$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: WClQy92cFQS+tbOfeJ6el6WDOhfN5AeK+lZoq+8sScg= Subject key identifier: CA:F6:C1:81:D3:41:80:86:FF:01:18:90:32:0F:94:32:36:9E:F0:35 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: 89 Signing time: Wed 09 Apr 2025 05:36:40 +0000 Manifest this update: Wed 09 Apr 2025 05:36:40 +0000 Manifest next update: Wed 16 Apr 2025 05:36:40 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: 0aNFaKky16l954cDlFyuIctyNEXvtc09kP++Lze+ENY=) 2: 52D80E00FCC411EF8DCF3F31C4F9AE02.roa (hash: TsKzccZlVomVV3THVnPmoFvq3M8RMDhgrBAK7vI/i3s=) 3: DB9E3242C8E811EF86365B2AC4F9AE02.roa (hash: v6pTRro113en+h2WsmtXqk2rxE6NwkgghVA0fGJU70E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64 Validity Not Before: Apr 9 05:36:40 2025 GMT Not After : Apr 16 05:36:40 2025 GMT Subject: CN=67f60768-e853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9e:a5:db:77:5b:47:03:b6:15:3a:91:a2:54: c9:f9:40:7f:da:04:7a:50:45:a6:be:48:d8:18:ae: da:ca:85:ab:64:b4:09:50:cf:d4:98:72:2c:86:1d: b8:06:38:b5:47:f3:b5:ec:14:d8:38:56:a6:74:64: 38:f0:1e:97:d5:9b:dd:9b:2d:bc:96:b8:03:0b:95: c5:f2:39:bb:53:c4:cc:4f:e8:67:b7:59:f2:43:1c: ae:6c:e5:66:5a:fc:b4:89:f8:38:ef:c5:83:15:d4: ad:6a:e5:a1:14:dc:85:c6:d4:29:c7:97:80:fa:67: a2:48:0a:01:62:85:de:44:04:44:f4:96:de:ba:2e: 0f:23:66:00:7d:cf:5c:f2:1f:a7:20:94:fa:fc:6c: 21:ed:d8:c5:cc:e5:d5:fb:75:9c:b7:18:e6:62:4c: 31:75:d8:6f:68:e8:b0:15:eb:0f:68:76:7e:70:db: 92:d9:1c:7f:ef:4d:ca:62:79:65:43:51:c3:8f:92: 85:80:6a:9f:c6:ea:8b:24:3b:4e:e6:6a:06:e8:e5: 42:bb:33:b4:11:10:34:ee:b8:44:bd:45:34:f9:26: a1:08:5e:27:64:e2:f3:ff:72:2b:49:73:ea:cb:cb: 98:95:85:7c:6a:be:4e:5d:65:d3:09:86:28:10:6d: 34:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F6:C1:81:D3:41:80:86:FF:01:18:90:32:0F:94:32:36:9E:F0:35 X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:b5:f1:76:84:ce:ea:16:d4:ad:6d:ef:23:11:cc:9e:c1:be: a3:c3:98:54:49:92:41:ce:5b:21:52:6c:25:f6:95:bf:bf:2a: d8:a7:8f:31:86:5c:bf:40:ff:80:8e:58:6c:33:74:c3:32:bb: e4:0c:2f:43:51:25:a6:00:1a:f6:dd:7c:7a:0c:5e:8b:b5:b9: 79:39:fa:c7:81:00:a5:08:23:90:cd:6d:46:c2:5e:15:52:31: e0:e5:91:6e:f7:c7:92:10:14:a8:26:78:4d:3c:ab:42:30:cb: eb:6f:83:be:b7:ee:35:80:2f:47:94:97:46:53:44:93:7a:59: c5:c6:6f:c1:2d:7d:23:fd:28:ca:b6:ee:d3:fa:49:53:75:1b: 9f:bb:40:63:0f:80:7a:a3:8d:08:6d:14:c8:f9:d3:08:c9:8b: 72:f9:11:d6:e7:05:0a:d6:62:24:42:89:c6:2c:ab:9f:79:7c: bc:81:e5:15:06:98:a0:1a:e1:39:d5:cd:53:7d:cf:21:97:23: cc:d3:80:9f:9c:a7:22:fc:12:1c:5b:88:88:b7:0a:57:a1:2e: c4:1d:cd:d4:97:bd:66:f8:e3:5a:d3:89:7e:14:14:04:d8:53: a8:34:ce:ea:1b:fc:96:22:5d:b3:b1:90:bf:b0:93:e5:b3:c1: fb:6b:87:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUwNDA5MDUzNjQwWhcNMjUwNDE2MDUzNjQwWjAYMRYwFAYD VQQDEw02N2Y2MDc2OC1lODUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Z6l23dbRwO2FTqRolTJ+UB/2gR6UEWmvkjYGK7ayoWrZLQJUM/UmHIshh24 Bji1R/O17BTYOFamdGQ48B6X1Zvdmy28lrgDC5XF8jm7U8TMT+hnt1nyQxyubOVm Wvy0ifg478WDFdStauWhFNyFxtQpx5eA+meiSAoBYoXeRARE9Jbeui4PI2YAfc9c 8h+nIJT6/Gwh7djFzOXV+3WctxjmYkwxddhvaOiwFesPaHZ+cNuS2Rx/703KYnll Q1HDj5KFgGqfxuqLJDtO5moG6OVCuzO0ERA07rhEvUU0+SahCF4nZOLz/3IrSXPq y8uYlYV8ar5OXWXTCYYoEG00owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMr2wYHT QYCG/wEYkDIPlDI2nvA1MB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjtfF2hM7qFtStbe8jEcyewb6jw5hUSZJBzlshUmwl9pW/vyrYp48x hly/QP+AjlhsM3TDMrvkDC9DUSWmABr23Xx6DF6Ltbl5OfrHgQClCCOQzW1Gwl4V UjHg5ZFu98eSEBSoJnhNPKtCMMvrb4O+t+41gC9HlJdGU0STelnFxm/BLX0j/SjK tu7T+klTdRufu0BjD4B6o40IbRTI+dMIyYty+RHW5wUK1mIkQonGLKufeXy8geUV BpigGuE51c1Tfc8hlyPM04CfnKci/BIcW4iItwpXoS7EHc3Ul71m+ONa04l+FBQE 2FOoNM7qG/yWIl2zsZC/sJPls8H7a4eD -----END CERTIFICATE-----Generated at Thu Apr 10 22:13:49 2025 by rpki-client