$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: xqSRQjTVlIQDjwb1pFKepzCwcoWj/pHCe8iDJg39blM= Subject key identifier: 86:CD:56:9C:82:21:01:8E:CF:8A:E7:FC:18:C3:A6:82:D0:2B:DD:BF Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: 74 Signing time: Sat 05 Apr 2025 06:09:23 +0000 Manifest this update: Sat 05 Apr 2025 06:09:22 +0000 Manifest next update: Sat 12 Apr 2025 06:09:22 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: 38Okk/ujdwomyh2VORr+LU6nzC3vcx/I3BwwuTqVv6w=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: qpNZ0Lm7ohL4bDYSXZ5HFsKxSW3wfA050YYCOcr+GtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F Validity Not Before: Apr 5 06:09:22 2025 GMT Not After : Apr 12 06:09:22 2025 GMT Subject: CN=67f0c913-a50b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:44:49:1b:3c:85:c6:a0:74:ef:61:54:41:c4: c4:2c:42:47:6c:bd:1a:b5:fe:e5:9c:8f:5f:e9:2d: 81:8c:c4:b7:38:bf:46:8c:41:a8:6e:2e:30:02:23: b9:ff:ad:c1:de:8b:e5:57:7e:1e:e0:49:6f:a6:f8: 10:fb:be:77:00:bf:6f:48:be:84:b3:f9:53:c0:32: 60:d7:5a:95:a7:0e:8a:d4:bd:98:74:8c:97:ae:41: f7:7c:14:28:33:e6:04:6d:fc:63:91:65:ac:78:92: 27:98:c2:97:5f:20:d1:c9:7b:88:43:c0:8f:df:40: f3:d5:6d:e7:c2:e4:48:ff:d6:22:cd:87:a2:80:b8: 9b:23:c3:b9:1b:61:57:ae:bc:57:d1:5d:95:6f:3d: 7b:51:4c:cd:35:ab:24:cf:00:4b:dd:f2:e0:b4:7b: 17:f2:95:42:5b:03:67:b6:31:61:f8:c1:55:1e:a2: e2:3f:55:07:fb:f3:ea:7a:9f:c2:1a:1a:37:00:52: 70:c3:87:a1:0f:89:66:30:bc:13:39:3a:cc:2f:d8: c9:c2:39:69:a1:2e:f6:4d:24:aa:88:63:d8:4b:6e: 3e:eb:28:bf:29:2d:04:5d:a2:bd:c7:e1:54:07:4a: 93:ba:50:88:70:eb:8a:0a:d6:fd:6a:ed:71:0f:00: c9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CD:56:9C:82:21:01:8E:CF:8A:E7:FC:18:C3:A6:82:D0:2B:DD:BF X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:c4:e2:cd:7b:42:2d:b2:52:62:67:ab:de:76:a2:8a:2e:87: 0c:06:e4:01:6a:4c:22:3a:8e:ab:b7:a1:3d:20:1a:a0:1d:e2: af:be:f6:ef:bd:d4:11:87:43:36:f9:96:a7:41:48:8b:6a:d8: 99:51:c9:65:cc:67:fd:75:0d:6d:fd:ce:02:66:84:d1:22:7b: 0a:e3:b4:e7:e2:f2:8d:d2:a1:a7:00:ac:c3:cc:d6:75:03:3a: 5c:6e:03:b3:f6:09:70:16:18:1e:27:54:9b:0b:ee:50:15:d2: 4e:87:c7:27:c9:13:1f:9c:ae:89:38:2f:ca:b5:7a:7a:a0:87: 3f:91:52:02:04:74:c6:fd:0a:82:2c:93:2d:e8:7a:f4:3a:02: 61:03:4f:56:bf:28:f5:05:aa:63:f0:d8:74:df:3c:83:96:b0: 0b:7a:a0:7c:40:20:49:73:32:ee:a1:c0:59:89:ff:79:f4:dc: 81:17:7d:85:2d:64:f2:21:89:9c:5a:0a:c8:f3:83:d3:10:45: 14:08:5c:6a:87:e9:ce:30:87:af:46:46:73:32:4f:69:c9:14: 4d:84:67:ef:86:97:58:c5:0f:75:45:47:30:5b:b3:3f:a1:2c: e8:ab:19:fb:22:4c:d6:2b:18:52:65:10:d1:29:e6:04:87:05: 41:66:09:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkM4RjExMC8GA1UEBRMoNEU3RUQ5NTFDNEY4OUYxMUYxOTQ0NjhFQTgxNTQ0RDcz MzVFNEY1OTAeFw0yNTA0MDUwNjA5MjJaFw0yNTA0MTIwNjA5MjJaMBgxFjAUBgNV BAMTDTY3ZjBjOTEzLWE1MGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSREkbPIXGoHTvYVRBxMQsQkdsvRq1/uWcj1/pLYGMxLc4v0aMQahuLjACI7n/ rcHei+VXfh7gSW+m+BD7vncAv29IvoSz+VPAMmDXWpWnDorUvZh0jJeuQfd8FCgz 5gRt/GORZax4kieYwpdfINHJe4hDwI/fQPPVbefC5Ej/1iLNh6KAuJsjw7kbYVeu vFfRXZVvPXtRTM01qyTPAEvd8uC0exfylUJbA2e2MWH4wVUeouI/VQf78+p6n8Ia GjcAUnDDh6EPiWYwvBM5Oswv2MnCOWmhLvZNJKqIY9hLbj7rKL8pLQRdor3H4VQH SpO6UIhw64oK1v1q7XEPAMkFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhs1WnIIh AY7Piuf8GMOmgtAr3b8wHwYDVR0jBBgwFoAUTn7ZUcT4nxHxlEaOqBVE1zNeT1kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2QzhGL0YxNEVFRDk4NkI1 QTExRUZCQzk5OTI1Q0M0RjlBRTAyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQx ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG43WlVjVDRueEh4bEVhT3FCVkUxek5lVDFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 QzhGL0YxNEVFRDk4NkI1QTExRUZCQzk5OTI1Q0M0RjlBRTAyL1RuN1pVY1Q0bnhI eGxFYU9xQlZFMXpOZVQxay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKDE4s17Qi2yUmJnq952ooouhwwG5AFqTCI6jqu3oT0gGqAd4q++9u+9 1BGHQzb5lqdBSItq2JlRyWXMZ/11DW39zgJmhNEiewrjtOfi8o3SoacArMPM1nUD OlxuA7P2CXAWGB4nVJsL7lAV0k6HxyfJEx+crok4L8q1enqghz+RUgIEdMb9CoIs ky3oevQ6AmEDT1a/KPUFqmPw2HTfPIOWsAt6oHxAIElzMu6hwFmJ/3n03IEXfYUt ZPIhiZxaCsjzg9MQRRQIXGqH6c4wh69GRnMyT2nJFE2EZ++Gl1jFD3VFRzBbsz+h LOirGfsiTNYrGFJlENEp5gSHBUFmCYA= -----END CERTIFICATE-----Generated at Sun Apr 6 20:49:32 2025 by rpki-client