$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: QaShDq+RcCEmp+Sr6RvPewL4wFZ54aDRzKqqosHDch8= Subject key identifier: FE:9C:D2:4E:12:45:7B:C8:76:BE:54:55:C4:11:A8:96:F6:C1:BB:CD Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 04F8 Signing time: Fri 30 May 2025 23:53:15 +0000 Manifest this update: Fri 30 May 2025 23:53:14 +0000 Manifest next update: Fri 06 Jun 2025 23:53:14 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: UDqLvyypRvijh6+OrLqsG4+wmpszm6LcWvN9ljTvJIU=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: May 30 23:53:14 2025 GMT Not After : Jun 6 23:53:14 2025 GMT Subject: CN=683a44ea-0a9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e3:62:8f:ac:0d:c3:65:7e:e9:9b:05:57:a7: 54:66:f3:3a:53:dd:b8:73:a9:ef:2b:22:5a:cf:41: 60:32:3c:f1:13:5f:6c:c0:bf:75:6e:6b:00:22:35: fd:f4:f1:5f:e0:e3:fd:a1:01:ff:f9:2b:9f:b2:be: 31:cb:89:79:5f:39:84:1d:28:f6:d9:54:77:cb:0e: b3:76:02:aa:e5:8c:e4:61:ae:b1:c0:04:63:b8:0f: b7:4e:b7:6a:12:45:18:40:69:b5:30:7e:17:1c:1e: 24:ea:c0:7e:ab:7b:9b:5d:bf:c5:41:0d:b9:1d:ab: 03:12:15:8d:26:81:eb:be:f2:c8:2d:f0:42:8b:a0: af:59:d4:05:a3:ea:65:e2:d6:cf:16:4f:37:a4:97: 39:14:85:71:01:9b:33:06:c3:e9:43:75:1e:74:90: 37:31:cf:04:4b:70:35:08:95:24:5b:52:cc:32:5b: 0d:33:94:11:7a:6c:4c:9f:45:d8:e7:56:37:13:69: 59:78:db:d6:f5:c0:5f:5b:c0:0c:52:ef:9a:74:f1: f9:b0:c5:b1:6a:3a:aa:79:d9:87:95:51:99:68:d1: a0:14:95:f8:39:0e:99:ec:4e:49:b5:8d:14:5d:0f: 9e:0a:ec:45:20:c9:6b:44:83:e8:eb:44:b4:14:da: 5b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:9C:D2:4E:12:45:7B:C8:76:BE:54:55:C4:11:A8:96:F6:C1:BB:CD X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:c1:d9:78:91:c1:d3:a7:7b:d5:32:ca:31:f8:5a:c8:98:9c: 69:7f:fa:38:15:97:76:9d:1c:3b:0f:77:61:bb:d7:90:c3:42: de:a3:45:a7:4c:9b:45:7e:31:d2:19:26:9d:ce:d1:50:df:54: 8e:21:59:de:cd:95:6d:12:a3:ff:05:7b:3b:14:f5:e4:bb:55: ae:53:ca:90:a3:10:87:f1:f3:14:7f:90:52:2a:27:ff:02:a9: c6:8a:45:07:de:6f:9e:3c:b7:bc:1a:fe:b1:c4:85:72:93:07: fb:4b:f1:a8:c4:a3:7f:3e:77:ca:38:e3:23:e4:5b:a0:1a:98: bf:40:70:c7:e0:4a:8e:64:1f:3e:3b:81:cb:02:7a:88:f1:57: 38:76:07:19:5a:b2:44:48:6d:05:0d:a4:8e:6d:16:10:55:7c: 12:a3:52:bf:9f:d2:e4:29:fd:43:1b:19:a6:d2:93:f9:b6:92: 92:e3:6e:d7:af:b7:fd:fc:f0:f2:c0:6b:fe:32:52:1b:52:a7: 5e:83:89:78:3c:99:36:ac:be:f7:ab:ad:4f:48:6a:98:1b:fe: 77:26:ec:33:f7:58:68:e1:c7:b7:6f:6c:cb:4b:b5:89:fa:9e: bb:c3:6e:f4:1c:7f:f3:02:c1:86:0c:75:20:69:ed:45:eb:ff: 38:6a:b8:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUwNTMwMjM1MzE0WhcNMjUwNjA2MjM1MzE0WjAYMRYwFAYD VQQDEw02ODNhNDRlYS0wYTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+Nij6wNw2V+6ZsFV6dUZvM6U924c6nvKyJaz0FgMjzxE19swL91bmsAIjX9 9PFf4OP9oQH/+Sufsr4xy4l5XzmEHSj22VR3yw6zdgKq5YzkYa6xwARjuA+3Trdq EkUYQGm1MH4XHB4k6sB+q3ubXb/FQQ25HasDEhWNJoHrvvLILfBCi6CvWdQFo+pl 4tbPFk83pJc5FIVxAZszBsPpQ3UedJA3Mc8ES3A1CJUkW1LMMlsNM5QRemxMn0XY 51Y3E2lZeNvW9cBfW8AMUu+adPH5sMWxajqqedmHlVGZaNGgFJX4OQ6Z7E5JtY0U XQ+eCuxFIMlrRIPo60S0FNpbEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6c0k4S RXvIdr5UVcQRqJb2wbvNMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQwdl4kcHTp3vVMsox+FrImJxpf/o4FZd2nRw7D3dhu9eQw0Leo0Wn TJtFfjHSGSadztFQ31SOIVnezZVtEqP/BXs7FPXku1WuU8qQoxCH8fMUf5BSKif/ AqnGikUH3m+ePLe8Gv6xxIVykwf7S/GoxKN/PnfKOOMj5FugGpi/QHDH4EqOZB8+ O4HLAnqI8Vc4dgcZWrJESG0FDaSObRYQVXwSo1K/n9LkKf1DGxmm0pP5tpKS427X r7f9/PDywGv+MlIbUqdeg4l4PJk2rL73q61PSGqYG/53Juwz91ho4ce3b2zLS7WJ +p67w270HH/zAsGGDHUgae1F6/84arjY -----END CERTIFICATE-----Generated at Sat May 31 17:56:19 2025 by rpki-client