$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: lY2ejvcTqujcihzqB1PWy6yBIZWYFkFaKC9ty8FQ94Q= Subject key identifier: 99:2C:0A:95:9E:C4:34:84:4A:8D:F8:B2:72:A2:CA:49:EF:0A:0C:4C Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: 91 Signing time: Tue 03 Jun 2025 06:17:45 +0000 Manifest this update: Tue 03 Jun 2025 06:17:44 +0000 Manifest next update: Tue 10 Jun 2025 06:17:44 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: jX01OLgdS25xLtPsWg4hXAW1jYcLXj2oa6DOkE+w0aE=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: qpNZ0Lm7ohL4bDYSXZ5HFsKxSW3wfA050YYCOcr+GtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Jun 3 06:17:44 2025 GMT Not After : Jun 10 06:17:44 2025 GMT Subject: CN=683e9388-8523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:70:10:20:d4:87:0c:c2:fb:66:e0:b1:27:61: 40:29:8a:b5:6d:11:fb:a0:12:4c:1e:0a:19:cc:97: bc:9c:58:7d:ac:d6:ac:79:a5:10:3f:19:6f:22:5e: 3e:3c:3e:3f:2f:90:de:4a:58:45:57:af:aa:9c:16: 9e:26:5f:e1:71:ab:f7:9e:01:60:8e:e1:17:2a:05: 8f:21:56:41:67:ae:25:97:a0:96:a8:0f:3c:d3:ce: 75:d1:85:2f:b0:be:44:09:3f:f9:6d:b1:ab:28:d3: 7a:bb:08:4a:f6:3b:0f:43:cf:51:62:cf:18:31:10: c4:39:cd:91:12:18:92:0f:31:0b:92:be:4c:e8:1d: c8:a9:fa:63:f7:a8:9f:7e:39:eb:02:4c:61:6a:6b: 77:bf:f7:d4:d8:fa:cd:3d:64:9e:45:91:11:d6:ac: 24:6a:6e:3b:a8:d0:e2:09:9a:20:fb:19:05:1b:8f: 84:9a:00:f7:a4:69:d8:bf:8b:03:42:9c:73:80:b1: f2:7c:0a:32:79:a5:45:82:6b:a3:1e:e2:4b:09:32: c7:a6:2d:9d:4d:7d:ca:b4:7e:5f:ea:37:c6:de:a9: 7b:b1:0e:41:d4:d5:ac:7f:be:56:bf:f0:f9:32:e0: 90:94:00:dc:ad:dd:73:ea:8d:9b:be:b1:3c:f0:e8: 0f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:2C:0A:95:9E:C4:34:84:4A:8D:F8:B2:72:A2:CA:49:EF:0A:0C:4C X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:f6:39:43:23:98:0a:2b:2b:1f:88:b9:09:03:5b:48:fb:c3: f2:88:ab:2f:1b:c6:fb:54:50:96:fb:b9:91:52:ba:c1:84:df: 32:cb:d8:c8:58:08:ce:7e:d5:79:06:7c:3c:61:f9:13:c8:ca: 45:70:5f:75:a5:25:ae:14:1f:12:0f:01:d1:45:ba:e4:99:e6: c2:81:50:77:b9:9b:68:01:98:01:78:c8:b0:8c:df:0f:15:fd: 05:ef:6a:e2:2d:37:0c:26:4f:aa:2d:bd:f4:ff:24:be:3d:ae: c2:2b:e4:8f:64:d5:23:8e:e4:2e:f6:44:da:37:dd:f9:7d:65: 17:62:6d:be:56:13:e1:ab:e5:da:c8:2c:f3:fb:63:94:55:7e: 79:a0:7a:c3:c4:e5:bd:34:e4:42:aa:56:d5:1d:0a:01:3e:87: 49:21:bb:ab:38:5b:a1:4d:67:8e:b1:6e:77:17:93:d0:ee:f5: 80:58:47:26:46:6c:94:6a:d9:a8:da:dc:7b:91:0e:c3:d6:c2: e8:89:a6:50:3d:04:b1:5c:25:46:31:bb:cb:53:7d:d4:f4:c6: 37:8d:9b:02:d1:f1:36:40:b6:5f:d7:58:b0:69:32:cf:c0:24: a5:cc:c0:f2:c2:b1:b5:c3:4f:3d:07:fa:15:ab:31:d6:35:6a: 0a:07:0f:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUwNjAzMDYxNzQ0WhcNMjUwNjEwMDYxNzQ0WjAYMRYwFAYD VQQDEw02ODNlOTM4OC04NTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnAQINSHDML7ZuCxJ2FAKYq1bRH7oBJMHgoZzJe8nFh9rNaseaUQPxlvIl4+ PD4/L5DeSlhFV6+qnBaeJl/hcav3ngFgjuEXKgWPIVZBZ64ll6CWqA8808510YUv sL5ECT/5bbGrKNN6uwhK9jsPQ89RYs8YMRDEOc2REhiSDzELkr5M6B3Iqfpj96if fjnrAkxhamt3v/fU2PrNPWSeRZER1qwkam47qNDiCZog+xkFG4+EmgD3pGnYv4sD QpxzgLHyfAoyeaVFgmujHuJLCTLHpi2dTX3KtH5f6jfG3ql7sQ5B1NWsf75Wv/D5 MuCQlADcrd1z6o2bvrE88OgPKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJksCpWe xDSESo34snKiyknvCgxMMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf9jlDI5gKKysfiLkJA1tI+8PyiKsvG8b7VFCW+7mRUrrBhN8yy9jI WAjOftV5Bnw8YfkTyMpFcF91pSWuFB8SDwHRRbrkmebCgVB3uZtoAZgBeMiwjN8P Ff0F72riLTcMJk+qLb30/yS+Pa7CK+SPZNUjjuQu9kTaN935fWUXYm2+VhPhq+Xa yCzz+2OUVX55oHrDxOW9NORCqlbVHQoBPodJIburOFuhTWeOsW53F5PQ7vWAWEcm RmyUatmo2tx7kQ7D1sLoiaZQPQSxXCVGMbvLU33U9MY3jZsC0fE2QLZf11iwaTLP wCSlzMDywrG1w089B/oVqzHWNWoKBw+o -----END CERTIFICATE-----Generated at Tue Jun 3 23:43:47 2025 by rpki-client