$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: z0U0J+Q3tZC4w375aKZivIzBRwO5dF6KtREapGo9ct4= Subject key identifier: D2:6A:A1:75:FE:70:1A:76:76:AA:F9:0F:EE:89:F7:9D:CD:77:4E:2D Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: 49 Signing time: Thu 03 Apr 2025 06:36:32 +0000 Manifest this update: Thu 03 Apr 2025 06:36:31 +0000 Manifest next update: Thu 10 Apr 2025 06:36:31 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: FN43X6G8Qv910oRT0mYmxYr2IcfmnhnOdjiI2JsuLlk=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: 9YzGJkxen0bF7ZOSO15+u2xKU2H/RKyzN947mBYbnYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0 Validity Not Before: Apr 3 06:36:31 2025 GMT Not After : Apr 10 06:36:31 2025 GMT Subject: CN=67ee2c6f-3668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a7:e2:e1:58:35:ce:d5:02:26:1c:70:1f:f8: 05:c7:62:7c:71:68:a2:f0:69:93:86:f5:9c:5c:52: b4:f6:64:24:e1:13:5d:8d:0e:13:b7:82:52:89:a8: 9f:d3:cd:92:e0:d9:aa:7a:fc:c7:3e:88:1f:7c:78: 0b:93:92:3b:ab:e8:b3:dd:08:d7:74:59:cd:2d:33: 50:96:de:c9:08:c3:85:3a:ea:91:3b:d9:52:7a:66: 9a:b9:6a:9d:06:46:fb:cc:6f:e0:5f:9f:2f:89:00: f2:87:65:05:df:f4:71:02:f5:d3:ef:70:bd:54:2d: 9a:10:df:16:ca:14:56:76:ac:77:45:bc:9f:96:04: ec:bd:2d:b1:c2:4e:53:3b:5c:78:cc:98:ec:c3:4b: fc:ef:9b:95:38:8c:b8:b0:cf:ad:fa:1a:3e:e3:0a: 92:c9:89:ac:96:4a:8e:7c:f5:c9:b6:21:45:3d:a0: 3f:3d:0f:6f:c1:c0:69:b7:fa:86:91:c8:33:49:d8: 40:ba:1f:94:af:c3:0e:77:bb:32:a3:90:6a:2a:38: 3c:69:3d:fb:bf:02:cf:09:09:45:91:e0:ce:c5:92: b2:64:e9:96:75:12:28:99:0a:b3:78:a9:bb:84:a3: 76:84:49:4d:77:f8:31:03:65:cd:f0:3e:95:59:e3: bb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:6A:A1:75:FE:70:1A:76:76:AA:F9:0F:EE:89:F7:9D:CD:77:4E:2D X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:50:e5:74:6b:c0:34:6e:28:81:81:84:82:aa:c0:87:d6:7b: 85:e4:4e:dd:76:1e:2a:32:1e:50:ab:25:bc:5c:b4:b7:86:9d: a1:e1:56:3f:6d:e6:0f:df:ac:7a:73:d2:bd:e2:52:96:43:bf: 11:3b:1e:ba:12:be:f5:be:a0:1f:18:e4:76:6f:79:e7:6b:bb: b2:ed:7c:1f:fc:3e:da:b4:6b:a8:ed:59:4d:ba:41:ff:65:f5: 20:de:00:d3:c6:9b:6f:53:75:f7:ed:15:41:21:1f:20:85:69: 63:40:72:21:a1:50:1f:7c:ad:c6:39:87:8e:86:d2:b4:d4:fe: 70:df:2a:be:38:7f:84:8e:2d:41:c8:8e:3b:63:c1:db:de:b3: 6e:8f:c1:ac:56:95:b5:e6:6b:2e:78:8c:5f:98:da:8f:90:aa: 1a:a9:64:be:ad:6e:33:a6:40:1a:e3:d1:61:4c:c6:70:8e:07: d7:7c:be:c8:57:c3:d2:8e:80:58:d0:59:d9:02:77:9b:27:2f: 9e:f6:7c:16:7a:4f:6f:ff:01:7c:18:a8:d0:e3:a4:f9:2e:6f: dc:01:e5:f1:02:a5:f5:98:50:2f:4b:b2:25:12:13:6f:e3:fa: 3d:41:ab:e3:70:2b:c0:ea:4d:3b:03:8f:80:e1:18:7b:29:63: 43:23:ee:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUJGMDExMC8GA1UEBRMoREIzREZEODZDRUJGRUFFRDNBQUYxNURFQUVFNjk2NTIz NDc0NkEyOTAeFw0yNTA0MDMwNjM2MzFaFw0yNTA0MTAwNjM2MzFaMBgxFjAUBgNV BAMTDTY3ZWUyYzZmLTM2NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVp+LhWDXO1QImHHAf+AXHYnxxaKLwaZOG9ZxcUrT2ZCThE12NDhO3glKJqJ/T zZLg2ap6/Mc+iB98eAuTkjur6LPdCNd0Wc0tM1CW3skIw4U66pE72VJ6Zpq5ap0G RvvMb+Bfny+JAPKHZQXf9HEC9dPvcL1ULZoQ3xbKFFZ2rHdFvJ+WBOy9LbHCTlM7 XHjMmOzDS/zvm5U4jLiwz636Gj7jCpLJiayWSo589cm2IUU9oD89D2/BwGm3+oaR yDNJ2EC6H5Svww53uzKjkGoqODxpPfu/As8JCUWR4M7FkrJk6ZZ1EiiZCrN4qbuE o3aESU13+DEDZc3wPpVZ47tJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0mqhdf5w GnZ2qvkP7on3nc13Ti0wHwYDVR0jBBgwFoAU2z39hs6/6u06rxXeruaWUjR0aikw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxQkYwL0E3OEYxQjEyQTQx NTExRUZBMTRGQkQzRkM0RjlBRTAyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFp ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnozOWhzNl82dTA2cnhYZXJ1YVdValIwYWlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx QkYwL0E3OEYxQjEyQTQxNTExRUZBMTRGQkQzRkM0RjlBRTAyLzJ6MzloczZfNnUw NnJ4WGVydWFXVWpSMGFpay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALNQ5XRrwDRuKIGBhIKqwIfWe4XkTt12HioyHlCrJbxctLeGnaHhVj9t 5g/frHpz0r3iUpZDvxE7HroSvvW+oB8Y5HZveedru7LtfB/8Ptq0a6jtWU26Qf9l 9SDeANPGm29TdfftFUEhHyCFaWNAciGhUB98rcY5h46G0rTU/nDfKr44f4SOLUHI jjtjwdves26PwaxWlbXmay54jF+Y2o+QqhqpZL6tbjOmQBrj0WFMxnCOB9d8vshX w9KOgFjQWdkCd5snL572fBZ6T2//AXwYqNDjpPkub9wB5fECpfWYUC9LsiUSE2/j +j1Bq+NwK8DqTTsDj4DhGHspY0Mj7mM= -----END CERTIFICATE-----Generated at Fri Apr 4 22:37:01 2025 by rpki-client