$ rpki-client -vvf rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft File: t9SqT11yMa9OdH93IkWsA3ECEPA.mft (raw, json) Hash identifier: zVy5d6yFUqz4HBYqQTkiQrpLA01htTqyQU0ZdUjqIHs= Subject key identifier: DD:79:1D:C5:F4:86:B7:0F:ED:54:57:4A:E4:EB:07:31:D5:70:2D:4F Authority key identifier: B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 Certificate issuer: /CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft Manifest number: 0205 Signing time: Fri 25 Apr 2025 01:48:07 +0000 Manifest this update: Fri 25 Apr 2025 01:48:07 +0000 Manifest next update: Fri 02 May 2025 01:48:07 +0000 Files and hashes: 1: t9SqT11yMa9OdH93IkWsA3ECEPA.crl (hash: hH5zz75aNuqLRQETsBsX9QZvkucRvb3zp6fDQn3bK+g=) 2: 5D5B0F7C34CA11EDA301482BC4F9AE02.roa (hash: 90Bhpdbkdnfedi3OPca5alDQUSOpnC2UaqisbVy8klY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175F6, serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Validity Not Before: Apr 25 01:48:07 2025 GMT Not After : May 2 01:48:07 2025 GMT Subject: CN=680ae9d7-0191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0f:e9:18:54:d9:0d:bd:61:65:bd:af:c9:98: c3:93:4a:d8:c1:7f:70:75:50:9b:55:02:37:e5:d8: 7e:64:d1:7c:63:a4:bc:67:1b:c1:e1:6c:6c:47:b8: 5c:97:7f:ba:b2:5d:f0:2b:fb:f7:3c:8b:ec:88:43: 71:40:8d:81:ef:55:ae:a4:47:d0:fd:d8:70:6d:7e: 0e:c1:ad:23:e5:84:e2:39:f1:64:2e:1e:6f:45:42: 14:25:2d:f6:c0:bc:42:32:67:5e:5e:a8:e0:74:a7: 29:03:25:4c:5d:ec:d0:1f:4d:3b:38:c9:99:43:f9: b1:8a:19:c0:83:4f:d5:7c:64:81:f1:64:5a:13:8f: 4a:d7:4f:12:1e:96:22:95:e7:b8:d1:0c:41:1f:7f: d7:d2:fc:6b:9b:ef:7a:33:f6:ad:ec:62:53:21:4e: e5:b0:8b:e8:d7:2a:ee:35:98:4c:c0:bc:65:79:88: 30:9c:64:b2:f2:21:a6:6b:7b:02:6a:c6:58:16:dc: 2a:d8:e4:29:83:17:75:6c:76:55:f4:8e:b0:10:6e: 5b:0f:9a:2a:ab:08:39:24:90:81:c9:ff:38:d4:4b: 55:db:f0:71:93:07:d8:bb:f2:8e:d7:91:2d:5e:98: 27:3d:27:b0:8a:b3:4e:40:e5:4f:43:8e:e1:11:b3: 90:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:79:1D:C5:F4:86:B7:0F:ED:54:57:4A:E4:EB:07:31:D5:70:2D:4F X509v3 Authority Key Identifier: keyid:B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:7f:84:53:86:5d:55:10:bf:57:af:2d:c3:f6:c1:41:4a:d6: 05:69:b4:9e:36:98:d4:aa:00:f4:2d:9d:ee:fb:4b:da:a3:14: 07:54:e8:0b:b5:17:e0:a5:b1:68:2f:1f:a2:f9:45:f5:3e:1e: d7:e8:ee:67:ed:8f:b2:4a:7e:64:2d:26:5b:8e:97:ea:2d:af: 13:c6:ad:a3:5e:2a:29:b5:e0:df:f9:56:61:47:d5:14:c4:80: 0d:0e:da:c3:f3:b6:e4:2c:ea:c4:ce:8b:1a:fe:f2:1d:4d:df: e8:c6:75:e2:3f:a0:f1:f4:71:1c:23:ef:34:a8:3a:4f:35:8b: 8a:a7:af:f1:a4:b7:b2:de:77:15:d8:e7:1f:51:6e:42:67:af: 56:c0:ca:4c:56:bc:07:75:59:67:ee:12:46:2b:a4:8a:53:9b: e3:36:fd:2e:47:a2:1e:ee:be:15:dc:cd:95:16:b4:b5:c7:f0: 09:b3:a9:85:9d:e0:2b:2d:5a:e2:e5:48:bd:82:e3:d8:52:db: a3:4f:45:b7:ff:21:92:4e:7a:f7:40:43:63:5c:da:49:5a:c6: 92:a9:1b:30:c4:95:67:8b:4e:00:c5:c3:4d:fa:ef:3f:e8:45: 4b:1b:95:4d:ae:b4:00:7c:97:2e:ff:c6:30:5d:85:29:a4:b8: a4:75:cc:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RjYxMTAvBgNVBAUTKEI3RDRBQTRGNUQ3MjMxQUY0RTc0N0Y3NzIyNDVBQzAz NzEwMjEwRjAwHhcNMjUwNDI1MDE0ODA3WhcNMjUwNTAyMDE0ODA3WjAYMRYwFAYD VQQDEw02ODBhZTlkNy0wMTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsw/pGFTZDb1hZb2vyZjDk0rYwX9wdVCbVQI35dh+ZNF8Y6S8ZxvB4WxsR7hc l3+6sl3wK/v3PIvsiENxQI2B71WupEfQ/dhwbX4Owa0j5YTiOfFkLh5vRUIUJS32 wLxCMmdeXqjgdKcpAyVMXezQH007OMmZQ/mxihnAg0/VfGSB8WRaE49K108SHpYi lee40QxBH3/X0vxrm+96M/at7GJTIU7lsIvo1yruNZhMwLxleYgwnGSy8iGma3sC asZYFtwq2OQpgxd1bHZV9I6wEG5bD5oqqwg5JJCByf841EtV2/BxkwfYu/KO15Et XpgnPSewirNOQOVPQ47hEbOQkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN15HcX0 hrcP7VRXSuTrBzHVcC1PMB8GA1UdIwQYMBaAFLfUqk9dcjGvTnR/dyJFrANxAhDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGNi8xM0E0MjBBODM0 MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1hOU9kSDkzSWtXc0EzRUNF UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5U3FUMTF5TWE5T2RIOTNJa1dzQTNFQ0VQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGNi8xM0E0MjBBODM0MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1h OU9kSDkzSWtXc0EzRUNFUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGf4RThl1VEL9Xry3D9sFBStYFabSeNpjUqgD0LZ3u+0vaoxQHVOgL tRfgpbFoLx+i+UX1Ph7X6O5n7Y+ySn5kLSZbjpfqLa8Txq2jXiopteDf+VZhR9UU xIANDtrD87bkLOrEzosa/vIdTd/oxnXiP6Dx9HEcI+80qDpPNYuKp6/xpLey3ncV 2OcfUW5CZ69WwMpMVrwHdVln7hJGK6SKU5vjNv0uR6Ie7r4V3M2VFrS1x/AJs6mF neArLVri5Ui9guPYUtujT0W3/yGSTnr3QENjXNpJWsaSqRswxJVni04AxcNN+u8/ 6EVLG5VNrrQAfJcu/8YwXYUppLikdcwU -----END CERTIFICATE-----Generated at Sat Apr 26 04:57:29 2025 by rpki-client