$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: LjiwzWx8QIILgICgGpNoGs9WOtVqST6TJHjyFnoQ9kM= Subject key identifier: 08:A9:B5:89:EB:49:C0:DE:64:F6:9F:54:92:E0:58:48:17:47:22:6F Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0966 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0946 Signing time: Thu 24 Apr 2025 20:08:45 +0000 Manifest this update: Thu 24 Apr 2025 20:08:45 +0000 Manifest next update: Thu 01 May 2025 20:08:45 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: 35QjaIR83cfGgcLJ5aF67BohS7wG6gRbyrckU3h/Bas=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2406 (0x966) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Apr 24 20:08:45 2025 GMT Not After : May 1 20:08:45 2025 GMT Subject: CN=680a9a4d-de0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d7:9e:3d:99:ba:a7:bb:8e:f4:53:0f:1b:05: c7:d7:cb:da:27:48:6d:4d:a5:08:7b:8c:07:e4:71: 81:22:f0:64:ea:ea:ee:16:a3:af:30:db:b5:d6:33: 69:e6:25:99:f1:72:a9:03:78:4a:51:bd:53:d6:f1: 08:aa:d1:a3:ba:df:ad:80:53:f2:2a:78:fc:c1:e4: 38:cf:f9:8f:c5:49:84:e8:50:a1:f9:01:d7:fd:89: 92:02:0b:1d:67:c5:a9:02:15:ac:83:d7:3a:a3:f7: 28:d6:7c:36:91:21:e3:f9:f1:44:d5:32:c2:49:19: e1:f0:e8:5e:84:e3:72:f4:19:db:07:1d:d1:ab:5a: 77:aa:83:16:32:e5:e9:f3:5f:35:4c:4d:42:ff:f7: 09:78:e8:b0:01:40:4c:31:11:35:1c:98:98:67:55: 54:dc:e7:2e:a9:f9:1d:6a:5d:b8:de:39:73:4f:60: 6c:ce:67:e9:de:68:19:cb:1f:89:84:7f:b3:4b:ea: ca:3d:65:fb:9c:a7:c8:6e:3f:d7:d8:23:80:cc:0a: c8:96:2d:ba:6b:72:68:0a:22:5e:f4:45:bd:b0:45: c1:9d:61:1f:ee:9d:4d:50:fb:d3:e5:e6:f4:29:65: 66:b4:96:54:4c:26:97:6f:1e:06:ff:9b:e1:e7:34: b0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A9:B5:89:EB:49:C0:DE:64:F6:9F:54:92:E0:58:48:17:47:22:6F X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e1:93:b4:71:4d:d7:4e:6f:2d:70:8d:32:fc:90:77:a5:0f: 14:e9:70:19:2c:75:31:7a:2a:cb:7d:b0:89:10:17:0d:cc:2e: 0e:cb:61:7a:85:92:e5:35:a5:97:f4:71:8b:88:2b:2b:d0:c5: 76:22:e5:86:d6:3b:05:0c:45:2b:16:ff:3b:c5:9b:04:11:4e: 3b:35:9b:06:b1:0f:a6:a9:c2:af:96:5e:b6:f3:9f:ef:54:03: d4:f5:ac:10:16:6c:09:62:76:89:96:9a:8d:e3:97:f7:3b:b6: 3a:80:df:3b:e4:4d:ae:31:c6:cd:b7:ca:2b:f0:e3:da:af:e7: f7:80:1b:9e:fc:4a:34:5e:3e:b8:a4:78:5a:9a:20:d0:9c:f6: 6a:9f:63:45:0d:79:f5:3d:12:70:1d:85:60:8a:b1:d5:c3:eb: 80:48:a5:cc:8a:38:be:fc:66:66:77:09:0f:7b:8c:bb:b2:84: 7d:f9:b3:24:77:86:0c:00:ea:6f:a1:02:69:39:6e:0b:db:56: 2c:97:00:cc:d9:84:30:7a:9a:9d:35:1c:f7:97:1b:76:3b:52: 64:89:ad:c9:c2:a1:69:02:36:ec:c6:d8:80:b2:2b:a1:62:03: 64:c4:d5:a3:44:69:9b:6b:da:7b:fe:51:1f:00:b5:7e:8f:75: 68:d6:e5:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwNDI0MjAwODQ1WhcNMjUwNTAxMjAwODQ1WjAYMRYwFAYD VQQDEw02ODBhOWE0ZC1kZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9eePZm6p7uO9FMPGwXH18vaJ0htTaUIe4wH5HGBIvBk6uruFqOvMNu11jNp 5iWZ8XKpA3hKUb1T1vEIqtGjut+tgFPyKnj8weQ4z/mPxUmE6FCh+QHX/YmSAgsd Z8WpAhWsg9c6o/co1nw2kSHj+fFE1TLCSRnh8OhehONy9BnbBx3Rq1p3qoMWMuXp 8181TE1C//cJeOiwAUBMMRE1HJiYZ1VU3Ocuqfkdal243jlzT2Bszmfp3mgZyx+J hH+zS+rKPWX7nKfIbj/X2COAzArIli26a3JoCiJe9EW9sEXBnWEf7p1NUPvT5eb0 KWVmtJZUTCaXbx4G/5vh5zSwVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiptYnr ScDeZPafVJLgWEgXRyJvMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp4ZO0cU3XTm8tcI0y/JB3pQ8U6XAZLHUxeirLfbCJEBcNzC4Oy2F6 hZLlNaWX9HGLiCsr0MV2IuWG1jsFDEUrFv87xZsEEU47NZsGsQ+mqcKvll6285/v VAPU9awQFmwJYnaJlpqN45f3O7Y6gN875E2uMcbNt8or8OPar+f3gBue/Eo0Xj64 pHhamiDQnPZqn2NFDXn1PRJwHYVgirHVw+uASKXMiji+/GZmdwkPe4y7soR9+bMk d4YMAOpvoQJpOW4L21YslwDM2YQwepqdNRz3lxt2O1Jkia3JwqFpAjbsxtiAsiuh YgNkxNWjRGmba9p7/lEfALV+j3Vo1uVI -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:32 2025 by rpki-client