$ rpki-client -vvf rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.mft File: tJsrEdOHbezeE_Xo9Z5kGn0JP7k.mft (raw, json) Hash identifier: 3kQkJfRaQLef9qcCwPhqMlXpGElewqVTcwIj7pHV12o= Subject key identifier: 23:D8:C2:79:34:1D:6C:7F:E0:FB:69:11:36:8B:33:BC:A8:77:4F:20 Authority key identifier: B4:9B:2B:11:D3:87:6D:EC:DE:13:F5:E8:F5:9E:64:1A:7D:09:3F:B9 Certificate issuer: /CN=A9173161/serialNumber=B49B2B11D3876DECDE13F5E8F59E641A7D093FB9 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.mft Manifest number: 2A Signing time: Sat 05 Apr 2025 07:03:34 +0000 Manifest this update: Sat 05 Apr 2025 07:03:33 +0000 Manifest next update: Sat 12 Apr 2025 07:03:33 +0000 Files and hashes: 1: tJsrEdOHbezeE_Xo9Z5kGn0JP7k.crl (hash: Gb4Um1GgdQgzKjaxJAY3I1Nkw6FSyZVl1EBEg6oMEwM=) 2: 240B1914D90B11EF95020982C4F9AE02.roa (hash: FjkNGrENcSIvFxBilAn18yNNIFNeTLoQBLQNAUhyMb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.crl rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173161 Validity Not Before: Apr 5 07:03:33 2025 GMT Not After : Apr 12 07:03:33 2025 GMT Subject: CN=67f0d5c6-0080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:48:e6:eb:f3:cc:50:91:ed:e9:03:e9:29:99: a9:80:22:3c:14:83:4b:ce:03:1f:21:d6:e3:e2:91: 82:94:9c:d7:d2:55:7f:14:02:b3:26:d5:bc:3d:fd: b8:bb:1b:1b:e8:67:80:a7:a0:b2:11:b1:ac:65:43: 39:e0:5c:2c:19:b8:b4:47:8b:38:0a:e7:b3:8d:56: 4a:e7:9b:af:73:19:c1:65:4e:05:ca:f6:b8:36:9c: 45:76:c6:bd:10:44:e8:6e:ea:46:f1:25:f8:81:d1: f1:f3:b1:e9:fb:4d:02:e0:14:51:14:3f:42:fd:bb: bf:b6:24:5b:8b:fb:73:c5:fd:a1:51:3e:8a:04:4d: cd:c7:c1:a1:5a:02:05:3d:a6:fe:01:06:c1:e5:b2: 1b:5e:f6:1d:bb:f4:2c:2e:20:89:39:da:23:63:d8: f6:53:df:60:bf:e6:24:00:f8:cf:8b:d7:0a:18:e3: 66:ca:5a:12:a3:1c:82:0f:33:25:45:e0:9e:3b:1a: eb:38:60:ed:e0:17:51:2a:67:81:82:26:c1:cc:63: ea:ce:1f:26:a2:c9:a0:ab:b3:25:c0:21:32:d1:c9: fa:fc:02:93:2e:1f:a5:68:8e:94:24:a6:66:cf:05: 27:2c:ca:be:06:a4:3c:eb:65:9f:46:c9:a7:cd:a4: 79:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D8:C2:79:34:1D:6C:7F:E0:FB:69:11:36:8B:33:BC:A8:77:4F:20 X509v3 Authority Key Identifier: keyid:B4:9B:2B:11:D3:87:6D:EC:DE:13:F5:E8:F5:9E:64:1A:7D:09:3F:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:fd:71:fe:b8:eb:72:b3:f4:fd:9f:1d:03:45:14:17:9e:f8: 42:97:8d:d9:23:82:49:24:78:08:06:49:6e:f6:9b:02:bb:82: 0c:0f:fc:26:a8:bc:8e:11:3b:be:e8:b7:b5:7a:e7:a4:68:fc: 27:37:65:fe:58:6c:ff:c3:4d:a3:59:4a:3a:dd:08:e4:7f:a1: 69:50:5f:78:4d:5b:6a:6a:ba:6d:9f:d0:4f:4d:98:85:fd:09: f8:9f:0c:f2:4a:2e:dc:23:3f:dd:71:1f:54:7b:5d:1b:b2:38: 21:ea:a7:da:a3:48:b7:e7:f8:94:7b:10:1e:9c:35:a9:56:49: ef:82:1e:54:51:ce:7d:f2:db:b7:e0:2f:08:5e:a4:7a:a4:a6: 56:31:5e:26:8e:d0:56:9e:4a:56:da:4e:73:39:c8:f0:38:a4: 56:3b:75:80:d1:65:68:4c:d5:46:5b:60:7d:f7:08:5e:63:7e: 4b:18:40:93:ef:76:93:b8:70:f7:86:c7:fb:76:4f:fd:6d:d8: b7:6e:17:68:32:fd:c8:c7:9c:60:68:fd:5a:f6:f3:aa:38:69: b3:02:0d:d3:64:95:19:b4:48:dc:0a:96:f3:b4:e9:16:b8:ae: b0:93:47:75:ac:d2:8a:61:89:40:75:55:79:ca:5a:86:e6:22: ad:c9:50:29 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzE2MTExMC8GA1UEBRMoQjQ5QjJCMTFEMzg3NkRFQ0RFMTNGNUU4RjU5RTY0MUE3 RDA5M0ZCOTAeFw0yNTA0MDUwNzAzMzNaFw0yNTA0MTIwNzAzMzNaMBgxFjAUBgNV BAMTDTY3ZjBkNWM2LTAwODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBSObr88xQke3pA+kpmamAIjwUg0vOAx8h1uPikYKUnNfSVX8UArMm1bw9/bi7 GxvoZ4CnoLIRsaxlQzngXCwZuLRHizgK57ONVkrnm69zGcFlTgXK9rg2nEV2xr0Q ROhu6kbxJfiB0fHzsen7TQLgFFEUP0L9u7+2JFuL+3PF/aFRPooETc3HwaFaAgU9 pv4BBsHlshte9h279CwuIIk52iNj2PZT32C/5iQA+M+L1woY42bKWhKjHIIPMyVF 4J47Gus4YO3gF1EqZ4GCJsHMY+rOHyaiyaCrsyXAITLRyfr8ApMuH6VojpQkpmbP BScsyr4GpDzrZZ9GyafNpHkPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI9jCeTQd bH/g+2kRNoszvKh3TyAwHwYDVR0jBBgwFoAUtJsrEdOHbezeE/Xo9Z5kGn0JP7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczMTYxLzcxMzJFRjlBRDkw NzExRUZCMjdGNzg1N0M0RjlBRTAyL3RKc3JFZE9IYmV6ZUVfWG85WjVrR24wSlA3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdEpzckVkT0hiZXplRV9YbzlaNWtHbjBKUDdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz MTYxLzcxMzJFRjlBRDkwNzExRUZCMjdGNzg1N0M0RjlBRTAyL3RKc3JFZE9IYmV6 ZUVfWG85WjVrR24wSlA3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHb9cf6463Kz9P2fHQNFFBee+EKXjdkjgkkkeAgGSW72mwK7ggwP/Cao vI4RO77ot7V656Ro/Cc3Zf5YbP/DTaNZSjrdCOR/oWlQX3hNW2pqum2f0E9NmIX9 CfifDPJKLtwjP91xH1R7XRuyOCHqp9qjSLfn+JR7EB6cNalWSe+CHlRRzn3y27fg LwhepHqkplYxXiaO0FaeSlbaTnM5yPA4pFY7dYDRZWhM1UZbYH33CF5jfksYQJPv dpO4cPeGx/t2T/1t2LduF2gy/cjHnGBo/Vr286o4abMCDdNklRm0SNwKlvO06Ra4 rrCTR3Ws0ophiUB1VXnKWobmIq3JUCk= -----END CERTIFICATE-----Generated at Sun Apr 6 18:42:43 2025 by rpki-client