$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: H2t+nK5UUQv+18ysY7AT5lFu6LglfO35lkExP/UHT7I= Subject key identifier: 85:F4:01:28:8D:66:0F:DF:FA:4F:78:96:23:58:A2:9E:7B:17:1B:5F Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 6B Signing time: Fri 25 Apr 2025 05:55:41 +0000 Manifest this update: Fri 25 Apr 2025 05:55:40 +0000 Manifest next update: Fri 02 May 2025 05:55:40 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: kcmN5WC3n5obTgmUBoeRt4oqqVrA+IKh1S5mqi9345k=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Apr 25 05:55:40 2025 GMT Not After : May 2 05:55:40 2025 GMT Subject: CN=680b23dd-ef8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2f:2b:42:d5:f2:b1:1d:06:71:2d:c6:3d:46: 50:65:71:b1:16:9e:7e:bf:31:e6:66:38:b0:02:8f: 2c:cf:15:d7:7d:e7:3d:f4:a4:ee:e9:37:96:64:8e: e0:e1:41:2e:91:d4:7e:44:19:5b:57:f7:b8:67:c5: 5a:20:b4:49:04:8a:47:d7:9b:d9:a2:fb:5f:e7:09: 8d:2c:22:b8:99:5e:59:50:83:91:9f:05:fb:0c:33: bf:63:d0:75:64:02:c0:bc:14:7e:84:00:17:c6:db: 14:40:4f:14:24:16:44:d4:fb:b2:61:84:15:51:7f: a6:54:8b:a1:0e:08:13:88:3c:61:14:df:8f:cd:33: e3:98:f1:77:5c:72:11:6e:c7:52:a1:c1:1f:4d:81: a5:7f:92:1a:0e:c2:82:9e:d9:e1:78:92:19:22:d8: 68:d1:88:6e:50:d2:23:53:80:b1:62:92:aa:52:63: 28:46:73:92:3b:40:a0:b8:6d:69:fb:3d:1f:36:14: 9c:05:15:66:79:2b:f1:45:35:5e:25:5e:19:4e:88: a2:52:d4:19:a2:48:26:14:97:c6:7d:3b:87:de:b5: e1:55:f4:38:cc:6d:f5:fb:d1:f0:91:97:3d:c8:c6: ca:d8:08:93:1c:96:53:d9:3f:a7:5e:84:e6:ee:16: bf:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F4:01:28:8D:66:0F:DF:FA:4F:78:96:23:58:A2:9E:7B:17:1B:5F X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:25:f2:81:ea:4f:8d:f7:c1:94:4d:ba:37:26:84:69:fc:a8: de:39:1a:18:5e:cd:88:ef:1f:6c:6c:e1:e5:d6:5e:a0:f0:09: 1d:e9:aa:fa:48:a9:37:ab:3b:8f:e8:67:86:61:95:21:04:fd: 36:ca:af:1a:dd:c5:d1:15:33:da:56:44:3a:2d:08:a9:d7:1b: e1:bc:ae:a4:1d:a3:68:eb:03:94:8b:7f:34:07:53:e7:56:19: 03:93:ff:bf:5a:e1:86:55:da:f1:a6:a9:aa:b6:f1:62:4b:4a: c1:6d:e5:93:21:44:80:e4:6a:1d:eb:b1:33:5b:a2:c4:3f:a6: de:f2:54:c5:fd:57:ce:d6:24:06:c8:68:44:46:51:3b:f8:ff: 17:f5:dc:78:7f:93:5a:c1:56:38:fc:f0:98:16:1d:ce:b3:a0: 53:b9:2a:ed:14:2f:47:b0:31:2a:55:57:90:1f:87:93:0e:a1: d0:17:28:0e:85:3b:a2:37:65:2f:f9:f6:4f:59:c4:74:67:6b: 4d:62:b9:34:c4:90:1f:90:68:51:8b:97:d1:ce:ea:f2:5a:bc: 83:d6:b5:e0:65:26:97:8b:af:a1:d4:87:cd:ca:40:c7:6b:9e: e3:87:c0:f4:72:cb:24:97:2d:7f:63:1a:e9:4c:31:0b:fd:2c: f3:dc:86:60 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEVFRDExMC8GA1UEBRMoNjkxOEFBNzFGMzZCMDQ2MzUzQTY1Q0MwODk3OEIxOEVG RkI5RjVDNjAeFw0yNTA0MjUwNTU1NDBaFw0yNTA1MDIwNTU1NDBaMBgxFjAUBgNV BAMTDTY4MGIyM2RkLWVmOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJLytC1fKxHQZxLcY9RlBlcbEWnn6/MeZmOLACjyzPFdd95z30pO7pN5ZkjuDh QS6R1H5EGVtX97hnxVogtEkEikfXm9mi+1/nCY0sIriZXllQg5GfBfsMM79j0HVk AsC8FH6EABfG2xRATxQkFkTU+7JhhBVRf6ZUi6EOCBOIPGEU34/NM+OY8XdcchFu x1KhwR9NgaV/khoOwoKe2eF4khki2GjRiG5Q0iNTgLFikqpSYyhGc5I7QKC4bWn7 PR82FJwFFWZ5K/FFNV4lXhlOiKJS1BmiSCYUl8Z9O4feteFV9DjMbfX70fCRlz3I xsrYCJMcllPZP6dehObuFr85AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhfQBKI1m D9/6T3iWI1iinnsXG18wHwYDVR0jBBgwFoAUaRiqcfNrBGNTplzAiXixjv+59cYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRUVELzM3NDAyQURFODUz QjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTlj WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVJpcWNmTnJCR05UcGx6QWlYaXhqdi01OWNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RUVELzM3NDAyQURFODUzQjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdO VHBsekFpWGl4anYtNTljWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGwl8oHqT433wZRNujcmhGn8qN45GhhezYjvH2xs4eXWXqDwCR3pqvpI qTerO4/oZ4ZhlSEE/TbKrxrdxdEVM9pWRDotCKnXG+G8rqQdo2jrA5SLfzQHU+dW GQOT/79a4YZV2vGmqaq28WJLSsFt5ZMhRIDkah3rsTNbosQ/pt7yVMX9V87WJAbI aERGUTv4/xf13Hh/k1rBVjj88JgWHc6zoFO5Ku0UL0ewMSpVV5Afh5MOodAXKA6F O6I3ZS/59k9ZxHRna01iuTTEkB+QaFGLl9HO6vJavIPWteBlJpeLr6HUh83KQMdr nuOHwPRyyySXLX9jGulMMQv9LPPchmA= -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:35 2025 by rpki-client