$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft File: tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft (raw, json) Hash identifier: iV2ojQGPebSDHgbEJ1Bc/TM/O0UnPIzAApMnaMzkr/g= Subject key identifier: 17:30:64:18:B2:E8:76:AC:5E:1C:EA:75:50:50:8B:EA:DE:F5:A7:A4 Authority key identifier: B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD Certificate issuer: /CN=A9150CF3/serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft Manifest number: 02EE Signing time: Thu 13 Mar 2025 01:39:01 +0000 Manifest this update: Thu 13 Mar 2025 01:39:00 +0000 Manifest next update: Thu 20 Mar 2025 01:39:00 +0000 Files and hashes: 1: tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl (hash: /eX+GElZQdRey5nxgrEEFoxdAH0s1fXJ8o9LhfEwQ+s=) 2: FDB4B8B4E85211EE83F9ED4BC4F9AE02.roa (hash: SCTf0mwZLUHqFVPegVRVJr7Eh8lVpCyL1GKCV+U6N7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 01:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150CF3 Validity Not Before: Mar 13 01:39:00 2025 GMT Not After : Mar 20 01:39:00 2025 GMT Subject: CN=67d23735-f543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e7:1f:f5:48:4d:7f:2b:c7:00:ee:54:63:02: bd:47:4b:e6:47:4c:7f:ab:02:32:c5:1b:87:e2:5b: 61:41:b6:1a:87:e1:5d:b2:3a:ab:d7:31:35:71:23: af:e8:35:a4:64:96:62:5e:8e:f2:1b:f1:21:21:8f: a6:dd:40:44:49:21:6c:23:16:99:ce:28:b9:f7:30: 91:9b:4d:bd:9b:cd:cb:c1:68:83:1e:c5:f6:5f:eb: f6:99:3f:e9:e5:98:76:8b:7f:5f:4b:ea:9d:0c:0f: 37:d7:ff:6d:c2:65:07:6b:f8:8e:63:5b:3f:d2:ae: 7a:99:c6:60:0d:11:cb:93:f2:4f:09:4c:a6:26:dc: f7:a9:e2:61:f9:6a:0f:4c:8a:94:e3:2c:ac:4e:9d: 51:a7:2b:a9:9a:72:0f:05:65:76:cc:0e:e9:9e:6c: 8c:6f:46:13:26:14:b6:d7:99:13:61:80:96:47:56: 3c:67:eb:57:3c:c6:c4:94:86:8f:d6:e5:ec:24:f5: 6d:16:1f:25:76:de:49:a9:23:50:85:2c:b2:b6:66: 3b:12:a0:55:a7:e2:66:89:14:cb:8a:d4:49:bf:80: 84:b4:38:96:94:40:f0:b0:11:ac:ab:7c:9b:75:85: b4:37:21:fb:19:cd:22:c8:d0:5d:5d:fd:68:7c:dc: 57:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:30:64:18:B2:E8:76:AC:5E:1C:EA:75:50:50:8B:EA:DE:F5:A7:A4 X509v3 Authority Key Identifier: keyid:B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:e9:22:05:11:66:43:b8:4b:5b:88:53:62:75:1b:9a:02:29: be:35:07:f2:66:32:b8:bc:d2:02:44:ba:fa:c5:94:99:2c:4f: 1e:86:2e:ac:14:01:84:5d:96:c5:9b:ef:ba:b9:a8:18:06:b8: 93:ac:32:d0:fa:cc:62:43:f8:41:37:eb:27:7d:23:c3:7a:db: b4:83:75:67:36:96:75:48:e6:f7:90:4d:d8:1a:2b:96:77:23: f7:50:6f:04:87:a0:72:e9:fe:de:b3:aa:bb:bf:d4:2e:6a:e8: d6:ea:e2:bc:bb:4c:7b:d2:a3:1d:00:71:8b:2e:42:f0:f2:39: ca:67:a2:8f:fe:ff:1c:10:c4:6f:c7:59:3f:2b:57:7c:e2:41: bc:4a:ff:ec:29:c1:4c:b4:5a:48:c8:97:1c:47:e6:d5:2c:8d: d6:37:64:63:0b:32:37:1f:ae:ce:60:91:b2:b9:b0:d8:1f:18: 61:62:a6:06:21:88:bc:0e:d3:97:88:cd:62:8e:56:da:a6:2f: 95:42:3f:53:3a:c7:39:19:ca:c7:09:28:e5:34:6e:fb:13:96: 5f:41:16:96:ce:fd:1a:72:05:0c:42:78:a2:ac:e4:e7:2a:d4: 63:04:a4:b7:bd:f5:f9:14:7a:a3:49:88:b5:ba:bc:ca:19:57: 35:64:ac:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBDRjMxMTAvBgNVBAUTKEI0OENCMTgwODI2MkI4MDk5Qjg3MjcyQTU3NkZGRURD MTlBMzk2QkQwHhcNMjUwMzEzMDEzOTAwWhcNMjUwMzIwMDEzOTAwWjAYMRYwFAYD VQQDEw02N2QyMzczNS1mNTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOcf9UhNfyvHAO5UYwK9R0vmR0x/qwIyxRuH4lthQbYah+Fdsjqr1zE1cSOv 6DWkZJZiXo7yG/EhIY+m3UBESSFsIxaZzii59zCRm029m83LwWiDHsX2X+v2mT/p 5Zh2i39fS+qdDA831/9twmUHa/iOY1s/0q56mcZgDRHLk/JPCUymJtz3qeJh+WoP TIqU4yysTp1RpyupmnIPBWV2zA7pnmyMb0YTJhS215kTYYCWR1Y8Z+tXPMbElIaP 1uXsJPVtFh8ldt5JqSNQhSyytmY7EqBVp+JmiRTLitRJv4CEtDiWlEDwsBGsq3yb dYW0NyH7Gc0iyNBdXf1ofNxXOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcwZBiy 6HasXhzqdVBQi+re9aekMB8GA1UdIwQYMBaAFLSMsYCCYrgJm4cnKldv/twZo5a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MENGMy8wMjhGOUVGRTJF ODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVBbWJoeWNxVjJfLTNCbWps cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJeXhnSUppdUFtYmh5Y3FWMl8tM0JtamxyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MENGMy8wMjhGOUVGRTJFODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVB bWJoeWNxVjJfLTNCbWpscjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh6SIFEWZDuEtbiFNidRuaAim+NQfyZjK4vNICRLr6xZSZLE8ehi6s FAGEXZbFm++6uagYBriTrDLQ+sxiQ/hBN+snfSPDetu0g3VnNpZ1SOb3kE3YGiuW dyP3UG8Eh6By6f7es6q7v9QuaujW6uK8u0x70qMdAHGLLkLw8jnKZ6KP/v8cEMRv x1k/K1d84kG8Sv/sKcFMtFpIyJccR+bVLI3WN2RjCzI3H67OYJGyubDYHxhhYqYG IYi8DtOXiM1ijlbapi+VQj9TOsc5GcrHCSjlNG77E5ZfQRaWzv0acgUMQniirOTn KtRjBKS3vfX5FHqjSYi1urzKGVc1ZKwJ -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:13 2025 by rpki-client