$ rpki-client -vvf rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft File: 4D9YAHuXKQulI0NZeReytqtd0uk.mft (raw, json) Hash identifier: pAhZYAaPC5TAvM1IBDnB8eApPUEca3L1Lqk/M40QA/g= Subject key identifier: F4:70:62:DD:8B:2E:99:76:19:48:19:1E:37:67:BA:04:A2:03:C1:CF Authority key identifier: E0:3F:58:00:7B:97:29:0B:A5:23:43:59:79:17:B2:B6:AB:5D:D2:E9 Certificate issuer: /CN=A9166646/serialNumber=E03F58007B97290BA52343597917B2B6AB5DD2E9 Certificate serial: 05DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft Manifest number: 05D8 Signing time: Thu 24 Apr 2025 22:46:59 +0000 Manifest this update: Thu 24 Apr 2025 22:46:58 +0000 Manifest next update: Thu 01 May 2025 22:46:58 +0000 Files and hashes: 1: 4D9YAHuXKQulI0NZeReytqtd0uk.crl (hash: JDwqRXvWvZe+LThs5cBaRFQJnU+nH/Nw4zt937R6zr8=) 2: 5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa (hash: /w5fG5I8SVvb6KU0qV88HCDiJhOJmaZaXcIt+zZPytA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.crl rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166646, serialNumber=E03F58007B97290BA52343597917B2B6AB5DD2E9 Validity Not Before: Apr 24 22:46:58 2025 GMT Not After : May 1 22:46:58 2025 GMT Subject: CN=680abf62-f2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b0:87:88:85:04:18:d0:0f:99:a1:39:8d:0c: 96:64:3c:b8:3a:22:cd:1b:c0:57:8f:05:e6:a2:f6: 10:9d:d3:4d:b9:23:fa:09:43:2f:26:26:e0:65:a5: 90:0b:c1:3c:f7:d3:ab:01:f8:40:4d:cd:4f:f0:4a: 69:b5:43:99:09:31:8a:21:ba:d2:18:68:6f:55:8e: b0:4c:58:e7:3a:cd:ab:01:d4:cf:cd:79:07:41:4d: d3:be:42:7e:6f:d7:fc:f5:9d:95:6b:30:b4:56:34: 15:28:e5:9c:a9:88:3f:91:20:5c:eb:fd:91:78:dd: cc:02:1b:d7:03:b8:0f:8d:17:b0:19:72:df:f2:86: 31:cb:62:34:c2:ec:fc:5e:6f:bc:44:ac:2e:34:9b: 30:6a:56:1d:59:85:b6:77:08:e9:96:68:59:8d:ff: ac:37:97:9c:b3:18:95:2b:8f:7f:93:9e:af:c0:bc: 7c:7c:28:af:47:cb:49:c8:e5:f4:0b:df:88:76:cf: 01:78:67:a9:d0:93:d6:1b:83:9c:f3:ff:3a:66:72: e9:de:76:70:2f:c7:0e:e9:e5:e7:8a:c0:47:dd:c4: bb:d8:bc:69:b8:77:a1:8a:8a:17:96:24:91:82:01: 52:ce:b6:98:88:10:82:81:e1:b0:9f:2c:90:58:51: 37:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:70:62:DD:8B:2E:99:76:19:48:19:1E:37:67:BA:04:A2:03:C1:CF X509v3 Authority Key Identifier: keyid:E0:3F:58:00:7B:97:29:0B:A5:23:43:59:79:17:B2:B6:AB:5D:D2:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:6c:6a:48:df:cd:39:cd:68:7c:44:16:27:f7:ac:2e:bf:6a: 72:d7:99:48:3a:36:23:3b:2e:d5:6b:8f:de:fc:a2:30:c5:08: aa:02:2c:00:da:c3:e6:2f:d7:2b:d5:b1:8b:32:4f:b0:c3:93: 7b:9c:b1:c6:cb:b3:3a:82:d0:74:f9:9b:23:d3:bb:ea:3e:8a: 7f:af:f4:ee:63:42:eb:f7:97:66:fa:9e:2a:ae:92:a5:8d:06: c6:f7:c8:0e:05:36:f6:b8:fc:27:07:be:82:41:36:29:f8:9c: 78:52:3d:b1:89:50:d2:8a:60:53:ae:fd:21:92:21:ae:ba:4f: 61:25:1e:29:40:f9:52:17:41:4e:ea:06:98:cf:07:10:41:1e: d6:6c:99:f3:59:8b:63:6a:3b:63:b2:49:c2:27:69:92:ae:99: d8:5b:8e:25:74:25:5a:0a:72:4e:ee:06:03:54:0c:71:76:5f: 34:23:c8:c0:30:2b:59:9e:ce:ee:3f:f1:20:eb:20:05:fd:31: 7d:59:42:3e:bb:ee:0c:aa:9a:0c:b0:83:2c:7c:29:90:46:17: 59:3f:f9:6e:96:3a:b9:93:09:2c:c6:69:29:5a:95:98:a7:e1: b7:7e:5a:3c:da:52:c9:6f:45:7f:c8:71:13:67:86:6d:fd:3d: de:ab:e5:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY2NDYxMTAvBgNVBAUTKEUwM0Y1ODAwN0I5NzI5MEJBNTIzNDM1OTc5MTdCMkI2 QUI1REQyRTkwHhcNMjUwNDI0MjI0NjU4WhcNMjUwNTAxMjI0NjU4WjAYMRYwFAYD VQQDEw02ODBhYmY2Mi1mMmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LCHiIUEGNAPmaE5jQyWZDy4OiLNG8BXjwXmovYQndNNuSP6CUMvJibgZaWQ C8E899OrAfhATc1P8EpptUOZCTGKIbrSGGhvVY6wTFjnOs2rAdTPzXkHQU3TvkJ+ b9f89Z2VazC0VjQVKOWcqYg/kSBc6/2ReN3MAhvXA7gPjRewGXLf8oYxy2I0wuz8 Xm+8RKwuNJswalYdWYW2dwjplmhZjf+sN5ecsxiVK49/k56vwLx8fCivR8tJyOX0 C9+Ids8BeGep0JPWG4Oc8/86ZnLp3nZwL8cO6eXnisBH3cS72LxpuHehiooXliSR ggFSzraYiBCCgeGwnyyQWFE3jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRwYt2L Lpl2GUgZHjdnugSiA8HPMB8GA1UdIwQYMBaAFOA/WAB7lykLpSNDWXkXsrarXdLp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjY0Ni83QjE2QUMyOEIx M0MxMUVCODE3OUZBMjlDNEY5QUUwMi80RDlZQUh1WEtRdWxJME5aZVJleXRxdGQw dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzREOVlBSHVYS1F1bEkwTlplUmV5dHF0ZDB1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjY0Ni83QjE2QUMyOEIxM0MxMUVCODE3OUZBMjlDNEY5QUUwMi80RDlZQUh1WEtR dWxJME5aZVJleXRxdGQwdWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHbGpI3805zWh8RBYn96wuv2py15lIOjYjOy7Va4/e/KIwxQiqAiwA 2sPmL9cr1bGLMk+ww5N7nLHGy7M6gtB0+Zsj07vqPop/r/TuY0Lr95dm+p4qrpKl jQbG98gOBTb2uPwnB76CQTYp+Jx4Uj2xiVDSimBTrv0hkiGuuk9hJR4pQPlSF0FO 6gaYzwcQQR7WbJnzWYtjajtjsknCJ2mSrpnYW44ldCVaCnJO7gYDVAxxdl80I8jA MCtZns7uP/Eg6yAF/TF9WUI+u+4MqpoMsIMsfCmQRhdZP/luljq5kwksxmkpWpWY p+G3flo82lLJb0V/yHETZ4Zt/T3eq+Wn -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:06 2025 by rpki-client