$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft File: 9HpCypKdg34XkyvKB9ZfgiyWRMs.mft (raw, json) Hash identifier: 8jgW10P5FdJhViD+vQOzBA5gDhGluvJjaobUeK53LKE= Subject key identifier: 04:B7:DC:56:90:85:07:E2:0D:EF:C1:86:68:A7:0E:3D:8C:F8:02:DF Authority key identifier: F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB Certificate issuer: /CN=A9169A9C/serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft Manifest number: CA Signing time: Sat 15 Feb 2025 05:47:50 +0000 Manifest this update: Sat 15 Feb 2025 05:47:49 +0000 Manifest next update: Sat 22 Feb 2025 05:47:49 +0000 Files and hashes: 1: 9HpCypKdg34XkyvKB9ZfgiyWRMs.crl (hash: BCMrcMUr7AO/81mSCyduefaqTRNrMyZNxuFMzrnitH4=) 2: 79A50468BCA911EE8F42E684C4F9AE02.roa (hash: WCxfAGIVMH/a++ZJ4jx3iPBs/9NLSjs9q4Xkq6Czo34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C Validity Not Before: Feb 15 05:47:49 2025 GMT Not After : Feb 22 05:47:49 2025 GMT Subject: CN=67b02a86-913b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:33:83:44:13:1c:23:52:72:20:01:f8:e4:87: e1:06:e8:ff:70:25:d2:c9:82:8c:44:46:50:20:7d: 30:a6:ef:bb:d1:d3:78:c1:b9:e0:9e:cf:a6:17:11: 84:25:c8:f2:0d:cc:a0:44:80:c8:25:b0:70:5a:ba: f8:6e:0c:47:8a:e4:00:c0:a6:7d:9c:70:eb:c1:91: 25:8b:b9:eb:8a:0c:58:a2:eb:f4:da:f5:a2:38:0a: e5:c7:0c:7d:f7:12:09:b9:48:0e:a2:c0:0e:f4:eb: 1e:0d:8d:92:ff:6b:93:40:9b:dd:93:df:ed:d4:d6: 4f:09:6f:ea:27:80:81:9f:b6:6e:43:e7:72:73:43: c3:af:4a:55:cf:f2:16:d9:74:be:27:b2:83:71:6a: ca:d9:70:d6:90:3c:53:ca:33:4d:2d:b7:2b:74:dc: a2:87:fe:0b:0c:f7:55:13:b5:17:9b:7d:e5:27:a6: af:63:3b:ac:36:2e:fc:54:aa:68:77:0f:46:b7:5b: 09:b6:c9:29:8f:d6:a8:c1:4a:e5:5f:fd:d1:7a:5e: 88:06:eb:34:40:11:ec:dd:cb:5d:e3:45:08:2e:70: df:4a:f9:77:31:3f:ff:45:56:da:33:15:be:f7:91: 44:00:b3:7f:99:e3:94:3f:2a:cd:d9:5b:c1:93:c5: 23:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B7:DC:56:90:85:07:E2:0D:EF:C1:86:68:A7:0E:3D:8C:F8:02:DF X509v3 Authority Key Identifier: keyid:F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:69:82:0a:f1:4b:04:10:5e:c2:b4:18:da:c2:5d:69:ac:39: 9f:c0:39:ac:c3:07:e1:b5:a6:1d:79:0f:ee:49:fa:04:12:0b: cc:fa:05:5e:9d:45:da:2f:42:d9:90:8a:de:1d:d2:bd:1a:a9: 48:bd:ce:53:ec:e9:21:36:da:42:77:8e:c2:a9:57:bf:23:4a: 24:b4:28:c2:7a:12:15:a5:96:62:d6:66:b8:32:67:a1:33:b4: 81:c0:a2:26:3a:d2:fb:53:2d:42:8d:ec:9d:de:ec:9c:e1:66: 05:32:82:30:f5:71:96:a5:66:49:74:3c:60:9a:80:71:ba:b8: 57:c7:c7:5b:53:eb:ab:a8:ed:08:1c:26:68:b1:ea:a7:01:72: 9f:e8:2d:75:56:5c:db:2b:c9:33:77:88:87:1d:67:4c:3b:95: 54:9e:47:ff:99:bc:2c:51:30:57:ad:f0:0e:68:f6:86:f6:a5: dd:ba:70:e6:07:55:d7:a0:68:2e:f6:9f:ac:15:a2:fd:7f:03: 4e:63:8e:12:ee:45:bc:15:15:49:b1:ef:9b:5c:d5:09:f0:c6: 97:ec:6d:f6:19:13:23:bc:73:dd:24:db:05:56:19:bc:98:3e: 23:30:7d:0b:84:9c:4b:38:cb:45:1b:20:37:7d:bc:db:ea:91: 0a:f0:5b:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEY0N0E0MkNBOTI5RDgzN0UxNzkzMkJDQTA3RDY1Rjgy MkM5NjQ0Q0IwHhcNMjUwMjE1MDU0NzQ5WhcNMjUwMjIyMDU0NzQ5WjAYMRYwFAYD VQQDEw02N2IwMmE4Ni05MTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DODRBMcI1JyIAH45IfhBuj/cCXSyYKMREZQIH0wpu+70dN4wbngns+mFxGE JcjyDcygRIDIJbBwWrr4bgxHiuQAwKZ9nHDrwZEli7nrigxYouv02vWiOArlxwx9 9xIJuUgOosAO9OseDY2S/2uTQJvdk9/t1NZPCW/qJ4CBn7ZuQ+dyc0PDr0pVz/IW 2XS+J7KDcWrK2XDWkDxTyjNNLbcrdNyih/4LDPdVE7UXm33lJ6avYzusNi78VKpo dw9Gt1sJtskpj9aowUrlX/3Rel6IBus0QBHs3ctd40UILnDfSvl3MT//RVbaMxW+ 95FEALN/meOUPyrN2VvBk8UjcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAS33FaQ hQfiDe/BhminDj2M+ALfMB8GA1UdIwQYMBaAFPR6QsqSnYN+F5MrygfWX4IslkTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy83MTE0ODQzRUJD MzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGczNFhreXZLQjlaZmdpeVdS TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlIcEN5cEtkZzM0WGt5dktCOVpmZ2l5V1JNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUE5Qy83MTE0ODQzRUJDMzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGcz NFhreXZLQjlaZmdpeVdSTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6aYIK8UsEEF7CtBjawl1prDmfwDmswwfhtaYdeQ/uSfoEEgvM+gVe nUXaL0LZkIreHdK9GqlIvc5T7OkhNtpCd47CqVe/I0oktCjCehIVpZZi1ma4Mmeh M7SBwKImOtL7Uy1Cjeyd3uyc4WYFMoIw9XGWpWZJdDxgmoBxurhXx8dbU+urqO0I HCZoseqnAXKf6C11VlzbK8kzd4iHHWdMO5VUnkf/mbwsUTBXrfAOaPaG9qXdunDm B1XXoGgu9p+sFaL9fwNOY44S7kW8FRVJse+bXNUJ8MaX7G32GRMjvHPdJNsFVhm8 mD4jMH0LhJxLOMtFGyA3fbzb6pEK8FuD -----END CERTIFICATE-----Generated at Sun Feb 16 15:36:47 2025 by rpki-client