$ rpki-client -vvf rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft File: cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft (raw, json) Hash identifier: +OTWYJlMJYgWIgE3J6b1YlPxnAynmmsrMpJXhlKcPZQ= Subject key identifier: 87:F3:A1:30:6F:23:BC:8F:E9:27:26:1B:DB:5F:E2:82:DF:0A:A2:01 Authority key identifier: 72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 Certificate issuer: /CN=A9169411/serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft Manifest number: 0252 Signing time: Fri 25 Apr 2025 01:38:11 +0000 Manifest this update: Fri 25 Apr 2025 01:38:11 +0000 Manifest next update: Fri 02 May 2025 01:38:11 +0000 Files and hashes: 1: cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl (hash: ty/aZpO1hS7FZvL4fkO6xuK5Ap5UyYwVGfitxaws/NI=) 2: DD976958C2A611EFBB1B9264C4F9AE02.roa (hash: afDoQTBXFlKBM9yUFVyCep64AS8jLGn8fXLF8BGp1Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169411, serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Validity Not Before: Apr 25 01:38:11 2025 GMT Not After : May 2 01:38:11 2025 GMT Subject: CN=680ae783-edab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0c:d9:cc:5f:e4:b9:7c:9d:4d:7d:56:cb:25: 12:a9:95:c3:26:04:f2:da:76:2e:db:b5:31:47:e2: b0:e8:54:0b:4c:fa:e3:02:f5:e5:a9:07:2e:68:47: 59:22:94:db:1b:12:21:76:9f:a9:03:d3:57:c4:96: 8f:be:b5:d3:10:d0:e6:e9:f1:bd:d9:6f:ab:04:b6: 4e:9d:65:6f:5c:fb:fe:78:8f:d7:96:a6:c0:2b:f5: 94:8a:0a:cf:88:5b:a5:f6:c6:a3:41:dd:e1:88:7a: d3:49:5e:77:2c:61:97:1b:6f:d4:39:12:e2:d6:08: 4e:57:2d:a9:e7:ad:f0:f8:f9:5e:30:82:fb:bc:a1: 02:64:ae:16:7b:58:58:78:c6:2e:59:68:06:99:7c: c7:e4:bc:56:df:9f:f4:38:ad:fb:40:b0:14:90:15: 21:cf:4b:cd:d6:5c:3e:70:a0:02:f0:8f:55:96:ea: c3:06:25:3d:4b:79:05:ce:f9:a3:f9:d5:27:89:d9: 25:82:a1:8a:49:99:24:93:4a:d3:02:c4:20:48:be: 01:3a:86:f7:ca:63:ff:b4:bc:24:45:e6:6a:e2:cc: b5:d2:ba:c3:6a:e3:93:35:6d:91:30:d3:79:48:26: 4d:37:28:92:01:4f:6b:f9:c4:ea:c0:93:45:ea:53: 9c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F3:A1:30:6F:23:BC:8F:E9:27:26:1B:DB:5F:E2:82:DF:0A:A2:01 X509v3 Authority Key Identifier: keyid:72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:0a:62:46:ab:b0:ba:a2:a1:37:da:c3:cb:38:8e:c6:aa:32: c9:16:e4:ca:41:31:b2:ef:52:cc:fa:24:cc:23:d0:7f:69:46: fc:ae:89:eb:77:90:c2:4a:7f:6b:ab:79:dc:10:bf:c3:3c:b8: f3:99:fb:2c:39:31:1a:f2:0d:79:fe:09:7e:c5:5b:9f:5f:b2: a7:3c:f7:38:66:53:08:4c:a1:88:07:fa:e3:ad:9e:f6:43:0b: 7b:16:81:fd:c0:b8:60:14:1e:5f:d4:c3:7b:c6:a2:40:b4:2a: c0:1d:b6:71:29:8b:05:b4:20:1a:2a:8e:0a:49:36:47:4e:b1: 08:00:99:a0:9e:bf:20:03:22:ac:6d:e7:ff:57:39:98:3e:65: 5c:7a:94:68:27:35:21:0c:2c:88:72:c2:c5:15:8c:5d:44:e7: 2c:87:a4:21:55:a1:f3:a4:da:84:c6:8d:9a:8e:0e:4d:8a:75: 70:58:43:75:a0:de:ae:79:72:3c:fc:b5:df:b0:55:ab:ba:d5: ba:4a:59:a3:df:c6:2b:cb:91:8b:45:f1:f9:92:52:0a:e0:b2: cc:2a:52:e2:24:e2:00:59:64:b6:1e:1e:09:8d:b3:e2:c5:9a: 57:1c:04:23:ee:38:ea:02:8d:71:e4:1f:72:25:b3:e9:d5:41: 60:64:10:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0MTExMTAvBgNVBAUTKDcyMDM4QTg4QTYxRDI1QzRGNDA2NTAyNUZDMjZCOENF M0I4QTdBMDIwHhcNMjUwNDI1MDEzODExWhcNMjUwNTAyMDEzODExWjAYMRYwFAYD VQQDEw02ODBhZTc4My1lZGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugzZzF/kuXydTX1WyyUSqZXDJgTy2nYu27UxR+Kw6FQLTPrjAvXlqQcuaEdZ IpTbGxIhdp+pA9NXxJaPvrXTENDm6fG92W+rBLZOnWVvXPv+eI/XlqbAK/WUigrP iFul9sajQd3hiHrTSV53LGGXG2/UORLi1ghOVy2p563w+PleMIL7vKECZK4We1hY eMYuWWgGmXzH5LxW35/0OK37QLAUkBUhz0vN1lw+cKAC8I9VlurDBiU9S3kFzvmj +dUnidklgqGKSZkkk0rTAsQgSL4BOob3ymP/tLwkReZq4sy10rrDauOTNW2RMNN5 SCZNNyiSAU9r+cTqwJNF6lOc9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfzoTBv I7yP6ScmG9tf4oLfCqIBMB8GA1UdIwQYMBaAFHIDioimHSXE9AZQJfwmuM47inoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQxMS85MTg1M0EwNjE4 QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpjVDBCbEFsX0NhNHpqdUtl Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NnT0tpS1lkSmNUMEJsQWxfQ2E0emp1S2VnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQxMS85MTg1M0EwNjE4QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpj VDBCbEFsX0NhNHpqdUtlZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCACmJGq7C6oqE32sPLOI7GqjLJFuTKQTGy71LM+iTMI9B/aUb8ronr d5DCSn9rq3ncEL/DPLjzmfssOTEa8g15/gl+xVufX7KnPPc4ZlMITKGIB/rjrZ72 Qwt7FoH9wLhgFB5f1MN7xqJAtCrAHbZxKYsFtCAaKo4KSTZHTrEIAJmgnr8gAyKs bef/VzmYPmVcepRoJzUhDCyIcsLFFYxdROcsh6QhVaHzpNqExo2ajg5NinVwWEN1 oN6ueXI8/LXfsFWrutW6Slmj38Yry5GLRfH5klIK4LLMKlLiJOIAWWS2Hh4JjbPi xZpXHAQj7jjqAo1x5B9yJbPp1UFgZBD+ -----END CERTIFICATE-----Generated at Sat Apr 26 12:58:29 2025 by rpki-client