$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft File: fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft (raw, json) Hash identifier: iXMdGFAcGha0L/WocUwpRFLymwvc4TEBbMs1KY/pdlk= Subject key identifier: 4E:35:94:A7:23:1B:2E:55:26:A6:AE:14:53:B2:80:1E:AC:21:20:18 Authority key identifier: 7E:E3:B8:8F:B1:AF:0D:92:DB:D2:16:61:25:FB:09:CB:24:F1:08:3F Certificate issuer: /CN=A9170AF9/serialNumber=7EE3B88FB1AF0D92DBD2166125FB09CB24F1083F Certificate serial: 05E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft Manifest number: 05E2 Signing time: Fri 28 Mar 2025 23:14:48 +0000 Manifest this update: Fri 28 Mar 2025 23:14:48 +0000 Manifest next update: Fri 04 Apr 2025 23:14:48 +0000 Files and hashes: 1: fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl (hash: kiTdJRv7u6Yr9DFhRUPQmZmywdlWrYhUJLPQHquO8lE=) 2: 98212A1EA7F011EB816C331FC4F9AE02.roa (hash: g0yk2bIJuIxlslA37+MYT7bVXA+9AB9etIi570IlrAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1510 (0x5e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AF9 Validity Not Before: Mar 28 23:14:48 2025 GMT Not After : Apr 4 23:14:48 2025 GMT Subject: CN=67e72d68-d9f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5a:c3:52:98:3b:85:34:b5:d7:4e:68:25:16: 0a:bf:5c:d4:05:47:a6:11:eb:6d:1d:1a:bc:59:d2: 81:0b:a1:57:e3:f6:b5:0c:31:32:77:87:ed:0c:07: 7a:be:20:b5:15:16:24:9f:63:60:34:73:58:0f:91: 12:e9:0a:e0:ca:e4:f4:bb:76:ab:fc:14:26:82:b2: 29:62:b6:03:a8:3a:ba:80:3b:32:f5:cf:0f:3c:03: ee:8e:44:72:5b:40:b2:31:58:25:f7:e5:70:8b:8c: eb:40:dc:9a:5c:d8:7e:37:cc:c4:59:26:c8:cb:0e: ae:48:c3:91:0e:ba:fb:ec:ae:92:ad:31:89:b0:c6: 18:2f:70:b7:d7:fb:8b:ee:82:2b:55:a2:e9:59:c1: 5d:77:6d:a9:c3:6c:9f:dc:7e:e4:2c:89:0d:9f:df: 1b:13:4e:ce:91:18:0c:6e:b0:cf:16:b9:c5:2b:ba: 8f:34:73:f2:dc:cf:a5:5a:5f:e5:90:fa:03:f0:15: 4e:62:51:10:c6:98:74:93:18:c4:69:d0:7a:c6:aa: 5d:d5:e5:4d:ab:56:cd:12:ae:d5:c5:da:a2:7c:86: 92:15:78:87:1b:f3:36:fc:01:6d:70:82:d9:f5:6f: e7:d0:05:f1:d8:75:a5:19:c1:04:38:d6:55:b8:8b: 15:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:35:94:A7:23:1B:2E:55:26:A6:AE:14:53:B2:80:1E:AC:21:20:18 X509v3 Authority Key Identifier: keyid:7E:E3:B8:8F:B1:AF:0D:92:DB:D2:16:61:25:FB:09:CB:24:F1:08:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:40:a9:9a:ea:af:86:25:eb:49:35:8a:9d:05:8a:ec:65:ca: fa:8e:6e:99:07:8a:ad:a4:34:f6:a7:4a:64:25:ea:3f:5c:b5: cf:3b:59:2f:c6:96:4b:fd:29:06:44:79:9f:3e:0c:ec:57:62: a3:b0:9b:12:97:35:ea:c2:a7:7d:87:86:72:99:e1:db:e8:e8: e1:7b:b9:e5:81:9c:fe:bb:d4:8c:ad:07:24:17:49:b5:40:7b: b7:e2:b8:73:a4:3f:47:f4:c0:bc:42:c2:a3:26:cf:6a:34:03: d4:ee:82:8e:53:67:1e:5d:e2:62:67:68:8b:ee:5d:e1:01:2e: 8b:b3:52:79:5a:88:6e:ee:f9:84:f3:bc:4b:90:ee:6f:46:76: 08:98:4f:15:18:fb:b2:f0:5d:3b:4f:66:4d:61:41:5a:8f:41: bd:22:07:c2:55:cf:e8:23:20:dc:3b:80:33:d0:ad:17:e9:d5: fe:94:cf:e4:f0:74:ab:6b:13:66:8f:2f:1f:5b:44:6c:61:07: 28:bf:30:9a:4e:cf:dd:a5:74:11:1c:89:42:b4:59:a4:9a:51: 4f:80:b3:b5:ea:57:f2:67:69:0b:e1:32:3e:84:ec:92:75:39: 50:fe:60:01:27:1a:3f:f3:48:4b:04:a4:e1:a4:7a:49:8e:ff: 29:76:40:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRjkxMTAvBgNVBAUTKDdFRTNCODhGQjFBRjBEOTJEQkQyMTY2MTI1RkIwOUNC MjRGMTA4M0YwHhcNMjUwMzI4MjMxNDQ4WhcNMjUwNDA0MjMxNDQ4WjAYMRYwFAYD VQQDEw02N2U3MmQ2OC1kOWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslrDUpg7hTS1105oJRYKv1zUBUemEettHRq8WdKBC6FX4/a1DDEyd4ftDAd6 viC1FRYkn2NgNHNYD5ES6QrgyuT0u3ar/BQmgrIpYrYDqDq6gDsy9c8PPAPujkRy W0CyMVgl9+Vwi4zrQNyaXNh+N8zEWSbIyw6uSMORDrr77K6SrTGJsMYYL3C31/uL 7oIrVaLpWcFdd22pw2yf3H7kLIkNn98bE07OkRgMbrDPFrnFK7qPNHPy3M+lWl/l kPoD8BVOYlEQxph0kxjEadB6xqpd1eVNq1bNEq7VxdqifIaSFXiHG/M2/AFtcILZ 9W/n0AXx2HWlGcEEONZVuIsVaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE41lKcj Gy5VJqauFFOygB6sISAYMB8GA1UdIwQYMBaAFH7juI+xrw2S29IWYSX7Ccsk8Qg/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFGOS8yOUNEQ0Q4RUE3 RUYxMUVCQjEyREE0MUVDNEY5QUUwMi9mdU80ajdHdkRaTGIwaFpoSmZzSnl5VHhD RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1TzRqN0d2RFpMYjBoWmhKZnNKeXlUeENEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFGOS8yOUNEQ0Q4RUE3RUYxMUVCQjEyREE0MUVDNEY5QUUwMi9mdU80ajdHdkRa TGIwaFpoSmZzSnl5VHhDRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqQKma6q+GJetJNYqdBYrsZcr6jm6ZB4qtpDT2p0pkJeo/XLXPO1kv xpZL/SkGRHmfPgzsV2KjsJsSlzXqwqd9h4ZymeHb6Ojhe7nlgZz+u9SMrQckF0m1 QHu34rhzpD9H9MC8QsKjJs9qNAPU7oKOU2ceXeJiZ2iL7l3hAS6Ls1J5Wohu7vmE 87xLkO5vRnYImE8VGPuy8F07T2ZNYUFaj0G9IgfCVc/oIyDcO4Az0K0X6dX+lM/k 8HSraxNmjy8fW0RsYQcovzCaTs/dpXQRHIlCtFmkmlFPgLO16lfyZ2kL4TI+hOyS dTlQ/mABJxo/80hLBKThpHpJjv8pdkCo -----END CERTIFICATE-----Generated at Fri Apr 4 21:51:53 2025 by rpki-client