$ rpki-client -vvf rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.mft File: rN0Hh_30YaFfcqHizj449FTtIHI.mft (raw, json) Hash identifier: YPRMC2PV5aSuW7bh4idH7yif1k2OOrAldToKepa+6uc= Subject key identifier: 9D:79:92:35:83:20:E1:C1:38:54:3E:BB:86:88:B4:06:A2:02:B4:C1 Authority key identifier: AC:DD:07:87:FD:F4:61:A1:5F:72:A1:E2:CE:3E:38:F4:54:ED:20:72 Certificate issuer: /CN=A9116D68/serialNumber=ACDD0787FDF461A15F72A1E2CE3E38F454ED2072 Certificate serial: 0EF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN0Hh_30YaFfcqHizj449FTtIHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.mft Manifest number: 172E Signing time: Thu 24 Apr 2025 17:38:01 +0000 Manifest this update: Thu 24 Apr 2025 17:38:00 +0000 Manifest next update: Thu 01 May 2025 17:38:00 +0000 Files and hashes: 1: rN0Hh_30YaFfcqHizj449FTtIHI.crl (hash: aq9J5+AwsuqjmwHuS/kYQyqsORT+ZeilD7ZICJpgS3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.crl rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN0Hh_30YaFfcqHizj449FTtIHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3826 (0xef2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116D68, serialNumber=ACDD0787FDF461A15F72A1E2CE3E38F454ED2072 Validity Not Before: Apr 24 17:38:00 2025 GMT Not After : May 1 17:38:00 2025 GMT Subject: CN=680a76f9-d059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:99:39:ec:eb:2a:31:71:49:dc:d7:6c:87:e0: ab:0a:0d:bd:9f:2c:4c:88:a5:09:0a:2f:8b:e7:75: cb:d1:d2:5b:75:ba:be:67:0d:5b:8e:19:b0:52:c0: 09:91:d2:0c:58:d7:3b:39:67:23:42:68:86:7a:46: 12:88:42:11:ec:c6:81:99:5c:f3:ee:40:eb:d6:8e: 2f:c7:f0:f9:86:91:9e:46:58:e2:11:94:ae:84:7c: d0:b3:73:8a:31:22:dc:1d:ee:77:60:fa:11:0c:8c: 76:c9:57:22:db:ef:88:a8:06:54:a0:0e:62:5d:23: 33:79:9a:a5:15:b9:6e:f7:dc:97:e3:20:96:16:50: 6a:72:43:0f:28:ac:3c:80:42:05:85:89:03:36:21: 2e:2c:9c:dd:51:a5:b8:fc:d8:96:1e:db:be:f8:d5: f1:2a:8d:b0:0b:5a:0e:bb:50:7a:34:99:3a:69:0e: 0c:9c:54:5b:fe:8d:f8:4d:de:51:81:c4:50:2e:14: 7a:fc:9a:f1:e6:f4:f8:fb:1a:11:45:75:6e:9a:4d: b3:53:b1:18:2b:26:e6:bf:bc:ea:36:52:06:3e:74: 1b:f4:a2:4c:10:e4:50:f2:e4:f6:84:36:0e:98:f3: 50:5d:21:98:79:79:09:55:f7:9f:a6:e8:79:7c:a8: 62:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:79:92:35:83:20:E1:C1:38:54:3E:BB:86:88:B4:06:A2:02:B4:C1 X509v3 Authority Key Identifier: keyid:AC:DD:07:87:FD:F4:61:A1:5F:72:A1:E2:CE:3E:38:F4:54:ED:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN0Hh_30YaFfcqHizj449FTtIHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/rN0Hh_30YaFfcqHizj449FTtIHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:63:7a:63:11:10:5a:df:06:fd:55:91:bf:31:d3:4e:19:a0: 2e:7c:37:f7:4f:6d:f2:42:f5:11:ab:3a:99:93:c9:a9:33:01: 2f:2b:1e:0b:b0:4c:14:1b:c7:2a:72:0f:95:0a:d0:29:cd:c2: 7b:e1:2b:d3:12:91:ca:9f:9b:92:ed:87:60:81:64:8a:9d:93: 47:e4:0e:0a:80:ad:a5:59:fd:7e:e7:b0:ef:e9:e2:ef:5c:93: be:40:81:32:0f:7e:1c:5a:80:95:0f:98:86:23:7d:f5:0c:81: 89:89:8b:37:4a:89:34:f4:d1:25:0a:25:b6:f9:2e:20:7a:74: 38:86:8a:09:00:68:00:59:a4:d4:fa:2d:db:ed:4e:25:f7:f9: 9e:df:4e:f5:c9:4d:26:45:8d:24:43:0f:9c:ce:62:a9:d9:fb: fe:50:f4:23:6e:3f:6f:5c:2f:e5:54:4e:24:1a:ab:8c:fa:be: 57:86:e8:46:5d:bf:b3:40:be:6e:be:c9:33:df:59:43:92:79: 7e:21:86:50:df:30:a3:d2:8b:37:56:f7:7d:f7:f4:2c:d9:d4: 28:99:f0:46:ff:4b:7b:30:fa:b8:00:ef:80:90:c0:94:33:02: a0:bd:7c:2a:02:a5:24:46:53:37:19:70:d1:32:ee:ac:3f:e6: 0e:7b:22:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZENjgxMTAvBgNVBAUTKEFDREQwNzg3RkRGNDYxQTE1RjcyQTFFMkNFM0UzOEY0 NTRFRDIwNzIwHhcNMjUwNDI0MTczODAwWhcNMjUwNTAxMTczODAwWjAYMRYwFAYD VQQDEw02ODBhNzZmOS1kMDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZk57OsqMXFJ3Ndsh+CrCg29nyxMiKUJCi+L53XL0dJbdbq+Zw1bjhmwUsAJ kdIMWNc7OWcjQmiGekYSiEIR7MaBmVzz7kDr1o4vx/D5hpGeRljiEZSuhHzQs3OK MSLcHe53YPoRDIx2yVci2++IqAZUoA5iXSMzeZqlFblu99yX4yCWFlBqckMPKKw8 gEIFhYkDNiEuLJzdUaW4/NiWHtu++NXxKo2wC1oOu1B6NJk6aQ4MnFRb/o34Td5R gcRQLhR6/Jrx5vT4+xoRRXVumk2zU7EYKybmv7zqNlIGPnQb9KJMEORQ8uT2hDYO mPNQXSGYeXkJVfefpuh5fKhiAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ15kjWD IOHBOFQ+u4aItAaiArTBMB8GA1UdIwQYMBaAFKzdB4f99GGhX3Kh4s4+OPRU7SBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkQ2OC83MjRDQzg0Qzc4 ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9yTjBIaF8zMFlhRmZjcUhpemo0NDlGVHRJ SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOMEhoXzMwWWFGZmNxSGl6ajQ0OUZUdElISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkQ2OC83MjRDQzg0Qzc4ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9yTjBIaF8zMFlh RmZjcUhpemo0NDlGVHRJSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkY3pjERBa3wb9VZG/MdNOGaAufDf3T23yQvURqzqZk8mpMwEvKx4L sEwUG8cqcg+VCtApzcJ74SvTEpHKn5uS7YdggWSKnZNH5A4KgK2lWf1+57Dv6eLv XJO+QIEyD34cWoCVD5iGI331DIGJiYs3Sok09NElCiW2+S4genQ4hooJAGgAWaTU +i3b7U4l9/me3071yU0mRY0kQw+czmKp2fv+UPQjbj9vXC/lVE4kGquM+r5XhuhG Xb+zQL5uvskz31lDknl+IYZQ3zCj0os3Vvd99/Qs2dQomfBG/0t7MPq4AO+AkMCU MwKgvXwqAqUkRlM3GXDRMu6sP+YOeyJ/ -----END CERTIFICATE-----Generated at Sat Apr 26 12:31:55 2025 by rpki-client