$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: XtM3GrLPvf1J58YqRRphaMb/thAoi32u09S2HgY/GVg= Subject key identifier: 87:E8:19:E6:E0:54:02:EA:4A:01:53:59:AD:24:2B:E0:D3:D4:9B:8A Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: A9 Signing time: Sun 01 Jun 2025 05:49:47 +0000 Manifest this update: Sun 01 Jun 2025 05:49:46 +0000 Manifest next update: Sun 08 Jun 2025 05:49:46 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: K/n5Orl8v+ZRD6VV4N8BWw2x41bjGNQ/BOLb1484QOM=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: LrQNetWX/kWMMJz247yWUJ25L5V6W9haJZqldtz3j0Y=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: KlwexvDGFQzb3abuiXQPF43ztld2Pg+xYp8Fr2ZD2ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Jun 1 05:49:46 2025 GMT Not After : Jun 8 05:49:46 2025 GMT Subject: CN=683be9fb-3235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:26:a1:60:51:e7:f1:fd:bb:29:b8:70:31:ca: 67:74:9d:ff:41:11:fc:b9:0c:67:a6:74:55:92:ee: 8e:b7:4e:12:2c:ad:25:ef:f8:49:f8:7a:f4:65:17: a3:36:6b:82:a6:de:12:f4:e7:5c:ed:d1:9d:cf:73: 65:ba:a9:80:e2:65:ca:44:c7:38:04:60:97:16:15: 52:8c:4e:88:8a:96:e5:00:14:6b:38:6d:33:d1:25: ce:00:71:09:5c:33:85:7b:06:b5:54:c1:79:74:c2: 2c:16:42:0c:58:8c:2f:ff:23:2b:42:f5:9b:c5:0c: cc:6e:e6:33:da:97:26:e5:57:fc:8c:5f:f6:30:ee: fd:13:7d:dd:bf:b9:bc:31:2b:fd:30:08:9a:3c:65: 03:8b:e6:21:13:1a:c5:f1:af:e3:71:8e:57:b1:aa: 1d:bb:ef:93:81:b9:04:00:74:42:bd:67:27:74:f8: 03:10:55:17:8b:37:d1:17:63:81:0f:81:6f:69:48: d6:9c:ca:73:b6:73:3e:34:7c:ab:f4:14:4c:1c:bb: 9f:e5:06:6a:98:29:20:7c:7f:1e:f6:d9:95:2d:c7: 24:d1:84:b1:72:ac:c1:4f:42:a6:bd:7f:f7:0b:ed: eb:4e:2c:44:72:a6:9d:f3:67:33:47:d7:9f:55:16: 6e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E8:19:E6:E0:54:02:EA:4A:01:53:59:AD:24:2B:E0:D3:D4:9B:8A X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:32:49:00:86:e9:e7:02:75:2b:35:c7:c5:bc:9c:25:4a:8e: 6d:cf:5f:0b:1d:c8:2f:ef:f4:12:2a:08:70:50:bd:0b:76:ba: 42:6f:64:96:9b:14:0a:01:b2:57:a3:1c:39:6e:5a:29:ff:70: e3:06:7e:d0:47:cf:ab:f6:42:3a:32:4a:c6:02:12:0f:f9:f4: 91:9c:32:b1:ed:7c:a2:36:64:e5:9d:fb:fc:0d:72:3c:5e:9e: f1:98:39:58:90:56:d4:c2:5f:60:a6:d0:3b:4b:6d:95:f1:4d: 24:8d:bf:05:de:c2:9b:74:92:07:ea:9d:ee:d8:59:ef:a5:6d: 70:c9:4e:5d:9f:b3:71:de:92:1b:42:9f:14:e5:09:b1:7c:ae: 40:ef:e8:ad:af:fc:9d:22:42:52:38:01:00:ab:50:31:2b:23: 25:c3:8a:3f:47:6c:e3:82:32:d4:ca:5c:3f:6d:01:fb:03:e8: 4f:b9:47:a3:3f:97:33:5f:45:27:35:7b:16:02:3b:1d:37:a2: 87:70:9a:e6:83:1a:5a:80:62:e0:fe:d3:35:46:28:0a:30:08: 95:ff:ef:d9:a8:be:51:7e:73:14:47:f8:c0:1a:d9:c4:b3:3b: bc:02:bf:39:82:50:40:a8:fb:0f:91:50:e2:36:15:79:72:70: bd:50:8a:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUwNjAxMDU0OTQ2WhcNMjUwNjA4MDU0OTQ2WjAYMRYwFAYD VQQDEw02ODNiZTlmYi0zMjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiahYFHn8f27KbhwMcpndJ3/QRH8uQxnpnRVku6Ot04SLK0l7/hJ+Hr0ZRej NmuCpt4S9Odc7dGdz3NluqmA4mXKRMc4BGCXFhVSjE6IipblABRrOG0z0SXOAHEJ XDOFewa1VMF5dMIsFkIMWIwv/yMrQvWbxQzMbuYz2pcm5Vf8jF/2MO79E33dv7m8 MSv9MAiaPGUDi+YhExrF8a/jcY5Xsaodu++TgbkEAHRCvWcndPgDEFUXizfRF2OB D4FvaUjWnMpztnM+NHyr9BRMHLuf5QZqmCkgfH8e9tmVLcck0YSxcqzBT0KmvX/3 C+3rTixEcqad82czR9efVRZulQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfoGebg VALqSgFTWa0kK+DT1JuKMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwMkkAhunnAnUrNcfFvJwlSo5tz18LHcgv7/QSKghwUL0LdrpCb2SW mxQKAbJXoxw5blop/3DjBn7QR8+r9kI6MkrGAhIP+fSRnDKx7XyiNmTlnfv8DXI8 Xp7xmDlYkFbUwl9gptA7S22V8U0kjb8F3sKbdJIH6p3u2FnvpW1wyU5dn7Nx3pIb Qp8U5QmxfK5A7+itr/ydIkJSOAEAq1AxKyMlw4o/R2zjgjLUylw/bQH7A+hPuUej P5czX0UnNXsWAjsdN6KHcJrmgxpagGLg/tM1RigKMAiV/+/ZqL5RfnMUR/jAGtnE szu8Ar85glBAqPsPkVDiNhV5cnC9UIo9 -----END CERTIFICATE-----Generated at Mon Jun 2 20:21:27 2025 by rpki-client