$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: 77RyH+m5ZTWoayote76hf/LHqb2qsNx5pH58XW6RHxM= Subject key identifier: E6:DD:B2:99:ED:09:54:4E:94:01:6C:23:BC:EC:6A:70:8E:66:C4:DF Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01C0 Signing time: Fri 25 Apr 2025 02:09:14 +0000 Manifest this update: Fri 25 Apr 2025 02:09:14 +0000 Manifest next update: Fri 02 May 2025 02:09:14 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: QAlJYiMEPgwiNw1HaEb1mcpB6jCvol8bDAbtQbkx4cE=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Apr 25 02:09:14 2025 GMT Not After : May 2 02:09:14 2025 GMT Subject: CN=680aeeca-5a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2d:c2:b4:d1:4e:39:f8:b4:da:97:85:7e:da: c5:61:10:b3:98:02:d3:9e:f2:3f:21:1c:34:18:5b: 95:b3:ac:92:76:5f:20:54:18:22:0c:ff:3c:a4:b7: 73:ba:6b:1d:94:0a:b7:2c:42:85:00:c0:7b:da:83: 1d:c5:e9:2a:37:c6:38:77:04:f8:f3:4e:8f:56:7d: 01:e7:95:88:7b:b9:91:1d:f8:a8:1b:9c:b4:d1:2d: 42:47:13:c8:d8:aa:3c:e0:bb:5a:80:51:2f:94:89: 93:c0:7d:fc:a7:ec:dc:29:9c:40:43:1d:78:93:f0: a2:ec:81:fd:07:f1:f7:51:9b:13:de:86:61:0c:5f: f3:43:ce:8c:69:6f:47:d9:92:c3:cb:1b:c7:e7:70: 97:22:30:3a:84:94:e0:7a:58:6d:84:6f:69:0c:d2: cb:2e:fe:a3:2f:49:58:cf:25:7a:82:5a:47:a8:ab: a8:f6:6d:05:d7:3e:21:b1:18:65:f7:dc:2c:d1:b0: 90:0d:48:28:e2:fd:97:86:49:1c:1d:7f:58:3a:e0: 8d:50:e3:9d:5b:52:3a:b4:ef:1a:91:13:87:af:45: 81:db:ab:29:cf:6b:69:2f:4b:70:cf:d0:44:ea:a0: bb:19:b8:4b:68:89:ea:f6:2f:01:c1:fa:85:59:56: 78:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DD:B2:99:ED:09:54:4E:94:01:6C:23:BC:EC:6A:70:8E:66:C4:DF X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:d7:89:f9:0e:6a:d2:30:84:84:e6:40:45:c0:57:05:d0:b0: 9a:f1:ee:6b:bc:cc:48:13:14:d1:38:60:36:4e:3c:95:15:dc: f6:80:9f:6a:df:19:ce:bc:44:c8:fd:fa:7e:35:f7:52:6e:db: f9:bc:ee:29:42:6b:2f:65:b3:89:af:17:84:54:0d:7a:0d:d5: 7f:92:67:3f:d6:48:33:67:c2:28:4e:9d:5b:58:b6:d5:75:0b: 43:d9:8c:81:35:dd:35:13:d3:d5:48:e7:7a:01:08:09:d0:c2: e5:5e:25:0b:58:d7:76:f5:6a:83:b0:e3:bf:dd:23:45:c0:2b: 29:f7:8f:4d:41:ff:24:6d:8d:61:93:af:d2:81:07:58:85:be: 5f:cc:83:4b:4f:e5:29:13:35:87:33:24:cb:d6:eb:42:cf:03: 02:2b:2a:67:2d:2c:06:6f:f0:08:36:b2:d8:9f:79:89:f8:4a: 70:52:bf:13:eb:64:8f:c7:94:73:62:2d:35:9a:08:ec:60:0a: 52:ab:f5:66:fa:dc:d1:bd:9d:27:cb:11:a8:7a:a6:97:11:34: b4:ca:91:df:4c:68:b4:11:bb:0b:4e:0e:95:13:7f:41:02:c2: 7c:7a:32:92:07:27:74:f3:a8:09:0e:81:2f:74:49:a2:6e:a4: 51:a7:58:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwNDI1MDIwOTE0WhcNMjUwNTAyMDIwOTE0WjAYMRYwFAYD VQQDEw02ODBhZWVjYS01YTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1y3CtNFOOfi02peFftrFYRCzmALTnvI/IRw0GFuVs6ySdl8gVBgiDP88pLdz umsdlAq3LEKFAMB72oMdxekqN8Y4dwT4806PVn0B55WIe7mRHfioG5y00S1CRxPI 2Ko84LtagFEvlImTwH38p+zcKZxAQx14k/Ci7IH9B/H3UZsT3oZhDF/zQ86MaW9H 2ZLDyxvH53CXIjA6hJTgelhthG9pDNLLLv6jL0lYzyV6glpHqKuo9m0F1z4hsRhl 99ws0bCQDUgo4v2XhkkcHX9YOuCNUOOdW1I6tO8akROHr0WB26spz2tpL0twz9BE 6qC7GbhLaInq9i8BwfqFWVZ4OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObdspnt CVROlAFsI7zsanCOZsTfMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA714n5DmrSMISE5kBFwFcF0LCa8e5rvMxIExTROGA2TjyVFdz2gJ9q 3xnOvETI/fp+NfdSbtv5vO4pQmsvZbOJrxeEVA16DdV/kmc/1kgzZ8IoTp1bWLbV dQtD2YyBNd01E9PVSOd6AQgJ0MLlXiULWNd29WqDsOO/3SNFwCsp949NQf8kbY1h k6/SgQdYhb5fzINLT+UpEzWHMyTL1utCzwMCKypnLSwGb/AINrLYn3mJ+EpwUr8T 62SPx5RzYi01mgjsYApSq/Vm+tzRvZ0nyxGoeqaXETS0ypHfTGi0EbsLTg6VE39B AsJ8ejKSByd086gJDoEvdEmibqRRp1gi -----END CERTIFICATE-----Generated at Sat Apr 26 14:07:58 2025 by rpki-client