$ rpki-client -vvf rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft File: 9MxDBOF5Dgj17JKahzciadCPtoE.mft (raw, json) Hash identifier: D6Z3qh0SZCJThrYRDJJ5xbbIbWtuvu17zjrd1/aSUkk= Subject key identifier: D7:AA:66:9C:7F:EF:96:86:33:58:5F:4A:5B:6F:A4:E8:E1:BE:1C:A1 Authority key identifier: F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 Certificate issuer: /CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Certificate serial: 03E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft Manifest number: 03DE Signing time: Mon 21 Apr 2025 00:10:49 +0000 Manifest this update: Mon 21 Apr 2025 00:10:48 +0000 Manifest next update: Mon 28 Apr 2025 00:10:48 +0000 Files and hashes: 1: 9MxDBOF5Dgj17JKahzciadCPtoE.crl (hash: JXEI2YRn2L55vESG+2qk3HaDZPibzqSd8rNBUQOkNIA=) 2: 0E7858548CBB11ECB0842F23C4F9AE02.roa (hash: q3e8py5/C6+zKkUP8OOrbssys+IzckfYmM1B63yGsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167BCA, serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Validity Not Before: Apr 21 00:10:48 2025 GMT Not After : Apr 28 00:10:48 2025 GMT Subject: CN=68058d08-758a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ed:6f:0e:c5:89:26:fa:5a:91:ff:25:bc:53: 49:eb:ed:91:d6:f1:76:4c:0d:92:65:a3:18:6e:8f: 67:72:db:67:65:06:2a:f7:32:6b:97:a2:b7:96:63: 48:7b:19:47:ba:75:fc:3a:8b:a2:8e:05:23:9c:83: 65:fe:82:da:53:e7:80:55:2f:10:6e:be:0c:16:05: 7f:47:8b:3d:1f:a0:40:ec:63:a6:06:00:49:8a:f6: e8:e4:c2:e2:38:d1:e1:8a:59:de:58:d7:72:38:bc: 65:e5:bd:1b:fa:f7:97:90:3c:d5:7e:d2:4e:6e:71: a4:eb:2f:a0:64:3e:06:0f:80:13:63:88:60:b6:4b: b1:37:af:99:92:20:6e:f0:88:b4:d1:77:76:5e:88: 55:61:e2:3d:0e:4b:8c:e7:9b:76:47:92:6b:5c:f6: af:50:1e:25:f2:ea:bf:6f:76:66:db:7f:76:01:88: 05:a1:4e:38:b7:a9:32:27:f7:2e:02:91:44:2a:b1: 05:84:26:f9:ae:a6:a3:3d:d5:f7:eb:b5:cc:c9:97: ef:b2:c8:55:a5:bb:7e:96:e6:c0:f0:d9:32:f3:d7: 11:00:e8:f8:28:07:49:e6:0f:1e:70:af:6d:a8:b7: 6c:9f:b9:d9:ed:8c:55:b0:05:38:a1:43:2a:70:86: c2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:AA:66:9C:7F:EF:96:86:33:58:5F:4A:5B:6F:A4:E8:E1:BE:1C:A1 X509v3 Authority Key Identifier: keyid:F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:64:5c:d9:ed:ad:54:a4:34:59:b6:33:fc:91:4a:8e:a5:ff: 58:91:98:ba:7d:59:36:fc:d8:da:a4:d0:f3:02:83:a1:89:bf: ad:13:35:4b:79:e5:99:1b:0e:62:b3:40:c2:fc:85:4b:ba:83: fb:22:28:b4:fd:83:1d:d2:e5:16:12:27:7e:b4:c8:54:15:6c: bf:f2:c4:bb:23:af:ff:a2:4a:99:3a:45:27:b8:f0:c6:fc:f0: 18:a9:2d:d8:c9:63:6b:13:b5:c6:18:cd:d7:db:ae:7d:05:9f: da:ac:b8:3a:5a:e4:30:ff:fa:92:e6:71:80:b2:e8:c1:ae:56: aa:e0:95:89:b4:de:4a:48:1b:a2:34:02:0e:da:13:79:38:5c: 28:7e:4d:28:47:a4:fb:55:b0:eb:33:5b:95:24:a9:5b:92:f2: 3a:f3:d9:5a:21:71:9c:31:bb:60:73:30:3d:db:58:43:a0:77: e3:3a:39:7e:6f:3c:bd:f5:70:ef:64:c3:d4:47:11:da:45:5f: 8a:3b:78:70:7a:4c:27:f3:db:fa:1a:db:11:1e:1f:60:a9:cd: db:4a:c1:2f:92:36:a4:f3:ac:4a:bd:2d:5e:31:82:d4:d1:f2: 58:74:61:de:72:14:2c:92:48:03:58:1c:72:85:94:58:7b:ba: 01:92:74:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCQ0ExMTAvBgNVBAUTKEY0Q0M0MzA0RTE3OTBFMDhGNUVDOTI5QTg3MzcyMjY5 RDA4RkI2ODEwHhcNMjUwNDIxMDAxMDQ4WhcNMjUwNDI4MDAxMDQ4WjAYMRYwFAYD VQQDEw02ODA1OGQwOC03NThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0O1vDsWJJvpakf8lvFNJ6+2R1vF2TA2SZaMYbo9ncttnZQYq9zJrl6K3lmNI exlHunX8OouijgUjnINl/oLaU+eAVS8Qbr4MFgV/R4s9H6BA7GOmBgBJivbo5MLi ONHhilneWNdyOLxl5b0b+veXkDzVftJObnGk6y+gZD4GD4ATY4hgtkuxN6+ZkiBu 8Ii00Xd2XohVYeI9DkuM55t2R5JrXPavUB4l8uq/b3Zm2392AYgFoU44t6kyJ/cu ApFEKrEFhCb5rqajPdX367XMyZfvsshVpbt+lubA8Nky89cRAOj4KAdJ5g8ecK9t qLdsn7nZ7YxVsAU4oUMqcIbC5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeqZpx/ 75aGM1hfSltvpOjhvhyhMB8GA1UdIwQYMBaAFPTMQwTheQ4I9eySmoc3ImnQj7aB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0JDQS82MkJDRDVERTdB OUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURnajE3SkthaHpjaWFkQ1B0 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNeERCT0Y1RGdqMTdKS2FoemNpYWRDUHRvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0JDQS82MkJDRDVERTdBOUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURn ajE3SkthaHpjaWFkQ1B0b0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHZFzZ7a1UpDRZtjP8kUqOpf9YkZi6fVk2/NjapNDzAoOhib+tEzVL eeWZGw5is0DC/IVLuoP7Iii0/YMd0uUWEid+tMhUFWy/8sS7I6//okqZOkUnuPDG /PAYqS3YyWNrE7XGGM3X2659BZ/arLg6WuQw//qS5nGAsujBrlaq4JWJtN5KSBui NAIO2hN5OFwofk0oR6T7VbDrM1uVJKlbkvI689laIXGcMbtgczA921hDoHfjOjl+ bzy99XDvZMPURxHaRV+KO3hwekwn89v6GtsRHh9gqc3bSsEvkjak86xKvS1eMYLU 0fJYdGHechQskkgDWBxyhZRYe7oBknRc -----END CERTIFICATE-----Generated at Tue Apr 22 19:15:14 2025 by rpki-client