$ rpki-client -vvf rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft File: 9-pxtubNBKVdrrDRWOBE3poSIWo.mft (raw, json) Hash identifier: 0nIzVIiVSnxWcXdwQ0YU20bTGFliIg1/LtFUABW0HS0= Subject key identifier: 4C:05:EF:86:34:9D:6C:12:7B:CD:BF:CC:85:4E:61:44:2C:3D:F5:17 Authority key identifier: F7:EA:71:B6:E6:CD:04:A5:5D:AE:B0:D1:58:E0:44:DE:9A:12:21:6A Certificate issuer: /CN=A914976C/serialNumber=F7EA71B6E6CD04A55DAEB0D158E044DE9A12216A Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft Manifest number: 7F Signing time: Sat 05 Apr 2025 05:56:30 +0000 Manifest this update: Sat 05 Apr 2025 05:56:29 +0000 Manifest next update: Sat 12 Apr 2025 05:56:29 +0000 Files and hashes: 1: 9-pxtubNBKVdrrDRWOBE3poSIWo.crl (hash: fJPg4/RlopGgvWZIQiutHlJStpeCvo6G3EPuvUj8mv4=) 2: D65DAE8A595C11EF8FABE750C4F9AE02.roa (hash: nYA6qJYLssodvPidYdiPlhElm9th4J64wlRbRyUbQK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.crl rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914976C Validity Not Before: Apr 5 05:56:29 2025 GMT Not After : Apr 12 05:56:29 2025 GMT Subject: CN=67f0c60d-7bba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:24:db:a1:ae:f8:e8:b0:ba:2a:c1:de:14:69: 3e:3a:9d:51:7a:b4:94:c8:2d:35:7f:b8:9a:81:f1: aa:53:af:37:cb:6f:c7:f9:34:6d:8b:64:7c:3a:b6: c7:b2:be:d3:86:5e:c9:93:7d:45:ab:bd:ae:94:06: b2:41:9a:fd:f2:ce:8d:f5:85:ff:b0:9e:22:b1:13: 67:4f:1e:18:bf:10:03:d3:72:55:c2:d5:dd:29:87: 84:15:1c:9e:ab:84:28:10:2c:cf:0b:40:8b:e5:b9: 49:c5:f9:40:99:b5:b0:6e:a7:bd:dd:4d:1b:f9:c2: 61:98:89:f1:99:06:c3:24:da:6d:b0:4f:b5:18:af: 87:f4:4c:dd:d5:5b:bd:d8:22:23:83:98:45:d0:9a: b0:59:dc:29:35:c3:e6:88:db:94:88:4f:91:c9:0d: 4a:f0:4e:9f:75:32:f1:5c:f6:fb:cc:f5:ad:9d:f0: a0:15:bb:1e:11:7f:c9:e7:97:9d:99:6a:92:fd:a6: 20:aa:66:1d:e4:30:e0:8f:84:26:1d:1d:9c:29:2c: 18:eb:f0:dd:8e:77:5e:17:c5:04:b9:9e:76:da:e8: 55:52:f7:d4:43:97:04:69:bd:a1:57:fc:97:c8:0f: 43:41:a0:11:5b:cc:a2:c5:95:3e:47:56:2a:2e:de: aa:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:05:EF:86:34:9D:6C:12:7B:CD:BF:CC:85:4E:61:44:2C:3D:F5:17 X509v3 Authority Key Identifier: keyid:F7:EA:71:B6:E6:CD:04:A5:5D:AE:B0:D1:58:E0:44:DE:9A:12:21:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:32:5a:41:ea:bd:f2:e1:47:69:40:80:ea:fe:c7:21:65:92: 99:e4:df:70:df:e3:75:e9:31:2c:fb:62:b7:4c:1a:cb:0b:22: b4:af:45:ec:f7:84:aa:07:1b:f8:0b:de:d4:45:3e:25:b9:8e: df:57:63:2b:41:32:30:56:1b:62:db:d9:7b:80:5a:95:0d:9b: d5:37:ba:e6:a8:b7:ba:f3:cd:c9:d3:23:fb:1f:05:8d:3c:b4: a8:27:26:42:a1:e6:c5:23:a6:e2:e7:ae:a3:a5:16:bf:13:e9: ee:20:b3:00:15:4c:47:3e:5c:f0:e8:53:0a:7c:aa:f9:96:cc: bc:e4:c2:94:51:d1:f8:2d:a9:b4:d5:39:28:bd:02:0e:e1:33: 8d:ce:cb:de:a0:7c:b3:e2:90:d1:c3:f1:93:3c:b2:66:56:47: 6b:78:bc:06:05:b1:1c:6e:d4:11:c0:9a:97:af:35:ea:eb:ca: 31:93:4f:e9:da:c3:86:b8:e4:1c:55:e8:15:09:d3:b5:37:c2: 35:6b:2d:56:5f:b3:22:55:db:48:84:dc:c9:ca:83:27:36:f4: fe:3f:a4:78:9a:97:8c:eb:9c:e5:88:c4:a3:ee:6b:44:9a:7d: da:a5:50:f7:e1:f7:1f:64:16:6a:ee:a7:f2:f8:21:3b:e0:c1: 8b:95:e6:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk3NkMxMTAvBgNVBAUTKEY3RUE3MUI2RTZDRDA0QTU1REFFQjBEMTU4RTA0NERF OUExMjIxNkEwHhcNMjUwNDA1MDU1NjI5WhcNMjUwNDEyMDU1NjI5WjAYMRYwFAYD VQQDEw02N2YwYzYwZC03YmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5CTboa746LC6KsHeFGk+Op1RerSUyC01f7iagfGqU683y2/H+TRti2R8OrbH sr7Thl7Jk31Fq72ulAayQZr98s6N9YX/sJ4isRNnTx4YvxAD03JVwtXdKYeEFRye q4QoECzPC0CL5blJxflAmbWwbqe93U0b+cJhmInxmQbDJNptsE+1GK+H9Ezd1Vu9 2CIjg5hF0JqwWdwpNcPmiNuUiE+RyQ1K8E6fdTLxXPb7zPWtnfCgFbseEX/J55ed mWqS/aYgqmYd5DDgj4QmHR2cKSwY6/DdjndeF8UEuZ522uhVUvfUQ5cEab2hV/yX yA9DQaARW8yixZU+R1YqLt6q3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwF74Y0 nWwSe82/zIVOYUQsPfUXMB8GA1UdIwQYMBaAFPfqcbbmzQSlXa6w0VjgRN6aEiFq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTc2Qy84MzUwRDJCQzU5 NUMxMUVGOTE1OTYzNTBDNEY5QUUwMi85LXB4dHViTkJLVmRyckRSV09CRTNwb1NJ V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzktcHh0dWJOQktWZHJyRFJXT0JFM3BvU0lXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTc2Qy84MzUwRDJCQzU5NUMxMUVGOTE1OTYzNTBDNEY5QUUwMi85LXB4dHViTkJL VmRyckRSV09CRTNwb1NJV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEMlpB6r3y4UdpQIDq/schZZKZ5N9w3+N16TEs+2K3TBrLCyK0r0Xs 94SqBxv4C97URT4luY7fV2MrQTIwVhti29l7gFqVDZvVN7rmqLe6883J0yP7HwWN PLSoJyZCoebFI6bi566jpRa/E+nuILMAFUxHPlzw6FMKfKr5lsy85MKUUdH4Lam0 1TkovQIO4TONzsveoHyz4pDRw/GTPLJmVkdreLwGBbEcbtQRwJqXrzXq68oxk0/p 2sOGuOQcVegVCdO1N8I1ay1WX7MiVdtIhNzJyoMnNvT+P6R4mpeM65zliMSj7mtE mn3apVD34fcfZBZq7qfy+CE74MGLlebF -----END CERTIFICATE-----Generated at Sun Apr 6 22:03:03 2025 by rpki-client