$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: ITsJ3rmdSpZX6fFUl5u3b15nbigL+ooT18q++fCL42A= Subject key identifier: 9B:E4:B2:AB:BB:D9:40:B3:CF:B7:CA:AB:9F:C0:2D:6F:2B:42:A8:86 Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 01C2 Signing time: Sat 29 Mar 2025 02:33:35 +0000 Manifest this update: Sat 29 Mar 2025 02:33:35 +0000 Manifest next update: Sat 05 Apr 2025 02:33:35 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: 73XSBvTlFt63oQn/WmzFnSED/DMHca4SFuySWnaFSCc=) 2: 349D4A7AB90A11EF97D24653C4F9AE02.roa (hash: BISS5CmxNxvmt9rFH6DiKF6LgvgQpzJ1qyGwOCZsmrY=) 3: 34386BAAB90A11EF97D24653C4F9AE02.roa (hash: gXomgC3UWF4hRBWpPOIJ1KbjovqaJl+GP7rjTy7IiYk=) 4: 35ADE898B90A11EF97D24653C4F9AE02.roa (hash: /sVqx8q3knVsrGKYvA1MUovYNq+EQPYvWXQlJdzVZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61 Validity Not Before: Mar 29 02:33:35 2025 GMT Not After : Apr 5 02:33:35 2025 GMT Subject: CN=67e75bff-499a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:22:59:9d:64:34:95:92:70:0b:ff:42:d5:4d: b1:3e:d5:7e:2f:19:ee:74:b9:e6:e9:64:ff:ba:e0: 52:f2:36:82:e8:a6:b1:43:60:33:e8:e3:41:c3:00: c6:bf:36:74:2d:a4:25:e0:49:4b:64:8b:cf:0a:ed: a8:5e:17:ff:6c:17:7f:0a:95:57:0f:b4:4d:fd:28: 01:40:0b:17:bb:0b:e0:37:1c:05:3a:16:84:20:06: dc:9d:94:f0:c2:de:fe:82:1b:6e:51:9f:a6:26:96: 12:22:a1:fe:4b:97:13:2a:5f:27:a1:72:98:c1:30: a8:da:bd:de:73:10:9c:09:b5:c0:b2:82:ff:b0:18: 7f:f8:1f:03:e3:fe:ab:31:ff:40:6c:af:79:4d:be: f8:b6:99:5c:59:f5:2e:fd:c6:e8:ee:e7:23:cf:33: 8d:7d:7c:8c:1e:97:ca:25:f5:d2:76:67:a9:c6:ef: d8:00:53:09:45:83:2c:4e:91:72:8b:8d:c0:9c:b8: 4c:51:cc:20:1b:66:d1:6b:ed:d3:44:36:4e:94:b2: ec:c8:8f:05:42:70:8a:57:c7:21:80:e8:28:62:48: 82:16:a5:6a:18:01:a6:c5:32:2b:38:a2:1d:f3:de: 84:4e:f4:84:4d:fb:9d:c4:76:34:3b:67:13:c6:8c: a9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E4:B2:AB:BB:D9:40:B3:CF:B7:CA:AB:9F:C0:2D:6F:2B:42:A8:86 X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:2f:35:94:f3:1a:ac:e1:6e:0e:67:47:81:ce:7a:61:55:df: 07:16:23:d1:f0:d1:6b:a4:02:9b:15:68:51:3f:54:6b:26:a9: 16:6c:18:10:d3:3a:aa:bb:4b:5e:65:a2:0f:a2:6c:78:60:c3: 54:3d:bb:5e:13:f8:67:48:d3:94:62:01:fb:2d:6d:f8:20:cf: 1e:79:f4:fe:bf:06:10:72:d1:e2:d8:2a:f4:45:30:8c:d8:75: ff:b6:12:24:98:36:7a:12:86:ed:f2:b9:91:98:f2:2e:aa:a8: c3:f1:49:bb:45:cd:6c:1e:93:56:32:85:d3:cf:9b:a1:7a:31: ce:05:16:18:f8:21:d0:d7:26:d3:96:0a:7f:6d:7a:1d:e5:15: fb:ec:58:d8:98:6e:d3:fe:2f:80:04:7f:c2:0e:59:4d:3c:78: d6:19:9f:d2:59:2b:05:8f:86:af:1c:a6:0d:17:74:80:b7:d9: 54:e8:f9:ba:80:92:22:13:35:a1:9a:0d:e9:bf:50:59:23:52: f0:07:e6:57:54:ef:06:35:23:46:a1:7e:28:93:7b:08:73:ff: 4b:65:f2:77:42:ac:5c:b8:2d:0a:02:36:29:07:22:12:2e:1d: 05:e3:cf:dc:54:c3:0b:a3:69:34:89:81:bd:a9:f8:37:97:00: bd:3a:c3:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjUwMzI5MDIzMzM1WhcNMjUwNDA1MDIzMzM1WjAYMRYwFAYD VQQDEw02N2U3NWJmZi00OTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yJZnWQ0lZJwC/9C1U2xPtV+LxnudLnm6WT/uuBS8jaC6KaxQ2Az6ONBwwDG vzZ0LaQl4ElLZIvPCu2oXhf/bBd/CpVXD7RN/SgBQAsXuwvgNxwFOhaEIAbcnZTw wt7+ghtuUZ+mJpYSIqH+S5cTKl8noXKYwTCo2r3ecxCcCbXAsoL/sBh/+B8D4/6r Mf9AbK95Tb74tplcWfUu/cbo7ucjzzONfXyMHpfKJfXSdmepxu/YAFMJRYMsTpFy i43AnLhMUcwgG2bRa+3TRDZOlLLsyI8FQnCKV8chgOgoYkiCFqVqGAGmxTIrOKId 896ETvSETfudxHY0O2cTxoyppwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvksqu7 2UCzz7fKq5/ALW8rQqiGMB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxLzWU8xqs4W4OZ0eBznphVd8HFiPR8NFrpAKbFWhRP1RrJqkWbBgQ 0zqqu0teZaIPomx4YMNUPbteE/hnSNOUYgH7LW34IM8eefT+vwYQctHi2Cr0RTCM 2HX/thIkmDZ6Eobt8rmRmPIuqqjD8Um7Rc1sHpNWMoXTz5uhejHOBRYY+CHQ1ybT lgp/bXod5RX77FjYmG7T/i+ABH/CDllNPHjWGZ/SWSsFj4avHKYNF3SAt9lU6Pm6 gJIiEzWhmg3pv1BZI1LwB+ZXVO8GNSNGoX4ok3sIc/9LZfJ3QqxcuC0KAjYpByIS Lh0F48/cVMMLo2k0iYG9qfg3lwC9OsPB -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:39 2025 by rpki-client