$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft File: 9HpCypKdg34XkyvKB9ZfgiyWRMs.mft (raw, json) Hash identifier: vi2u4pMQMLctjoZV8032Bl4HGfhCNEA36LFZKKscqxE= Subject key identifier: 0C:08:C1:97:6A:9E:9E:35:70:80:A6:7B:55:C1:D0:EA:2D:E3:E1:7A Authority key identifier: F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB Certificate issuer: /CN=A9169A9C/serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft Manifest number: D7 Signing time: Thu 13 Mar 2025 03:08:25 +0000 Manifest this update: Thu 13 Mar 2025 03:08:24 +0000 Manifest next update: Thu 20 Mar 2025 03:08:24 +0000 Files and hashes: 1: 9HpCypKdg34XkyvKB9ZfgiyWRMs.crl (hash: K2eRhBBurD9v+lDpcbnDUKnL2mjd2tRKZ3ddUXq4eXk=) 2: 79A50468BCA911EE8F42E684C4F9AE02.roa (hash: WCxfAGIVMH/a++ZJ4jx3iPBs/9NLSjs9q4Xkq6Czo34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C Validity Not Before: Mar 13 03:08:24 2025 GMT Not After : Mar 20 03:08:24 2025 GMT Subject: CN=67d24c29-541f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:02:1c:b8:38:a9:b8:5b:a0:3e:9f:f4:be:25: 08:d9:59:4e:2f:80:2b:89:52:7e:40:d7:27:77:a9: 74:c5:f3:97:bc:1a:21:9d:2b:06:93:b9:49:d3:4a: 40:ba:1e:e1:d8:1d:4f:d6:f1:dc:e3:a3:11:02:67: 61:31:e8:f1:5c:f7:3c:cd:aa:d3:12:7a:7a:79:68: 22:dc:64:dc:96:c9:3a:46:a5:ec:92:0d:99:ec:df: 19:c6:d9:c8:27:43:23:01:eb:c7:6f:85:1a:26:55: 61:f7:db:42:9c:a6:a2:a9:8a:02:4a:18:1c:a4:a9: 57:92:4b:c7:05:ca:be:35:5f:16:7a:10:88:a4:81: bd:34:c1:65:fa:6d:a4:26:c2:65:0c:a1:ef:42:e8: aa:23:e2:07:30:ef:08:73:f5:ef:78:1c:71:e0:3c: 1c:1e:51:3d:88:16:0e:f7:b1:a0:c1:4a:84:c3:e9: 81:f4:bf:89:d0:c4:c6:6b:44:4a:61:8a:49:8b:60: ae:97:67:8d:1b:c4:ef:4f:a0:44:05:3b:9b:04:e8: cc:41:e8:2c:20:e6:45:80:a4:8d:ef:8d:f5:70:56: e3:b4:90:ba:82:38:34:cf:99:94:17:51:2e:d5:7c: 9c:88:cd:41:e4:69:85:be:41:0c:ce:6a:ba:91:5e: f0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:08:C1:97:6A:9E:9E:35:70:80:A6:7B:55:C1:D0:EA:2D:E3:E1:7A X509v3 Authority Key Identifier: keyid:F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:6f:ce:76:01:53:c4:86:85:c6:9b:36:64:ba:16:2d:44:6e: 3f:35:cd:42:87:3d:d1:cf:13:a7:20:4c:51:57:29:60:b4:d3: a3:4f:bd:e6:55:c3:c8:53:68:08:45:8a:16:bd:3b:38:5e:a7: 5a:be:2f:68:43:ca:ae:df:43:1f:44:33:ff:7b:4d:1e:e7:12: c7:b8:84:c3:ad:e4:58:eb:ba:1d:d2:02:59:55:25:25:7f:1a: c5:3a:0d:79:0e:97:77:39:00:e5:85:81:60:a1:ca:be:a8:4d: 75:0f:66:68:e8:ac:8f:59:ea:95:dd:ff:b5:1f:f9:47:f4:8c: 54:51:4a:2d:e1:e1:0a:0d:47:14:4b:7a:37:e0:a0:fd:c6:cd: 4c:c5:0f:68:05:39:e2:c8:e8:52:90:b7:f0:2e:64:63:53:bf: 9b:90:fc:6d:e2:4c:b2:3e:94:48:90:06:80:bd:71:64:66:79: ca:86:d5:f9:ad:39:e5:f8:38:02:f0:a4:f3:7e:66:f5:9d:b7: 09:d0:8e:e1:6d:db:9b:5c:e2:c9:40:da:13:26:d3:c2:c4:1e: 70:cf:52:97:e7:72:af:63:b8:f9:46:61:e8:f5:0f:55:d7:fc: 1f:49:02:9f:f0:d9:fc:46:d7:7d:12:84:dc:43:a4:32:95:fd: 12:f5:be:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEY0N0E0MkNBOTI5RDgzN0UxNzkzMkJDQTA3RDY1Rjgy MkM5NjQ0Q0IwHhcNMjUwMzEzMDMwODI0WhcNMjUwMzIwMDMwODI0WjAYMRYwFAYD VQQDEw02N2QyNGMyOS01NDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AIcuDipuFugPp/0viUI2VlOL4AriVJ+QNcnd6l0xfOXvBohnSsGk7lJ00pA uh7h2B1P1vHc46MRAmdhMejxXPc8zarTEnp6eWgi3GTclsk6RqXskg2Z7N8ZxtnI J0MjAevHb4UaJlVh99tCnKaiqYoCShgcpKlXkkvHBcq+NV8WehCIpIG9NMFl+m2k JsJlDKHvQuiqI+IHMO8Ic/XveBxx4DwcHlE9iBYO97GgwUqEw+mB9L+J0MTGa0RK YYpJi2Cul2eNG8TvT6BEBTubBOjMQegsIOZFgKSN7431cFbjtJC6gjg0z5mUF1Eu 1XyciM1B5GmFvkEMzmq6kV7wpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwIwZdq np41cICme1XB0Oot4+F6MB8GA1UdIwQYMBaAFPR6QsqSnYN+F5MrygfWX4IslkTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy83MTE0ODQzRUJD MzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGczNFhreXZLQjlaZmdpeVdS TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlIcEN5cEtkZzM0WGt5dktCOVpmZ2l5V1JNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUE5Qy83MTE0ODQzRUJDMzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGcz NFhreXZLQjlaZmdpeVdSTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4b852AVPEhoXGmzZkuhYtRG4/Nc1Chz3RzxOnIExRVylgtNOjT73m VcPIU2gIRYoWvTs4Xqdavi9oQ8qu30MfRDP/e00e5xLHuITDreRY67od0gJZVSUl fxrFOg15Dpd3OQDlhYFgocq+qE11D2Zo6KyPWeqV3f+1H/lH9IxUUUot4eEKDUcU S3o34KD9xs1MxQ9oBTniyOhSkLfwLmRjU7+bkPxt4kyyPpRIkAaAvXFkZnnKhtX5 rTnl+DgC8KTzfmb1nbcJ0I7hbdubXOLJQNoTJtPCxB5wz1KX53KvY7j5RmHo9Q9V 1/wfSQKf8Nn8Rtd9EoTcQ6Qylf0S9b5Q -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:44 2025 by rpki-client