$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: 2LApj9g1l8JXCMPWsg4Y8fxf5PDUVM+NFcZxP+bY9ew= Subject key identifier: 4C:BE:B7:36:6D:58:BE:E4:16:A1:D7:FE:C3:13:0C:03:D8:9B:6C:14 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 017D Signing time: Thu 17 Apr 2025 02:43:21 +0000 Manifest this update: Thu 17 Apr 2025 02:43:20 +0000 Manifest next update: Thu 24 Apr 2025 02:43:20 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: 0E7cjbJVvTRZOZByqTlUcsdml1vNlyPAAez5XZtXTBs=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 02:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Apr 17 02:43:20 2025 GMT Not After : Apr 24 02:43:20 2025 GMT Subject: CN=68006ac9-0018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0b:39:5d:b6:b8:26:b7:f1:2e:fa:5b:4b:67: 8f:c0:c9:65:00:bf:f3:f1:c9:6a:6a:34:e3:56:7f: 32:55:52:4b:b1:da:69:0a:2d:5a:21:0a:55:41:dc: 2a:2b:a5:6c:2b:c9:74:cd:76:22:73:41:65:48:15: f0:02:08:46:32:8b:fc:42:f7:b3:19:0a:96:64:c4: 30:53:af:8d:da:60:18:84:a2:af:28:56:7f:15:68: d4:8c:cd:42:53:6c:cd:d8:d8:ff:86:b6:58:d5:4b: 9f:99:d2:33:5c:66:66:d0:7c:76:c7:e8:aa:60:3a: b1:a6:d2:80:89:aa:de:18:92:fa:84:2f:84:77:8e: a4:b0:f3:6b:09:c3:c0:fa:c7:55:83:88:df:33:d2: c0:4a:b8:41:42:39:0d:fd:9c:db:48:fa:f7:da:4f: 99:10:d7:51:63:db:35:cd:58:f7:9e:b9:a5:97:49: e1:da:9f:5d:e5:94:98:0a:73:e2:65:8c:b3:a9:a8: 41:59:b0:0d:cd:3f:a2:2d:41:67:72:29:84:6a:52: 4a:17:80:f2:31:d3:44:94:d3:7f:2e:31:72:5c:ca: a6:40:bd:e8:37:b9:c7:31:6c:05:22:c9:96:95:91: 68:a2:c4:a8:06:8b:6e:d2:cb:eb:70:4a:b0:94:cc: 3e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:BE:B7:36:6D:58:BE:E4:16:A1:D7:FE:C3:13:0C:03:D8:9B:6C:14 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:52:45:4d:bb:10:65:5f:2d:fd:eb:d9:de:63:ba:c0:36:2b: 48:8d:da:d1:f5:d9:13:25:5f:8f:69:03:31:d6:b2:4e:98:d4: ed:12:b3:97:0a:41:b8:97:c9:af:8b:fd:f3:3e:b4:17:fd:8c: 06:a5:97:20:2c:d9:f8:85:67:f2:e2:f3:7e:4a:37:b5:9b:ce: de:d6:59:6c:00:74:c7:c1:2f:38:e4:95:c4:37:ad:df:2d:6c: dd:73:f0:93:2a:6a:a8:5c:70:52:b4:7e:3d:c6:d6:bd:72:18: 76:53:bb:1e:bb:b0:76:bd:53:19:77:f4:91:34:91:f1:41:17: 3d:f3:84:f5:08:f7:12:6d:d3:31:61:74:7e:24:03:c8:e2:4a: cc:e3:51:d3:6d:40:fc:d7:8d:34:8c:69:e5:89:eb:f6:3d:c5: 1b:39:e0:c8:17:c0:3c:70:e8:f4:2f:44:75:51:17:13:77:ca: 9f:e9:f1:85:97:e7:b2:89:9e:62:64:7d:18:ee:09:71:53:d5: 4b:b1:de:bc:87:94:5a:20:5f:a4:9d:d0:5a:e4:25:b9:37:aa: c4:9f:ac:4b:83:41:17:ad:a1:2b:60:f6:70:6f:8e:b3:65:e8: 27:51:3a:e1:36:ca:61:e2:4f:98:10:ab:f8:dc:24:0d:ed:4e: 5f:4d:84:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwNDE3MDI0MzIwWhcNMjUwNDI0MDI0MzIwWjAYMRYwFAYD VQQDEw02ODAwNmFjOS0wMDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQs5Xba4JrfxLvpbS2ePwMllAL/z8clqajTjVn8yVVJLsdppCi1aIQpVQdwq K6VsK8l0zXYic0FlSBXwAghGMov8QvezGQqWZMQwU6+N2mAYhKKvKFZ/FWjUjM1C U2zN2Nj/hrZY1UufmdIzXGZm0Hx2x+iqYDqxptKAiareGJL6hC+Ed46ksPNrCcPA +sdVg4jfM9LASrhBQjkN/ZzbSPr32k+ZENdRY9s1zVj3nrmll0nh2p9d5ZSYCnPi ZYyzqahBWbANzT+iLUFncimEalJKF4DyMdNElNN/LjFyXMqmQL3oN7nHMWwFIsmW lZFoosSoBotu0svrcEqwlMw+AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEy+tzZt WL7kFqHX/sMTDAPYm2wUMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABUkVNuxBlXy3969neY7rANitIjdrR9dkTJV+PaQMx1rJOmNTtErOX CkG4l8mvi/3zPrQX/YwGpZcgLNn4hWfy4vN+Sje1m87e1llsAHTHwS845JXEN63f LWzdc/CTKmqoXHBStH49xta9chh2U7seu7B2vVMZd/SRNJHxQRc984T1CPcSbdMx YXR+JAPI4krM41HTbUD81400jGnliev2PcUbOeDIF8A8cOj0L0R1URcTd8qf6fGF l+eyiZ5iZH0Y7glxU9VLsd68h5RaIF+kndBa5CW5N6rEn6xLg0EXraErYPZwb46z ZegnUTrhNsph4k+YEKv43CQN7U5fTYTH -----END CERTIFICATE-----Generated at Fri Apr 18 10:20:54 2025 by rpki-client