$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: /hNECdFYcxyQzZtag01ODVpKvz05XdyugJS7TrUPFxQ= Subject key identifier: 9F:76:A9:7F:CE:40:22:1E:FB:62:1C:E0:6C:B0:38:0A:84:03:5C:18 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 018B Signing time: Fri 25 Apr 2025 02:43:12 +0000 Manifest this update: Fri 25 Apr 2025 02:43:12 +0000 Manifest next update: Fri 02 May 2025 02:43:12 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: EiBJlNGbGhcV3kHOATok3OfbArkFSHNXhsW8Cn2q0K8=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Apr 25 02:43:12 2025 GMT Not After : May 2 02:43:12 2025 GMT Subject: CN=680af6c0-7d55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3d:68:9a:61:9b:92:12:84:17:23:87:7c:5f: fd:c7:87:eb:64:82:d7:f6:8d:fd:8f:95:e5:f2:00: 1b:c8:e1:b3:67:26:15:9d:72:48:32:59:80:6a:8f: 57:22:b6:aa:bb:11:ab:58:2e:f0:a3:17:30:97:2b: 19:58:b5:45:43:e1:6d:81:8d:ca:4b:44:d3:a0:8e: 24:8c:07:c4:8d:10:3c:75:49:9b:58:7c:a2:4e:08: 0c:ce:68:90:ac:06:df:a1:a8:65:4a:ee:7f:f3:43: d2:c5:99:25:ba:1e:84:ea:04:e7:b7:db:7f:f7:2e: 16:c4:18:fc:03:06:16:2c:1d:f5:6a:85:89:a6:73: b3:1c:96:15:51:f8:62:fa:bf:26:39:5b:c9:c3:aa: 3b:88:3b:7b:c6:f3:1d:00:9e:f7:59:00:df:ad:7e: f2:f1:7e:fc:11:b8:b2:7a:1b:d4:3d:4e:2b:47:12: 9d:bd:a1:7c:e7:7b:ad:f8:1d:2f:a6:07:2f:87:41: c0:40:21:d2:fc:9c:45:7d:ea:d0:68:53:3f:97:95: ed:d2:c8:40:56:32:44:4c:11:15:c2:60:1a:ae:e0: d4:24:8e:bf:f6:e4:a4:5a:16:b0:85:41:01:7d:17: bf:75:19:8a:29:0d:25:05:89:7c:8e:eb:66:41:40: 42:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:76:A9:7F:CE:40:22:1E:FB:62:1C:E0:6C:B0:38:0A:84:03:5C:18 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:6c:12:e7:82:b4:1d:09:37:ca:76:d9:e1:d4:7e:2d:ea:39: ce:d6:51:b1:a7:a7:58:86:dd:6b:b6:6d:8a:61:73:08:c0:98: dc:a4:47:21:3c:de:57:30:72:f5:6e:1f:5e:1e:1c:b8:88:b7: 57:c5:40:de:00:74:69:f3:c6:49:a4:c0:95:45:02:61:ee:f4: e6:80:ea:63:07:74:9a:18:c0:6d:cc:23:77:1a:09:b6:33:df: ab:d9:bf:1e:4e:b4:96:2f:15:4e:c3:5a:a3:82:4b:84:7c:26: 81:38:38:10:30:8e:b0:27:aa:e2:f2:c4:43:cb:b8:e8:83:0b: 31:f8:22:2f:41:14:84:59:90:fd:56:8e:33:6f:c8:55:13:c6: c5:f0:9b:48:3a:f6:a5:f5:43:0d:10:ab:e2:43:32:af:4f:c4: 7b:f1:02:0c:42:b7:2d:20:72:c4:43:a9:13:e6:31:23:16:65: 39:59:8c:db:1d:a2:34:7b:5e:a2:d1:ba:40:9f:aa:52:36:5a: dc:45:5a:d4:56:e1:9a:da:9b:1e:a9:73:55:b8:6a:24:41:83: 64:08:c9:fc:40:1b:31:ec:ee:d5:d6:a8:87:e9:0d:a1:84:09: 8d:42:df:52:9a:bf:0f:98:59:8b:fa:a8:8d:19:1b:5a:30:57: ca:4c:fd:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUwNDI1MDI0MzEyWhcNMjUwNTAyMDI0MzEyWjAYMRYwFAYD VQQDEw02ODBhZjZjMC03ZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArD1ommGbkhKEFyOHfF/9x4frZILX9o39j5Xl8gAbyOGzZyYVnXJIMlmAao9X IraquxGrWC7woxcwlysZWLVFQ+FtgY3KS0TToI4kjAfEjRA8dUmbWHyiTggMzmiQ rAbfoahlSu5/80PSxZkluh6E6gTnt9t/9y4WxBj8AwYWLB31aoWJpnOzHJYVUfhi +r8mOVvJw6o7iDt7xvMdAJ73WQDfrX7y8X78EbiyehvUPU4rRxKdvaF853ut+B0v pgcvh0HAQCHS/JxFferQaFM/l5Xt0shAVjJETBEVwmAaruDUJI6/9uSkWhawhUEB fRe/dRmKKQ0lBYl8jutmQUBCxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ92qX/O QCIe+2Ic4GywOAqEA1wYMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApbBLngrQdCTfKdtnh1H4t6jnO1lGxp6dYht1rtm2KYXMIwJjcpEch PN5XMHL1bh9eHhy4iLdXxUDeAHRp88ZJpMCVRQJh7vTmgOpjB3SaGMBtzCN3Ggm2 M9+r2b8eTrSWLxVOw1qjgkuEfCaBODgQMI6wJ6ri8sRDy7jogwsx+CIvQRSEWZD9 Vo4zb8hVE8bF8JtIOval9UMNEKviQzKvT8R78QIMQrctIHLEQ6kT5jEjFmU5WYzb HaI0e16i0bpAn6pSNlrcRVrUVuGa2pseqXNVuGokQYNkCMn8QBsx7O7V1qiH6Q2h hAmNQt9Smr8PmFmL+qiNGRtaMFfKTP1S -----END CERTIFICATE-----Generated at Sat Apr 26 04:01:27 2025 by rpki-client