$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: eUl6QbQG0IC3EJTBt/YIeALZhG5tsVyFCgGMoFeue+Y= Subject key identifier: 0C:48:27:A5:72:47:72:41:73:F3:61:5F:86:1D:0B:C5:7A:18:EE:A8 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0AFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0AF6 Signing time: Fri 30 May 2025 19:33:28 +0000 Manifest this update: Fri 30 May 2025 19:33:28 +0000 Manifest next update: Fri 06 Jun 2025 19:33:28 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: Q5rNJKkvHFSGfdAOOfxUh8WA7rJGV0mkkg3Ixwk+YTw=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:33:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2813 (0xafd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: May 30 19:33:28 2025 GMT Not After : Jun 6 19:33:28 2025 GMT Subject: CN=683a0808-0c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:19:e1:f5:0e:c1:8d:26:4c:8f:09:b1:ee:1c: 81:a9:fe:7f:c3:18:e7:e6:4b:ba:70:19:97:6c:cd: bb:47:70:09:32:81:2d:a8:b4:58:6f:88:ce:92:08: 94:27:f6:64:ac:d9:88:00:6e:79:21:f3:86:76:e9: 7f:f6:bc:03:21:75:f3:f1:b2:9a:2e:6f:1d:35:e0: 3a:5c:ca:e2:44:a2:da:10:05:b3:d4:41:37:5b:9b: 1e:75:00:44:19:7d:ff:c3:16:64:c5:57:c0:24:94: 16:f8:82:86:ef:ef:b4:76:1a:64:34:d9:de:7d:cb: f9:ff:02:87:1e:56:dd:b8:fb:54:70:ab:7e:7e:da: d0:85:3c:85:fa:28:d8:61:63:1d:23:e8:95:90:b5: d7:c9:e0:b6:50:63:c0:85:41:c3:14:8a:20:41:47: fd:43:0a:05:7a:5b:91:85:7e:8d:2d:4f:ba:74:6b: b8:5f:37:2b:9c:4b:05:7a:15:f1:3b:54:a3:bd:e3: fe:99:58:27:e8:7d:d0:16:3e:10:99:95:67:63:b5: 2a:8f:63:74:c7:96:40:db:b8:95:9a:0d:01:e1:ce: b7:15:ec:30:4a:d1:f3:c8:29:94:a3:ad:9e:20:e0: a0:cb:ce:71:74:6b:dc:ec:75:26:0b:a3:57:5c:00: 74:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:48:27:A5:72:47:72:41:73:F3:61:5F:86:1D:0B:C5:7A:18:EE:A8 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:fb:5b:39:53:39:64:7d:a0:cf:8b:fd:4a:e8:33:3d:4e:e7: 1a:19:86:ce:33:3e:d3:6a:b4:21:15:61:cf:c4:dd:01:f4:49: 94:3f:c5:d1:3d:80:2b:4e:26:8c:de:b6:c9:2c:c2:04:de:93: 64:43:53:af:35:ca:0f:4e:df:db:74:14:0b:36:fe:ae:a2:0a: d4:41:e3:ef:8a:c0:26:14:53:bd:c8:47:e2:b6:ba:ff:1f:f2: 1f:df:ea:fd:a2:1d:88:f5:73:8e:9d:bc:48:70:ba:4e:4f:a9: 9d:05:6c:6d:14:c2:de:ec:00:7a:ff:0f:cb:c2:08:c9:87:55: 58:2f:ac:e2:1d:77:52:91:64:a6:60:e8:f7:c2:dc:65:d4:42: 9c:03:a4:74:eb:2a:71:50:e8:d9:e8:c1:96:f5:de:d3:b9:37: e2:1b:c8:57:82:4a:7c:e1:ed:07:aa:bd:69:f7:70:eb:49:5f: 44:28:9e:c5:89:12:1c:36:a9:96:0c:8b:1f:e6:7f:49:1f:56: b7:52:02:12:d9:fd:be:60:55:9b:0a:dc:04:92:23:74:55:9f: 30:34:7f:ed:3b:9f:c8:bd:f4:2d:bb:c3:2e:68:88:32:f2:64: fb:a5:7d:dd:42:17:f0:64:db:9f:c0:c7:a3:f9:08:7d:ea:33: 19:07:d1:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUwNTMwMTkzMzI4WhcNMjUwNjA2MTkzMzI4WjAYMRYwFAYD VQQDEw02ODNhMDgwOC0wYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Bnh9Q7BjSZMjwmx7hyBqf5/wxjn5ku6cBmXbM27R3AJMoEtqLRYb4jOkgiU J/ZkrNmIAG55IfOGdul/9rwDIXXz8bKaLm8dNeA6XMriRKLaEAWz1EE3W5sedQBE GX3/wxZkxVfAJJQW+IKG7++0dhpkNNnefcv5/wKHHlbduPtUcKt+ftrQhTyF+ijY YWMdI+iVkLXXyeC2UGPAhUHDFIogQUf9QwoFeluRhX6NLU+6dGu4XzcrnEsFehXx O1SjveP+mVgn6H3QFj4QmZVnY7Uqj2N0x5ZA27iVmg0B4c63FewwStHzyCmUo62e IOCgy85xdGvc7HUmC6NXXAB00QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxIJ6Vy R3JBc/NhX4YdC8V6GO6oMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF+1s5UzlkfaDPi/1K6DM9TucaGYbOMz7TarQhFWHPxN0B9EmUP8XR PYArTiaM3rbJLMIE3pNkQ1OvNcoPTt/bdBQLNv6uogrUQePvisAmFFO9yEfitrr/ H/If3+r9oh2I9XOOnbxIcLpOT6mdBWxtFMLe7AB6/w/LwgjJh1VYL6ziHXdSkWSm YOj3wtxl1EKcA6R06ypxUOjZ6MGW9d7TuTfiG8hXgkp84e0Hqr1p93DrSV9EKJ7F iRIcNqmWDIsf5n9JH1a3UgIS2f2+YFWbCtwEkiN0VZ8wNH/tO5/IvfQtu8MuaIgy 8mT7pX3dQhfwZNufwMej+Qh96jMZB9FH -----END CERTIFICATE-----Generated at Sat May 31 16:41:58 2025 by rpki-client