$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json) Hash identifier: lk2yARkelwwHg33aLdF+cVO8atFy0+dpqE93hDNInb0= Subject key identifier: B7:68:0B:9E:30:E0:02:D4:03:18:AE:E8:89:CE:1F:0D:69:79:99:7C Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 0916 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft Manifest number: 0910 Signing time: Fri 30 May 2025 20:32:23 +0000 Manifest this update: Fri 30 May 2025 20:32:22 +0000 Manifest next update: Fri 06 Jun 2025 20:32:22 +0000 Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: E+A8WluhCb6qWpUDX2kMGcXINuTgbcrLnkQMVxoJc58=) 2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: oh99riu32xDufqLh4s49Z+OfJBlHg4YCfXKo4NVguOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2326 (0x916) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604, serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: May 30 20:32:22 2025 GMT Not After : Jun 6 20:32:22 2025 GMT Subject: CN=683a15d7-5fca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bd:b3:a2:44:ce:9d:ba:df:d5:70:7e:6e:74: eb:08:15:88:c6:4e:90:46:0a:9e:d7:60:9e:4c:b2: 24:6d:1f:bd:a3:03:c2:ab:dc:96:7e:40:25:1f:93: 61:f5:19:fd:ba:18:34:11:c4:7c:9c:d2:bf:eb:3d: a5:e2:09:62:75:6c:02:a2:05:0a:25:95:f3:15:86: ba:76:fd:52:5a:99:f5:c0:e4:90:a3:52:d6:6e:b1: 6f:0a:b3:39:4a:d3:7c:90:df:b7:1f:55:0e:39:df: 9b:c5:7f:fc:ac:ec:28:26:80:15:cb:04:74:4e:ce: 91:1a:cd:74:c7:5b:06:dd:4d:c6:9c:3a:ab:a5:6b: 9b:bb:1f:aa:6a:0b:5c:81:1e:05:46:b1:05:dd:c4: 9b:b6:a8:6d:6b:57:15:b5:e7:03:b3:29:64:0b:3b: a7:53:6c:e6:99:00:0d:60:52:73:34:9d:b9:d6:a1: 8c:65:c6:6f:e3:66:4d:fc:29:2e:94:5f:22:d8:b2: 61:b4:fc:c6:a7:96:6e:ac:79:d0:eb:7a:4b:ae:6b: d1:c1:5d:0c:63:81:5b:0e:00:53:f7:e6:70:ed:7b: 82:5d:9f:86:97:7a:76:49:51:8b:36:63:74:e4:c5: 6a:a8:b0:13:b4:76:85:81:94:51:bf:84:05:93:bf: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:68:0B:9E:30:E0:02:D4:03:18:AE:E8:89:CE:1F:0D:69:79:99:7C X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:92:06:06:7c:2d:8b:f3:77:0c:84:f0:1f:c6:a8:09:93:ab: 71:99:5c:91:cd:35:2e:ab:46:86:04:ba:bf:32:07:ae:e4:03: 39:0f:c6:6b:48:75:8f:33:77:de:86:17:ba:40:33:f9:f8:c8: b4:f9:39:70:de:a8:62:2a:b0:fb:58:12:ad:b4:f1:3c:5f:ef: 0e:9c:35:30:69:b8:d5:8b:46:77:80:83:a5:21:2b:77:55:50: fb:3b:b7:03:eb:0d:3e:67:07:32:93:7d:c5:f9:80:36:be:15: e6:b4:b3:d5:69:09:0e:d6:30:21:d3:23:df:02:8c:b0:ae:a3: c3:dd:a6:a9:1d:25:d7:92:a3:f9:b6:43:6f:2a:67:7d:e1:c1: db:92:f1:16:9e:f3:99:45:fd:d6:b9:45:1a:da:4c:0b:31:45: a6:d3:12:ec:a4:d9:32:e8:b4:2d:97:36:43:80:9d:78:87:bb: b7:2a:80:55:38:ef:55:87:60:2f:2f:4b:a6:d2:e5:0e:e4:01: 34:49:6c:84:4c:9d:1c:6e:ad:a4:ea:46:f3:1d:22:b4:2b:86: f6:ce:d6:d7:9e:d5:c6:00:83:14:f8:b7:0e:45:89:b2:bb:02: 6d:d5:c7:66:6c:74:84:c8:85:10:a2:ba:f7:aa:cd:5b:fd:4a: 56:bf:e0:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjUwNTMwMjAzMjIyWhcNMjUwNjA2MjAzMjIyWjAYMRYwFAYD VQQDEw02ODNhMTVkNy01ZmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL2zokTOnbrf1XB+bnTrCBWIxk6QRgqe12CeTLIkbR+9owPCq9yWfkAlH5Nh 9Rn9uhg0EcR8nNK/6z2l4glidWwCogUKJZXzFYa6dv1SWpn1wOSQo1LWbrFvCrM5 StN8kN+3H1UOOd+bxX/8rOwoJoAVywR0Ts6RGs10x1sG3U3GnDqrpWubux+qagtc gR4FRrEF3cSbtqhta1cVtecDsylkCzunU2zmmQANYFJzNJ251qGMZcZv42ZN/Cku lF8i2LJhtPzGp5ZurHnQ63pLrmvRwV0MY4FbDgBT9+Zw7XuCXZ+Gl3p2SVGLNmN0 5MVqqLATtHaFgZRRv4QFk78I+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdoC54w 4ALUAxiu6InOHw1peZl8MB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTYwNC9CQ0VDNkM1RUE0QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VP Vml6N1JYa0F6S3VRa01LMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLkgYGfC2L83cMhPAfxqgJk6txmVyRzTUuq0aGBLq/Mgeu5AM5D8Zr SHWPM3fehhe6QDP5+Mi0+Tlw3qhiKrD7WBKttPE8X+8OnDUwabjVi0Z3gIOlISt3 VVD7O7cD6w0+Zwcyk33F+YA2vhXmtLPVaQkO1jAh0yPfAoywrqPD3aapHSXXkqP5 tkNvKmd94cHbkvEWnvOZRf3WuUUa2kwLMUWm0xLspNky6LQtlzZDgJ14h7u3KoBV OO9Vh2AvL0um0uUO5AE0SWyETJ0cbq2k6kbzHSK0K4b2ztbXntXGAIMU+LcORYmy uwJt1cdmbHSEyIUQorr3qs1b/UpWv+Bj -----END CERTIFICATE-----Generated at Sat May 31 17:24:47 2025 by rpki-client