$ rpki-client -vvf rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft File: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft (raw, json) Hash identifier: 6ZOgUvUUC/uXuIQ0QfI93QTktJfNXXH9+j0opbwCWLQ= Subject key identifier: 33:52:6C:01:1D:A3:72:D2:C7:3A:DF:02:F5:40:AE:1A:DF:9B:CE:F7 Authority key identifier: F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 Certificate issuer: /CN=A915AA2E/serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft Manifest number: 6F Signing time: Thu 13 Mar 2025 04:54:34 +0000 Manifest this update: Thu 13 Mar 2025 04:54:34 +0000 Manifest next update: Thu 20 Mar 2025 04:54:34 +0000 Files and hashes: 1: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl (hash: rXJZHRVy9fc42mkafwrUG1RwzZklNLJhFkr/7626P14=) 2: BBC65AEC5AE511EFBC1FAA45C4F9AE02.roa (hash: Gqrui0OpB1CczHELSAaN90W0H5eLSv922/lG6tauLOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AA2E Validity Not Before: Mar 13 04:54:34 2025 GMT Not After : Mar 20 04:54:34 2025 GMT Subject: CN=67d2650a-2dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:32:be:03:1a:08:c0:e8:e9:49:21:c5:7a:12: ec:39:37:47:85:08:e4:a0:26:b0:07:80:e4:78:ae: 76:a5:ab:b2:ad:cb:64:1d:54:4f:7f:3d:3c:15:fd: 88:b3:98:9e:1e:58:db:2a:08:25:8d:07:72:88:a4: 68:7a:84:4e:9e:aa:a2:64:7a:ed:d2:39:d0:8c:d0: 22:31:dc:81:c0:93:1d:3b:bb:df:04:b8:d0:69:97: 98:71:d7:28:3c:5c:18:f1:7c:56:1c:f5:ac:f8:1a: 5f:4b:43:ab:53:41:86:0b:4b:03:5d:3a:b5:c1:b8: 33:87:82:76:5e:bb:f2:07:18:0e:29:1e:da:c0:0a: 46:15:22:79:7d:72:c6:2c:45:dd:88:b2:89:60:7f: 80:ec:5f:eb:20:d1:8e:4b:ed:c6:54:fd:0f:17:06: c3:53:b0:df:b0:c4:71:5d:1b:fc:66:10:54:aa:29: b3:eb:e7:6a:63:0b:c4:3b:98:37:2b:65:7c:b0:e0: cd:e0:6d:49:a0:75:d7:06:57:22:9e:0f:f0:f3:d3: 98:45:24:52:2f:28:4b:36:7e:34:de:b3:82:77:5c: 05:ca:d6:5a:0f:1a:9d:1b:70:06:a0:23:4c:9c:37: c2:b2:a1:ef:58:f4:f1:da:61:13:02:db:0c:d4:97: ec:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:52:6C:01:1D:A3:72:D2:C7:3A:DF:02:F5:40:AE:1A:DF:9B:CE:F7 X509v3 Authority Key Identifier: keyid:F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:32:39:6f:b5:14:2c:f0:15:69:aa:e2:70:b8:a9:39:71:ff: 05:b5:50:ce:ae:82:0c:34:88:21:73:f3:cc:95:0a:4c:ea:37: 23:33:ab:b1:26:e6:37:e0:87:49:fc:e7:c4:fa:0a:bf:da:03: 7e:9f:b2:b9:7b:ee:d1:77:70:b2:e0:b3:56:e9:ff:64:e1:ba: 34:37:23:80:02:49:62:56:00:a6:ca:6a:8d:17:76:50:30:2b: a4:8d:08:d8:80:e5:34:6d:b7:ce:a9:33:c4:b3:bd:96:76:4b: 5b:40:66:04:9f:d8:13:60:88:c3:f3:66:06:19:1b:f8:cc:2b: 64:09:18:68:db:1e:35:38:43:c7:06:38:a3:6a:b5:3d:3c:76: 88:00:f2:bb:2b:b9:c1:d2:c7:84:80:44:e7:02:bb:13:d5:6f: b3:1f:f3:68:d9:ab:eb:c0:ae:83:e6:bd:0d:31:3a:9d:b5:e1: 36:35:a1:6d:13:ed:af:c9:ee:9b:8e:e6:ee:ed:1d:6c:31:01: 25:24:42:d7:a9:5b:1f:b3:2f:f8:0d:37:94:10:85:a3:84:f8: 7e:d9:74:84:8d:70:ca:6f:03:c0:26:9c:f0:b4:e8:b4:90:62: 69:f1:fe:d3:1e:4f:0b:70:56:40:54:84:ff:e0:66:ec:31:ee: d3:b0:ed:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QUEyRTExMC8GA1UEBRMoRjU4MDJEOTAzREExMENEMDNGQ0YzRThFMTY1NUY1MjFD MUQ4NTc4MzAeFw0yNTAzMTMwNDU0MzRaFw0yNTAzMjAwNDU0MzRaMBgxFjAUBgNV BAMTDTY3ZDI2NTBhLTJkZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqMr4DGgjA6OlJIcV6Euw5N0eFCOSgJrAHgOR4rnalq7Kty2QdVE9/PTwV/Yiz mJ4eWNsqCCWNB3KIpGh6hE6eqqJkeu3SOdCM0CIx3IHAkx07u98EuNBpl5hx1yg8 XBjxfFYc9az4Gl9LQ6tTQYYLSwNdOrXBuDOHgnZeu/IHGA4pHtrACkYVInl9csYs Rd2Isolgf4DsX+sg0Y5L7cZU/Q8XBsNTsN+wxHFdG/xmEFSqKbPr52pjC8Q7mDcr ZXyw4M3gbUmgddcGVyKeD/Dz05hFJFIvKEs2fjTes4J3XAXK1loPGp0bcAagI0yc N8Kyoe9Y9PHaYRMC2wzUl+xnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUM1JsAR2j ctLHOt8C9UCuGt+bzvcwHwYDVR0jBBgwFoAU9YAtkD2hDNA/zz6OFlX1IcHYV4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBQTJFLzdBRkM5REYwNUFF NTExRUZCMTFDNDk0NUM0RjlBRTAyLzlZQXRrRDJoRE5BX3p6Nk9GbFgxSWNIWVY0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOVlBdGtEMmhETkFfeno2T0ZsWDFJY0hZVjRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB QTJFLzdBRkM5REYwNUFFNTExRUZCMTFDNDk0NUM0RjlBRTAyLzlZQXRrRDJoRE5B X3p6Nk9GbFgxSWNIWVY0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANsyOW+1FCzwFWmq4nC4qTlx/wW1UM6uggw0iCFz88yVCkzqNyMzq7Em 5jfgh0n858T6Cr/aA36fsrl77tF3cLLgs1bp/2ThujQ3I4ACSWJWAKbKao0XdlAw K6SNCNiA5TRtt86pM8SzvZZ2S1tAZgSf2BNgiMPzZgYZG/jMK2QJGGjbHjU4Q8cG OKNqtT08dogA8rsrucHSx4SAROcCuxPVb7Mf82jZq+vAroPmvQ0xOp214TY1oW0T 7a/J7puO5u7tHWwxASUkQtepWx+zL/gNN5QQhaOE+H7ZdISNcMpvA8AmnPC06LSQ Ymnx/tMeTwtwVkBUhP/gZuwx7tOw7fE= -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:59 2025 by rpki-client