$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: ffk9dfCFAn2jjSUf873Ch4SPi6yqe9CzSxBkE/Kik1A= Subject key identifier: 8B:8F:EF:B9:12:3D:D0:87:8A:4E:EC:AC:B7:48:23:71:F4:1A:98:81 Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0EB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0EA0 Signing time: Thu 24 Apr 2025 17:41:00 +0000 Manifest this update: Thu 24 Apr 2025 17:40:59 +0000 Manifest next update: Thu 01 May 2025 17:40:59 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: hhF4Cit7VGmd74sPZQ/XqRsuM5V68Wu9jx3I4D9IQ1g=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: 6QYV9FQpqrhneDa4DXvOdtP1INWlFJdLfJWnJ4N05bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3764 (0xeb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Apr 24 17:40:59 2025 GMT Not After : May 1 17:40:59 2025 GMT Subject: CN=680a77ab-0d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:57:e0:01:bc:4e:62:bd:b0:86:43:b9:0f:48: 52:4f:ab:20:ee:4f:36:58:6a:53:51:a3:e8:7d:1f: 7c:74:89:8e:b1:a0:cb:82:e3:a9:e4:d6:61:3a:eb: b4:05:5d:36:76:2b:0b:64:5e:33:e5:72:eb:91:b3: 9d:26:92:8a:0a:1a:42:ac:91:cf:34:77:11:08:cd: 07:84:97:74:c0:a4:30:81:4b:1b:8b:d1:94:97:af: 32:07:ca:8a:d5:35:ac:e3:42:8c:c0:dd:8c:21:29: b7:a3:d7:4f:c8:37:67:8a:ba:3a:70:d1:e8:81:b5: 56:a9:e8:29:42:b1:2c:8f:0b:75:90:fd:de:43:fb: 51:8b:33:63:73:d5:e8:54:0d:51:53:d5:8b:d7:58: 1a:a3:83:e9:00:6a:39:c6:9a:27:f1:7b:c4:7a:e7: 2f:c0:98:65:fe:54:a8:a2:08:fa:2e:09:43:a3:f1: 33:1b:72:92:be:b9:29:67:cc:17:a4:d9:bb:80:7d: 5e:97:cc:07:18:fa:3c:28:0f:67:4c:19:b2:c0:af: 7b:7f:c8:e3:3b:4f:d7:4f:b9:ce:f7:33:e0:9d:a0: 0d:dd:d2:a5:0b:db:7d:de:99:99:87:05:9a:90:0c: 20:b5:b7:5e:ef:7e:af:05:88:df:c1:57:f0:1a:87: d3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8F:EF:B9:12:3D:D0:87:8A:4E:EC:AC:B7:48:23:71:F4:1A:98:81 X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:cd:2c:8d:fd:f5:ac:b2:3e:2c:6e:fa:f9:0f:d9:00:d3:98: 52:74:c9:11:49:83:5c:4e:71:d0:61:5f:4d:60:80:16:4b:af: 2d:73:bc:f7:db:2b:44:f6:f6:e3:d0:59:99:8c:0d:2f:f1:44: 44:07:80:5c:7b:1d:ff:1f:e3:84:39:6c:60:fc:ff:8d:d3:07: 59:5f:77:aa:a2:72:f7:77:4b:09:11:0e:29:61:be:3c:42:2e: 39:ba:54:92:bd:cd:4e:b0:cb:5d:b5:f7:51:64:09:f7:96:b3: 86:e3:76:8e:31:9b:d3:e4:73:fc:d7:63:55:8e:dd:27:a1:1d: f8:b3:f1:93:ad:06:2a:99:96:04:ba:d3:6f:b9:44:32:d6:4e: fc:c0:91:17:ff:96:07:b5:d9:13:05:88:aa:86:28:2f:cc:cb: ca:4f:50:24:cd:db:ff:17:1f:14:a0:08:35:b7:45:bc:e9:3e: f7:6f:b6:15:c5:ee:e0:6f:7d:9e:06:08:20:d8:cb:ae:72:fc: f6:54:7f:bc:f3:1c:df:78:ae:27:d9:d2:c7:29:61:dc:e7:66: dc:98:36:80:b8:dc:ad:48:26:77:51:98:bd:17:1d:9f:b2:b4: 95:5c:99:91:97:31:56:12:66:61:75:6d:fb:2e:52:06:34:8d: c5:29:2a:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUwNDI0MTc0MDU5WhcNMjUwNTAxMTc0MDU5WjAYMRYwFAYD VQQDEw02ODBhNzdhYi0wZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1fgAbxOYr2whkO5D0hST6sg7k82WGpTUaPofR98dImOsaDLguOp5NZhOuu0 BV02disLZF4z5XLrkbOdJpKKChpCrJHPNHcRCM0HhJd0wKQwgUsbi9GUl68yB8qK 1TWs40KMwN2MISm3o9dPyDdniro6cNHogbVWqegpQrEsjwt1kP3eQ/tRizNjc9Xo VA1RU9WL11gao4PpAGo5xpon8XvEeucvwJhl/lSoogj6LglDo/EzG3KSvrkpZ8wX pNm7gH1el8wHGPo8KA9nTBmywK97f8jjO0/XT7nO9zPgnaAN3dKlC9t93pmZhwWa kAwgtbde736vBYjfwVfwGofThwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuP77kS PdCHik7srLdII3H0GpiBMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWzSyN/fWssj4sbvr5D9kA05hSdMkRSYNcTnHQYV9NYIAWS68tc7z3 2ytE9vbj0FmZjA0v8UREB4Bcex3/H+OEOWxg/P+N0wdZX3eqonL3d0sJEQ4pYb48 Qi45ulSSvc1OsMtdtfdRZAn3lrOG43aOMZvT5HP812NVjt0noR34s/GTrQYqmZYE utNvuUQy1k78wJEX/5YHtdkTBYiqhigvzMvKT1Akzdv/Fx8UoAg1t0W86T73b7YV xe7gb32eBggg2Muucvz2VH+88xzfeK4n2dLHKWHc52bcmDaAuNytSCZ3UZi9Fx2f srSVXJmRlzFWEmZhdW37LlIGNI3FKSr2 -----END CERTIFICATE-----Generated at Sat Apr 26 04:01:31 2025 by rpki-client