$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: 2FduLywdTHObZAGVyltRTjTLoWiakinJFB2l1Ib+4yE= Subject key identifier: D9:B1:75:DE:27:1F:4D:32:78:73:CF:FF:70:43:B8:F4:D7:88:D5:41 Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0EAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0E96 Signing time: Fri 04 Apr 2025 17:49:55 +0000 Manifest this update: Fri 04 Apr 2025 17:49:55 +0000 Manifest next update: Fri 11 Apr 2025 17:49:55 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: NZBS6s2uxV1lXTbeXCq/7vMCC7zxCxok0kfcKXKVVNA=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: 6QYV9FQpqrhneDa4DXvOdtP1INWlFJdLfJWnJ4N05bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3754 (0xeaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35 Validity Not Before: Apr 4 17:49:55 2025 GMT Not After : Apr 11 17:49:55 2025 GMT Subject: CN=67f01bc3-c09b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:4a:29:f3:75:d2:3b:f3:62:de:47:a1:49:a8: 3d:78:f2:e5:48:4f:cb:5a:6a:4a:bf:50:f3:96:a8: a8:c1:52:0b:dd:34:5d:9d:2e:47:c1:9d:83:db:04: 14:5b:d2:83:29:43:3c:e4:f0:ae:e3:6f:fd:7c:f1: 79:c7:c7:5f:43:73:7f:ed:5a:d7:c4:89:d5:4f:78: e2:15:d4:7c:2a:04:d1:06:bc:87:79:92:d4:de:f4: 65:d0:8e:d0:48:14:d2:cd:62:ee:cb:8a:ed:5f:32: cf:3d:0e:f2:14:2f:9b:b2:50:dd:e3:89:85:d4:77: 5b:41:ec:c0:df:ff:36:16:5d:c6:92:ae:3b:57:e8: 7e:a8:54:6f:b3:30:f6:b5:1c:ac:b3:e1:c6:ae:68: 40:bd:9b:65:d2:ba:cf:a9:ff:d2:b7:07:0d:f4:b9: 2d:2f:00:bc:fc:b6:6f:85:dd:1b:ad:13:88:1e:dd: 1f:89:88:c8:8c:ab:75:02:46:37:18:b4:47:5d:00: 75:8f:9e:f6:3b:c5:f6:29:38:7f:63:71:53:3b:5a: 6a:11:f3:24:b0:52:55:53:6e:5b:87:81:e5:b0:b0: 8c:d7:80:b3:3d:74:e1:67:f2:96:3b:90:12:cc:44: 01:87:f2:4a:c1:6f:4f:1d:1a:78:06:a8:4c:03:b8: 38:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B1:75:DE:27:1F:4D:32:78:73:CF:FF:70:43:B8:F4:D7:88:D5:41 X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:a5:c9:95:cf:ad:81:5f:4f:13:d8:51:31:26:5d:24:f4:cc: b0:fb:aa:3a:22:22:30:8f:bb:e4:d4:a0:89:b9:eb:23:5d:0e: 1d:38:50:66:a5:59:1e:1a:0c:7d:b6:ba:a0:49:b1:46:26:06: 45:88:4a:02:f1:99:46:21:e7:9d:b9:55:ac:39:e9:9d:8b:83: 94:a5:b6:91:80:ff:d4:c0:c6:29:3e:ff:9a:fa:ac:2e:f1:a8: f6:9a:37:4f:61:0c:d2:6d:6f:05:35:d6:68:b1:b1:d6:5a:ea: a1:cc:39:ed:50:b8:2d:c6:43:16:09:ba:6e:53:16:7a:52:9b: 26:87:55:a7:8e:cb:8d:39:d1:a3:d6:a0:d1:7f:96:a2:9b:bd: 62:38:26:fc:90:f2:71:69:e1:df:f3:24:6b:74:63:6e:b0:cf: bc:91:74:15:58:a9:57:ab:0b:69:23:4a:74:3b:67:b8:92:c8: 3c:8e:70:9c:f1:2e:90:e3:c5:cc:47:58:5c:f4:8d:4b:6b:02: 7c:0d:94:67:0e:02:22:c2:5b:ec:f5:fe:24:23:a5:5a:9b:8c: 79:fe:b1:83:c6:44:f9:3f:30:54:57:6a:6b:0f:00:bd:95:e4: 70:c4:c9:c3:6f:4f:9e:68:ab:07:19:40:ae:db:27:4b:ec:20: 85:9f:c9:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUwNDA0MTc0OTU1WhcNMjUwNDExMTc0OTU1WjAYMRYwFAYD VQQDEw02N2YwMWJjMy1jMDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Uop83XSO/Ni3kehSag9ePLlSE/LWmpKv1DzlqiowVIL3TRdnS5HwZ2D2wQU W9KDKUM85PCu42/9fPF5x8dfQ3N/7VrXxInVT3jiFdR8KgTRBryHeZLU3vRl0I7Q SBTSzWLuy4rtXzLPPQ7yFC+bslDd44mF1HdbQezA3/82Fl3Gkq47V+h+qFRvszD2 tRyss+HGrmhAvZtl0rrPqf/StwcN9LktLwC8/LZvhd0brROIHt0fiYjIjKt1AkY3 GLRHXQB1j572O8X2KTh/Y3FTO1pqEfMksFJVU25bh4HlsLCM14CzPXThZ/KWO5AS zEQBh/JKwW9PHRp4BqhMA7g4cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmxdd4n H00yeHPP/3BDuPTXiNVBMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVpcmVz62BX08T2FExJl0k9Myw+6o6IiIwj7vk1KCJuesjXQ4dOFBm pVkeGgx9trqgSbFGJgZFiEoC8ZlGIeeduVWsOemdi4OUpbaRgP/UwMYpPv+a+qwu 8aj2mjdPYQzSbW8FNdZosbHWWuqhzDntULgtxkMWCbpuUxZ6Upsmh1WnjsuNOdGj 1qDRf5aim71iOCb8kPJxaeHf8yRrdGNusM+8kXQVWKlXqwtpI0p0O2e4ksg8jnCc 8S6Q48XMR1hc9I1LawJ8DZRnDgIiwlvs9f4kI6Vam4x5/rGDxkT5PzBUV2prDwC9 leRwxMnDb0+eaKsHGUCu2ydL7CCFn8mZ -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:49 2025 by rpki-client