$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft File: n33tfQW4HeZsc1u4VH52BIycP1o.mft (raw, json) Hash identifier: trPLXAHhq3THcyOAw0I+1cqGT2INWaDFYPxaHFA0bKM= Subject key identifier: A9:34:32:28:17:4A:B4:49:88:9F:37:E5:6A:5C:E7:EA:ED:9E:6D:75 Authority key identifier: 9F:7D:ED:7D:05:B8:1D:E6:6C:73:5B:B8:54:7E:76:04:8C:9C:3F:5A Certificate issuer: /CN=A9148F9A/serialNumber=9F7DED7D05B81DE66C735BB8547E76048C9C3F5A Certificate serial: 05C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft Manifest number: 05BD Signing time: Thu 24 Apr 2025 22:54:22 +0000 Manifest this update: Thu 24 Apr 2025 22:54:22 +0000 Manifest next update: Thu 01 May 2025 22:54:22 +0000 Files and hashes: 1: n33tfQW4HeZsc1u4VH52BIycP1o.crl (hash: Id1U1wPUYt4Kqb6epfI+Wbh1pBUCjtC4/2dZ7JXSZ4I=) 2: 6A4E9778632F11EE8F22BC2EC4F9AE02.roa (hash: 4bTC2UNunl8WmbthP7AksvyRIOAjMvhZ4haA1p6DOkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.crl rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1476 (0x5c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F9A, serialNumber=9F7DED7D05B81DE66C735BB8547E76048C9C3F5A Validity Not Before: Apr 24 22:54:22 2025 GMT Not After : May 1 22:54:22 2025 GMT Subject: CN=680ac11e-ee69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:45:0f:45:0e:26:44:18:ae:41:1d:f1:c4:47: 6e:c9:54:df:b3:a8:fb:2c:01:08:61:49:3d:3b:07: 76:01:02:fa:e7:1a:ff:c5:47:b9:2f:d9:81:0b:65: 84:47:fa:5b:47:74:1d:70:5e:b9:70:69:8b:3e:1f: f3:89:47:be:8d:4b:44:ca:f3:94:17:54:00:c9:85: 77:45:3b:8e:91:49:a4:ba:78:6b:c4:9d:79:f7:e5: e6:05:5d:b2:e6:14:a4:5a:12:88:54:cd:95:7d:79: cb:ac:71:58:9a:a3:e9:21:b9:28:cd:89:e4:1f:5d: 63:99:ab:3d:17:f0:7d:66:50:f4:fa:31:9b:b1:5c: 17:39:ff:1f:95:a4:66:48:cb:6e:40:1d:60:de:c9: 1b:7d:5b:17:ae:36:aa:07:a9:2f:23:c7:ce:47:d5: c7:68:8e:69:34:31:08:97:1c:93:6a:b8:10:50:1c: f3:ba:d7:ff:2e:ec:42:ab:6c:8d:8f:28:e0:e9:4d: 44:5a:0c:8b:cf:97:92:25:99:39:98:e6:7c:e0:64: 17:a0:fa:22:12:54:37:95:ef:b5:fa:a6:c1:cf:00: 13:c3:0f:36:c2:7d:c2:99:d3:a5:8c:57:84:de:59: 0e:2c:71:fa:1c:15:a1:91:47:dd:2b:fb:8a:cd:2d: 75:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:34:32:28:17:4A:B4:49:88:9F:37:E5:6A:5C:E7:EA:ED:9E:6D:75 X509v3 Authority Key Identifier: keyid:9F:7D:ED:7D:05:B8:1D:E6:6C:73:5B:B8:54:7E:76:04:8C:9C:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:8b:34:18:b8:37:ed:aa:51:52:40:ac:06:ab:a9:62:12:2a: b9:1c:1c:27:77:d5:16:fa:f5:40:b4:e0:c6:ca:81:e4:1a:ab: 45:bc:49:45:07:92:dd:3b:b7:70:09:4f:77:74:f2:19:25:8e: cc:78:c0:ad:79:19:11:56:e4:03:9b:88:48:df:31:b2:9f:74: 76:e2:89:3c:e6:40:4b:68:a4:89:bb:69:cc:e2:94:5a:bc:6b: 7d:2c:1a:81:85:b2:2b:42:92:26:5c:53:b1:0b:92:ef:13:cf: 3f:6a:2f:04:f4:44:85:e5:10:6e:74:42:38:53:29:5b:e2:9b: e9:e0:72:b3:36:ca:de:31:73:af:07:45:8d:d7:d2:f6:0f:61: b7:5f:c9:35:6e:93:87:70:ba:16:55:f3:8a:b3:68:77:b5:65: 3d:3e:cc:7e:56:e8:47:c4:a8:22:21:85:a5:99:58:17:e5:f2: e2:13:6e:41:9e:93:ae:6a:03:37:8d:b2:d3:69:4c:35:1f:17: 07:5d:d9:32:50:a0:b9:2c:96:fe:b1:57:c4:1d:c0:71:0e:70: 0d:6c:76:de:0c:b4:f6:16:01:ff:cc:ec:d4:14:ac:ba:5f:d8: 58:18:af:31:30:ea:cc:2e:66:d4:b5:81:81:1c:3b:7c:45:1c: 4d:6c:be:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGOUExMTAvBgNVBAUTKDlGN0RFRDdEMDVCODFERTY2QzczNUJCODU0N0U3NjA0 OEM5QzNGNUEwHhcNMjUwNDI0MjI1NDIyWhcNMjUwNTAxMjI1NDIyWjAYMRYwFAYD VQQDEw02ODBhYzExZS1lZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/UUPRQ4mRBiuQR3xxEduyVTfs6j7LAEIYUk9Owd2AQL65xr/xUe5L9mBC2WE R/pbR3QdcF65cGmLPh/ziUe+jUtEyvOUF1QAyYV3RTuOkUmkunhrxJ159+XmBV2y 5hSkWhKIVM2VfXnLrHFYmqPpIbkozYnkH11jmas9F/B9ZlD0+jGbsVwXOf8flaRm SMtuQB1g3skbfVsXrjaqB6kvI8fOR9XHaI5pNDEIlxyTargQUBzzutf/LuxCq2yN jyjg6U1EWgyLz5eSJZk5mOZ84GQXoPoiElQ3le+1+qbBzwATww82wn3CmdOljFeE 3lkOLHH6HBWhkUfdK/uKzS11bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKk0MigX SrRJiJ835Wpc5+rtnm11MB8GA1UdIwQYMBaAFJ997X0FuB3mbHNbuFR+dgSMnD9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY5QS9DMEVBNTc5OEJF NDUxMUVCQjBDNUQwODRDNEY5QUUwMi9uMzN0ZlFXNEhlWnNjMXU0Vkg1MkJJeWNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24zM3RmUVc0SGVac2MxdTRWSDUyQkl5Y1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY5QS9DMEVBNTc5OEJFNDUxMUVCQjBDNUQwODRDNEY5QUUwMi9uMzN0ZlFXNEhl WnNjMXU0Vkg1MkJJeWNQMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpizQYuDftqlFSQKwGq6liEiq5HBwnd9UW+vVAtODGyoHkGqtFvElF B5LdO7dwCU93dPIZJY7MeMCteRkRVuQDm4hI3zGyn3R24ok85kBLaKSJu2nM4pRa vGt9LBqBhbIrQpImXFOxC5LvE88/ai8E9ESF5RBudEI4Uylb4pvp4HKzNsreMXOv B0WN19L2D2G3X8k1bpOHcLoWVfOKs2h3tWU9Psx+VuhHxKgiIYWlmVgX5fLiE25B npOuagM3jbLTaUw1HxcHXdkyUKC5LJb+sVfEHcBxDnANbHbeDLT2FgH/zOzUFKy6 X9hYGK8xMOrMLmbUtYGBHDt8RRxNbL5p -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:57 2025 by rpki-client