$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: ORhsYsVpm+J3YH7Ap2zoiGQR3tPSPwjfWR1SCMQMaH8= Subject key identifier: D4:85:EC:BE:E2:F7:86:30:EB:9E:20:88:11:09:14:4E:92:80:25:01 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: 74 Signing time: Thu 03 Apr 2025 06:05:16 +0000 Manifest this update: Thu 03 Apr 2025 06:05:16 +0000 Manifest next update: Thu 10 Apr 2025 06:05:16 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: N9AOHBL4lHEiTKZAHDF6kkweBIMM5tvCG3hlLw3tZVI=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA Validity Not Before: Apr 3 06:05:16 2025 GMT Not After : Apr 10 06:05:16 2025 GMT Subject: CN=67ee251c-cf09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f7:b3:ca:80:ff:7b:65:d9:5e:b9:5a:f9:97: 34:95:43:a4:d4:ec:b6:78:dc:b1:ed:21:22:fc:c8: f6:74:e8:58:25:95:d6:be:d8:5b:66:11:9f:6b:2e: 33:6a:6d:29:6e:76:92:52:2e:e8:50:f2:35:70:3a: 79:1f:73:0d:36:f7:1f:b1:4d:0a:a2:a3:c5:72:7c: e6:f6:e7:71:31:76:8a:4d:13:3c:6f:f2:51:5d:c5: 77:33:ea:44:25:e7:56:a4:90:88:66:da:3d:b5:ca: cc:3e:12:e3:22:81:db:b1:aa:7d:ba:43:cb:6e:03: 8b:2b:e3:91:28:f8:a4:ff:c8:96:61:f6:93:35:6d: ea:50:3a:ca:b4:96:c1:c1:a5:a8:79:eb:0e:d0:83: cc:2c:b9:e7:a4:01:d5:24:96:b2:77:7e:d4:2b:bc: 0c:31:ee:57:e0:b0:63:e2:73:a1:68:9d:c6:a4:18: a6:74:7e:e7:51:fb:02:6c:61:9f:d8:84:4b:df:ff: 45:8c:83:ac:30:e4:ce:6d:dc:85:66:8c:cd:49:20: ac:bd:af:7a:6f:8e:88:77:17:82:11:da:69:b1:d9: bb:79:a8:59:cc:68:38:36:ae:0e:09:c0:a3:11:bd: 15:33:e9:40:68:37:1d:51:8d:66:39:f4:0f:fa:84: 21:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:85:EC:BE:E2:F7:86:30:EB:9E:20:88:11:09:14:4E:92:80:25:01 X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:50:1c:3c:89:2a:b2:23:57:b0:4a:26:f6:5e:a3:80:65:72: 51:27:2f:f9:20:29:79:02:51:ea:04:d6:2c:9f:7c:a2:6a:bd: 37:85:b9:0d:9b:50:a8:8b:d8:dc:70:15:ab:5b:09:97:98:e2: d9:5d:6a:9c:27:32:1a:e0:d2:08:20:32:0a:19:0f:fc:84:3e: 10:e9:2b:db:ab:e1:1e:5d:3e:c6:42:c3:70:82:a3:35:55:1d: 2a:4c:73:3a:9a:32:fd:97:e4:e6:55:db:7f:b7:c2:78:99:35: 63:eb:e4:be:f9:f6:d3:b5:c4:c8:54:6a:3c:0f:a4:bf:91:fb: 10:cb:3b:c9:e3:92:37:00:ac:b9:1e:be:13:bc:e5:e3:58:c5: 57:e3:89:c6:9d:e4:97:11:0d:cf:59:ad:3b:1a:3d:aa:c0:e8: a5:2e:9f:46:d5:c7:12:f2:8a:e3:45:f0:76:e4:7e:f5:42:de: 5d:f9:8f:a8:6e:e4:33:f5:f6:d6:62:17:fd:f4:5e:9c:04:9d: 55:b8:62:33:cc:7d:12:d8:a8:32:8a:ef:c8:2b:1b:1a:ec:ca: f3:b2:01:8c:7c:c5:e2:24:fe:ef:b4:21:f8:ba:c5:2c:08:e3: b3:77:d7:01:92:8a:06:da:60:8c:e4:5a:f5:e0:6e:d2:76:ae: e1:0a:9d:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0NDQTExMC8GA1UEBRMoNkZENUI3NDMxRTcxNTBFRDY1MEY3RjI3QTNEQ0Y4QzVD RUFDNzc2NDAeFw0yNTA0MDMwNjA1MTZaFw0yNTA0MTAwNjA1MTZaMBgxFjAUBgNV BAMTDTY3ZWUyNTFjLWNmMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs97PKgP97ZdleuVr5lzSVQ6TU7LZ43LHtISL8yPZ06Fgllda+2FtmEZ9rLjNq bSludpJSLuhQ8jVwOnkfcw029x+xTQqio8VyfOb253ExdopNEzxv8lFdxXcz6kQl 51akkIhm2j21ysw+EuMigduxqn26Q8tuA4sr45Eo+KT/yJZh9pM1bepQOsq0lsHB pah56w7Qg8wsueekAdUklrJ3ftQrvAwx7lfgsGPic6FoncakGKZ0fudR+wJsYZ/Y hEvf/0WMg6ww5M5t3IVmjM1JIKy9r3pvjoh3F4IR2mmx2bt5qFnMaDg2rg4JwKMR vRUz6UBoNx1RjWY59A/6hCHlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1IXsvuL3 hjDrniCIEQkUTpKAJQEwHwYDVR0jBBgwFoAUb9W3Qx5xUO1lD38no9z4xc6sd2Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczQ0NBLzFDQTlCODI0NjU0 RDExRUZCNDRCN0I1OEM0RjlBRTAyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2Qy US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjlXM1F4NXhVTzFsRDM4bm85ejR4YzZzZDJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz Q0NBLzFDQTlCODI0NjU0RDExRUZCNDRCN0I1OEM0RjlBRTAyL2I5VzNReDV4VU8x bEQzOG5vOXo0eGM2c2QyUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI5QHDyJKrIjV7BKJvZeo4BlclEnL/kgKXkCUeoE1iyffKJqvTeFuQ2b UKiL2NxwFatbCZeY4tldapwnMhrg0gggMgoZD/yEPhDpK9ur4R5dPsZCw3CCozVV HSpMczqaMv2X5OZV23+3wniZNWPr5L759tO1xMhUajwPpL+R+xDLO8njkjcArLke vhO85eNYxVfjicad5JcRDc9ZrTsaParA6KUun0bVxxLyiuNF8HbkfvVC3l35j6hu 5DP19tZiF/30XpwEnVW4YjPMfRLYqDKK78grGxrsyvOyAYx8xeIk/u+0Ifi6xSwI 47N31wGSigbaYIzkWvXgbtJ2ruEKnZk= -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:24 2025 by rpki-client