$ rpki-client -vvf rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft File: Br1EFUedLHUIN8XJQzYTuyWIrrg.mft (raw, json) Hash identifier: /SItJGjyImtNLeP653R1ecQFipa3OpXELp5S/CcQjRM= Subject key identifier: 18:81:E3:9A:34:A5:3C:A3:5A:DD:17:70:7E:99:14:21:79:4A:AD:7A Authority key identifier: 06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 Certificate issuer: /CN=A9177FC9/serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft Manifest number: 13 Signing time: Mon 07 Apr 2025 07:02:34 +0000 Manifest this update: Mon 07 Apr 2025 07:02:33 +0000 Manifest next update: Mon 14 Apr 2025 07:02:33 +0000 Files and hashes: 1: Br1EFUedLHUIN8XJQzYTuyWIrrg.crl (hash: xIHJsDG/dqlxWjngo1h69du1Se0xd+QhEDrkQopYlfo=) 2: FDD39BD607B811F0AB98B333C4F9AE02.roa (hash: qoLPoA4lZ1ha+1hCNURiczpMXcx77W01//WQ1dkufkU=) 3: FD6DA4D407B811F0AB98B333C4F9AE02.roa (hash: 1A7do/sKIO8NT6R3NBCJ/yFYUs9LFmYB3G5A768MYYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 07:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177FC9 Validity Not Before: Apr 7 07:02:33 2025 GMT Not After : Apr 14 07:02:33 2025 GMT Subject: CN=67f37889-9744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:8e:0f:8e:4a:05:41:6f:27:1f:71:c9:d2:02: b4:c5:fe:9d:2d:24:5a:c8:5b:7d:d5:9b:6c:23:50: ed:c9:88:1d:1d:86:4e:f9:5f:b3:ac:a0:0b:b1:f7: 58:56:c8:bd:b0:23:6d:83:0e:25:54:91:32:46:20: 3f:64:9e:6a:b4:cf:69:8f:0a:ea:5d:01:66:44:68: f3:6d:c7:7e:2d:0b:21:ca:a3:b6:23:a4:57:93:55: 85:b7:8b:01:73:7a:5e:2c:e9:0b:e1:74:39:db:82: 86:8f:2a:f6:b1:85:58:4d:92:75:af:30:26:85:14: 6c:c7:66:00:fe:25:ec:99:00:35:16:f3:84:4d:9e: 92:c7:6c:79:1f:95:79:d2:d6:a9:a3:26:4e:91:79: 7f:c8:b4:0f:c8:df:32:bc:ba:9e:3e:38:f5:bf:90: bc:2a:ec:25:60:29:ce:39:27:f8:61:a6:8c:c2:33: 4a:ca:fe:69:8d:05:27:1d:64:9c:4d:e1:df:53:2a: 55:4a:a8:ef:67:62:10:01:e2:a3:c8:61:3e:5c:b5: 1d:c1:b6:07:79:61:9d:91:b1:44:c8:ad:a9:f6:12: 87:43:27:4a:ed:c3:8b:4d:ce:fe:99:24:6d:59:21: 88:1b:67:2f:8e:ab:95:0e:38:fd:84:61:41:1c:e5: f1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:81:E3:9A:34:A5:3C:A3:5A:DD:17:70:7E:99:14:21:79:4A:AD:7A X509v3 Authority Key Identifier: keyid:06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d5:99:10:fa:b4:0b:d4:ea:b9:39:98:ba:52:ab:6a:a9:b7: 06:14:fa:a4:97:46:4c:79:e2:64:f5:0b:03:ef:2d:cd:be:3a: b8:cc:db:8d:7d:71:c7:b7:35:1e:82:ec:f0:f8:39:cb:24:3d: 54:a6:b9:f7:76:02:7f:9f:90:f9:35:12:16:39:3a:20:90:77: aa:a8:e7:64:26:b2:76:d4:a9:59:94:0e:28:f0:52:0d:eb:34: 88:ab:fa:53:0b:1f:1c:db:ee:0d:69:b8:a8:f2:f1:0d:3b:86: de:8d:ed:70:e1:44:10:38:13:3e:f1:fa:9f:e7:a7:c2:5f:a4: 05:84:91:eb:b3:f5:1e:df:a4:2a:cf:fc:e2:84:37:3d:21:27: b7:08:26:d7:3f:e3:40:13:72:78:95:7d:48:80:a2:e9:a8:8a: 7b:8b:11:4a:02:72:e6:f6:c6:b1:6c:59:78:81:b0:95:26:82: 5c:1c:a6:e2:75:22:c3:1c:c8:9f:fa:51:36:41:8a:87:14:94: c1:58:90:c2:c7:39:f8:ea:c2:c4:ba:bf:3a:87:7b:76:0f:d5: 8e:fd:34:81:03:18:bb:56:d2:30:29:aa:31:4b:f7:dd:7a:a0: 9c:d3:44:1e:13:3a:d1:8c:f0:02:a3:6e:b0:a5:69:b2:24:df: b4:b9:fd:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 N0ZDOTExMC8GA1UEBRMoMDZCRDQ0MTU0NzlEMkM3NTA4MzdDNUM5NDMzNjEzQkIy NTg4QUVCODAeFw0yNTA0MDcwNzAyMzNaFw0yNTA0MTQwNzAyMzNaMBgxFjAUBgNV BAMTDTY3ZjM3ODg5LTk3NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0jg+OSgVBbycfccnSArTF/p0tJFrIW33Vm2wjUO3JiB0dhk75X7OsoAux91hW yL2wI22DDiVUkTJGID9knmq0z2mPCupdAWZEaPNtx34tCyHKo7YjpFeTVYW3iwFz el4s6QvhdDnbgoaPKvaxhVhNknWvMCaFFGzHZgD+JeyZADUW84RNnpLHbHkflXnS 1qmjJk6ReX/ItA/I3zK8up4+OPW/kLwq7CVgKc45J/hhpozCM0rK/mmNBScdZJxN 4d9TKlVKqO9nYhAB4qPIYT5ctR3Btgd5YZ2RsUTIran2EodDJ0rtw4tNzv6ZJG1Z IYgbZy+Oq5UOOP2EYUEc5fFTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGIHjmjSl PKNa3RdwfpkUIXlKrXowHwYDVR0jBBgwFoAUBr1EFUedLHUIN8XJQzYTuyWIrrgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3RkM5L0YzQ0JGNTUwMDc1 MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhVSU44WEpRellUdXlXSXJy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQnIxRUZVZWRMSFVJTjhYSlF6WVR1eVdJcnJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 RkM5L0YzQ0JGNTUwMDc1MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhV SU44WEpRellUdXlXSXJyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGfVmRD6tAvU6rk5mLpSq2qptwYU+qSXRkx54mT1CwPvLc2+OrjM2419 cce3NR6C7PD4OcskPVSmufd2An+fkPk1EhY5OiCQd6qo52QmsnbUqVmUDijwUg3r NIir+lMLHxzb7g1puKjy8Q07ht6N7XDhRBA4Ez7x+p/np8JfpAWEkeuz9R7fpCrP /OKENz0hJ7cIJtc/40ATcniVfUiAoumoinuLEUoCcub2xrFsWXiBsJUmglwcpuJ1 IsMcyJ/6UTZBiocUlMFYkMLHOfjqwsS6vzqHe3YP1Y79NIEDGLtW0jApqjFL9916 oJzTRB4TOtGM8AKjbrClabIk37S5/Qo= -----END CERTIFICATE-----Generated at Wed Apr 9 02:14:49 2025 by rpki-client