$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft File: fd08hfmnH2JfzMEMqDHld3CbTz8.mft (raw, json) Hash identifier: a8Xr83/V1mHpYPW9N6LXdzyRPRuFkgAaamjWmpebwAc= Subject key identifier: 79:64:3C:12:B0:20:E1:FA:88:ED:E5:3B:E5:5E:41:BC:1E:92:A5:12 Authority key identifier: 7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F Certificate issuer: /CN=A9167B41/serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Certificate serial: 02D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft Manifest number: 02CE Signing time: Sat 29 Mar 2025 01:39:35 +0000 Manifest this update: Sat 29 Mar 2025 01:39:35 +0000 Manifest next update: Sat 05 Apr 2025 01:39:35 +0000 Files and hashes: 1: fd08hfmnH2JfzMEMqDHld3CbTz8.crl (hash: wWcISWRlmX80kuxZsiBaX95OA4LzjzhuDSOc3N5Pek0=) 2: D24B4D42DF3E11EC83CCFE1EC4F9AE02.roa (hash: kgM5o3dXNIi7eIMjv0bZ11gFzEgmzlkUXlFL5nbPJ3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 721 (0x2d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B41 Validity Not Before: Mar 29 01:39:35 2025 GMT Not After : Apr 5 01:39:35 2025 GMT Subject: CN=67e74f57-e7f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fa:6e:b0:75:f2:f3:ae:5a:4e:4a:92:5a:ba: 26:f9:45:9a:4d:d7:1b:b6:59:ba:c0:d9:f4:ec:0a: 27:f2:b0:bf:92:09:05:55:b1:62:3b:53:9a:c6:22: 12:7b:b2:d4:ca:1c:e3:bb:75:af:8c:f8:2f:cb:33: e0:ed:50:d6:09:b0:04:1b:5d:04:d5:c2:ac:c9:d0: 73:74:26:ee:6d:50:78:76:f4:99:40:8d:0b:d0:99: 6a:db:0f:e3:ba:f3:78:4d:f2:b3:5f:39:2f:fd:85: c7:56:1a:6e:e5:f8:18:bc:9d:03:58:fd:43:a0:3c: b5:59:37:35:47:18:98:62:d8:60:16:25:08:14:85: 2c:7a:5f:7f:c1:dd:2a:be:3d:98:1d:e4:6b:d3:b2: 37:16:09:1a:15:a0:03:0f:21:a1:5b:e4:0a:2a:4b: 95:e6:b7:42:2e:08:32:32:ed:a1:b2:0e:be:1e:c1: b4:bd:4b:0f:72:7c:20:66:3b:38:22:74:2e:d5:dc: 46:84:5b:69:0b:5d:7a:a4:5c:ea:2a:4f:9c:ea:74: c2:87:9b:3a:4f:f0:69:7a:72:04:47:f7:fe:5b:19: 5e:bc:1c:b9:62:06:9c:12:d4:43:42:63:d3:3b:ee: 38:dc:32:d4:7f:f1:56:38:a5:0d:eb:6a:be:ec:7b: a7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:64:3C:12:B0:20:E1:FA:88:ED:E5:3B:E5:5E:41:BC:1E:92:A5:12 X509v3 Authority Key Identifier: keyid:7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:0f:83:e9:0e:1b:a6:50:77:7c:b4:23:ad:e5:38:b4:7c:ce: 43:34:f3:75:67:24:cc:2b:1e:6d:2b:ea:ce:e8:4b:af:4b:45: 61:16:60:6d:b0:3f:c1:e8:0e:c6:72:a2:ed:a3:b3:61:47:cd: b8:8b:b9:71:b4:81:b2:72:2a:32:91:e9:66:34:ee:d2:06:3d: d1:18:53:a3:f6:53:0a:bd:98:c4:d7:a4:dd:9c:27:c3:8d:b2: e4:1c:df:ce:67:b5:d6:0e:66:ee:1c:25:21:cc:2d:e5:9d:11: 38:27:37:37:3b:cf:1d:75:7d:90:0a:44:fc:bb:07:ed:e8:89: b7:06:13:98:41:7d:3b:42:2e:7e:ce:0a:a6:39:d8:91:65:d6: 5c:5b:d0:8c:fc:49:5b:b7:36:ce:c9:97:ee:ed:1f:cf:00:71: b1:b2:5f:2d:91:01:8f:6a:50:ef:d8:45:5e:a6:d7:98:53:a5: cb:4e:e7:00:39:3b:de:29:d8:9a:86:0d:d7:9e:bf:ea:e7:a4: a2:b4:52:a5:07:fd:6a:c0:f6:49:69:4e:a7:09:4a:95:2d:e8: bb:2b:04:ec:3a:d1:f7:29:36:13:c6:39:c8:2e:58:46:58:3c: a1:b1:c6:84:56:4d:0f:f0:0a:6c:fb:c0:5a:95:3f:08:b2:39: 61:7e:23:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNDExMTAvBgNVBAUTKDdEREQzQzg1RjlBNzFGNjI1RkNDQzEwQ0E4MzFFNTc3 NzA5QjRGM0YwHhcNMjUwMzI5MDEzOTM1WhcNMjUwNDA1MDEzOTM1WjAYMRYwFAYD VQQDEw02N2U3NGY1Ny1lN2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/pusHXy865aTkqSWrom+UWaTdcbtlm6wNn07Aon8rC/kgkFVbFiO1OaxiIS e7LUyhzju3WvjPgvyzPg7VDWCbAEG10E1cKsydBzdCbubVB4dvSZQI0L0Jlq2w/j uvN4TfKzXzkv/YXHVhpu5fgYvJ0DWP1DoDy1WTc1RxiYYthgFiUIFIUsel9/wd0q vj2YHeRr07I3FgkaFaADDyGhW+QKKkuV5rdCLggyMu2hsg6+HsG0vUsPcnwgZjs4 InQu1dxGhFtpC116pFzqKk+c6nTCh5s6T/BpenIER/f+WxlevBy5YgacEtRDQmPT O+443DLUf/FWOKUN62q+7HunvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlkPBKw IOH6iO3lO+VeQbwekqUSMB8GA1UdIwQYMBaAFH3dPIX5px9iX8zBDKgx5Xdwm08/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I0MS9FNzkwRjlBQURG MzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgySmZ6TUVNcURIbGQzQ2JU ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZkMDhoZm1uSDJKZnpNRU1xREhsZDNDYlR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0I0MS9FNzkwRjlBQURGMzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgy SmZ6TUVNcURIbGQzQ2JUejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRD4PpDhumUHd8tCOt5Ti0fM5DNPN1ZyTMKx5tK+rO6EuvS0VhFmBt sD/B6A7GcqLto7NhR824i7lxtIGycioykelmNO7SBj3RGFOj9lMKvZjE16TdnCfD jbLkHN/OZ7XWDmbuHCUhzC3lnRE4Jzc3O88ddX2QCkT8uwft6Im3BhOYQX07Qi5+ zgqmOdiRZdZcW9CM/ElbtzbOyZfu7R/PAHGxsl8tkQGPalDv2EVepteYU6XLTucA OTveKdiahg3Xnr/q56SitFKlB/1qwPZJaU6nCUqVLei7KwTsOtH3KTYTxjnILlhG WDyhscaEVk0P8Aps+8BalT8IsjlhfiNr -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:31 2025 by rpki-client