$ rpki-client -vvf rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft File: 9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft (raw, json) Hash identifier: TA18Kd1xBEFe6lTjXWrkWYukFyb+yUjUsuxg1RaXsm0= Subject key identifier: 41:5E:C6:D7:9F:10:7B:0C:6A:EB:EC:74:59:97:5A:AB:3E:41:7B:7C Authority key identifier: F6:25:D6:BF:CD:42:1B:D3:DB:97:C6:95:94:14:BC:70:94:6E:AB:C4 Certificate issuer: /CN=A919834A/serialNumber=F625D6BFCD421BD3DB97C6959414BC70946EABC4 Certificate serial: 19D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft Manifest number: 1996 Signing time: Fri 04 Apr 2025 16:28:47 +0000 Manifest this update: Fri 04 Apr 2025 16:28:46 +0000 Manifest next update: Fri 11 Apr 2025 16:28:46 +0000 Files and hashes: 1: 9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl (hash: RX0pgCzVX4Nzgk3nAwfrpEdU++eWgQxkWkJFw10HDzs=) 2: 48EE1EC6A80311EBA56CEC52C4F9AE02.roa (hash: c2CgFARH3NGyjJVcgLSdMDavs6AC8B7rRi2PB+rzCh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6613 (0x19d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919834A Validity Not Before: Apr 4 16:28:46 2025 GMT Not After : Apr 11 16:28:46 2025 GMT Subject: CN=67f008bf-a50d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:30:1d:31:b7:28:57:97:d7:77:81:ad:f7:cb: 2d:03:d7:64:35:d7:14:7d:31:9a:e7:e7:98:94:95: 56:1f:7c:c0:14:e9:f0:db:d3:73:cf:d7:ad:07:71: 06:1d:4a:42:9c:f7:d6:98:bd:98:03:cf:9c:75:a4: ca:52:90:d6:e8:38:f8:a9:c1:af:fb:f9:1f:bf:30: 57:75:89:94:e9:39:f8:51:14:50:e6:3e:59:75:91: 54:54:37:1b:92:57:75:72:c2:dc:d5:70:67:d3:81: 70:bd:10:e9:1c:a8:dc:18:98:16:d1:b6:c5:8d:39: c0:d7:72:97:9f:77:0e:1b:78:8f:72:00:d7:dc:c0: e3:17:d3:2e:31:fc:ea:f2:70:b2:9d:43:54:f4:db: 0a:37:18:6d:26:d7:ea:40:3a:fb:27:41:a0:05:c7: 6e:30:3d:16:32:6d:05:94:cc:89:1a:c2:0b:3e:a8: b1:db:c5:46:f1:5d:43:58:ac:54:14:49:c6:85:66: 6b:97:b3:02:06:1a:83:41:d7:c3:81:d2:49:21:7f: 6c:2e:e8:8d:a1:72:a8:f1:77:55:37:05:df:1c:63: 2c:a4:3a:26:80:65:15:33:fa:4d:b6:2e:57:b9:a8: 74:95:91:a5:5b:ab:22:a8:79:3f:a6:62:ac:36:d4: 68:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5E:C6:D7:9F:10:7B:0C:6A:EB:EC:74:59:97:5A:AB:3E:41:7B:7C X509v3 Authority Key Identifier: keyid:F6:25:D6:BF:CD:42:1B:D3:DB:97:C6:95:94:14:BC:70:94:6E:AB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:24:60:fb:87:c0:95:d0:fd:40:3a:bc:e5:e0:a2:08:7f:3f: 6f:94:a7:00:a4:4d:f3:d9:50:89:02:1a:34:4b:51:b2:fa:6c: c6:b3:82:30:91:d1:c8:ff:8a:f5:2b:eb:dc:2e:c9:5e:76:a5: 68:c2:4f:33:be:3c:a0:8b:16:15:ed:8a:ea:22:a5:c0:db:6c: 38:ea:e1:6f:30:40:0c:03:e9:ce:42:40:36:de:2e:8c:44:c7: 70:4a:e0:e0:8c:40:9e:8f:c7:dd:c6:bf:d6:54:32:1a:06:61: 00:ce:a8:6d:6c:ea:b2:68:68:6b:40:5a:a6:fc:65:bd:86:d6: ec:83:16:c0:a0:9f:22:aa:87:a7:a0:23:e3:70:94:b4:7e:00: 80:66:67:6e:1a:35:72:25:c5:4b:ff:b8:a2:ae:ad:56:e1:97: 21:33:09:fa:55:76:fc:da:44:0f:fe:bd:1a:1e:d9:81:fa:e4: 91:84:13:6b:03:d6:ec:6d:4d:3f:50:d2:b5:ee:da:30:0c:f8: 2d:b0:89:06:67:f9:1e:be:de:b8:09:00:15:ea:7f:77:8b:70: 65:1d:15:82:48:cf:cb:49:f8:72:55:75:d9:6d:53:4a:fd:1d: 86:af:f6:bc:f5:c9:fd:63:00:58:70:27:9c:fb:31:7b:cd:fc: b4:33:ec:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgzNEExMTAvBgNVBAUTKEY2MjVENkJGQ0Q0MjFCRDNEQjk3QzY5NTk0MTRCQzcw OTQ2RUFCQzQwHhcNMjUwNDA0MTYyODQ2WhcNMjUwNDExMTYyODQ2WjAYMRYwFAYD VQQDEw02N2YwMDhiZi1hNTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jAdMbcoV5fXd4Gt98stA9dkNdcUfTGa5+eYlJVWH3zAFOnw29Nzz9etB3EG HUpCnPfWmL2YA8+cdaTKUpDW6Dj4qcGv+/kfvzBXdYmU6Tn4URRQ5j5ZdZFUVDcb kld1csLc1XBn04FwvRDpHKjcGJgW0bbFjTnA13KXn3cOG3iPcgDX3MDjF9MuMfzq 8nCynUNU9NsKNxhtJtfqQDr7J0GgBcduMD0WMm0FlMyJGsILPqix28VG8V1DWKxU FEnGhWZrl7MCBhqDQdfDgdJJIX9sLuiNoXKo8XdVNwXfHGMspDomgGUVM/pNti5X uah0lZGlW6siqHk/pmKsNtRogQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFextef EHsMauvsdFmXWqs+QXt8MB8GA1UdIwQYMBaAFPYl1r/NQhvT25fGlZQUvHCUbqvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODM0QS8yQzA0NzQ3NDZF MzUxMUU3ODJERUZFNTVDNEY5QUUwMi85aVhXdjgxQ0c5UGJsOGFWbEJTOGNKUnVx OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlpWFd2ODFDRzlQYmw4YVZsQlM4Y0pSdXE4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODM0QS8yQzA0NzQ3NDZFMzUxMUU3ODJERUZFNTVDNEY5QUUwMi85aVhXdjgxQ0c5 UGJsOGFWbEJTOGNKUnVxOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpJGD7h8CV0P1AOrzl4KIIfz9vlKcApE3z2VCJAho0S1Gy+mzGs4Iw kdHI/4r1K+vcLsledqVowk8zvjygixYV7YrqIqXA22w46uFvMEAMA+nOQkA23i6M RMdwSuDgjECej8fdxr/WVDIaBmEAzqhtbOqyaGhrQFqm/GW9htbsgxbAoJ8iqoen oCPjcJS0fgCAZmduGjVyJcVL/7iirq1W4ZchMwn6VXb82kQP/r0aHtmB+uSRhBNr A9bsbU0/UNK17towDPgtsIkGZ/kevt64CQAV6n93i3BlHRWCSM/LSfhyVXXZbVNK /R2Gr/a89cn9YwBYcCec+zF7zfy0M+zT -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:17 2025 by rpki-client