$ rpki-client -vvf rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.mft File: 9yY4deggn7olR_uOOH2AP3WAvtY.mft (raw, json) Hash identifier: fw9wYWICqn7vgahV1CaGqIZ1l7V3gt6cMqxhwnG7994= Subject key identifier: 30:8A:52:22:F0:35:E2:EB:BD:6B:95:20:C3:07:7B:E3:3B:9A:31:53 Authority key identifier: F7:26:38:75:E8:20:9F:BA:25:47:FB:8E:38:7D:80:3F:75:80:BE:D6 Certificate issuer: /CN=A9126AFE/serialNumber=F7263875E8209FBA2547FB8E387D803F7580BED6 Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yY4deggn7olR_uOOH2AP3WAvtY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.mft Manifest number: 060D Signing time: Thu 10 Apr 2025 22:45:54 +0000 Manifest this update: Thu 10 Apr 2025 22:45:53 +0000 Manifest next update: Thu 17 Apr 2025 22:45:53 +0000 Files and hashes: 1: 9yY4deggn7olR_uOOH2AP3WAvtY.crl (hash: vRlvpcsTREDWMQxpz61fSWqzP4kh6y434jWGXo8Cn8U=) 2: B46F501C994D11EBB61C0C71C4F9AE02.roa (hash: OwzCMKJ00AP/4rlFPssRc/a1t58qHPUtNTvkBc1kXsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.crl rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yY4deggn7olR_uOOH2AP3WAvtY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126AFE, serialNumber=F7263875E8209FBA2547FB8E387D803F7580BED6 Validity Not Before: Apr 10 22:45:53 2025 GMT Not After : Apr 17 22:45:53 2025 GMT Subject: CN=67f84a22-cd2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2e:31:a7:b0:e4:31:53:2b:7e:0a:0d:b4:0c: 4b:c6:8f:73:e7:d4:60:6a:cb:29:85:d2:55:c8:a3: 1f:bb:dd:f8:bb:3c:e5:b9:f3:90:6b:4b:19:a4:cb: 0c:4a:97:6a:85:90:1f:54:5d:cc:91:20:65:4b:61: 08:3c:32:9b:84:0e:fd:2f:55:17:19:35:68:e5:7f: 35:5d:3a:c1:ee:bf:d8:f3:15:10:56:a2:27:d4:e9: c3:e4:72:eb:52:60:c1:99:1a:c0:34:fb:78:c1:0d: 5f:25:6c:bf:dc:1b:ff:1c:af:25:81:5d:9b:86:36: e5:b3:25:af:bb:4c:2d:da:2e:46:21:7b:37:51:c5: 9c:26:24:78:fc:8c:86:94:22:34:68:b5:8a:17:6c: ae:49:35:71:6d:66:9c:6b:c8:86:4b:b3:14:ed:f1: 94:e6:c8:5a:74:89:9f:a3:ae:f9:48:f6:9f:a1:13: f9:f1:a1:ab:cd:6f:44:61:08:08:e4:db:77:b9:a8: 01:56:c8:a0:02:02:08:68:20:e5:b2:69:94:ce:c0: c0:10:0e:22:29:73:79:f6:82:d1:e7:d2:da:30:51: 44:f9:b7:ab:7a:8b:75:b5:87:ad:30:3a:3c:76:49: bc:3e:c9:f9:26:21:a9:27:ef:ff:48:6b:4a:fa:1d: 7e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:8A:52:22:F0:35:E2:EB:BD:6B:95:20:C3:07:7B:E3:3B:9A:31:53 X509v3 Authority Key Identifier: keyid:F7:26:38:75:E8:20:9F:BA:25:47:FB:8E:38:7D:80:3F:75:80:BE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yY4deggn7olR_uOOH2AP3WAvtY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126AFE/5827293A994B11EBBF1D696AC4F9AE02/9yY4deggn7olR_uOOH2AP3WAvtY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:5b:d7:85:4d:23:a6:3e:eb:41:98:f2:12:ac:2c:75:aa:0f: 81:0c:1b:e7:8e:3e:70:9c:71:ce:3a:bf:68:85:b0:f3:94:08: 58:43:cc:30:73:80:b5:44:c4:ab:43:1e:54:17:8b:fa:7c:ec: 30:d4:cb:5c:84:1c:bc:07:87:ca:51:6a:99:40:e1:10:ef:3b: 74:da:e1:1b:eb:74:b9:77:53:ff:56:03:44:da:e0:8d:8c:9f: 6f:27:a2:fe:9d:34:4c:ba:b9:e6:7e:ec:64:d9:42:40:c2:36: 48:43:96:71:70:42:6b:d0:2d:2e:86:2c:34:cf:42:71:a2:98: 0a:f2:da:a3:14:4c:d2:fe:36:9a:21:60:97:f2:7c:8b:a9:0e: 07:94:f9:e4:2c:89:3e:68:f0:9a:1d:cc:41:55:3b:dc:cb:35: 5a:66:77:87:50:8b:bb:40:2c:e4:2e:45:5e:59:f0:9f:c3:d2: d0:7e:68:02:ec:50:d6:92:03:fa:0f:96:f6:28:92:86:6b:fa: 82:65:c1:88:a3:6a:a1:95:91:c8:1d:39:b3:c6:b1:a2:d9:81: 76:de:1e:27:e0:a5:5d:5d:cf:5b:84:15:99:82:ab:de:58:da: cf:fa:a0:09:86:9c:c5:97:9b:81:78:24:dc:c0:3c:e8:cd:52: bb:6a:ba:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZBRkUxMTAvBgNVBAUTKEY3MjYzODc1RTgyMDlGQkEyNTQ3RkI4RTM4N0Q4MDNG NzU4MEJFRDYwHhcNMjUwNDEwMjI0NTUzWhcNMjUwNDE3MjI0NTUzWjAYMRYwFAYD VQQDEw02N2Y4NGEyMi1jZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1i4xp7DkMVMrfgoNtAxLxo9z59RgassphdJVyKMfu934uzzlufOQa0sZpMsM SpdqhZAfVF3MkSBlS2EIPDKbhA79L1UXGTVo5X81XTrB7r/Y8xUQVqIn1OnD5HLr UmDBmRrANPt4wQ1fJWy/3Bv/HK8lgV2bhjblsyWvu0wt2i5GIXs3UcWcJiR4/IyG lCI0aLWKF2yuSTVxbWaca8iGS7MU7fGU5shadImfo675SPafoRP58aGrzW9EYQgI 5Nt3uagBVsigAgIIaCDlsmmUzsDAEA4iKXN59oLR59LaMFFE+bereot1tYetMDo8 dkm8Psn5JiGpJ+//SGtK+h1+QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCKUiLw NeLrvWuVIMMHe+M7mjFTMB8GA1UdIwQYMBaAFPcmOHXoIJ+6JUf7jjh9gD91gL7W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkFGRS81ODI3MjkzQTk5 NEIxMUVCQkYxRDY5NkFDNEY5QUUwMi85eVk0ZGVnZ243b2xSX3VPT0gyQVAzV0F2 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5WTRkZWdnbjdvbFJfdU9PSDJBUDNXQXZ0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkFGRS81ODI3MjkzQTk5NEIxMUVCQkYxRDY5NkFDNEY5QUUwMi85eVk0ZGVnZ243 b2xSX3VPT0gyQVAzV0F2dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRW9eFTSOmPutBmPISrCx1qg+BDBvnjj5wnHHOOr9ohbDzlAhYQ8ww c4C1RMSrQx5UF4v6fOww1MtchBy8B4fKUWqZQOEQ7zt02uEb63S5d1P/VgNE2uCN jJ9vJ6L+nTRMurnmfuxk2UJAwjZIQ5ZxcEJr0C0uhiw0z0JxopgK8tqjFEzS/jaa IWCX8nyLqQ4HlPnkLIk+aPCaHcxBVTvcyzVaZneHUIu7QCzkLkVeWfCfw9LQfmgC 7FDWkgP6D5b2KJKGa/qCZcGIo2qhlZHIHTmzxrGi2YF23h4n4KVdXc9bhBWZgqve WNrP+qAJhpzFl5uBeCTcwDzozVK7arpQ -----END CERTIFICATE-----Generated at Sat Apr 12 17:50:24 2025 by rpki-client