$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: E8kq9XOPs4jsU76GtpJPSAgcGHJ7LL74N1zHFqnl/lY= Subject key identifier: 12:D3:B7:A7:66:28:49:45:35:65:19:E5:31:14:EA:90:C9:95:3E:CA Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 0181 Signing time: Fri 25 Apr 2025 02:49:54 +0000 Manifest this update: Fri 25 Apr 2025 02:49:53 +0000 Manifest next update: Fri 02 May 2025 02:49:53 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: SxfkR4Ti5610hZzC1Y29UvsFIGj8DiBGoSrHveLQKQo=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Apr 25 02:49:53 2025 GMT Not After : May 2 02:49:53 2025 GMT Subject: CN=680af852-bdc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f8:17:16:c2:1e:b1:49:25:17:20:a2:37:61: 4c:57:80:db:d1:80:04:01:4b:19:2f:00:72:ff:eb: 4f:1a:37:d7:08:3f:21:71:5d:34:16:9a:8c:ab:ab: 09:96:43:c2:d7:e3:7e:d5:30:1b:1d:61:32:f1:78: f8:9c:d8:9f:d0:fc:2c:04:28:a3:57:04:94:df:fa: 6a:66:c6:32:45:54:f1:34:36:de:bc:3e:3e:44:11: 46:1a:88:e1:40:65:de:83:bd:80:b0:70:c7:08:83: b0:fe:8e:b4:ad:dc:3b:16:fe:83:d7:7a:cd:81:3e: 41:13:fb:09:a0:54:52:03:ee:34:c7:29:87:f5:67: 90:c4:0e:57:b5:0c:a2:df:22:f3:07:c4:42:fe:8f: 91:e9:f1:3a:90:20:12:04:27:28:77:92:14:c6:67: f8:cd:16:f6:29:11:f9:0b:2a:70:4f:d7:e1:3a:36: 25:a7:43:69:61:12:4a:2b:33:03:c4:a1:54:af:27: 57:21:52:2d:bf:6d:0b:39:2a:2b:bf:44:1f:35:1a: 80:7d:fe:ce:2d:fc:00:8a:8b:b2:eb:7a:3c:53:e3: 4a:f2:e0:f1:c2:1f:21:7a:73:e0:75:3d:9b:62:45: 66:a5:5c:4d:2c:b1:56:97:3d:4d:2f:69:22:8c:e1: 95:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D3:B7:A7:66:28:49:45:35:65:19:E5:31:14:EA:90:C9:95:3E:CA X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:ca:ef:55:3c:f9:33:87:e1:13:59:97:34:92:4a:d6:9c:79: d1:0d:36:75:16:04:73:05:f6:14:da:ef:97:43:bc:d6:9b:e5: 9d:03:15:8a:35:6b:82:b9:66:08:b8:44:3a:69:b3:de:82:72: 45:72:cf:c9:df:70:eb:b4:9a:25:4d:76:a9:d9:91:07:3c:5d: 5f:6b:55:c7:29:ad:8a:ce:3d:c9:1a:67:a7:81:fc:ab:a9:78: 71:a1:da:76:e8:dc:71:5d:56:c2:ee:f7:8c:36:ec:20:84:84: 27:33:5f:aa:9b:67:06:60:ae:79:80:14:2c:39:7b:9e:2e:17: d3:92:a0:e8:63:25:d5:14:5f:3b:24:de:37:18:05:33:e9:50: 52:ae:7e:c8:3e:be:fc:de:98:ab:57:8f:0f:6c:11:ec:e5:9e: cb:a2:7c:8f:81:a7:31:01:3f:1b:8b:4b:5b:e3:c4:9b:2f:43: 0c:03:8d:ac:28:b5:9a:bd:21:2f:2d:9f:b4:71:37:2b:fa:c4: c3:3a:c3:74:85:54:00:df:60:5e:ff:a5:91:c7:f9:86:56:e0: 2a:83:4a:e4:0b:91:63:f9:22:73:df:ad:f7:62:20:19:b6:81: 6c:a0:f6:a9:11:dd:01:6a:f8:b0:8f:a9:5c:9e:c4:d6:f8:0e: c9:86:fc:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwNDI1MDI0OTUzWhcNMjUwNTAyMDI0OTUzWjAYMRYwFAYD VQQDEw02ODBhZjg1Mi1iZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/gXFsIesUklFyCiN2FMV4Db0YAEAUsZLwBy/+tPGjfXCD8hcV00FpqMq6sJ lkPC1+N+1TAbHWEy8Xj4nNif0PwsBCijVwSU3/pqZsYyRVTxNDbevD4+RBFGGojh QGXeg72AsHDHCIOw/o60rdw7Fv6D13rNgT5BE/sJoFRSA+40xymH9WeQxA5XtQyi 3yLzB8RC/o+R6fE6kCASBCcod5IUxmf4zRb2KRH5CypwT9fhOjYlp0NpYRJKKzMD xKFUrydXIVItv20LOSorv0QfNRqAff7OLfwAiouy63o8U+NK8uDxwh8henPgdT2b YkVmpVxNLLFWlz1NL2kijOGVNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLTt6dm KElFNWUZ5TEU6pDJlT7KMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHyu9VPPkzh+ETWZc0kkrWnHnRDTZ1FgRzBfYU2u+XQ7zWm+WdAxWK NWuCuWYIuEQ6abPegnJFcs/J33DrtJolTXap2ZEHPF1fa1XHKa2Kzj3JGmengfyr qXhxodp26NxxXVbC7veMNuwghIQnM1+qm2cGYK55gBQsOXueLhfTkqDoYyXVFF87 JN43GAUz6VBSrn7IPr783pirV48PbBHs5Z7LonyPgacxAT8bi0tb48SbL0MMA42s KLWavSEvLZ+0cTcr+sTDOsN0hVQA32Be/6WRx/mGVuAqg0rkC5Fj+SJz3633YiAZ toFsoPapEd0Baviwj6lcnsTW+A7Jhvxp -----END CERTIFICATE-----Generated at Sat Apr 26 17:00:05 2025 by rpki-client