$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: pfnvWg6Bd7R3zn9moqG3/MnYW2+iIV5xAtneZB74hPw= Subject key identifier: F1:EC:F6:5C:AF:C5:AF:9C:21:17:4A:7C:DB:53:B2:62:96:91:36:36 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0C88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0C7C Signing time: Sun 06 Apr 2025 18:03:42 +0000 Manifest this update: Sun 06 Apr 2025 18:03:41 +0000 Manifest next update: Sun 13 Apr 2025 18:03:41 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: GihLyzOZFV2ReNSeJ7XHdmZuh467uMAlpe9bWixZhtM=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3208 (0xc88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A Validity Not Before: Apr 6 18:03:41 2025 GMT Not After : Apr 13 18:03:41 2025 GMT Subject: CN=67f2c1fe-8bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:2c:77:89:2c:4a:d6:5f:d4:87:e1:75:10: 61:d4:4c:77:89:e1:11:ee:57:6d:32:39:95:cf:38: e6:02:a3:c0:c8:f8:02:36:61:c4:3d:a1:ed:3b:ec: 6b:5e:a2:49:2a:38:8e:58:dc:99:f4:cc:93:86:6e: 09:bd:c3:6d:aa:c1:ed:64:f8:1e:99:2b:03:b3:8f: d8:ac:1d:41:7a:15:c4:75:3f:d5:a7:59:31:62:bf: d6:61:0f:4a:78:e4:71:8d:8a:e7:dc:a2:db:9f:61: dd:3a:4b:30:57:fc:a8:65:78:d6:a6:10:55:db:3e: fb:54:f7:5f:41:2f:90:d4:c7:b6:12:56:1e:c3:89: f5:e7:f2:85:4f:a5:93:0d:67:0a:44:5c:64:a2:99: 0f:88:d3:79:09:79:a3:35:85:92:27:9a:14:af:14: 8a:1d:6b:1c:e8:08:c5:af:c8:c7:42:62:74:99:bc: 70:7c:95:1c:64:56:c4:82:bc:dc:ff:0e:26:17:9e: da:5a:c7:33:78:32:40:35:f1:69:0d:22:32:66:6a: a4:98:02:80:05:44:77:ea:dc:7a:25:2c:51:0f:88: ba:ca:a3:8f:18:4d:22:1c:34:0f:8d:19:ce:48:5c: c1:80:93:45:64:94:7c:3c:7c:34:09:d8:1f:a6:9c: 3a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:EC:F6:5C:AF:C5:AF:9C:21:17:4A:7C:DB:53:B2:62:96:91:36:36 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:59:2d:e5:c7:79:4f:87:ae:81:b7:bf:87:1f:54:f6:54:cf: 42:1c:88:5c:87:5c:d2:7b:12:f2:ff:70:ea:9c:da:f7:be:b3: 4f:16:ff:c7:32:8b:09:61:a5:fe:3c:5e:21:40:a2:6e:c6:67: 2d:58:f7:28:bf:77:4f:99:e5:e9:11:b0:08:6f:f7:7b:ae:e9: 44:2e:54:dd:ad:eb:aa:64:d4:95:2e:9e:b7:4e:57:fa:ce:ab: 92:e8:fd:a3:d6:ba:4f:f8:ea:a3:af:88:83:0c:9c:42:25:69: 3e:1a:82:2e:c6:dc:3f:f0:f1:66:80:03:92:74:e1:fe:e6:04: 13:ad:1f:45:08:36:61:bd:82:fc:d5:cf:36:bd:39:01:c4:a6: 43:e5:aa:40:d0:0a:bb:c0:a0:9d:5d:d1:5f:6b:4e:38:11:de: 20:84:8a:72:78:67:b2:04:94:7b:7e:1b:a6:79:c0:5b:9d:53: 05:8c:37:d6:9d:f7:73:17:dc:f2:a5:61:41:b9:cb:59:89:22: 33:06:92:72:fd:2f:60:0a:cb:a3:43:7c:ee:01:50:3f:50:71: 3d:6b:48:fb:a6:fc:a0:3f:d1:fe:84:17:3a:51:45:98:81:9e: 04:ad:e0:3e:4c:7f:5e:ae:91:89:ec:6d:ca:40:cd:49:ca:d4: fe:2e:9e:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUwNDA2MTgwMzQxWhcNMjUwNDEzMTgwMzQxWjAYMRYwFAYD VQQDEw02N2YyYzFmZS04YmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMgsd4ksStZf1IfhdRBh1Ex3ieER7ldtMjmVzzjmAqPAyPgCNmHEPaHtO+xr XqJJKjiOWNyZ9MyThm4JvcNtqsHtZPgemSsDs4/YrB1BehXEdT/Vp1kxYr/WYQ9K eORxjYrn3KLbn2HdOkswV/yoZXjWphBV2z77VPdfQS+Q1Me2ElYew4n15/KFT6WT DWcKRFxkopkPiNN5CXmjNYWSJ5oUrxSKHWsc6AjFr8jHQmJ0mbxwfJUcZFbEgrzc /w4mF57aWsczeDJANfFpDSIyZmqkmAKABUR36tx6JSxRD4i6yqOPGE0iHDQPjRnO SFzBgJNFZJR8PHw0Cdgfppw6rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHs9lyv xa+cIRdKfNtTsmKWkTY2MB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYWS3lx3lPh66Bt7+HH1T2VM9CHIhch1zSexLy/3DqnNr3vrNPFv/H MosJYaX+PF4hQKJuxmctWPcov3dPmeXpEbAIb/d7rulELlTdreuqZNSVLp63Tlf6 zquS6P2j1rpP+Oqjr4iDDJxCJWk+GoIuxtw/8PFmgAOSdOH+5gQTrR9FCDZhvYL8 1c82vTkBxKZD5apA0Aq7wKCdXdFfa044Ed4ghIpyeGeyBJR7fhumecBbnVMFjDfW nfdzF9zypWFBuctZiSIzBpJy/S9gCsujQ3zuAVA/UHE9a0j7pvygP9H+hBc6UUWY gZ4EreA+TH9erpGJ7G3KQM1JytT+Lp5J -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:32 2025 by rpki-client