$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft File: 79iPiiibFMeUQxKLu7eRtS2lEa0.mft (raw, json) Hash identifier: o+p7mCKnXVJSFYSvcD+bMNkjFpirPs3CEVLuW8yOBPI= Subject key identifier: 8B:94:3C:A3:55:74:23:A5:B0:80:2D:BB:F2:CC:48:CD:0B:01:70:7F Authority key identifier: EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD Certificate issuer: /CN=A9171D3F/serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft Manifest number: 018C Signing time: Sat 29 Mar 2025 03:04:06 +0000 Manifest this update: Sat 29 Mar 2025 03:04:05 +0000 Manifest next update: Sat 05 Apr 2025 03:04:05 +0000 Files and hashes: 1: 79iPiiibFMeUQxKLu7eRtS2lEa0.crl (hash: T8p33EwB7ksPJXFWK6LNlV04dwWKPQqGw3bRIBzPgh8=) 2: 9344B512B1BA11ED8DC4D42EC4F9AE02.roa (hash: 05FYul9tCmnEluZqc+GxuuNUpvwFpQ5F6tjIORKsJIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:04:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3F Validity Not Before: Mar 29 03:04:05 2025 GMT Not After : Apr 5 03:04:05 2025 GMT Subject: CN=67e76325-ba60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:d8:d3:71:bc:26:1f:cd:0e:99:d5:29:2c: 4e:7d:7d:8f:16:d3:56:0a:dd:62:28:af:b9:80:61: 45:c9:80:85:a7:36:60:6d:49:38:ab:6c:c7:86:3d: ba:dd:6b:af:a5:bf:0a:f7:f7:9c:fd:6a:05:04:72: 73:ba:cd:a6:6a:2e:19:bd:fe:41:1b:7b:bf:cc:2c: d4:a0:1a:ef:09:2c:72:d3:d0:b7:9f:73:00:86:d7: 12:0e:86:c7:a1:f6:17:43:dd:15:1e:8f:8c:5e:0c: 12:bb:1f:25:2c:58:be:cb:62:70:09:71:f6:ab:d7: 39:40:04:55:2c:c7:0f:7d:ea:e8:43:9c:d6:9b:a4: 55:ce:f3:c7:fc:8f:14:46:52:8d:2e:d8:09:fd:27: 2f:82:9a:57:5f:8c:eb:22:d9:f0:bd:1b:f7:8c:f0: c7:30:5d:83:27:13:9e:cf:7f:e8:c5:e2:5f:55:8c: d5:c4:19:ba:a5:ba:33:96:3e:eb:25:62:5d:b9:39: aa:cc:5d:0e:a7:61:ac:c8:3c:d4:77:cd:88:17:61: 04:6b:3f:b4:89:f8:55:1a:dc:69:10:35:46:af:59: a9:60:cc:7e:52:86:8d:57:3b:4d:d7:8d:35:61:ad: a6:68:72:ab:0f:a9:31:0a:f9:02:11:04:f8:f5:7e: f2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:94:3C:A3:55:74:23:A5:B0:80:2D:BB:F2:CC:48:CD:0B:01:70:7F X509v3 Authority Key Identifier: keyid:EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:2a:2d:04:fd:b5:e4:b4:1b:be:31:24:a6:68:79:a7:0d:37: b9:3a:9c:34:df:c3:de:3e:61:cb:8a:45:53:18:53:5a:5f:65: d7:f8:b7:20:eb:96:8e:14:b5:e8:c8:40:8a:ca:93:7f:fd:bf: 25:db:8e:3a:62:7a:3b:e5:34:0a:13:12:6d:83:a6:e1:cb:d5: 5c:45:5a:b5:e7:cd:a4:ba:f7:ad:6e:9e:8d:86:0e:bc:f5:10: 2b:e2:42:4b:e6:7f:93:8a:61:4d:48:6a:1e:a3:79:0e:51:46: 4d:a4:79:19:fb:c7:f4:37:ef:40:51:81:3d:5f:f2:a0:29:5d: 66:8b:99:b4:60:1d:31:b1:1d:f2:6e:01:3a:2f:3f:60:3d:d6: 02:46:76:7c:a8:e1:fa:b5:bf:a5:8f:63:8d:d0:ce:b4:88:11: 76:dd:2e:2a:68:69:18:11:7f:e3:46:17:04:77:fc:c3:09:fd: a2:f8:27:90:25:45:53:30:7c:1a:74:c1:78:a3:83:0f:16:ac: 67:ec:ef:70:16:d3:52:d7:e2:20:d9:e2:b9:27:f6:79:8e:b2: 01:c6:9b:42:5c:4c:84:f7:19:71:71:c8:d9:03:57:2d:26:68: ab:7c:d0:88:53:fb:1a:00:2e:1a:aa:f1:d5:2c:77:2d:10:5b: b1:ff:77:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0YxMTAvBgNVBAUTKEVGRDg4RjhBMjg5QjE0Qzc5NDQzMTI4QkJCQjc5MUI1 MkRBNTExQUQwHhcNMjUwMzI5MDMwNDA1WhcNMjUwNDA1MDMwNDA1WjAYMRYwFAYD VQQDEw02N2U3NjMyNS1iYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqajY03G8Jh/NDpnVKSxOfX2PFtNWCt1iKK+5gGFFyYCFpzZgbUk4q2zHhj26 3Wuvpb8K9/ec/WoFBHJzus2mai4Zvf5BG3u/zCzUoBrvCSxy09C3n3MAhtcSDobH ofYXQ90VHo+MXgwSux8lLFi+y2JwCXH2q9c5QARVLMcPferoQ5zWm6RVzvPH/I8U RlKNLtgJ/ScvgppXX4zrItnwvRv3jPDHMF2DJxOez3/oxeJfVYzVxBm6pbozlj7r JWJduTmqzF0Op2GsyDzUd82IF2EEaz+0ifhVGtxpEDVGr1mpYMx+UoaNVztN1401 Ya2maHKrD6kxCvkCEQT49X7y5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuUPKNV dCOlsIAtu/LMSM0LAXB/MB8GA1UdIwQYMBaAFO/Yj4oomxTHlEMSi7u3kbUtpRGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzRi85QjlDOEU2QUIx QjUxMUVEOTlFMzI2NjlDNEY5QUUwMi83OWlQaWlpYkZNZVVReEtMdTdlUnRTMmxF YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5aVBpaWliRk1lVVF4S0x1N2VSdFMybEVhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzRi85QjlDOEU2QUIxQjUxMUVEOTlFMzI2NjlDNEY5QUUwMi83OWlQaWlpYkZN ZVVReEtMdTdlUnRTMmxFYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIKi0E/bXktBu+MSSmaHmnDTe5Opw038PePmHLikVTGFNaX2XX+Lcg 65aOFLXoyECKypN//b8l2446Yno75TQKExJtg6bhy9VcRVq1582kuvetbp6Nhg68 9RAr4kJL5n+TimFNSGoeo3kOUUZNpHkZ+8f0N+9AUYE9X/KgKV1mi5m0YB0xsR3y bgE6Lz9gPdYCRnZ8qOH6tb+lj2ON0M60iBF23S4qaGkYEX/jRhcEd/zDCf2i+CeQ JUVTMHwadMF4o4MPFqxn7O9wFtNS1+Ig2eK5J/Z5jrIBxptCXEyE9xlxccjZA1ct JmirfNCIU/saAC4aqvHVLHctEFux/3eN -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:52 2025 by rpki-client