$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: mHaJa4Oq9UX0mb2q6f1K7DmsxyHx7KOGhzMtoDXmPSI= Subject key identifier: 9E:8F:25:2A:5E:6F:DC:98:BD:DE:63:82:5F:CF:16:CD:37:37:C1:DD Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 095C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 093C Signing time: Fri 04 Apr 2025 20:27:22 +0000 Manifest this update: Fri 04 Apr 2025 20:27:22 +0000 Manifest next update: Fri 11 Apr 2025 20:27:22 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: vEi7+/2D3vADY+JaIY1OrjIeTx1i0WANs+SkdAFp0hc=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2396 (0x95c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342 Validity Not Before: Apr 4 20:27:22 2025 GMT Not After : Apr 11 20:27:22 2025 GMT Subject: CN=67f040aa-94cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e5:2e:a1:52:08:ec:34:dc:e6:fa:b8:7e:d4: eb:f3:a8:85:33:47:fb:44:dd:56:f3:73:c5:d1:d7: b6:0b:67:a8:66:e4:95:6a:f4:ab:b6:56:4b:c1:54: 23:d8:c7:26:07:a8:7d:73:67:5d:5f:82:1d:77:36: e4:f0:85:1f:34:de:97:fc:6f:a2:ae:3e:1c:01:83: 29:8b:2a:7b:54:11:f9:4f:e3:fb:85:f1:48:fa:f9: a7:fa:e0:87:04:a2:15:1e:88:65:c3:cd:39:91:42: 26:95:6a:d3:43:89:af:5d:c1:70:37:2a:db:2a:f0: 1c:6e:1c:94:c9:ae:e9:3b:9d:2c:61:ea:fd:4d:f6: 04:9b:40:f4:b3:94:b0:74:57:6e:d7:47:b8:a3:ed: 1e:b2:22:fe:7f:f2:c5:c3:d7:93:50:3b:69:93:52: 35:9d:db:cf:8c:6c:cf:06:71:1a:a1:00:d5:fd:89: 1c:87:45:1d:1d:6a:2a:d8:89:a8:22:e9:4c:27:5d: da:c4:d7:74:74:11:da:18:a2:38:6a:ea:06:41:44: 0a:9d:f2:81:b7:b1:fe:93:a9:5b:41:98:fb:27:01: 54:53:41:73:95:b9:7c:dd:77:8c:5b:81:d3:54:4b: df:87:47:de:10:fe:29:2d:10:4c:75:79:72:c3:75: 7e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8F:25:2A:5E:6F:DC:98:BD:DE:63:82:5F:CF:16:CD:37:37:C1:DD X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:97:7f:4e:98:70:30:18:87:b0:fd:3d:a9:93:d3:3f:01:b8: a0:ae:03:5c:9b:50:aa:d9:fe:03:9c:5e:19:dc:34:59:6f:32: 8a:1c:f9:b7:50:30:8f:1f:22:02:a8:83:46:32:33:7a:7d:fc: 7a:ef:2d:e5:03:52:64:b1:7a:b4:90:bf:70:ed:b3:8c:16:67: 18:0e:02:43:20:6c:55:40:fb:16:39:10:eb:51:7f:cc:00:4b: 0f:a7:06:9a:42:f3:a7:9f:0f:69:0f:44:2f:65:21:ec:09:51: 75:31:ab:84:9e:0d:a8:16:09:20:90:c4:ed:75:1d:72:99:a3: b5:c7:18:ea:a8:3e:66:20:1d:94:fe:bc:94:71:12:cb:ac:b7: 85:9e:34:d7:eb:db:b2:6b:fe:69:ab:be:49:16:52:18:b4:2c: 49:30:94:1d:ad:68:68:39:a5:54:a2:68:3d:d1:af:84:0a:88: 22:59:d7:1b:04:68:1b:b1:d1:cd:14:d4:a5:72:86:5a:64:cb: 0c:dd:4d:09:0c:1b:dc:5b:11:fd:c6:f8:0e:c9:bd:07:21:94: 0f:99:30:50:a4:c0:28:f0:1d:55:6e:6e:6d:c7:d1:2c:18:93: 1f:ec:5e:f9:9c:da:6c:5a:65:32:d9:c5:e5:ea:3e:10:f1:c9: 42:9f:df:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwNDA0MjAyNzIyWhcNMjUwNDExMjAyNzIyWjAYMRYwFAYD VQQDEw02N2YwNDBhYS05NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOUuoVII7DTc5vq4ftTr86iFM0f7RN1W83PF0de2C2eoZuSVavSrtlZLwVQj 2McmB6h9c2ddX4Iddzbk8IUfNN6X/G+irj4cAYMpiyp7VBH5T+P7hfFI+vmn+uCH BKIVHohlw805kUImlWrTQ4mvXcFwNyrbKvAcbhyUya7pO50sYer9TfYEm0D0s5Sw dFdu10e4o+0esiL+f/LFw9eTUDtpk1I1ndvPjGzPBnEaoQDV/Ykch0UdHWoq2Imo IulMJ13axNd0dBHaGKI4auoGQUQKnfKBt7H+k6lbQZj7JwFUU0Fzlbl83XeMW4HT VEvfh0feEP4pLRBMdXlyw3V+WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6PJSpe b9yYvd5jgl/PFs03N8HdMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAol39OmHAwGIew/T2pk9M/AbigrgNcm1Cq2f4DnF4Z3DRZbzKKHPm3 UDCPHyICqINGMjN6ffx67y3lA1JksXq0kL9w7bOMFmcYDgJDIGxVQPsWORDrUX/M AEsPpwaaQvOnnw9pD0QvZSHsCVF1MauEng2oFgkgkMTtdR1ymaO1xxjqqD5mIB2U /ryUcRLLrLeFnjTX69uya/5pq75JFlIYtCxJMJQdrWhoOaVUomg90a+ECogiWdcb BGgbsdHNFNSlcoZaZMsM3U0JDBvcWxH9xvgOyb0HIZQPmTBQpMAo8B1Vbm5tx9Es GJMf7F75nNpsWmUy2cXl6j4Q8clCn999 -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:49 2025 by rpki-client