$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: Vby159xpcW7otkOJ4twt6/3wMJLVJh2GlH4oinAdVTA= Subject key identifier: E7:4E:F9:12:F4:1A:71:95:A7:AD:B6:83:D7:E5:CB:4D:D1:44:36:57 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0AEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0AE5 Signing time: Thu 24 Apr 2025 19:17:22 +0000 Manifest this update: Thu 24 Apr 2025 19:17:22 +0000 Manifest next update: Thu 01 May 2025 19:17:22 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: gSmYKrch7tAiDrJVquXwUd/NPpJRikliFgSKGq03u+M=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2796 (0xaec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Apr 24 19:17:22 2025 GMT Not After : May 1 19:17:22 2025 GMT Subject: CN=680a8e42-36b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c9:bd:99:6c:7c:4f:86:29:25:3a:56:00:3d: b8:0b:2f:2e:f2:63:58:67:71:e7:b2:55:07:7c:e6: dd:a7:79:9a:43:c8:d6:75:2d:79:c3:be:c4:9e:51: 68:86:ed:1e:54:25:07:aa:18:a9:1e:1b:6b:ef:e7: 9e:b5:52:4b:d6:fc:87:90:11:56:5e:6e:ad:14:74: 01:42:4d:3a:d4:81:a5:9e:f1:4f:fd:bb:71:dd:9e: 41:6f:4f:b2:00:5f:c9:99:b3:b8:46:70:b1:49:cc: 1a:a9:f0:22:9b:21:90:9f:58:c8:2a:a8:b6:d6:b6: 8b:2c:d2:7d:ec:88:24:cc:34:c7:20:2b:40:1c:f9: 0b:bb:41:e7:8c:b7:ef:42:03:93:a2:f8:0f:fb:0c: 2b:91:57:38:97:c8:ff:f6:90:33:50:0c:8e:f8:30: 62:9d:7f:39:95:18:db:b1:4f:8d:05:9d:4d:bc:93: ee:b8:16:34:93:0e:88:02:61:8f:1d:e7:b4:80:1e: 0a:81:c3:10:f1:81:0c:97:3a:99:b7:bb:09:e1:59: dc:b4:04:90:1d:cf:d4:67:08:58:e2:a8:41:7f:6b: 77:8f:e6:ed:58:c2:35:2f:e9:85:e9:88:84:a4:d0: 8d:ae:cb:44:51:b0:f4:a5:ed:f5:1d:ec:73:96:79: 52:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4E:F9:12:F4:1A:71:95:A7:AD:B6:83:D7:E5:CB:4D:D1:44:36:57 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:5b:0d:98:b3:d0:e5:df:0d:42:3d:3b:59:10:04:79:e2:fa: 1a:3f:16:6e:2d:67:8c:8b:0f:97:e7:4f:f9:11:93:48:4a:0c: e7:0f:95:63:74:84:ee:5c:2a:48:a7:20:4f:9c:21:de:f2:18: cd:2a:9b:68:4b:8f:92:46:93:f6:b7:af:94:48:f6:0c:dc:88: 0c:69:2f:6f:83:ba:5b:38:a7:73:d9:c5:54:c3:4e:bd:12:ef: 15:a1:9a:d0:80:9c:95:34:fc:4a:e9:d4:d6:e7:f0:32:4e:48: f3:b8:5a:fd:93:48:8c:52:74:6c:fa:7e:9e:ad:3d:e1:71:f7: 04:39:b0:d7:b5:bd:69:91:78:23:a3:d5:fe:93:e3:d9:df:39: c1:25:49:23:49:89:a5:ff:7c:61:e1:6b:bb:81:82:4c:c1:60: aa:90:38:28:c2:bc:30:90:71:47:75:e3:d5:7a:f6:45:06:26: 1b:0b:0f:73:0c:d7:ec:c0:0e:4d:f4:d5:2c:4c:c7:93:85:b0: 2f:6c:ac:f6:1c:a5:df:1b:ef:27:d8:49:b8:14:a4:5c:50:bf: 2e:75:4a:00:2e:85:f7:1a:e5:89:34:f3:9d:d8:fb:c9:23:10: 3d:aa:73:bc:e0:e3:39:dc:05:01:c0:c1:3e:0b:49:4d:53:64: 53:78:f1:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUwNDI0MTkxNzIyWhcNMjUwNTAxMTkxNzIyWjAYMRYwFAYD VQQDEw02ODBhOGU0Mi0zNmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8m9mWx8T4YpJTpWAD24Cy8u8mNYZ3HnslUHfObdp3maQ8jWdS15w77EnlFo hu0eVCUHqhipHhtr7+eetVJL1vyHkBFWXm6tFHQBQk061IGlnvFP/btx3Z5Bb0+y AF/JmbO4RnCxScwaqfAimyGQn1jIKqi21raLLNJ97IgkzDTHICtAHPkLu0HnjLfv QgOTovgP+wwrkVc4l8j/9pAzUAyO+DBinX85lRjbsU+NBZ1NvJPuuBY0kw6IAmGP Hee0gB4KgcMQ8YEMlzqZt7sJ4VnctASQHc/UZwhY4qhBf2t3j+btWMI1L+mF6YiE pNCNrstEUbD0pe31HexzlnlSsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdO+RL0 GnGVp622g9fly03RRDZXMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHWw2Ys9Dl3w1CPTtZEAR54voaPxZuLWeMiw+X50/5EZNISgznD5Vj dITuXCpIpyBPnCHe8hjNKptoS4+SRpP2t6+USPYM3IgMaS9vg7pbOKdz2cVUw069 Eu8VoZrQgJyVNPxK6dTW5/AyTkjzuFr9k0iMUnRs+n6erT3hcfcEObDXtb1pkXgj o9X+k+PZ3znBJUkjSYml/3xh4Wu7gYJMwWCqkDgowrwwkHFHdePVevZFBiYbCw9z DNfswA5N9NUsTMeThbAvbKz2HKXfG+8n2Em4FKRcUL8udUoALoX3GuWJNPOd2PvJ IxA9qnO84OM53AUBwME+C0lNU2RTePEe -----END CERTIFICATE-----Generated at Sat Apr 26 05:14:31 2025 by rpki-client