$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft File: 1pYa2ozVd8wz1xqaLcgbDBklrJg.mft (raw, json) Hash identifier: WP+Y538756yyWbKQtLbnJfS3MVjPSIDiPhqO8rp0C7w= Subject key identifier: C7:74:FB:C5:64:0A:4A:6D:A7:18:6F:18:59:03:7F:F9:78:69:97:2A Authority key identifier: D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98 Certificate issuer: /CN=A9179CA8/serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft Manifest number: 0178 Signing time: Sat 05 Apr 2025 03:12:21 +0000 Manifest this update: Sat 05 Apr 2025 03:12:21 +0000 Manifest next update: Sat 12 Apr 2025 03:12:21 +0000 Files and hashes: 1: 1pYa2ozVd8wz1xqaLcgbDBklrJg.crl (hash: pqjn+iFV59nGQIA3NC/pbmH7q09Avzd0zkk3ZSj44N8=) 2: B94E87EAD44911ED88A2367FC4F9AE02.roa (hash: 95TYzLOqwMphVUCVsji8mDMvFKrsCaokY8ysHX5ZUv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA8 Validity Not Before: Apr 5 03:12:21 2025 GMT Not After : Apr 12 03:12:21 2025 GMT Subject: CN=67f09f95-e05a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9d:c1:a0:c0:e6:72:08:19:22:aa:e3:fa:36: a9:4a:12:d8:5c:d7:c4:42:00:f0:98:da:63:79:80: c2:f0:99:3b:74:d2:91:05:47:d8:a3:66:22:a9:71: 3d:48:1f:cf:4f:3a:cb:5c:0f:fe:bf:8f:6c:ff:19: d9:e6:af:e8:da:f6:45:7d:77:c8:59:48:4c:b3:aa: a2:82:6b:fa:d6:f8:d4:79:c4:89:88:be:c2:c7:08: 48:45:9f:d8:e7:1e:a6:04:0e:9b:52:e1:38:04:80: 4d:92:b7:04:cf:23:04:a1:27:be:1c:b5:fc:1e:b1: 23:4f:43:5c:12:ef:1f:a2:bc:36:9f:da:6d:1d:0a: 08:44:87:bc:bf:e9:6a:01:ea:be:45:23:88:1d:e2: d9:0e:a8:bc:34:33:4c:44:80:09:77:0a:1c:24:33: 61:eb:5b:bf:b2:63:21:72:d5:99:22:50:9e:cb:55: 5f:6d:f8:34:5a:2c:e2:f5:f9:15:5d:26:4e:7f:04: f5:b8:45:95:89:11:c5:c0:11:7e:f1:af:b7:9d:1b: c7:7d:96:5a:63:7a:2a:63:e3:09:32:d3:7b:5a:88: 4d:84:70:60:da:b1:e7:5c:9b:67:55:94:42:74:51: ea:18:ca:47:e1:ff:66:5c:2a:74:35:76:17:9e:71: d2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:74:FB:C5:64:0A:4A:6D:A7:18:6F:18:59:03:7F:F9:78:69:97:2A X509v3 Authority Key Identifier: keyid:D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:16:d8:d2:af:e0:8f:f1:31:94:a8:3e:df:bf:9a:90:17:7d: bc:98:b9:c1:7d:66:5d:28:cf:46:66:d2:25:77:6b:48:b7:ea: 04:01:23:97:fe:4d:ed:24:30:f5:d4:7c:35:08:ef:af:5e:5c: f8:78:06:87:9b:2a:d1:9a:67:97:5f:b5:f8:4b:2f:85:70:e0: d1:35:67:9e:e9:69:60:77:88:9c:d2:c1:5d:8d:e5:0a:b9:a2: 7a:46:ee:f5:23:d8:8e:08:71:0a:25:f5:33:ed:a7:11:a0:43: d3:8f:a8:99:e0:de:d5:20:93:c7:a6:62:a8:78:25:f6:2f:17: 46:75:b3:c7:87:b8:33:5e:dd:a5:a7:56:20:82:80:32:67:ae: 81:70:6b:c5:89:57:1b:95:7a:76:09:d9:8e:ab:1c:ee:c0:56: f8:51:88:dd:5c:d6:77:99:30:2d:f8:a3:82:3a:5c:ae:3f:6c: 1c:92:f4:bd:a4:a1:7a:07:a8:a8:5a:55:f2:62:ef:f5:f2:89: 1b:f8:c1:11:c7:b4:e4:d7:e3:b2:ab:d4:bb:d7:9b:88:72:fc: 6d:d8:2c:98:94:51:da:a2:05:ee:0f:51:7e:cd:c6:f7:ba:4b: 87:28:38:55:77:ac:9b:a2:e3:f5:6e:27:e9:b8:fc:69:b1:28: f7:79:b5:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTgxMTAvBgNVBAUTKEQ2OTYxQURBOENENTc3Q0MzM0Q3MUE5QTJEQzgxQjBD MTkyNUFDOTgwHhcNMjUwNDA1MDMxMjIxWhcNMjUwNDEyMDMxMjIxWjAYMRYwFAYD VQQDEw02N2YwOWY5NS1lMDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5p3BoMDmcggZIqrj+japShLYXNfEQgDwmNpjeYDC8Jk7dNKRBUfYo2YiqXE9 SB/PTzrLXA/+v49s/xnZ5q/o2vZFfXfIWUhMs6qigmv61vjUecSJiL7CxwhIRZ/Y 5x6mBA6bUuE4BIBNkrcEzyMEoSe+HLX8HrEjT0NcEu8forw2n9ptHQoIRIe8v+lq Aeq+RSOIHeLZDqi8NDNMRIAJdwocJDNh61u/smMhctWZIlCey1Vfbfg0Wizi9fkV XSZOfwT1uEWViRHFwBF+8a+3nRvHfZZaY3oqY+MJMtN7WohNhHBg2rHnXJtnVZRC dFHqGMpH4f9mXCp0NXYXnnHStQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMd0+8Vk CkptpxhvGFkDf/l4aZcqMB8GA1UdIwQYMBaAFNaWGtqM1XfMM9cami3IGwwZJayY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBOC8wNTY2MDkyNkQ0 NDcxMUVEQUE0MUJGN0VDNEY5QUUwMi8xcFlhMm96VmQ4d3oxeHFhTGNnYkRCa2xy SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwWWEyb3pWZDh3ejF4cWFMY2diREJrbHJKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBOC8wNTY2MDkyNkQ0NDcxMUVEQUE0MUJGN0VDNEY5QUUwMi8xcFlhMm96VmQ4 d3oxeHFhTGNnYkRCa2xySmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqFtjSr+CP8TGUqD7fv5qQF328mLnBfWZdKM9GZtIld2tIt+oEASOX /k3tJDD11Hw1CO+vXlz4eAaHmyrRmmeXX7X4Sy+FcODRNWee6Wlgd4ic0sFdjeUK uaJ6Ru71I9iOCHEKJfUz7acRoEPTj6iZ4N7VIJPHpmKoeCX2LxdGdbPHh7gzXt2l p1YggoAyZ66BcGvFiVcblXp2CdmOqxzuwFb4UYjdXNZ3mTAt+KOCOlyuP2wckvS9 pKF6B6ioWlXyYu/18okb+MERx7Tk1+Oyq9S715uIcvxt2CyYlFHaogXuD1F+zcb3 ukuHKDhVd6ybouP1bifpuPxpsSj3ebW5 -----END CERTIFICATE-----Generated at Sun Apr 6 01:36:31 2025 by rpki-client