$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: Ki9gZhrYXY9+iHMO7gB8s0C7kDL5Mal9iDqgvYlBP7c= Subject key identifier: 3A:08:25:41:E6:A3:05:1A:75:C1:EE:B3:C4:C0:86:49:DB:E2:EC:96 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0AE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0ADC Signing time: Sun 06 Apr 2025 19:11:37 +0000 Manifest this update: Sun 06 Apr 2025 19:11:37 +0000 Manifest next update: Sun 13 Apr 2025 19:11:37 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: Y1WDClPr5A9dHFwgmHXdXEXdaRikmQbwH/23jT7mCuM=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 19:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2787 (0xae3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26 Validity Not Before: Apr 6 19:11:37 2025 GMT Not After : Apr 13 19:11:37 2025 GMT Subject: CN=67f2d1e9-96cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c4:fa:1b:c5:e8:ef:a9:76:3e:5b:ee:8e:43: c8:39:79:d4:d5:ae:4c:30:fd:39:41:71:27:33:84: 10:1b:6f:7a:d7:a9:f1:03:f0:63:b6:82:97:b4:38: 32:73:ce:f6:21:d1:10:a3:18:be:3f:fe:e0:d3:e0: 64:ed:f2:aa:84:f7:c0:15:af:d5:00:4c:52:8a:72: 93:58:01:4b:a6:bf:e6:6a:6f:52:96:70:f5:91:80: ba:ca:6c:42:10:92:29:03:b4:e7:0c:78:d9:ee:1b: 0a:e0:ab:a4:59:ca:86:18:80:44:58:23:fd:8b:d7: 7c:29:46:87:eb:81:b6:eb:90:f8:85:d1:d6:d5:b2: 23:34:81:f7:65:8b:8a:d4:42:9e:f2:11:c9:49:70: 13:d5:bd:02:27:28:97:58:d2:19:91:8a:df:2c:de: de:27:b7:3c:17:32:12:ba:9a:a6:2e:e7:68:04:2f: 96:13:26:20:22:60:8c:50:86:f7:c1:33:68:ba:e4: a8:fa:9e:6d:7c:32:40:de:c5:15:2c:96:9d:66:8a: 01:33:90:f5:a2:d0:87:a9:30:b6:5f:56:d7:df:1e: 01:f0:cd:1b:bb:a7:32:1d:c1:1c:43:5e:ee:a8:51: 39:dd:b8:a3:9e:53:0a:ac:e5:1f:73:38:d6:4e:31: 73:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:08:25:41:E6:A3:05:1A:75:C1:EE:B3:C4:C0:86:49:DB:E2:EC:96 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:39:1d:c2:31:5b:63:f6:c5:00:37:82:de:68:a7:dd:d0:ca: 2c:f6:50:ce:68:06:c0:af:b8:90:d8:a5:e1:b3:67:23:17:8e: b7:23:fa:53:f1:a1:7d:c2:8a:c5:8f:d4:e8:74:22:e3:e6:bc: d7:76:86:12:7e:49:e7:88:18:be:99:89:2a:e2:34:22:ae:ac: 50:af:b5:67:00:5b:53:c2:d0:d8:37:93:c9:df:40:22:83:f2: 11:1d:75:b0:95:f7:30:9d:f9:a0:90:b1:3e:6a:6d:5c:a1:22: 4c:6a:74:b3:83:ae:7d:40:7a:78:39:d9:75:17:18:43:f2:c2: 20:b9:60:4d:e7:8c:1c:d8:d8:48:0f:e3:6f:aa:28:46:a4:fa: 7b:de:c1:35:7f:19:95:59:8d:0a:06:50:90:11:be:91:7b:6c: a1:ef:66:79:16:76:4b:ce:b6:27:dc:15:4c:d8:03:81:81:19: ec:f8:74:6d:2a:ae:ed:07:13:8d:5e:1c:fd:bd:7b:6a:bf:a6: 9b:9f:c6:d9:d9:bc:42:5a:00:0c:b9:13:98:66:1f:d2:59:eb: a5:4b:39:1c:0c:69:4b:4c:68:65:96:e0:74:f5:f6:27:e2:9c: c9:7e:f6:da:d0:09:4c:99:d5:54:f9:f7:e0:d5:f8:08:4d:a9: b9:bf:0d:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUwNDA2MTkxMTM3WhcNMjUwNDEzMTkxMTM3WjAYMRYwFAYD VQQDEw02N2YyZDFlOS05NmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8T6G8Xo76l2PlvujkPIOXnU1a5MMP05QXEnM4QQG29616nxA/BjtoKXtDgy c872IdEQoxi+P/7g0+Bk7fKqhPfAFa/VAExSinKTWAFLpr/mam9SlnD1kYC6ymxC EJIpA7TnDHjZ7hsK4KukWcqGGIBEWCP9i9d8KUaH64G265D4hdHW1bIjNIH3ZYuK 1EKe8hHJSXAT1b0CJyiXWNIZkYrfLN7eJ7c8FzISupqmLudoBC+WEyYgImCMUIb3 wTNouuSo+p5tfDJA3sUVLJadZooBM5D1otCHqTC2X1bX3x4B8M0bu6cyHcEcQ17u qFE53bijnlMKrOUfczjWTjFz3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoIJUHm owUadcHus8TAhknb4uyWMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSOR3CMVtj9sUAN4LeaKfd0Mos9lDOaAbAr7iQ2KXhs2cjF463I/pT 8aF9worFj9TodCLj5rzXdoYSfknniBi+mYkq4jQirqxQr7VnAFtTwtDYN5PJ30Ai g/IRHXWwlfcwnfmgkLE+am1coSJManSzg659QHp4Odl1FxhD8sIguWBN54wc2NhI D+NvqihGpPp73sE1fxmVWY0KBlCQEb6Re2yh72Z5FnZLzrYn3BVM2AOBgRns+HRt Kq7tBxONXhz9vXtqv6abn8bZ2bxCWgAMuROYZh/SWeulSzkcDGlLTGhlluB09fYn 4pzJfvba0AlMmdVU+ffg1fgITam5vw1u -----END CERTIFICATE-----Generated at Mon Apr 7 02:41:56 2025 by rpki-client