$ rpki-client -vvf rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft File: 6N3s7Bb-NIXVthplph7s11qYG0M.mft (raw, json) Hash identifier: UiT8IEfb5L3zMu4iGVIWNXBfseaaa5UNfD7J4mZsK4U= Subject key identifier: 82:AF:EA:82:40:57:90:38:62:A4:C4:A1:45:96:79:23:70:FC:31:44 Authority key identifier: E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 Certificate issuer: /CN=A9172EF8/serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Certificate serial: 07FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft Manifest number: 07F4 Signing time: Thu 24 Apr 2025 20:46:56 +0000 Manifest this update: Thu 24 Apr 2025 20:46:55 +0000 Manifest next update: Thu 01 May 2025 20:46:55 +0000 Files and hashes: 1: 6N3s7Bb-NIXVthplph7s11qYG0M.crl (hash: iSNBO8U2EPQ8r7GMuKdOYTYkg+Uh++GDl6ufQ4NNOxc=) 2: 82001182986511EFBFE02134C4F9AE02.roa (hash: zFMhUdKAsUErPaBJNxHFhs6kNz0L2uuSFEiFAntBllQ=) 3: 879AF91C9A8C11EF98A18D7FC4F9AE02.roa (hash: LWV1KeEebkqoxDRj/MN5Z6I+5780TArhWaO+yA4BHQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172EF8, serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Validity Not Before: Apr 24 20:46:55 2025 GMT Not After : May 1 20:46:55 2025 GMT Subject: CN=680aa340-fc90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:97:cc:30:d4:ca:71:75:d4:96:d0:bc:6b:1a: 80:66:c9:98:31:bc:c9:f4:15:03:d8:07:1a:20:18: 9e:21:9c:b3:ce:aa:c3:9e:5e:86:d7:ef:d8:61:f7: 48:b4:e9:11:34:53:46:6d:18:7b:18:f4:47:ca:fc: 19:c6:b5:69:48:c9:eb:d3:14:71:45:95:ae:7a:db: 4e:cc:68:bb:63:bd:95:03:7c:0a:2c:67:27:11:ad: f1:2a:22:46:9d:6f:43:e3:0d:c4:c4:e0:40:36:57: dd:fd:91:37:0c:72:78:a0:bf:83:9d:cd:4c:b8:88: ee:e0:ad:a2:70:1e:b1:1b:79:d7:1c:8e:38:bf:63: 6d:85:fb:c9:3b:52:fc:05:7b:92:65:a8:fd:70:1f: 7d:6b:13:11:8c:93:f1:2c:d0:a1:89:b2:59:3c:90: ab:82:6e:52:bd:d6:c2:09:73:b6:23:a8:25:2d:0e: 27:c6:87:f8:eb:c8:20:7f:23:8c:4e:45:a4:34:34: 08:90:ae:2b:a3:66:80:cb:3b:c7:e4:16:c9:6e:bc: 68:25:08:b0:70:5e:a8:32:bf:03:a3:62:27:cc:87: 1d:d3:c1:b9:6a:4c:e2:45:8d:97:51:fa:32:87:82: 5b:2f:81:7f:ec:ac:b0:24:7b:1c:44:ec:c3:f2:42: 04:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:AF:EA:82:40:57:90:38:62:A4:C4:A1:45:96:79:23:70:FC:31:44 X509v3 Authority Key Identifier: keyid:E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:0b:fa:65:9a:cf:4c:9e:bd:8b:b4:91:ef:aa:ce:9a:bf:0c: 26:af:fd:17:0d:77:e5:5c:4c:9e:1a:29:43:d5:89:8f:97:c6: 33:2b:ea:49:c6:3f:4d:2b:2d:ba:56:59:51:b5:cd:1a:e7:a0: 35:0a:68:77:80:d3:18:0c:85:93:ba:e7:c7:f0:1a:6f:6e:f7: 96:67:2c:b6:63:b5:ac:f7:44:65:93:90:8e:35:73:8f:18:11: 97:56:9f:57:aa:0b:ff:25:29:ed:6c:35:e8:80:83:73:8d:45: 37:0f:08:14:ff:69:85:05:5b:c6:e8:ff:65:a1:12:79:e3:b4: 5a:04:30:ae:34:c7:9b:69:80:89:9c:d9:00:e8:56:1a:2e:13: c8:68:72:de:e5:e7:42:3d:91:08:01:fc:ca:cb:a7:b4:2d:8b: a6:e9:48:7f:5d:aa:5d:95:e9:50:fc:87:02:af:ad:76:52:fd: 6a:bd:7d:bc:8f:d9:20:bd:12:b8:ac:fc:df:d6:a2:be:50:c3: ab:8c:67:2b:ac:3c:17:02:86:3b:75:ab:56:2d:32:61:c3:b4: 4f:1d:db:57:8d:f6:c5:0e:07:42:4b:88:dd:ea:b9:60:a6:b5: 64:98:be:7c:40:61:32:6b:c7:32:4e:f1:26:39:ab:b5:d1:b9: 8b:cc:53:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJFRjgxMTAvBgNVBAUTKEU4RERFQ0VDMTZGRTM0ODVENUI2MUE2NUE2MUVFQ0Q3 NUE5ODFCNDMwHhcNMjUwNDI0MjA0NjU1WhcNMjUwNTAxMjA0NjU1WjAYMRYwFAYD VQQDEw02ODBhYTM0MC1mYzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15fMMNTKcXXUltC8axqAZsmYMbzJ9BUD2AcaIBieIZyzzqrDnl6G1+/YYfdI tOkRNFNGbRh7GPRHyvwZxrVpSMnr0xRxRZWuettOzGi7Y72VA3wKLGcnEa3xKiJG nW9D4w3ExOBANlfd/ZE3DHJ4oL+Dnc1MuIju4K2icB6xG3nXHI44v2NthfvJO1L8 BXuSZaj9cB99axMRjJPxLNChibJZPJCrgm5SvdbCCXO2I6glLQ4nxof468ggfyOM TkWkNDQIkK4ro2aAyzvH5BbJbrxoJQiwcF6oMr8Do2InzIcd08G5akziRY2XUfoy h4JbL4F/7KywJHscROzD8kIEAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKv6oJA V5A4YqTEoUWWeSNw/DFEMB8GA1UdIwQYMBaAFOjd7OwW/jSF1bYaZaYe7NdamBtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkVGOC83N0Y5OEMzOERE OEMxMUVBQkRGMEU2ODJDNEY5QUUwMi82TjNzN0JiLU5JWFZ0aHBscGg3czExcVlH ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOM3M3QmItTklYVnRocGxwaDdzMTFxWUcwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkVGOC83N0Y5OEMzOEREOEMxMUVBQkRGMEU2ODJDNEY5QUUwMi82TjNzN0JiLU5J WFZ0aHBscGg3czExcVlHME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApC/plms9Mnr2LtJHvqs6avwwmr/0XDXflXEyeGilD1YmPl8YzK+pJ xj9NKy26VllRtc0a56A1Cmh3gNMYDIWTuufH8BpvbveWZyy2Y7Ws90Rlk5CONXOP GBGXVp9Xqgv/JSntbDXogINzjUU3DwgU/2mFBVvG6P9loRJ547RaBDCuNMebaYCJ nNkA6FYaLhPIaHLe5edCPZEIAfzKy6e0LYum6Uh/XapdlelQ/IcCr612Uv1qvX28 j9kgvRK4rPzf1qK+UMOrjGcrrDwXAoY7datWLTJhw7RPHdtXjfbFDgdCS4jd6rlg prVkmL58QGEya8cyTvEmOau10bmLzFP3 -----END CERTIFICATE-----Generated at Sat Apr 26 13:02:23 2025 by rpki-client