$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: MTew4SLJSqbADyPe1imCOUIh1/GV35KcO5Qn7boipXA= Subject key identifier: D2:BD:6C:6E:9F:19:B4:09:2E:39:23:D0:6D:E8:5E:22:DA:91:05:53 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0E91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0E84 Signing time: Wed 12 Mar 2025 17:37:15 +0000 Manifest this update: Wed 12 Mar 2025 17:37:15 +0000 Manifest next update: Wed 19 Mar 2025 17:37:15 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: 5f2aDhG7ZA0guzj23a+sf4E8aPIVNPeC3ezUYTRNLkk=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: az5u8maauMT/Sx2+Phgo1Z/ovh8gwvsYIRukSLKNLEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 17:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3729 (0xe91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C Validity Not Before: Mar 12 17:37:15 2025 GMT Not After : Mar 19 17:37:15 2025 GMT Subject: CN=67d1c64b-6683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:69:d3:70:29:23:b2:a9:f2:47:e3:fb:33:4b: 5a:4e:5d:0e:e4:8f:06:c2:c5:93:b5:c4:8c:df:0e: 54:d8:68:7b:b4:06:9b:cc:f6:48:c1:e1:77:1b:a8: 90:cc:5d:35:ea:e7:75:fb:ac:4b:92:9e:d3:4e:f5: 72:76:c8:f1:ba:39:2e:f9:c0:e1:6e:69:f8:95:7c: de:c4:b9:fc:0d:59:de:c1:c2:ed:31:95:ad:a3:bf: 2e:71:ab:f0:fe:cb:f9:16:81:fa:81:27:e0:b8:c8: c3:31:c5:9b:b9:f2:c5:19:9f:d7:b0:c4:c1:38:2f: d4:70:05:8a:57:10:c8:a6:e4:22:8e:56:d2:cc:37: e8:3f:ed:56:12:86:0c:6d:16:2c:b1:bc:18:35:b8: 06:be:2c:f9:91:f3:c4:b3:a8:82:17:95:d8:f0:cc: 62:fb:4e:1a:0c:d2:e2:f1:ad:08:a5:3a:0c:08:57: c6:75:69:9e:24:f4:69:3c:fb:da:2a:98:25:f3:f7: 4d:7e:3d:82:2d:ed:f8:5a:fa:b4:62:33:f8:d5:c6: 70:d6:e6:7f:d2:89:07:13:8f:c2:69:ca:24:39:3e: 4b:11:0f:a9:a5:b6:06:f8:be:f7:3e:b3:d7:bb:04: ed:23:8a:73:f9:35:d0:c6:db:9d:e0:69:a9:2b:3e: af:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BD:6C:6E:9F:19:B4:09:2E:39:23:D0:6D:E8:5E:22:DA:91:05:53 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:00:03:d1:56:1f:a7:ea:9b:d0:3d:cf:9e:13:a8:53:e9:5b: d4:b3:dc:7d:69:82:84:4a:dd:b7:5b:81:24:59:ae:bd:4c:e7: 08:b6:3c:63:14:6b:c1:e7:ee:51:3c:ab:a1:ca:47:8a:2a:89: a7:3c:85:f9:a6:01:00:c3:45:1b:57:d6:26:6c:7b:4e:27:31: fc:97:be:37:a7:d8:22:95:22:c6:b3:f9:fc:9e:45:0a:61:7b: 47:d4:36:0d:88:b9:5b:36:2a:d2:84:d5:b2:a6:86:5a:56:8c: ab:83:7b:26:a6:d6:88:c8:1f:ae:3f:eb:f4:2d:b4:1d:24:8a: 82:49:d5:fb:dc:20:15:ea:a3:64:6e:e6:4d:c8:73:9a:bd:ee: aa:ac:07:e1:34:8c:78:9a:05:fd:e2:3b:72:bc:31:53:86:32: 4b:8b:64:32:71:6b:34:ad:50:64:bf:8d:a7:f6:f2:3f:77:a3: 4e:c3:02:a5:e3:e8:fb:54:01:df:00:a6:23:e5:68:12:0f:bb: 0e:2d:df:cc:f8:03:38:ae:2c:ac:f1:09:47:8c:c1:e9:02:37: ef:69:f5:ee:6f:59:4f:e3:32:2d:d1:7e:39:ca:a7:d3:9e:46: 4e:0c:82:ca:45:aa:33:63:1f:fa:74:ef:80:5a:dd:c6:0f:e0: 16:6c:1b:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUwMzEyMTczNzE1WhcNMjUwMzE5MTczNzE1WjAYMRYwFAYD VQQDEw02N2QxYzY0Yi02NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWnTcCkjsqnyR+P7M0taTl0O5I8GwsWTtcSM3w5U2Gh7tAabzPZIweF3G6iQ zF016ud1+6xLkp7TTvVydsjxujku+cDhbmn4lXzexLn8DVnewcLtMZWto78ucavw /sv5FoH6gSfguMjDMcWbufLFGZ/XsMTBOC/UcAWKVxDIpuQijlbSzDfoP+1WEoYM bRYssbwYNbgGviz5kfPEs6iCF5XY8Mxi+04aDNLi8a0IpToMCFfGdWmeJPRpPPva Kpgl8/dNfj2CLe34Wvq0YjP41cZw1uZ/0okHE4/CacokOT5LEQ+ppbYG+L73PrPX uwTtI4pz+TXQxtud4GmpKz6vKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNK9bG6f GbQJLjkj0G3oXiLakQVTMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3AAPRVh+n6pvQPc+eE6hT6VvUs9x9aYKESt23W4EkWa69TOcItjxj FGvB5+5RPKuhykeKKomnPIX5pgEAw0UbV9YmbHtOJzH8l743p9gilSLGs/n8nkUK YXtH1DYNiLlbNirShNWypoZaVoyrg3smptaIyB+uP+v0LbQdJIqCSdX73CAV6qNk buZNyHOave6qrAfhNIx4mgX94jtyvDFThjJLi2QycWs0rVBkv42n9vI/d6NOwwKl 4+j7VAHfAKYj5WgSD7sOLd/M+AM4riys8QlHjMHpAjfvafXub1lP4zIt0X45yqfT nkZODILKRaozYx/6dO+AWt3GD+AWbBtA -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:22 2025 by rpki-client