$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: 3GmGZ5dSzcBfGDyEsnLbYqd2Y3/0QwrakhQH04KssJA= Subject key identifier: C9:6D:7D:25:7D:8F:45:BB:45:BC:C4:A8:14:E8:E5:D8:8D:40:DD:BE Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: EE Signing time: Sat 05 Apr 2025 04:40:20 +0000 Manifest this update: Sat 05 Apr 2025 04:40:19 +0000 Manifest next update: Sat 12 Apr 2025 04:40:19 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: yiDbA/LAag3PNfMCD3OpuojXNJq3dCHSgIIODmZWVhw=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:40:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16 Validity Not Before: Apr 5 04:40:19 2025 GMT Not After : Apr 12 04:40:19 2025 GMT Subject: CN=67f0b434-baab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1a:6f:f9:18:06:a4:23:c7:15:a9:03:51:ff: 41:ed:cf:16:20:80:bf:51:c5:ce:7c:0c:3b:cd:fe: 06:94:93:13:29:4e:9f:01:38:99:b1:29:d5:77:c4: 8d:d3:80:8a:0d:38:b5:95:61:31:d9:f9:e6:6b:70: e4:71:5e:1b:ed:e8:7a:67:9a:44:db:81:62:79:b4: fc:03:47:60:41:23:a0:98:1d:0d:9d:80:f9:89:4c: 8b:03:3c:a8:19:a0:24:1d:87:e5:e8:76:34:2a:0b: a7:ca:53:45:59:8e:cc:fb:01:cf:02:e5:7f:3e:98: aa:f9:86:d0:05:3e:dd:91:87:fe:91:45:39:66:53: 51:40:a0:de:e7:ed:9a:b4:c7:1c:93:ce:41:8b:f3: ba:f3:69:d6:b9:ca:e2:fc:7c:d9:3e:7f:c6:d5:7c: ae:b1:97:76:82:28:22:85:22:96:42:cd:9a:c1:4b: 75:51:a5:a4:70:ff:ca:ae:18:11:5b:8e:35:66:df: 38:59:be:0f:f4:c3:71:52:9b:82:09:43:b5:d0:ae: 9d:d4:5a:d3:8b:11:70:28:a8:e8:ce:09:2a:d5:e8: a8:f3:f0:ca:0a:9f:17:fd:ac:6a:a5:a2:8a:8f:d9: de:ed:2a:55:0d:87:7f:0a:f5:95:38:27:f5:1f:61: 6c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6D:7D:25:7D:8F:45:BB:45:BC:C4:A8:14:E8:E5:D8:8D:40:DD:BE X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:9e:2a:a5:8c:ea:69:08:1d:82:2d:d2:2b:dc:65:ab:10:4c: e1:c8:ad:5b:4b:a4:70:5e:28:a2:b9:fc:73:da:3c:bf:73:10: c6:c0:ed:1f:77:41:ba:8a:b7:9d:a7:b2:74:a7:4e:3f:d3:c4: 4a:0a:b8:b9:9b:63:7f:0d:99:0a:f2:43:7a:12:5b:77:6b:f2: 01:4b:42:04:2b:8b:f6:2b:e0:96:4d:6d:92:ef:54:5e:c5:92: 9a:1b:3f:87:6f:5a:ab:1e:fb:d3:f6:51:60:40:1c:1d:ca:04: 9e:3b:e1:51:a1:27:e5:63:e3:53:08:30:f3:b4:e3:ef:07:a3: a6:b1:5e:01:9e:20:8d:de:b3:29:ee:5d:87:30:b9:ad:65:4b: a4:86:5f:b9:5d:a2:56:bd:cc:22:95:a9:5b:87:bb:73:d2:ae: 17:f5:4a:09:72:bf:72:09:45:ea:9f:21:f8:c0:21:6f:5a:24: 7d:5d:42:eb:a4:85:5d:4f:22:0a:fa:73:33:6a:f3:3a:b2:88: cf:1d:17:69:ec:29:63:f0:28:88:58:f9:5d:bc:56:b1:e9:b6: bd:23:6e:ea:aa:bd:df:7e:6c:41:f1:0d:d7:d2:a6:0e:2c:92: e5:6d:72:7f:c0:b0:91:4b:f4:4d:56:0c:39:39:d4:ab:9d:6f: c0:88:6c:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUwNDA1MDQ0MDE5WhcNMjUwNDEyMDQ0MDE5WjAYMRYwFAYD VQQDEw02N2YwYjQzNC1iYWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Rpv+RgGpCPHFakDUf9B7c8WIIC/UcXOfAw7zf4GlJMTKU6fATiZsSnVd8SN 04CKDTi1lWEx2fnma3DkcV4b7eh6Z5pE24FiebT8A0dgQSOgmB0NnYD5iUyLAzyo GaAkHYfl6HY0KgunylNFWY7M+wHPAuV/Ppiq+YbQBT7dkYf+kUU5ZlNRQKDe5+2a tMcck85Bi/O682nWucri/HzZPn/G1XyusZd2gigihSKWQs2awUt1UaWkcP/KrhgR W441Zt84Wb4P9MNxUpuCCUO10K6d1FrTixFwKKjozgkq1eio8/DKCp8X/axqpaKK j9ne7SpVDYd/CvWVOCf1H2FsowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMltfSV9 j0W7RbzEqBTo5diNQN2+MB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjniqljOppCB2CLdIr3GWrEEzhyK1bS6RwXiiiufxz2jy/cxDGwO0f d0G6iredp7J0p04/08RKCri5m2N/DZkK8kN6Elt3a/IBS0IEK4v2K+CWTW2S71Re xZKaGz+Hb1qrHvvT9lFgQBwdygSeO+FRoSflY+NTCDDztOPvB6OmsV4BniCN3rMp 7l2HMLmtZUukhl+5XaJWvcwilalbh7tz0q4X9UoJcr9yCUXqnyH4wCFvWiR9XULr pIVdTyIK+nMzavM6sojPHRdp7Clj8CiIWPldvFax6ba9I27qqr3ffmxB8Q3X0qYO LJLlbXJ/wLCRS/RNVgw5OdSrnW/AiGyj -----END CERTIFICATE-----Generated at Sun Apr 6 16:16:13 2025 by rpki-client