$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: T3WLHPqnWBwMDW6/gvKQfZ3efvSNl8k0ddoj4o5DPmg= Subject key identifier: ED:04:C1:C3:C0:16:B3:E6:B4:6D:2A:76:D2:93:F2:E6:88:10:10:06 Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 039E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 039A Signing time: Sat 29 Mar 2025 01:01:10 +0000 Manifest this update: Sat 29 Mar 2025 01:01:10 +0000 Manifest next update: Sat 05 Apr 2025 01:01:10 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: oifbrKpyDzWHrrJXpH40Iop/khMPdSWyoPjE7AAA5g0=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: nlvzWGcCzQ3g4WB0QEnebQiCK2io0J1tCDKfBVlK9FY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 926 (0x39e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2 Validity Not Before: Mar 29 01:01:10 2025 GMT Not After : Apr 5 01:01:10 2025 GMT Subject: CN=67e74656-2611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:26:be:d7:4e:9f:d4:61:c8:80:55:76:a4:d5: f5:ab:2e:37:d3:33:1b:fb:8b:60:48:a5:9d:d8:8b: ad:b9:b9:67:60:78:e5:4b:85:31:67:6d:f1:51:c5: af:80:05:75:15:8c:59:01:37:ce:16:d4:6a:5b:19: 71:be:ba:bc:d6:6f:27:de:91:27:0f:9a:93:9f:04: f7:3d:0d:74:15:22:a4:95:0a:c8:77:1b:da:57:b7: 92:75:68:de:a4:4d:5c:8e:94:b1:4b:6d:11:4a:ea: 47:13:41:0e:e5:d2:a4:62:3f:0b:5b:05:ad:b4:8f: 63:00:af:55:be:03:41:83:04:cd:85:ed:60:50:df: d8:27:5c:87:a1:f2:23:a2:ee:be:ed:df:30:f3:d2: de:72:09:7d:8a:a7:b6:f4:bc:f3:b5:94:56:43:3a: e4:7c:03:47:75:be:36:5c:a2:e9:f6:a2:67:c7:28: d4:74:fc:f1:cc:5d:97:b0:d6:94:04:70:8d:19:8c: b3:df:e4:ef:d4:c7:98:4f:90:02:13:ae:68:4b:86: d4:30:53:db:52:2c:f1:74:1c:c1:de:15:96:5e:26: f4:98:14:4b:aa:33:8a:d4:cf:6b:4a:41:cf:18:3a: 67:d1:8f:17:80:3b:3d:41:07:ca:34:c9:f4:51:19: 7e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:04:C1:C3:C0:16:B3:E6:B4:6D:2A:76:D2:93:F2:E6:88:10:10:06 X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:20:67:1e:8c:5a:cb:96:66:0d:38:ca:40:25:77:35:2c:40: 6b:87:4b:a3:cb:e8:5d:e3:ae:53:d0:da:69:5a:87:b6:02:75: 02:b7:22:fb:6f:76:ef:d6:77:4a:73:66:c7:ba:c5:f8:73:75: 66:ac:ae:8d:ad:75:1b:a5:1e:dd:62:70:ba:82:04:6b:00:4a: df:a2:dd:28:37:30:38:fd:ac:8c:bf:b0:20:af:72:0c:c4:fc: a7:34:7f:a5:61:f5:1c:ec:46:30:58:25:b7:62:66:a2:47:53: b4:2b:fa:ad:f6:10:b7:a8:4c:9f:72:cc:34:ad:39:49:f3:92: 04:09:16:96:8f:c3:22:6f:16:bd:45:e0:20:3b:62:86:09:ce: 1f:ca:bb:6a:b1:0f:42:14:22:04:cc:0e:33:9a:5b:20:13:67: 73:c7:2d:01:57:e3:d7:83:da:2a:d7:48:9b:70:4b:ca:b7:e4: d5:70:a1:54:96:4d:28:19:a4:17:8a:8b:f4:41:6e:1d:81:21: 6a:be:e5:7e:3f:30:3a:4c:a1:48:78:8c:03:2f:45:5f:a6:3a: 45:7f:c9:53:db:ce:92:4b:ed:1a:5c:69:cd:7a:ed:fc:63:db: c7:36:33:48:b8:e4:7a:69:45:ba:64:d2:f9:27:17:a8:de:a6: 09:4f:87:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjUwMzI5MDEwMTEwWhcNMjUwNDA1MDEwMTEwWjAYMRYwFAYD VQQDEw02N2U3NDY1Ni0yNjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCa+106f1GHIgFV2pNX1qy430zMb+4tgSKWd2IutublnYHjlS4UxZ23xUcWv gAV1FYxZATfOFtRqWxlxvrq81m8n3pEnD5qTnwT3PQ10FSKklQrIdxvaV7eSdWje pE1cjpSxS20RSupHE0EO5dKkYj8LWwWttI9jAK9VvgNBgwTNhe1gUN/YJ1yHofIj ou6+7d8w89Lecgl9iqe29LzztZRWQzrkfANHdb42XKLp9qJnxyjUdPzxzF2XsNaU BHCNGYyz3+Tv1MeYT5ACE65oS4bUMFPbUizxdBzB3hWWXib0mBRLqjOK1M9rSkHP GDpn0Y8XgDs9QQfKNMn0URl+BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0EwcPA FrPmtG0qdtKT8uaIEBAGMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtIGcejFrLlmYNOMpAJXc1LEBrh0ujy+hd465T0NppWoe2AnUCtyL7 b3bv1ndKc2bHusX4c3VmrK6NrXUbpR7dYnC6ggRrAErfot0oNzA4/ayMv7Agr3IM xPynNH+lYfUc7EYwWCW3YmaiR1O0K/qt9hC3qEyfcsw0rTlJ85IECRaWj8Mibxa9 ReAgO2KGCc4fyrtqsQ9CFCIEzA4zmlsgE2dzxy0BV+PXg9oq10ibcEvKt+TVcKFU lk0oGaQXiov0QW4dgSFqvuV+PzA6TKFIeIwDL0VfpjpFf8lT286SS+0aXGnNeu38 Y9vHNjNIuOR6aUW6ZNL5Jxeo3qYJT4eY -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:29 2025 by rpki-client