$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: jwUJeHa3AZI931PSlVg80YvN+fPb3EphF3hoyGD0KyA= Subject key identifier: 4D:C0:7C:AA:82:15:DA:EA:64:D4:D0:CC:C3:0D:A6:DE:A4:67:19:AC Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0AC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0AB9 Signing time: Thu 24 Apr 2025 19:22:33 +0000 Manifest this update: Thu 24 Apr 2025 19:22:33 +0000 Manifest next update: Thu 01 May 2025 19:22:33 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: o94YdlgGHBhu6u08kdoibUuLnVFAxNWtzKDc+IhZ4pk=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: vRrkQ11gFoedPJsbqh7nQv1lr6X8LYa0tpYVg51dxDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2753 (0xac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20, serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Apr 24 19:22:33 2025 GMT Not After : May 1 19:22:33 2025 GMT Subject: CN=680a8f79-923b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8f:b8:93:14:6a:a4:18:f5:2e:01:31:34:c0: f4:39:d1:11:f5:15:3e:25:b6:df:de:42:9a:46:b7: d7:b6:6e:4d:e7:3d:fc:81:26:db:26:6f:7c:3d:85: 3e:bf:4e:be:eb:67:6d:83:ba:64:a4:52:30:17:ea: 13:2a:7e:71:ce:33:ee:15:bc:34:e6:68:b1:49:50: b3:22:4c:a6:12:ae:fc:ce:0c:b1:af:27:62:cc:f1: c1:14:4b:33:a1:ed:47:9b:df:5d:4a:52:71:4c:02: 9d:0d:47:fa:d3:4a:ac:80:ac:9a:ca:54:bd:2b:6b: 9a:6a:38:25:d9:7e:5c:5d:f7:7b:11:f1:1a:a2:ec: 4a:d3:7d:de:91:b5:21:11:5e:99:89:72:fb:8d:98: a9:3f:9d:b1:68:68:b9:da:52:8e:1f:77:2c:f8:b5: 09:b2:c2:f5:08:35:04:35:19:7f:0f:49:9e:07:85: 30:19:e3:6d:3b:ec:f1:fb:b7:ed:94:f1:8a:28:ec: 35:83:28:0f:5e:70:32:f1:e1:eb:3c:f4:aa:93:2d: 1e:c0:a6:17:e5:59:81:af:95:d7:a1:4e:6e:9b:54: 3a:f1:a6:12:63:22:50:6a:d2:ad:7f:9f:49:a4:d4: c1:63:49:35:5f:5b:b2:90:82:89:01:8e:a6:83:38: 01:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C0:7C:AA:82:15:DA:EA:64:D4:D0:CC:C3:0D:A6:DE:A4:67:19:AC X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ea:2a:d5:ad:38:b3:22:81:b8:58:8b:e4:8f:21:f5:a3:e7: 3f:be:a6:78:76:d7:61:69:0d:be:74:6f:32:b5:fd:ee:35:17: 44:60:48:3d:a8:a7:01:65:e7:12:9c:c9:0c:bf:e9:23:48:f6: 09:ac:07:7c:70:a7:d9:da:88:77:89:47:c4:52:86:80:75:08: 95:e3:89:1f:6c:0d:e9:ab:9b:9a:13:25:77:71:ef:a9:bd:52: c1:03:95:de:75:98:5b:12:ee:b4:ca:66:54:c8:f2:50:68:7e: 7b:09:a4:8b:a4:63:f7:04:24:c3:b8:14:90:6f:5e:7f:d4:4b: 5b:6d:43:9d:df:00:f6:2b:e7:ea:a8:a6:74:33:6a:5e:a1:dc: d9:12:44:eb:01:80:77:44:fe:f8:6a:fe:c2:c8:ab:60:3d:72: a5:78:b4:82:25:08:42:66:00:bb:46:ca:d6:54:0e:0a:18:ee: ad:7e:5e:3a:45:bb:2c:8d:a6:4b:6e:5d:47:2e:ca:62:1f:21: 4e:02:5c:5d:7b:f9:17:f9:64:46:2a:a7:ef:64:b0:a4:25:03: 05:f7:d2:6d:a3:f8:42:8e:ab:d5:2c:b3:ac:4c:e6:3c:d3:c9: c0:74:80:ed:d5:c4:74:db:b4:68:d7:b4:80:a4:0f:89:03:56: 8d:8d:9d:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjUwNDI0MTkyMjMzWhcNMjUwNTAxMTkyMjMzWjAYMRYwFAYD VQQDEw02ODBhOGY3OS05MjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4+4kxRqpBj1LgExNMD0OdER9RU+Jbbf3kKaRrfXtm5N5z38gSbbJm98PYU+ v06+62dtg7pkpFIwF+oTKn5xzjPuFbw05mixSVCzIkymEq78zgyxrydizPHBFEsz oe1Hm99dSlJxTAKdDUf600qsgKyaylS9K2uaajgl2X5cXfd7EfEaouxK033ekbUh EV6ZiXL7jZipP52xaGi52lKOH3cs+LUJssL1CDUENRl/D0meB4UwGeNtO+zx+7ft lPGKKOw1gygPXnAy8eHrPPSqky0ewKYX5VmBr5XXoU5um1Q68aYSYyJQatKtf59J pNTBY0k1X1uykIKJAY6mgzgBzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3AfKqC FdrqZNTQzMMNpt6kZxmsMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp6irVrTizIoG4WIvkjyH1o+c/vqZ4dtdhaQ2+dG8ytf3uNRdEYEg9 qKcBZecSnMkMv+kjSPYJrAd8cKfZ2oh3iUfEUoaAdQiV44kfbA3pq5uaEyV3ce+p vVLBA5XedZhbEu60ymZUyPJQaH57CaSLpGP3BCTDuBSQb15/1EtbbUOd3wD2K+fq qKZ0M2peodzZEkTrAYB3RP74av7CyKtgPXKleLSCJQhCZgC7RsrWVA4KGO6tfl46 RbssjaZLbl1HLspiHyFOAlxde/kX+WRGKqfvZLCkJQMF99Jto/hCjqvVLLOsTOY8 08nAdIDt1cR027Ro17SApA+JA1aNjZ3E -----END CERTIFICATE-----Generated at Sat Apr 26 15:20:01 2025 by rpki-client