$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: LEnx5d5po+SLLOh44F1I+H/39Ugl2mpgqdvAkd9gWjw= Subject key identifier: D0:E4:00:29:17:88:F0:E5:76:65:F9:4F:ED:B5:43:36:28:B9:32:3A Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 01E9 Signing time: Thu 03 Apr 2025 02:06:27 +0000 Manifest this update: Thu 03 Apr 2025 02:06:27 +0000 Manifest next update: Thu 10 Apr 2025 02:06:27 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: XF6/LDO1UxzJHHc34MNVqU8MgGfnB+lZSAplQ+8ibP8=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: 8tU0+bWbTseOr25wJKvheZneGGhgRMUkg1uHcFDydtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451 Validity Not Before: Apr 3 02:06:27 2025 GMT Not After : Apr 10 02:06:27 2025 GMT Subject: CN=67eded23-ba8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:38:43:e9:53:f9:15:d7:9b:42:ef:4f:16:84: c6:82:86:8a:8f:b1:c3:2d:8b:cd:ff:4a:37:67:74: 90:0e:12:b6:bd:e1:4f:98:45:0c:3a:93:66:62:6b: 20:06:84:7b:2b:8e:89:7e:7b:b2:82:70:a7:6a:1e: 84:36:22:d1:01:bf:4b:2a:21:b3:e6:89:7a:a9:da: e7:5c:9e:c1:7d:d1:ad:ba:b3:9f:01:49:df:55:de: 7f:e5:08:ff:20:1c:ae:65:75:2d:26:b0:d8:ac:18: f5:bb:ca:8e:01:ab:e5:43:15:fc:97:28:8f:34:fd: 11:15:74:b0:b9:b0:e7:15:8d:e5:59:2e:3f:23:70: 70:49:d3:b8:c2:1f:67:eb:5b:aa:c0:68:de:0d:15: f7:16:2e:09:bb:06:00:c7:30:3b:dc:2d:e7:41:3b: be:ee:45:07:6c:b2:39:85:7b:71:10:46:40:ee:00: 06:85:b6:36:bf:ab:75:3e:82:f1:a0:4e:e1:3c:88: 77:69:e2:fd:17:82:46:50:fa:b7:83:c6:6d:91:21: 95:73:4c:06:db:ef:1b:95:66:3a:e4:40:fb:71:a9: 1e:64:34:02:99:9b:1f:4d:6f:e2:e9:69:c4:f2:39: 52:01:54:d3:24:33:60:89:d2:66:c5:99:32:f6:fd: f8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E4:00:29:17:88:F0:E5:76:65:F9:4F:ED:B5:43:36:28:B9:32:3A X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:4c:0e:c6:55:24:3a:bc:6a:45:44:86:06:94:48:71:70:ae: d6:99:66:ef:14:3b:42:38:a5:97:0b:7e:53:51:bf:a3:2b:3e: bd:dd:8e:73:cb:ea:3b:5a:98:28:83:50:ae:e3:f0:65:c6:cb: 5b:dd:87:19:ec:3e:09:1d:43:03:15:e9:e3:b8:fb:a0:02:64: 06:bc:1c:4f:3d:a9:6a:2c:44:2f:71:0c:bf:a6:26:78:bc:95: 36:ec:38:ee:92:1d:93:5d:bd:4c:56:00:e1:83:9d:de:e4:eb: 99:35:e1:44:14:29:64:ce:7d:85:c4:7a:9e:e5:55:5d:3c:57: 7e:c9:16:19:af:df:5c:2d:17:29:7f:04:59:01:3b:bb:fd:1e: ab:39:11:72:69:c8:e6:cb:41:dd:75:19:52:8e:8b:3c:08:e1: 40:4f:5e:6b:34:6b:24:f6:7c:98:fb:6a:5c:9b:25:17:7b:18: 59:33:18:97:98:ee:d5:d4:1a:48:56:26:e5:3c:a0:f4:d5:35: 15:24:3d:10:0e:ec:81:6c:e0:24:3d:b9:db:1a:bf:29:81:1c: 68:84:34:db:08:f4:2b:c3:a2:3a:cd:98:83:27:6f:b4:8a:be: 6f:cf:ab:d2:91:23:cd:9d:96:41:ae:63:89:b5:8b:34:75:a1: 82:d3:b7:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjUwNDAzMDIwNjI3WhcNMjUwNDEwMDIwNjI3WjAYMRYwFAYD VQQDEw02N2VkZWQyMy1iYThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzhD6VP5FdebQu9PFoTGgoaKj7HDLYvN/0o3Z3SQDhK2veFPmEUMOpNmYmsg BoR7K46JfnuygnCnah6ENiLRAb9LKiGz5ol6qdrnXJ7BfdGturOfAUnfVd5/5Qj/ IByuZXUtJrDYrBj1u8qOAavlQxX8lyiPNP0RFXSwubDnFY3lWS4/I3BwSdO4wh9n 61uqwGjeDRX3Fi4JuwYAxzA73C3nQTu+7kUHbLI5hXtxEEZA7gAGhbY2v6t1PoLx oE7hPIh3aeL9F4JGUPq3g8ZtkSGVc0wG2+8blWY65ED7cakeZDQCmZsfTW/i6WnE 8jlSAVTTJDNgidJmxZky9v34EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDkACkX iPDldmX5T+21QzYouTI6MB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfTA7GVSQ6vGpFRIYGlEhxcK7WmWbvFDtCOKWXC35TUb+jKz693Y5z y+o7Wpgog1Cu4/Blxstb3YcZ7D4JHUMDFenjuPugAmQGvBxPPalqLEQvcQy/piZ4 vJU27Djukh2TXb1MVgDhg53e5OuZNeFEFClkzn2FxHqe5VVdPFd+yRYZr99cLRcp fwRZATu7/R6rORFyacjmy0HddRlSjos8COFAT15rNGsk9nyY+2pcmyUXexhZMxiX mO7V1BpIViblPKD01TUVJD0QDuyBbOAkPbnbGr8pgRxohDTbCPQrw6I6zZiDJ2+0 ir5vz6vSkSPNnZZBrmOJtYs0daGC07df -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:49 2025 by rpki-client