$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft File: uH-tZU7EIXxlANDwaxm-MZ09rfc.mft (raw, json) Hash identifier: s0P5ntOPw1Cst09ZMICfi/jwHmu8EGWVxZHpoKT8Gi8= Subject key identifier: 3B:42:C2:AA:FA:FE:45:E5:67:28:6F:38:E1:E7:EF:8E:C9:C5:16:9F Authority key identifier: B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 Certificate issuer: /CN=A9155725/serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft Manifest number: 09 Signing time: Thu 03 Apr 2025 07:26:45 +0000 Manifest this update: Thu 03 Apr 2025 07:26:44 +0000 Manifest next update: Thu 10 Apr 2025 07:26:44 +0000 Files and hashes: 1: uH-tZU7EIXxlANDwaxm-MZ09rfc.crl (hash: AV6uXsuGaRBvl3HXknOSciI5AdyXQwa+k91tmqhFqjg=) 2: 7621BEA0084611F08BEB2E2DC4F9AE02.roa (hash: aySEvRngppKs/Lyekhtc0uzM27zK/l0cRA6UmOeIzlU=) 3: 753F0588084611F08BEB2E2DC4F9AE02.roa (hash: v1ibDjxmzIv2LQG97YVedEX5wevRpNJDRuNHyDfGpBg=) 4: 75A4B2D4084611F08BEB2E2DC4F9AE02.roa (hash: JronbENc2C4chw8Lr5GoQXHOGuejfoIjiKRSNDdiR4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725 Validity Not Before: Apr 3 07:26:44 2025 GMT Not After : Apr 10 07:26:44 2025 GMT Subject: CN=67ee3835-ae17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:49:42:72:c7:b1:f0:f1:30:b1:59:87:2e:44: 2c:d5:20:21:51:df:45:57:55:2c:c1:7a:45:ec:0f: 93:a0:c5:c4:01:db:80:b1:92:2c:5f:44:6d:69:e3: 45:31:2c:05:fd:1f:f7:12:f4:3d:6d:55:e1:6a:ea: 45:f1:2c:d1:13:60:3a:c6:43:74:39:dc:b0:22:37: 6f:45:2b:b4:77:9a:4b:c5:99:87:48:af:78:00:15: 65:39:db:e9:89:b0:a3:f4:ec:98:07:c4:b0:e4:f1: 68:f5:ad:c2:1b:b4:f4:f1:30:13:f3:14:db:82:a6: b9:42:a5:73:a0:4c:a6:ea:57:29:f7:01:d7:0b:3f: 33:69:a2:33:f8:25:64:56:34:4c:a3:2f:db:26:95: 4c:22:17:2d:a5:4a:5d:6e:4f:fc:87:3b:51:50:99: 8e:cd:93:8c:3a:6f:87:b2:d1:e1:2a:22:ee:c5:43: 58:f8:6f:0c:28:41:3b:54:d4:89:05:60:a6:4d:f1: c1:6d:92:8f:f9:2f:f7:0b:76:63:95:cc:a7:93:b1: 55:9f:87:86:f8:a8:fe:8b:58:2e:f3:06:5d:45:56: 3f:96:24:28:04:97:f6:19:44:41:f9:d7:5d:7d:d7: d6:e7:4c:b2:e5:75:68:fa:75:35:04:94:c2:9c:86: b5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:42:C2:AA:FA:FE:45:E5:67:28:6F:38:E1:E7:EF:8E:C9:C5:16:9F X509v3 Authority Key Identifier: keyid:B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:8e:c2:3e:e6:e0:d2:4e:63:29:a3:d0:5b:f4:81:b8:c4:0b: 8b:d8:8d:18:cd:06:38:6b:8b:34:a0:1f:57:7a:22:4e:e1:5c: df:1f:b8:8c:ac:bf:3a:e2:ac:77:91:aa:cc:fc:ea:46:c6:ba: b5:7b:3c:54:a0:e9:54:22:fc:f1:bd:02:65:7e:8d:a8:2b:d1: 9a:4a:2d:5b:fd:a3:d0:57:22:bb:f6:d4:e3:b4:2f:ae:b0:e9: 2d:c7:a2:a6:44:ee:6a:1f:a8:0a:bd:9e:a5:e8:07:f7:f7:1c: d9:4f:6d:d3:d8:b7:f4:4e:bd:39:e9:26:24:cd:99:7c:96:88: be:95:8c:5b:24:87:66:cd:57:18:f1:9e:a2:e8:da:a8:af:e3: c1:26:ba:34:48:83:49:c6:2c:18:b3:c0:aa:a5:0f:64:4a:0a: ee:ef:59:9a:79:c4:74:8d:c6:c9:f1:90:d7:5e:36:63:1b:81: 9d:3e:d0:26:d7:7b:50:02:91:70:1f:fa:aa:13:13:2c:e0:4b: f1:8b:11:3c:df:30:dd:e8:47:d6:9e:fa:ae:81:4f:a8:18:4e: dd:bb:d2:d5:d3:35:29:76:46:04:95:20:67:f1:f5:24:43:87: 61:f7:db:5e:93:b6:fb:0a:f6:9d:14:67:b9:85:c0:bb:36:09: c8:35:d5:59 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoQjg3RkFENjU0RUM0MjE3QzY1MDBEMEYwNkIxOUJFMzE5 RDNEQURGNzAeFw0yNTA0MDMwNzI2NDRaFw0yNTA0MTAwNzI2NDRaMBgxFjAUBgNV BAMTDTY3ZWUzODM1LWFlMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/SUJyx7Hw8TCxWYcuRCzVICFR30VXVSzBekXsD5OgxcQB24CxkixfRG1p40Ux LAX9H/cS9D1tVeFq6kXxLNETYDrGQ3Q53LAiN29FK7R3mkvFmYdIr3gAFWU52+mJ sKP07JgHxLDk8Wj1rcIbtPTxMBPzFNuCprlCpXOgTKbqVyn3AdcLPzNpojP4JWRW NEyjL9smlUwiFy2lSl1uT/yHO1FQmY7Nk4w6b4ey0eEqIu7FQ1j4bwwoQTtU1IkF YKZN8cFtko/5L/cLdmOVzKeTsVWfh4b4qP6LWC7zBl1FVj+WJCgEl/YZREH51119 19bnTLLldWj6dTUElMKchrWxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO0LCqvr+ ReVnKG844efvjsnFFp8wHwYDVR0jBBgwFoAUuH+tZU7EIXxlANDwaxm+MZ09rfcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzgwMUJDQUE2MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4bEFORHdheG0tTVowOXJm Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdUgtdFpVN0VJWHhsQU5Ed2F4bS1NWjA5cmZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzgwMUJDQUE2MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4 bEFORHdheG0tTVowOXJmYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGSOwj7m4NJOYymj0Fv0gbjEC4vYjRjNBjhrizSgH1d6Ik7hXN8fuIys vzrirHeRqsz86kbGurV7PFSg6VQi/PG9AmV+jagr0ZpKLVv9o9BXIrv21OO0L66w 6S3HoqZE7mofqAq9nqXoB/f3HNlPbdPYt/ROvTnpJiTNmXyWiL6VjFskh2bNVxjx nqLo2qiv48EmujRIg0nGLBizwKqlD2RKCu7vWZp5xHSNxsnxkNdeNmMbgZ0+0CbX e1ACkXAf+qoTEyzgS/GLETzfMN3oR9ae+q6BT6gYTt270tXTNSl2RgSVIGfx9SRD h2H3216TtvsK9p0UZ7mFwLs2Ccg11Vk= -----END CERTIFICATE-----Generated at Sat Apr 5 08:18:50 2025 by rpki-client