$ rpki-client -vvf rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft File: 4D9YAHuXKQulI0NZeReytqtd0uk.mft (raw, json) Hash identifier: mJtwgwZg500jqA8AN+LM1FjB8B0vbIBG9F59NMOA61E= Subject key identifier: FC:A0:0A:AD:0B:7C:23:1F:8A:E3:9F:14:AF:F9:31:BC:6F:A4:E7:0C Authority key identifier: E0:3F:58:00:7B:97:29:0B:A5:23:43:59:79:17:B2:B6:AB:5D:D2:E9 Certificate issuer: /CN=A9166646/serialNumber=E03F58007B97290BA52343597917B2B6AB5DD2E9 Certificate serial: 05D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft Manifest number: 05CD Signing time: Wed 02 Apr 2025 23:01:53 +0000 Manifest this update: Wed 02 Apr 2025 23:01:53 +0000 Manifest next update: Wed 09 Apr 2025 23:01:53 +0000 Files and hashes: 1: 4D9YAHuXKQulI0NZeReytqtd0uk.crl (hash: Eiqa+YKWJcxLm/lzoZEU9WPWrdouDU91hdm1JAxHvnc=) 2: 5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa (hash: /w5fG5I8SVvb6KU0qV88HCDiJhOJmaZaXcIt+zZPytA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.crl rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166646 Validity Not Before: Apr 2 23:01:53 2025 GMT Not After : Apr 9 23:01:53 2025 GMT Subject: CN=67edc1e1-4569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b4:17:f7:7a:39:65:89:7c:0b:09:91:00:d5: 56:2b:73:86:09:86:66:0b:e0:a5:16:6a:cd:64:39: f9:c3:7c:11:c0:b1:27:11:7a:c4:3b:3b:2f:d3:92: 12:d9:55:66:05:7c:dc:74:4c:45:35:3a:44:11:ec: c2:cc:2a:32:8e:f2:1c:ca:e4:94:7d:38:75:5a:93: 42:fd:a5:ea:f4:3c:10:27:d4:c6:b6:da:2b:37:51: 36:35:d5:03:32:8c:6a:99:b8:3c:fd:42:0b:69:86: 64:a3:54:03:59:5f:56:91:b6:89:9e:e1:8b:5c:21: 60:65:a4:9b:3e:21:8d:4b:ff:86:b5:d0:cc:9a:4d: fa:22:d7:3e:b7:f3:ee:5f:02:f0:7f:cf:1c:10:15: a7:1c:98:1d:a3:41:69:45:a0:61:e4:d9:62:1e:e4: be:cd:12:f8:79:14:e1:ef:e6:0e:f3:ef:8a:f5:b2: 5f:34:35:11:7d:42:7c:e2:04:26:0b:35:cf:3b:3b: b3:7d:5e:9b:3f:8d:bc:2c:de:d4:23:7e:56:ce:a6: 4e:9d:a0:04:bd:63:37:1b:19:ba:05:f7:e0:04:34: 0c:d4:6e:84:bb:66:7d:d0:ef:c7:e8:38:b1:e2:79: d7:a4:44:bd:12:60:8c:88:a6:36:a5:d8:86:fe:df: 4b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A0:0A:AD:0B:7C:23:1F:8A:E3:9F:14:AF:F9:31:BC:6F:A4:E7:0C X509v3 Authority Key Identifier: keyid:E0:3F:58:00:7B:97:29:0B:A5:23:43:59:79:17:B2:B6:AB:5D:D2:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:cc:b0:99:9f:e8:75:8f:de:d5:71:2a:e7:ff:47:d9:38:6e: 74:1b:84:8f:cf:e2:1f:d6:c5:a8:c4:b3:a0:1e:45:34:2a:15: 12:ef:ad:b5:45:e1:91:e4:93:23:2d:0a:f0:51:81:27:91:ce: c8:b7:77:9f:bf:04:8f:4d:30:92:42:18:d2:69:29:41:8c:f9: 74:00:2a:8c:69:17:a2:8a:8b:68:45:09:92:22:43:d5:07:27: 2d:59:f5:c1:80:14:57:1f:5a:12:3e:26:dc:22:09:09:70:4f: 9d:a9:20:c2:37:34:e6:9a:bf:1b:35:b6:df:63:e1:2a:ed:57: 2d:32:cf:24:c8:04:fd:bc:c4:bd:95:ec:ed:c8:20:e0:5b:23: f5:d4:a1:4f:03:6a:93:80:a4:de:e9:4b:a8:d6:84:b0:d5:b9: 24:93:f3:b5:da:4d:a1:bb:a1:c4:84:1a:da:ff:7f:02:42:5c: 12:32:d1:66:90:9f:42:5d:3d:5b:e6:ad:38:4a:b5:cb:a7:a8: d8:9a:32:29:c0:13:9b:8d:c5:2e:47:35:6e:cd:cc:81:c6:8c: 23:33:b5:f2:27:f6:c6:89:93:1a:df:eb:69:9b:3c:ac:06:98: ac:25:b4:8f:4e:26:08:bd:f5:64:f4:ba:8c:dc:99:f7:33:91: 83:63:4e:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY2NDYxMTAvBgNVBAUTKEUwM0Y1ODAwN0I5NzI5MEJBNTIzNDM1OTc5MTdCMkI2 QUI1REQyRTkwHhcNMjUwNDAyMjMwMTUzWhcNMjUwNDA5MjMwMTUzWjAYMRYwFAYD VQQDEw02N2VkYzFlMS00NTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17QX93o5ZYl8CwmRANVWK3OGCYZmC+ClFmrNZDn5w3wRwLEnEXrEOzsv05IS 2VVmBXzcdExFNTpEEezCzCoyjvIcyuSUfTh1WpNC/aXq9DwQJ9TGttorN1E2NdUD Moxqmbg8/UILaYZko1QDWV9WkbaJnuGLXCFgZaSbPiGNS/+GtdDMmk36Itc+t/Pu XwLwf88cEBWnHJgdo0FpRaBh5NliHuS+zRL4eRTh7+YO8++K9bJfNDURfUJ84gQm CzXPOzuzfV6bP428LN7UI35WzqZOnaAEvWM3Gxm6BffgBDQM1G6Eu2Z90O/H6Dix 4nnXpES9EmCMiKY2pdiG/t9LgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPygCq0L fCMfiuOfFK/5MbxvpOcMMB8GA1UdIwQYMBaAFOA/WAB7lykLpSNDWXkXsrarXdLp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjY0Ni83QjE2QUMyOEIx M0MxMUVCODE3OUZBMjlDNEY5QUUwMi80RDlZQUh1WEtRdWxJME5aZVJleXRxdGQw dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzREOVlBSHVYS1F1bEkwTlplUmV5dHF0ZDB1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjY0Ni83QjE2QUMyOEIxM0MxMUVCODE3OUZBMjlDNEY5QUUwMi80RDlZQUh1WEtR dWxJME5aZVJleXRxdGQwdWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBazLCZn+h1j97VcSrn/0fZOG50G4SPz+If1sWoxLOgHkU0KhUS7621 ReGR5JMjLQrwUYEnkc7It3efvwSPTTCSQhjSaSlBjPl0ACqMaReiiotoRQmSIkPV ByctWfXBgBRXH1oSPibcIgkJcE+dqSDCNzTmmr8bNbbfY+Eq7VctMs8kyAT9vMS9 leztyCDgWyP11KFPA2qTgKTe6Uuo1oSw1bkkk/O12k2hu6HEhBra/38CQlwSMtFm kJ9CXT1b5q04SrXLp6jYmjIpwBObjcUuRzVuzcyBxowjM7XyJ/bGiZMa3+tpmzys BpisJbSPTiYIvfVk9LqM3Jn3M5GDY07Q -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:58 2025 by rpki-client