$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: BmJcee4YYa0aOLlXZNamV/f1tDh6ax3wczyzKolFqrI= Subject key identifier: 61:65:8D:CE:9F:E3:38:37:5D:91:0A:74:46:6C:0E:A7:6E:7C:1D:63 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 04DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 04D9 Signing time: Sat 29 Mar 2025 00:02:16 +0000 Manifest this update: Sat 29 Mar 2025 00:02:16 +0000 Manifest next update: Sat 05 Apr 2025 00:02:16 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: NkaeSqbzmTJHUDWBWiilhrMXiz6/TpOIB8NZvGHwHt8=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1245 (0x4dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9 Validity Not Before: Mar 29 00:02:16 2025 GMT Not After : Apr 5 00:02:16 2025 GMT Subject: CN=67e73888-5433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:73:17:8a:31:08:60:bc:67:c2:e9:33:2a:a7: fa:73:aa:c9:79:f0:61:59:4e:02:d0:19:78:e6:19: 35:d0:c1:88:df:ee:65:5d:90:24:70:89:b5:68:9c: ce:67:74:4e:13:27:cc:94:d5:c3:42:c0:4c:f2:1d: 61:c1:53:fa:72:e2:16:f2:40:19:bd:3a:b0:f6:26: b1:c2:e0:f1:3e:3a:fa:72:b8:dc:52:47:62:2c:6b: 39:c5:12:6c:d6:e8:ad:a0:35:18:80:2d:ad:7b:cf: 0d:99:b3:33:8c:e7:0c:0d:6f:18:d2:e0:13:a5:b6: 11:a9:ab:d9:a0:4c:b8:39:f0:72:50:9a:7c:42:66: 98:b2:c9:5b:75:d0:e5:84:ed:c1:38:ac:38:fb:05: 18:58:31:fc:e6:8f:bb:ae:70:34:81:30:6b:a1:70: ab:e5:7c:07:d5:81:7a:9c:5a:f4:4d:b5:d2:19:05: c8:9e:65:bd:1a:d2:18:b3:f0:03:78:e7:59:f1:d2: 84:de:dd:81:f4:41:43:96:25:1e:55:2d:09:03:61: 3c:49:cb:cf:60:11:56:80:ba:19:8c:a0:e7:0c:e1: 29:9e:65:6c:e0:21:56:28:ff:ab:37:b4:62:7f:e0: 8c:ae:b7:4a:dc:f3:ca:37:77:04:02:77:02:13:ca: fd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:65:8D:CE:9F:E3:38:37:5D:91:0A:74:46:6C:0E:A7:6E:7C:1D:63 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ba:82:00:58:68:85:2b:50:1b:8e:c3:60:a9:d9:cd:d4:3e: e2:5f:a8:59:26:2a:36:24:be:44:13:51:d6:76:22:b0:b8:96: 59:b9:9b:cb:f2:9a:fc:e0:8a:a1:ab:2d:9d:c2:b6:2b:c7:5d: 99:4b:7f:06:f4:13:c0:99:4d:ac:fb:13:be:60:af:df:04:e5: 65:a6:9d:5d:c5:6d:22:2a:9f:0b:b1:05:75:2f:7a:8b:9c:e8: fb:ae:9b:10:7a:c7:ff:c5:0a:cd:05:00:02:0f:07:e8:81:b7: 68:76:63:23:1f:22:61:fd:57:db:bf:1f:28:b2:f2:75:26:94: 10:82:f4:09:6c:b0:10:49:dc:5d:3f:87:21:4d:84:36:80:0a: 07:d4:ff:6b:dc:ce:ea:91:59:58:5b:8e:ab:4c:ea:59:53:87: 9e:8c:3c:67:81:b7:cd:22:2d:46:cd:56:d1:09:32:f7:3e:ce: 45:9a:7b:15:d7:b6:d5:39:4e:19:78:69:41:9c:33:cb:36:5c: fb:68:7c:59:18:a7:a1:13:83:98:b0:8e:39:2e:5d:7e:1a:ee: 17:48:16:ec:ee:5c:de:31:70:75:7c:d4:71:24:71:9c:2c:ce: ac:24:c6:97:9c:e5:77:e7:46:53:d3:f5:4a:ee:b5:22:ed:85: df:09:80:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUwMzI5MDAwMjE2WhcNMjUwNDA1MDAwMjE2WjAYMRYwFAYD VQQDEw02N2U3Mzg4OC01NDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXMXijEIYLxnwukzKqf6c6rJefBhWU4C0Bl45hk10MGI3+5lXZAkcIm1aJzO Z3ROEyfMlNXDQsBM8h1hwVP6cuIW8kAZvTqw9iaxwuDxPjr6crjcUkdiLGs5xRJs 1uitoDUYgC2te88NmbMzjOcMDW8Y0uATpbYRqavZoEy4OfByUJp8QmaYsslbddDl hO3BOKw4+wUYWDH85o+7rnA0gTBroXCr5XwH1YF6nFr0TbXSGQXInmW9GtIYs/AD eOdZ8dKE3t2B9EFDliUeVS0JA2E8ScvPYBFWgLoZjKDnDOEpnmVs4CFWKP+rN7Ri f+CMrrdK3PPKN3cEAncCE8r9/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFljc6f 4zg3XZEKdEZsDqdufB1jMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUuoIAWGiFK1AbjsNgqdnN1D7iX6hZJio2JL5EE1HWdiKwuJZZuZvL 8pr84Iqhqy2dwrYrx12ZS38G9BPAmU2s+xO+YK/fBOVlpp1dxW0iKp8LsQV1L3qL nOj7rpsQesf/xQrNBQACDwfogbdodmMjHyJh/Vfbvx8osvJ1JpQQgvQJbLAQSdxd P4chTYQ2gAoH1P9r3M7qkVlYW46rTOpZU4eejDxngbfNIi1GzVbRCTL3Ps5FmnsV 17bVOU4ZeGlBnDPLNlz7aHxZGKehE4OYsI45Ll1+Gu4XSBbs7lzeMXB1fNRxJHGc LM6sJMaXnOV350ZT0/VK7rUi7YXfCYCa -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:06 2025 by rpki-client