$ rpki-client -vvf rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft File: 9MxDBOF5Dgj17JKahzciadCPtoE.mft (raw, json) Hash identifier: 1USU3NeNFx3Xzzy3lNRtnYN0me45PThilia91OtGn3s= Subject key identifier: 8B:6D:0D:50:7C:DB:53:1E:E7:03:35:CF:DA:FB:72:8A:68:B9:28:29 Authority key identifier: F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 Certificate issuer: /CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Certificate serial: 03CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft Manifest number: 03CA Signing time: Thu 13 Mar 2025 00:12:38 +0000 Manifest this update: Thu 13 Mar 2025 00:12:38 +0000 Manifest next update: Thu 20 Mar 2025 00:12:38 +0000 Files and hashes: 1: 9MxDBOF5Dgj17JKahzciadCPtoE.crl (hash: 43kV3J1wjp7mQStUMYd8PotYeEBzuD5rH9YJTIL+83E=) 2: 0E7858548CBB11ECB0842F23C4F9AE02.roa (hash: q3e8py5/C6+zKkUP8OOrbssys+IzckfYmM1B63yGsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 975 (0x3cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167BCA Validity Not Before: Mar 13 00:12:38 2025 GMT Not After : Mar 20 00:12:38 2025 GMT Subject: CN=67d222f6-9f32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5e:32:f9:33:da:67:a8:d7:74:cf:0c:b8:b0: 0a:8d:12:48:94:b0:69:87:b6:30:92:58:76:f3:fa: 09:cf:87:f1:1d:09:d4:48:17:11:69:dd:7b:f7:14: c8:f4:a0:08:0f:c4:38:24:9b:3e:83:38:d0:37:c3: b6:88:1d:9a:08:d2:e5:55:38:26:7c:33:d2:7c:bd: 9b:08:2f:fa:ec:1f:37:a3:20:16:5f:d8:60:6b:59: e7:ae:69:26:b3:df:66:e0:d0:d8:d6:27:69:69:a8: 5f:86:25:cd:c4:73:c6:0e:3c:31:ec:93:05:66:7d: 00:cf:8a:28:13:d6:d0:36:a1:72:54:33:f5:3a:f4: 97:6a:9b:39:09:4a:ff:cf:5b:3c:90:b8:83:f2:35: 80:13:e3:05:7d:86:26:1b:34:b5:95:9b:0e:a2:71: bb:9a:48:a1:59:a9:c4:ad:08:dc:ee:5f:2b:d3:e8: 7a:da:3a:6d:07:48:d3:2a:fa:79:d6:12:1c:56:fb: 39:8c:96:1b:a3:98:86:81:8b:0c:c3:c1:62:28:0a: 36:81:e3:f3:cf:19:ea:60:69:a1:fc:8d:13:33:0a: bc:1c:f3:c7:3d:70:31:d4:c8:c2:01:35:e6:65:8e: d9:8d:7d:64:08:8f:1b:f4:65:1e:49:04:c0:c4:a4: 2f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6D:0D:50:7C:DB:53:1E:E7:03:35:CF:DA:FB:72:8A:68:B9:28:29 X509v3 Authority Key Identifier: keyid:F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:72:98:7e:b4:09:9f:d2:18:99:67:7d:59:fc:31:36:97:a7: 05:72:54:ab:77:02:b8:cd:bf:36:0f:96:c5:a9:6c:76:ad:79: 76:66:a6:11:e9:bb:f7:33:7c:d3:73:d3:ca:b7:b8:d6:03:63: b5:c7:36:33:ed:1c:86:b3:e8:c0:33:6f:17:2e:3f:74:b5:dc: 72:33:36:4f:c8:27:48:24:c6:04:d3:7e:74:97:c5:e9:f5:89: 9f:d7:3d:c3:5e:67:dd:3e:ba:12:3c:34:4a:58:ea:5a:9c:2f: 22:1a:a6:b4:1f:fc:0b:b0:93:11:6b:0a:c9:47:2b:de:8a:c8: a1:c7:41:40:91:0f:b8:a9:e0:e9:b1:4f:7d:e0:7b:a2:c1:64: a0:62:65:b1:0e:cc:56:73:00:62:e3:9e:9e:de:fb:1a:2b:ca: 34:a0:9a:4e:98:75:1f:f4:7b:08:26:99:b1:bc:6d:11:23:c0: b3:2a:7e:6a:4e:36:e6:f2:fc:fc:e5:b0:78:46:0a:10:79:7d: 9a:6d:d2:34:06:a0:1f:8d:2d:eb:04:79:f8:06:49:09:77:a8: a2:00:28:77:5c:4e:e9:ca:ff:e2:3f:43:97:8e:81:bd:c8:60: 41:49:ab:0a:46:71:b7:c1:f0:9c:b1:5b:23:96:9b:3d:47:7d: 64:4c:c9:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCQ0ExMTAvBgNVBAUTKEY0Q0M0MzA0RTE3OTBFMDhGNUVDOTI5QTg3MzcyMjY5 RDA4RkI2ODEwHhcNMjUwMzEzMDAxMjM4WhcNMjUwMzIwMDAxMjM4WjAYMRYwFAYD VQQDEw02N2QyMjJmNi05ZjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwl4y+TPaZ6jXdM8MuLAKjRJIlLBph7Ywklh28/oJz4fxHQnUSBcRad179xTI 9KAID8Q4JJs+gzjQN8O2iB2aCNLlVTgmfDPSfL2bCC/67B83oyAWX9hga1nnrmkm s99m4NDY1idpaahfhiXNxHPGDjwx7JMFZn0Az4ooE9bQNqFyVDP1OvSXaps5CUr/ z1s8kLiD8jWAE+MFfYYmGzS1lZsOonG7mkihWanErQjc7l8r0+h62jptB0jTKvp5 1hIcVvs5jJYbo5iGgYsMw8FiKAo2gePzzxnqYGmh/I0TMwq8HPPHPXAx1MjCATXm ZY7ZjX1kCI8b9GUeSQTAxKQvgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIttDVB8 21Me5wM1z9r7copouSgpMB8GA1UdIwQYMBaAFPTMQwTheQ4I9eySmoc3ImnQj7aB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0JDQS82MkJDRDVERTdB OUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURnajE3SkthaHpjaWFkQ1B0 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNeERCT0Y1RGdqMTdKS2FoemNpYWRDUHRvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0JDQS82MkJDRDVERTdBOUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURn ajE3SkthaHpjaWFkQ1B0b0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1cph+tAmf0hiZZ31Z/DE2l6cFclSrdwK4zb82D5bFqWx2rXl2ZqYR 6bv3M3zTc9PKt7jWA2O1xzYz7RyGs+jAM28XLj90tdxyMzZPyCdIJMYE0350l8Xp 9Ymf1z3DXmfdProSPDRKWOpanC8iGqa0H/wLsJMRawrJRyveisihx0FAkQ+4qeDp sU994HuiwWSgYmWxDsxWcwBi456e3vsaK8o0oJpOmHUf9HsIJpmxvG0RI8CzKn5q Tjbm8vz85bB4RgoQeX2abdI0BqAfjS3rBHn4BkkJd6iiACh3XE7pyv/iP0OXjoG9 yGBBSasKRnG3wfCcsVsjlps9R31kTMkw -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:08 2025 by rpki-client