$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft File: l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft (raw, json) Hash identifier: QfItqINASM55KOWqccOSZEtfZCqQkRJbOvYTuBkpBFU= Subject key identifier: E1:DE:79:C5:D2:6D:80:7C:29:4A:97:7D:AB:01:68:B3:46:3D:71:80 Authority key identifier: 97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 Certificate issuer: /CN=A913F2BD/serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft Manifest number: A9 Signing time: Sat 31 May 2025 05:39:50 +0000 Manifest this update: Sat 31 May 2025 05:39:50 +0000 Manifest next update: Sat 07 Jun 2025 05:39:50 +0000 Files and hashes: 1: l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl (hash: Bug75fUy1lISjDYe7mfBt8W8XSa2PmrYkrBTNFqhNDw=) 2: 470E849A389E11EF83D66176C4F9AE02.roa (hash: I6wYLUXo9wiy4AQAxb2ubHia3GZFxKPK++eH7JKRPwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2BD, serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Validity Not Before: May 31 05:39:50 2025 GMT Not After : Jun 7 05:39:50 2025 GMT Subject: CN=683a9626-aa7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:6a:6f:cd:71:c0:bd:46:30:6f:02:53:1e: d7:b4:e6:af:09:18:e8:02:49:f1:0e:ea:55:8e:89: 8b:c4:0f:0e:a1:0e:00:be:6f:31:02:7c:18:27:83: 05:38:1e:a9:ee:e7:3c:19:9a:4e:40:15:03:b0:d6: 74:ce:c7:ea:11:f9:fa:17:98:4b:2d:f6:7e:79:fa: 6e:1b:15:12:a1:46:5c:43:04:c8:16:ca:59:9a:b5: a2:8e:09:29:e0:24:5f:3a:d5:de:f6:46:be:53:0b: 68:cc:96:1f:0b:57:ce:14:b2:6e:6a:35:fa:8a:97: 8f:6e:1e:b0:9a:2e:ed:6e:1b:7a:7e:65:72:4c:66: 01:16:e9:92:f0:68:08:f1:35:bb:da:7e:57:1d:cd: 43:4d:e2:45:fe:16:76:ae:ac:b3:97:cf:56:3f:3d: 38:21:36:19:91:b4:d7:43:b1:29:7a:5d:4b:98:cf: 38:0a:54:8f:05:c1:a7:64:0a:db:e2:e0:81:96:52: 76:d5:45:0a:ec:1f:87:d8:87:9f:05:c2:a8:1b:fa: ec:9f:04:75:68:a3:1b:dc:b9:ad:23:74:3d:24:49: f3:0d:9d:68:8b:f3:a5:a6:7b:ea:88:d6:c4:c0:80: 51:a0:ba:ca:4f:45:b2:3c:e9:50:6a:d1:8e:b4:bc: aa:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DE:79:C5:D2:6D:80:7C:29:4A:97:7D:AB:01:68:B3:46:3D:71:80 X509v3 Authority Key Identifier: keyid:97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:eb:9c:30:e9:b4:30:c9:29:7f:ac:73:4d:74:c3:3b:7a:74: 7e:46:c5:8c:6c:59:0a:b0:b1:00:4a:1b:c2:66:b0:34:0c:81: b4:6c:38:9e:48:31:4b:04:cc:98:dc:24:c9:c7:ce:60:d0:1e: ed:f8:f1:9f:06:bd:f6:da:34:59:04:29:99:58:cc:3c:30:01: cf:97:c9:3e:e8:67:09:c3:df:a9:7d:91:16:09:2b:15:3f:28: d7:83:82:ee:ca:02:01:c2:31:ed:ff:76:d4:19:f1:06:4b:8b: fc:a3:85:0e:63:72:46:79:f9:32:87:ef:3d:fe:87:c1:15:a0: 64:ab:32:0a:8a:2e:cf:a4:3a:9c:13:06:78:93:50:ea:7a:46: d6:05:f8:ff:f8:f4:5e:31:6e:b8:ad:8c:5c:f1:84:9a:9d:ea: 7b:16:13:8c:65:bc:14:67:47:ab:a6:2d:3e:80:60:03:1f:66: 53:3a:ae:a1:17:30:30:50:c0:b6:cc:7f:89:4e:a3:b5:bc:81: 19:44:3d:2e:9e:7f:d4:14:33:57:42:72:01:d7:b8:0b:f0:b7: 01:7c:1f:39:30:3f:ca:30:6e:41:7c:1d:f5:1d:51:57:54:88: 14:af:e2:33:58:e7:72:a2:2e:a8:a7:17:2c:9d:f1:1d:95:b5: 20:ce:a3:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YyQkQxMTAvBgNVBAUTKDk3RDA0MTU5RkJCMzdFQTY3NDYyQjg5Njk3NkMxMTQw Qzk1OUU2OTEwHhcNMjUwNTMxMDUzOTUwWhcNMjUwNjA3MDUzOTUwWjAYMRYwFAYD VQQDEw02ODNhOTYyNi1hYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuz9qb81xwL1GMG8CUx7XtOavCRjoAknxDupVjomLxA8OoQ4Avm8xAnwYJ4MF OB6p7uc8GZpOQBUDsNZ0zsfqEfn6F5hLLfZ+efpuGxUSoUZcQwTIFspZmrWijgkp 4CRfOtXe9ka+UwtozJYfC1fOFLJuajX6ipePbh6wmi7tbht6fmVyTGYBFumS8GgI 8TW72n5XHc1DTeJF/hZ2rqyzl89WPz04ITYZkbTXQ7Epel1LmM84ClSPBcGnZArb 4uCBllJ21UUK7B+H2IefBcKoG/rsnwR1aKMb3LmtI3Q9JEnzDZ1oi/OlpnvqiNbE wIBRoLrKT0WyPOlQatGOtLyqXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHeecXS bYB8KUqXfasBaLNGPXGAMB8GA1UdIwQYMBaAFJfQQVn7s36mdGK4lpdsEUDJWeaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjJCRC80Nzg0NDIwMDM4 OTYxMUVGOUVERTgxMzZDNEY5QUUwMi9sOUJCV2Z1emZxWjBZcmlXbDJ3UlFNbFo1 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5QkJXZnV6ZnFaMFlyaVdsMndSUU1sWjVwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjJCRC80Nzg0NDIwMDM4OTYxMUVGOUVERTgxMzZDNEY5QUUwMi9sOUJCV2Z1emZx WjBZcmlXbDJ3UlFNbFo1cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV65ww6bQwySl/rHNNdMM7enR+RsWMbFkKsLEAShvCZrA0DIG0bDie SDFLBMyY3CTJx85g0B7t+PGfBr322jRZBCmZWMw8MAHPl8k+6GcJw9+pfZEWCSsV PyjXg4LuygIBwjHt/3bUGfEGS4v8o4UOY3JGefkyh+89/ofBFaBkqzIKii7PpDqc EwZ4k1DqekbWBfj/+PReMW64rYxc8YSanep7FhOMZbwUZ0erpi0+gGADH2ZTOq6h FzAwUMC2zH+JTqO1vIEZRD0unn/UFDNXQnIB17gL8LcBfB85MD/KMG5BfB31HVFX VIgUr+IzWOdyoi6opxcsnfEdlbUgzqM7 -----END CERTIFICATE-----Generated at Sat May 31 17:54:51 2025 by rpki-client