$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft File: 1SAZKpWvyNXyc3TZo0xGM859rEQ.mft (raw, json) Hash identifier: KhFa/gEcIsZXEBXBOnPDju7WpyF/iBNrQy6SCuOZv3M= Subject key identifier: 29:6A:BE:D9:8E:CB:48:44:A3:66:3C:83:D2:57:D2:14:63:FB:A2:9C Authority key identifier: D5:20:19:2A:95:AF:C8:D5:F2:73:74:D9:A3:4C:46:33:CE:7D:AC:44 Certificate issuer: /CN=A9169A9C/serialNumber=D520192A95AFC8D5F27374D9A34C4633CE7DAC44 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft Manifest number: 0144 Signing time: Thu 03 Apr 2025 03:45:11 +0000 Manifest this update: Thu 03 Apr 2025 03:45:11 +0000 Manifest next update: Thu 10 Apr 2025 03:45:11 +0000 Files and hashes: 1: 1SAZKpWvyNXyc3TZo0xGM859rEQ.crl (hash: 4ar85CTbKikjEvRKPrgcpvA/5EfLshOV6NwkTfDI5D4=) 2: C606792CD3C811EFA4C15D2FC4F9AE02.roa (hash: RhIG4rVv0sC6eQgj2JPpIA3cTSID02u0FgU4lPWL4Is=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.crl rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C Validity Not Before: Apr 3 03:45:11 2025 GMT Not After : Apr 10 03:45:11 2025 GMT Subject: CN=67ee0447-2d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:df:c7:6f:5c:68:19:7d:d8:15:46:02:0d: 11:6a:13:5d:cf:a5:23:52:67:7f:e7:fe:7f:ec:88: 57:f2:1b:3a:c2:85:31:70:20:3a:5a:6f:5c:2e:83: 48:32:42:8a:c9:34:e2:a2:28:95:5d:60:46:97:4d: 2d:e1:11:50:95:6c:ca:37:64:bf:85:ce:a6:94:bb: 1d:b4:ad:6c:8c:c9:c7:13:c6:4b:e5:3f:00:e4:e3: c6:94:42:e0:6d:56:4b:e4:3b:d2:48:69:fa:14:cf: 01:5d:9e:12:8c:29:dd:4c:72:b6:8c:90:2f:7c:9d: 6f:04:ea:58:d2:1d:3b:58:33:67:a9:a6:5c:5b:61: e1:4f:56:41:35:65:6c:81:80:09:3b:2d:bf:be:a5: f8:1b:f8:eb:7f:aa:0c:c5:c1:d2:dc:29:99:06:2c: d8:74:f4:19:b3:7b:92:1f:56:4b:1a:a4:81:d5:c2: dc:fc:84:14:76:0c:94:06:4f:90:a4:0b:5b:14:c2: ba:0c:9b:8c:18:e1:74:29:de:2f:a6:0e:7e:2c:de: fa:c2:ea:e8:fa:d1:a7:32:63:4b:f3:20:2e:61:89: b3:8c:1c:2b:fb:37:47:5f:db:7f:6e:f7:aa:f7:ed: f5:89:96:ac:90:65:d1:db:97:8f:29:fe:c9:eb:01: cf:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:6A:BE:D9:8E:CB:48:44:A3:66:3C:83:D2:57:D2:14:63:FB:A2:9C X509v3 Authority Key Identifier: keyid:D5:20:19:2A:95:AF:C8:D5:F2:73:74:D9:A3:4C:46:33:CE:7D:AC:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:17:56:69:98:54:41:ba:82:21:a6:e0:6e:d5:ba:36:d9:80: 17:2d:7c:8e:1d:45:66:34:ad:34:6f:25:60:f3:eb:39:7b:4e: 39:c6:61:bd:bf:ef:37:80:4e:74:a0:a8:c6:02:94:c2:59:1f: 77:dd:8f:99:47:c3:88:b5:13:ea:77:06:8d:d1:73:5a:be:ee: 3e:94:9f:fb:e0:e0:74:30:30:30:d2:c9:f4:78:a8:1a:2b:b9: c8:41:78:84:36:d0:54:20:3e:25:fa:c5:3d:ab:fc:67:6c:fc: a0:08:32:6a:1c:7b:cc:ec:05:56:b4:d9:b5:37:b8:c0:87:3e: 97:e7:c7:f7:6d:fc:9f:64:d9:b2:a1:20:f4:73:8e:eb:3d:d7: e6:ed:4d:a0:7c:a5:ec:18:17:10:5f:70:ae:91:7a:ed:c3:6a: af:01:5c:c2:9c:d8:c5:0e:a1:dc:d3:04:8d:ee:b9:ed:2e:65: 28:0a:96:88:36:7e:48:50:b8:ec:39:82:29:4a:f9:d2:14:39: ed:c1:2f:d7:d3:13:27:51:95:ce:c8:a4:26:5d:0c:7d:dc:96: 44:54:70:50:62:7f:e5:17:9b:4f:c2:b1:c4:69:ec:cb:dc:90: ba:69:63:77:6a:13:39:c0:a2:81:ac:b7:75:65:09:92:da:fc: e7:c5:dc:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEQ1MjAxOTJBOTVBRkM4RDVGMjczNzREOUEzNEM0NjMz Q0U3REFDNDQwHhcNMjUwNDAzMDM0NTExWhcNMjUwNDEwMDM0NTExWjAYMRYwFAYD VQQDEw02N2VlMDQ0Ny0yZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4Dfx29caBl92BVGAg0RahNdz6UjUmd/5/5/7IhX8hs6woUxcCA6Wm9cLoNI MkKKyTTioiiVXWBGl00t4RFQlWzKN2S/hc6mlLsdtK1sjMnHE8ZL5T8A5OPGlELg bVZL5DvSSGn6FM8BXZ4SjCndTHK2jJAvfJ1vBOpY0h07WDNnqaZcW2HhT1ZBNWVs gYAJOy2/vqX4G/jrf6oMxcHS3CmZBizYdPQZs3uSH1ZLGqSB1cLc/IQUdgyUBk+Q pAtbFMK6DJuMGOF0Kd4vpg5+LN76wuro+tGnMmNL8yAuYYmzjBwr+zdHX9t/bveq 9+31iZaskGXR25ePKf7J6wHPiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClqvtmO y0hEo2Y8g9JX0hRj+6KcMB8GA1UdIwQYMBaAFNUgGSqVr8jV8nN02aNMRjPOfaxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy9DM0E4MDQwNDNG ODQxMUVFQjkwMEE5MEZDNEY5QUUwMi8xU0FaS3BXdnlOWHljM1RabzB4R004NTly RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTQVpLcFd2eU5YeWMzVFpvMHhHTTg1OXJFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUE5Qy9DM0E4MDQwNDNGODQxMUVFQjkwMEE5MEZDNEY5QUUwMi8xU0FaS3BXdnlO WHljM1RabzB4R004NTlyRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAF1ZpmFRBuoIhpuBu1bo22YAXLXyOHUVmNK00byVg8+s5e045xmG9 v+83gE50oKjGApTCWR933Y+ZR8OItRPqdwaN0XNavu4+lJ/74OB0MDAw0sn0eKga K7nIQXiENtBUID4l+sU9q/xnbPygCDJqHHvM7AVWtNm1N7jAhz6X58f3bfyfZNmy oSD0c47rPdfm7U2gfKXsGBcQX3CukXrtw2qvAVzCnNjFDqHc0wSN7rntLmUoCpaI Nn5IULjsOYIpSvnSFDntwS/X0xMnUZXOyKQmXQx93JZEVHBQYn/lF5tPwrHEaezL 3JC6aWN3ahM5wKKBrLd1ZQmS2vznxdyW -----END CERTIFICATE-----Generated at Fri Apr 4 22:27:07 2025 by rpki-client