$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: hzzwO+9JGVsbmVoEnAvUgFtybMWzU5YIAfR7JirIqHU= Subject key identifier: AE:41:FB:46:E0:B1:F5:37:35:1B:4D:2C:25:9C:05:C2:73:37:1F:B7 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 99 Signing time: Sat 29 Mar 2025 05:38:59 +0000 Manifest this update: Sat 29 Mar 2025 05:38:58 +0000 Manifest next update: Sat 05 Apr 2025 05:38:58 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: xyP4gxVqG1mQAHzKADKOGN65Qa48GsD+v+O1l9ph9Ro=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: 8wJfVmwicvQp5ybkXyvh/U8tiFP/mOR8lTRB18DXQ0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5 Validity Not Before: Mar 29 05:38:58 2025 GMT Not After : Apr 5 05:38:58 2025 GMT Subject: CN=67e78773-8f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:96:e2:9e:fd:60:49:88:a4:11:2c:78:31:a5: bd:fb:65:a2:01:2d:af:51:e1:86:1b:42:f4:1d:31: 71:be:2e:4b:9e:93:39:48:42:ff:d5:ad:26:c0:7f: 07:0b:e3:ea:bc:f4:1a:31:a8:07:22:af:16:50:b3: a1:ef:66:a7:bc:aa:d2:d1:6a:a1:a8:52:87:77:ce: 59:71:94:40:b5:26:ae:ab:d1:4a:f2:cd:49:94:95: 46:1c:22:47:56:b2:b6:8e:e3:eb:7e:bc:b2:1f:18: 5b:18:0b:b1:11:ce:24:a3:79:2a:db:76:82:86:c1: f6:ed:a9:40:be:f2:e3:1d:6c:0f:df:04:50:2e:25: e0:45:15:2e:b6:02:a2:6c:1c:5f:90:e4:fb:d6:31: 55:52:c4:e9:1b:51:11:fe:00:96:7b:48:0c:91:b2: 0b:4f:ee:f5:ec:e8:27:fe:23:20:d1:1d:64:ba:ad: 54:a8:db:36:ab:58:a7:99:49:84:b9:2b:48:c0:78: 9f:5c:c2:c3:84:ee:01:5e:cc:6f:6e:1e:f4:0a:a8: ee:d8:12:40:3d:46:bd:d0:78:0b:11:d4:ad:a7:67: a6:01:12:da:85:fe:a8:7c:84:66:96:de:57:e5:86: de:00:38:72:0e:90:2c:b6:27:d7:59:cf:c1:fa:9d: e9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:41:FB:46:E0:B1:F5:37:35:1B:4D:2C:25:9C:05:C2:73:37:1F:B7 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:1a:b0:ab:f3:89:04:26:11:9e:2b:db:70:78:91:3c:21:98: 57:cd:ee:0e:df:62:4a:50:76:80:58:6c:88:c6:34:d1:41:3c: 64:6c:a2:41:ef:6c:15:85:cb:be:cd:3e:bf:b9:b4:70:ae:89: 55:d3:ff:0a:a5:0e:89:7c:52:70:85:9c:df:c9:75:93:fa:f8: b7:71:61:12:9b:d0:94:e9:f4:a6:21:27:94:b2:d7:57:ca:3c: 58:2f:26:5f:da:41:8a:a6:7a:80:cc:86:dd:2f:82:24:71:2d: 8f:13:7a:d6:c8:10:f8:b0:49:b7:4b:41:e7:96:67:31:17:79: 54:56:98:9d:c0:ef:3a:cd:a0:c8:4a:4c:4c:a1:b2:89:9e:33: d1:25:b9:4f:d3:95:97:ec:dc:0f:69:03:1a:ef:61:6d:c4:84: 93:39:ed:cc:63:e2:84:cc:4b:70:4d:cc:f9:de:30:7a:1d:1c: 94:c4:0a:74:de:01:8b:ab:de:ea:00:70:bd:53:0d:e3:ca:62: d3:91:88:28:72:de:7b:69:43:84:c1:1d:01:57:e2:49:7d:01: af:c7:b0:92:f3:a9:8f:3c:fd:98:12:15:52:e1:ad:df:00:2b: 1a:c9:c0:41:0e:71:69:70:99:85:4a:aa:c0:37:55:34:50:3a: 91:5c:fb:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUwMzI5MDUzODU4WhcNMjUwNDA1MDUzODU4WjAYMRYwFAYD VQQDEw02N2U3ODc3My04ZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJbinv1gSYikESx4MaW9+2WiAS2vUeGGG0L0HTFxvi5LnpM5SEL/1a0mwH8H C+PqvPQaMagHIq8WULOh72anvKrS0WqhqFKHd85ZcZRAtSauq9FK8s1JlJVGHCJH VrK2juPrfryyHxhbGAuxEc4ko3kq23aChsH27alAvvLjHWwP3wRQLiXgRRUutgKi bBxfkOT71jFVUsTpG1ER/gCWe0gMkbILT+717Ogn/iMg0R1kuq1UqNs2q1inmUmE uStIwHifXMLDhO4BXsxvbh70Cqju2BJAPUa90HgLEdStp2emARLahf6ofIRmlt5X 5YbeADhyDpAstifXWc/B+p3pdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5B+0bg sfU3NRtNLCWcBcJzNx+3MB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+GrCr84kEJhGeK9tweJE8IZhXze4O32JKUHaAWGyIxjTRQTxkbKJB 72wVhcu+zT6/ubRwrolV0/8KpQ6JfFJwhZzfyXWT+vi3cWESm9CU6fSmISeUstdX yjxYLyZf2kGKpnqAzIbdL4IkcS2PE3rWyBD4sEm3S0HnlmcxF3lUVpidwO86zaDI SkxMobKJnjPRJblP05WX7NwPaQMa72FtxISTOe3MY+KEzEtwTcz53jB6HRyUxAp0 3gGLq97qAHC9Uw3jymLTkYgoct57aUOEwR0BV+JJfQGvx7CS86mPPP2YEhVS4a3f ACsaycBBDnFpcJmFSqrAN1U0UDqRXPuU -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:59 2025 by rpki-client