:00:e3:49:b5:c4:4d:58: ef:d0:4d:cb:2d:e5:e3:4d:70:c3:1f:81:9f:79:82: b3:57:d4:94:17:5b:bf:27:7b:46:4c:d0:71:38:d0: b7:04:b7:a9:c5:b4:df:2b:b4:06:9e:1a:8f:f8:f1: 39:06:46:fe:f8:da:08:d4:0b:5c:56:55:08:2f:98: 54:f6:c1:69:a4:c6:f2:68:04:ab:6d:5b:11:64:6a: 53:d9:87:6e:ef:f0:1b:ba:11:19:4a:db:dd:ef:e1: da:81:d1:fe:53:19:5c:2f:89:1d:f9:70:91:b0:00: 87:20:7f:7d:e0:f3:9f:09:5d:dc:9c:30:e8:59:ab: 04:41:cb:48:bb:7c:57:a6:b5:10:71:5b:89:5a:b8: 2c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DE:12:A4:05:51:22:0E:9C:FB:A1:84:71:B3:82:4F:B8:3E:68:52 X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b0:06:18:b8:37:8b:bb:d0:e3:7d:97:e2:3a:99:49:4a:f7: 5c:8f:6f:df:77:19:fb:60:14:cc:be:68:ea:d8:15:69:3f:12: 7d:31:f0:4c:15:7e:bc:03:2d:a5:8e:62:7e:8a:aa:c1:18:6e: bb:3d:20:21:a8:02:18:6a:f5:de:da:22:c1:b3:af:84:58:8d: 6f:e9:8a:a9:61:78:d0:6d:82:01:e4:39:96:03:b2:1f:cf:73: 9b:52:48:28:16:67:64:76:12:b6:98:ce:bb:c7:a9:39:a6:d0: 53:bb:f5:c6:51:b2:b7:92:6d:4d:36:36:38:45:ce:f0:24:6f: b5:6b:39:35:17:9e:da:53:0a:6f:ef:4f:71:91:b3:5a:9e:8b: 58:3e:27:e4:99:d7:82:0b:d0:d8:e9:a2:26:cf:1a:30:41:73: 6b:b9:a5:f8:26:c7:39:58:6e:8c:1f:33:8f:e1:59:66:fe:38: 2e:0d:35:bc:7f:a2:fc:1d:27:0b:0c:60:c5:11:04:a8:db:17: 50:28:09:9d:c0:f9:af:01:5e:a6:ca:08:10:aa:10:72:51:74: f8:15:ef:54:d3:95:7b:2e:70:2c:17:3b:2b:46:3a:e5:0b:f2: 07:c3:0d:c2:46:29:1c:f2:ba:2c:de:d1:29:ec:05:cb:06:c2: 86:0a:db:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKEIzRDc1QUUxRUNFRUY2RjkyQkQxN0QwQzRCMzY1MThE NUJFNzc2RjEwHhcNMjUwNDA1MDUyMDIxWhcNMjUwNDEyMDUyMDIxWjAYMRYwFAYD VQQDEw02N2YwYmQ5Ni0yOTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CDtevqlyLiwBOxTTyY6ETpAp6iSj38hqvctLCUwVcw9JIO0ZPy0d9wexDGn TgHvt0RK9qF9CA9f3xLpBmrrY3xCmTzhYG9PVzTvOOwFIEvp4agAJJNYCrmtL2n+ 8cDwVWZuHW3/hpJduIUXRoDV5wDjSbXETVjv0E3LLeXjTXDDH4GfeYKzV9SUF1u/ J3tGTNBxONC3BLepxbTfK7QGnhqP+PE5Bkb++NoI1AtcVlUIL5hU9sFppMbyaASr bVsRZGpT2Ydu7/AbuhEZStvd7+HagdH+UxlcL4kd+XCRsACHIH994POfCV3cnDDo WasEQctIu3xXprUQcVuJWrgsKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbeEqQF USIOnPuhhHGzgk+4PmhSMB8GA1UdIwQYMBaAFLPXWuHs7vb5K9F9DEs2UY1b53bx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS85RTdDMkNFRTAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2a3IwWDBNU3paUmpWdm5k dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVDQS85RTdDMkNFRTAyNEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2 a3IwWDBNU3paUmpWdm5kdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAasAYYuDeLu9DjfZfiOplJSvdcj2/fdxn7YBTMvmjq2BVpPxJ9MfBM FX68Ay2ljmJ+iqrBGG67PSAhqAIYavXe2iLBs6+EWI1v6YqpYXjQbYIB5DmWA7If z3ObUkgoFmdkdhK2mM67x6k5ptBTu/XGUbK3km1NNjY4Rc7wJG+1azk1F57aUwpv 709xkbNanotYPifkmdeCC9DY6aImzxowQXNruaX4Jsc5WG6MHzOP4Vlm/jguDTW8 f6L8HScLDGDFEQSo2xdQKAmdwPmvAV6myggQqhByUXT4Fe9U05V7LnAsFzsrRjrl C/IHww3CRikc8ros3tEp7AXLBsKGCtvc -----END CERTIFICATE-----Generated at Sat Apr 5 23:47:18 2025 by rpki-client