$ rpki-client -vvf rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft File: 9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft (raw, json) Hash identifier: qpE4EW1Rg+71eWzEzFdwfW8QFEabFvK+n87HsoeWbLM= Subject key identifier: D7:71:E8:B4:2C:6D:2C:C2:19:25:96:5F:C6:38:4C:64:4C:1C:9B:13 Authority key identifier: F6:2D:2A:68:5D:CE:C9:7E:15:83:90:2A:8E:F9:EE:51:70:78:20:74 Certificate issuer: /CN=A9153049/serialNumber=F62D2A685DCEC97E1583902A8EF9EE5170782074 Certificate serial: 0C2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft Manifest number: 0C1F Signing time: Thu 24 Apr 2025 18:31:43 +0000 Manifest this update: Thu 24 Apr 2025 18:31:43 +0000 Manifest next update: Thu 01 May 2025 18:31:43 +0000 Files and hashes: 1: 9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl (hash: z37iInL1GjSh+MVR7qwVgotwpeauYkEuiCeD3Fu1+Wg=) 2: 4D6224A80C4A11EAABCEF428C4F9AE02.roa (hash: LoUT2MaD5/F/EBumNr9K+cDj9oFe1lrYI+mckDlhBHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153049, serialNumber=F62D2A685DCEC97E1583902A8EF9EE5170782074 Validity Not Before: Apr 24 18:31:43 2025 GMT Not After : May 1 18:31:43 2025 GMT Subject: CN=680a838f-9dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:82:21:c0:1d:8e:ed:b8:8e:0c:73:f6:a4:4d: 79:4f:d0:44:48:68:50:07:a3:cc:e5:15:db:9b:f2: ee:9c:2f:d0:2a:55:98:2a:4d:49:ba:a7:bc:11:53: 26:7c:50:71:46:68:af:52:e8:11:a1:9f:0c:95:84: da:7d:cd:02:a9:eb:2e:6b:b4:8d:5f:35:b9:89:e0: b7:03:9b:b0:3f:cd:82:5c:62:93:ef:f7:d7:6b:b0: cf:53:da:3d:ca:b8:d7:9c:fc:a0:95:47:90:aa:66: 40:83:cf:9e:e7:5d:59:17:7e:53:2f:64:f0:15:af: 1c:19:e7:81:23:c2:aa:4c:85:ef:f7:88:45:27:33: e4:4a:39:46:d4:14:b6:4f:5d:55:8d:93:15:b0:79: 5d:79:5b:ee:6e:80:ed:f0:4a:2a:e5:89:d3:ab:13: d5:eb:41:37:54:e5:27:4b:85:e1:b3:36:d8:fe:10: 97:6d:4c:84:fe:bb:c8:26:b0:02:fc:b2:88:3f:f1: 02:97:2b:a0:a3:c0:db:11:3f:00:5e:13:31:6c:be: df:68:e4:05:39:02:ad:d2:8c:72:05:b5:20:ad:8b: 13:10:a4:70:9e:a7:a4:65:ec:2e:57:8b:f1:90:2f: 12:53:b2:ff:cc:9f:c6:b4:af:bf:c5:f6:35:e7:e7: d5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:71:E8:B4:2C:6D:2C:C2:19:25:96:5F:C6:38:4C:64:4C:1C:9B:13 X509v3 Authority Key Identifier: keyid:F6:2D:2A:68:5D:CE:C9:7E:15:83:90:2A:8E:F9:EE:51:70:78:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:0f:f9:43:bf:91:11:ce:7b:dd:60:b2:d0:be:fd:ea:2a:ba: 1e:1f:43:b8:8d:a7:d7:96:ee:c3:85:e6:b1:10:d8:ce:ae:87: cc:48:22:29:77:51:f0:68:ec:9f:04:17:e7:5d:02:7e:cc:8b: ec:52:0b:22:c5:38:8f:5d:48:ab:fb:fa:43:1f:16:86:57:68: 52:6d:6c:ec:7c:1e:b5:4c:9d:ae:55:0b:0d:53:ad:84:6b:3d: 23:85:fb:2f:f8:4e:af:cb:b0:b1:c8:18:29:a9:86:cb:cd:47: 47:94:bb:21:ea:75:a9:b1:c6:f5:4b:65:af:26:4f:db:b8:f4: 62:de:7e:d3:2a:e2:ed:d3:b2:bb:1a:88:a9:7f:d9:da:0d:97: f1:70:d3:75:8a:a9:91:e4:e7:44:c8:86:15:d0:91:4c:f7:d7: 74:9c:af:7f:57:d8:f5:b1:50:69:1f:0e:a6:f4:26:f6:a0:49: 07:9b:39:57:d8:12:7a:da:50:97:36:b2:68:ed:3f:8b:dd:ea: ad:4f:31:f3:0e:dd:b9:7a:e1:4b:bc:0e:10:95:e1:7f:51:7f: 39:cb:97:04:56:e8:ea:ce:19:9b:c2:87:3f:dc:21:ca:2e:93: ee:c4:88:90:98:cb:29:e3:3f:69:3a:00:70:48:21:67:40:5b: d4:07:ee:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMwNDkxMTAvBgNVBAUTKEY2MkQyQTY4NURDRUM5N0UxNTgzOTAyQThFRjlFRTUx NzA3ODIwNzQwHhcNMjUwNDI0MTgzMTQzWhcNMjUwNTAxMTgzMTQzWjAYMRYwFAYD VQQDEw02ODBhODM4Zi05ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9IIhwB2O7biODHP2pE15T9BESGhQB6PM5RXbm/LunC/QKlWYKk1Juqe8EVMm fFBxRmivUugRoZ8MlYTafc0Cqesua7SNXzW5ieC3A5uwP82CXGKT7/fXa7DPU9o9 yrjXnPyglUeQqmZAg8+e511ZF35TL2TwFa8cGeeBI8KqTIXv94hFJzPkSjlG1BS2 T11VjZMVsHldeVvuboDt8Eoq5YnTqxPV60E3VOUnS4XhszbY/hCXbUyE/rvIJrAC /LKIP/EClyugo8DbET8AXhMxbL7faOQFOQKt0oxyBbUgrYsTEKRwnqekZewuV4vx kC8SU7L/zJ/GtK+/xfY15+fVpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdx6LQs bSzCGSWWX8Y4TGRMHJsTMB8GA1UdIwQYMBaAFPYtKmhdzsl+FYOQKo757lFweCB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzA0OS9BREFDNTI4MjA5 RDYxMUVBOUVCMzM4MUNDNEY5QUUwMi85aTBxYUYzT3lYNFZnNUFxanZudVVYQjRJ SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlpMHFhRjNPeVg0Vmc1QXFqdm51VVhCNElIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzA0OS9BREFDNTI4MjA5RDYxMUVBOUVCMzM4MUNDNEY5QUUwMi85aTBxYUYzT3lY NFZnNUFxanZudVVYQjRJSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVD/lDv5ERznvdYLLQvv3qKroeH0O4jafXlu7DheaxENjOrofMSCIp d1HwaOyfBBfnXQJ+zIvsUgsixTiPXUir+/pDHxaGV2hSbWzsfB61TJ2uVQsNU62E az0jhfsv+E6vy7CxyBgpqYbLzUdHlLsh6nWpscb1S2WvJk/buPRi3n7TKuLt07K7 Goipf9naDZfxcNN1iqmR5OdEyIYV0JFM99d0nK9/V9j1sVBpHw6m9Cb2oEkHmzlX 2BJ62lCXNrJo7T+L3eqtTzHzDt25euFLvA4QleF/UX85y5cEVujqzhmbwoc/3CHK LpPuxIiQmMsp4z9pOgBwSCFnQFvUB+5/ -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:58 2025 by rpki-client