$ rpki-client -vvf rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft File: tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft (raw, json) Hash identifier: SYHprd7j6s5oNn7LnsHj0U2JBBWCPmaFnjeb8NcS1Y4= Subject key identifier: 6F:8A:6C:D3:74:A4:C7:76:56:CB:B2:9E:34:A1:C9:65:50:C2:58:54 Authority key identifier: B4:83:9F:4F:C3:F8:ED:FC:BD:22:DA:1A:79:9D:86:5A:CF:E0:32:5F Certificate issuer: /CN=A9131181/serialNumber=B4839F4FC3F8EDFCBD22DA1A799D865ACFE0325F Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIOfT8P47fy9ItoaeZ2GWs_gMl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft Manifest number: 08 Signing time: Sat 05 Apr 2025 07:28:53 +0000 Manifest this update: Sat 05 Apr 2025 07:28:53 +0000 Manifest next update: Sat 12 Apr 2025 07:28:53 +0000 Files and hashes: 1: tIOfT8P47fy9ItoaeZ2GWs_gMl8.crl (hash: rbhHSJVqJ6gkACxcASkgVO4rpsYU7/E+PIuGpctktwI=) 2: AD57493E0B7B11F09EB3322EC4F9AE02.roa (hash: OwduiWmYFtEig81kPfdDRhJbko4w3+s4usceEwZWT2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.crl rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIOfT8P47fy9ItoaeZ2GWs_gMl8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131181 Validity Not Before: Apr 5 07:28:53 2025 GMT Not After : Apr 12 07:28:53 2025 GMT Subject: CN=67f0dbb5-dce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:21:f9:3a:ba:e5:af:30:e4:06:86:6d:7f:4d: aa:3c:7b:13:35:66:2e:d3:27:ff:3a:bb:d7:76:7a: 74:5c:c6:d0:a6:31:b2:88:8a:42:59:c6:8f:8b:3e: a5:1d:1e:3f:c5:ca:d1:2b:1c:71:10:71:71:03:22: 03:66:ab:12:94:08:2f:c0:de:22:a9:82:51:54:85: bb:49:2e:a9:fb:b2:76:c9:78:83:9f:d4:3c:b9:6b: a7:b0:93:f8:6b:85:56:aa:90:7f:d1:20:c4:0d:e0: 95:68:4a:23:cd:49:31:cc:58:ff:7a:9c:91:89:37: c7:33:2f:3c:88:b0:f7:6b:f2:c3:a2:22:d9:7c:9c: 33:de:d2:c8:43:34:ef:74:2f:b6:86:ee:7b:c1:c9: f9:25:b6:74:0d:ce:e1:38:21:92:e4:c8:af:8a:1f: ea:99:a0:7a:b4:63:36:90:dd:b4:01:31:69:b5:e0: 5f:7c:ad:2d:12:f3:5a:60:15:25:68:4f:9d:9f:1c: bd:b0:da:a8:62:07:01:0f:14:68:f2:85:76:08:45: 3b:b7:2c:ae:44:bc:15:c0:37:f5:5e:40:d7:03:83: 91:1b:95:65:7d:19:a8:b2:24:2e:c0:99:07:64:3b: 13:0c:c6:fa:95:33:22:12:f3:39:8c:27:b7:a5:65: c2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:8A:6C:D3:74:A4:C7:76:56:CB:B2:9E:34:A1:C9:65:50:C2:58:54 X509v3 Authority Key Identifier: keyid:B4:83:9F:4F:C3:F8:ED:FC:BD:22:DA:1A:79:9D:86:5A:CF:E0:32:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIOfT8P47fy9ItoaeZ2GWs_gMl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131181/AA087F7A0B7911F0BB99ED6AC4F9AE02/tIOfT8P47fy9ItoaeZ2GWs_gMl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:54:14:80:3b:d7:91:b9:b6:e1:d9:91:a3:d0:3e:7b:a6:ce: e8:e6:d3:a2:ac:02:a6:fe:42:99:83:7d:fa:d6:4a:03:af:31: 98:ac:d9:af:94:a3:1d:c7:db:01:03:a7:e5:d8:c3:13:21:77: 6c:bc:9d:72:cd:ae:89:63:8d:db:d6:2b:84:6e:ef:4b:53:94: 7a:9c:87:ff:cf:f6:51:cf:fe:4f:8d:ca:53:2c:53:7a:2d:a3: 5f:e1:a0:db:0f:4e:d1:74:1e:01:22:8f:38:17:35:62:a2:4b: 65:1a:02:9d:85:35:6a:c6:d0:24:d1:df:5a:e9:f7:da:90:80: f0:3b:0e:c7:84:ef:c2:2f:59:b0:79:df:4a:cb:a5:2b:4e:7e: f5:0d:31:6a:4f:1d:4e:89:97:8e:0c:8a:4d:4f:82:5a:15:9f: 6b:c7:c8:0d:74:1a:16:b2:e1:cf:0f:56:11:c4:47:ff:db:48: 99:e7:33:b1:c2:f5:41:1e:7a:31:4b:b6:a0:bb:38:a5:4b:36: 1c:97:2a:e1:6e:02:f9:cd:56:0b:bc:9d:e1:d3:cc:31:67:3a: ca:d9:66:bf:3e:ab:68:a7:9c:1f:31:ca:24:d3:7d:9b:56:b6: c1:d0:65:29:13:e2:6d:d6:ac:70:ef:2a:73:1c:6d:06:1d:3b: 04:cb:63:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTE4MTExMC8GA1UEBRMoQjQ4MzlGNEZDM0Y4RURGQ0JEMjJEQTFBNzk5RDg2NUFD RkUwMzI1RjAeFw0yNTA0MDUwNzI4NTNaFw0yNTA0MTIwNzI4NTNaMBgxFjAUBgNV BAMTDTY3ZjBkYmI1LWRjZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMIfk6uuWvMOQGhm1/Tao8exM1Zi7TJ/86u9d2enRcxtCmMbKIikJZxo+LPqUd Hj/FytErHHEQcXEDIgNmqxKUCC/A3iKpglFUhbtJLqn7snbJeIOf1Dy5a6ewk/hr hVaqkH/RIMQN4JVoSiPNSTHMWP96nJGJN8czLzyIsPdr8sOiItl8nDPe0shDNO90 L7aG7nvByfkltnQNzuE4IZLkyK+KH+qZoHq0YzaQ3bQBMWm14F98rS0S81pgFSVo T52fHL2w2qhiBwEPFGjyhXYIRTu3LK5EvBXAN/VeQNcDg5EblWV9GaiyJC7AmQdk OxMMxvqVMyIS8zmMJ7elZcKhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUb4ps03Sk x3ZWy7KeNKHJZVDCWFQwHwYDVR0jBBgwFoAUtIOfT8P47fy9ItoaeZ2GWs/gMl8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMTgxL0FBMDg3RjdBMEI3 OTExRjBCQjk5RUQ2QUM0RjlBRTAyL3RJT2ZUOFA0N2Z5OUl0b2FlWjJHV3NfZ01s OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdElPZlQ4UDQ3Znk5SXRvYWVaMkdXc19nTWw4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMx MTgxL0FBMDg3RjdBMEI3OTExRjBCQjk5RUQ2QUM0RjlBRTAyL3RJT2ZUOFA0N2Z5 OUl0b2FlWjJHV3NfZ01sOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJRUFIA715G5tuHZkaPQPnumzujm06KsAqb+QpmDffrWSgOvMZis2a+U ox3H2wEDp+XYwxMhd2y8nXLNroljjdvWK4Ru70tTlHqch//P9lHP/k+NylMsU3ot o1/hoNsPTtF0HgEijzgXNWKiS2UaAp2FNWrG0CTR31rp99qQgPA7DseE78IvWbB5 30rLpStOfvUNMWpPHU6Jl44Mik1PgloVn2vHyA10Ghay4c8PVhHER//bSJnnM7HC 9UEeejFLtqC7OKVLNhyXKuFuAvnNVgu8neHTzDFnOsrZZr8+q2innB8xyiTTfZtW tsHQZSkT4m3WrHDvKnMcbQYdOwTLYwc= -----END CERTIFICATE-----Generated at Mon Apr 7 08:51:57 2025 by rpki-client