$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: sXny59ql5wDkITgPLMkuPcpCJnCcTANErsrziejdYWQ= Subject key identifier: 78:50:88:34:15:3B:9F:19:CF:84:A2:35:76:6E:62:4F:AE:AA:43:18 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0187 Signing time: Fri 25 Apr 2025 02:49:30 +0000 Manifest this update: Fri 25 Apr 2025 02:49:29 +0000 Manifest next update: Fri 02 May 2025 02:49:29 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: UitAcagUToLUSaWC2gV8uaytjUYIiXmR2y+PTwbrRHA=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: fF5qhzlNsRoevz2xwRiMiJlwy42Apo4uSvGZ/c3+DCY=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: nDg9tGieY+hhukTrtCHIrGu5m7tkEFWVmvQM/81QKSI=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: yrSI/VPF/gmdws9LHJgb8tXVegj+jybX3Fb+sP5IwCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Apr 25 02:49:29 2025 GMT Not After : May 2 02:49:29 2025 GMT Subject: CN=680af83a-a072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b9:04:e9:c4:1c:74:ad:62:ad:00:89:a8:6a: 62:f5:d0:80:aa:91:ea:bd:1b:81:e9:c1:fb:83:52: d1:91:53:e2:2c:55:2c:90:7b:33:39:42:ff:27:95: 12:55:44:5b:d3:b8:93:f0:7f:2e:b2:9d:b0:bb:c3: b1:c2:51:cd:0c:43:51:11:06:25:01:c9:94:f2:60: ba:49:a0:56:8b:5f:ca:e3:1d:7a:9e:f8:63:9b:a7: 1e:2e:45:95:f3:72:67:14:13:ce:30:75:78:bf:9d: fd:7f:27:49:48:27:76:8c:b9:0f:a0:d9:bd:5d:01: bc:d4:69:62:99:e4:a0:15:ef:f4:71:a7:90:57:54: 5e:8c:a8:5b:8c:ea:17:59:fa:c9:4c:56:51:8b:b4: f5:98:00:96:d2:7e:67:84:b5:6b:a6:9d:c4:b4:7e: 77:27:9b:06:07:38:ac:71:b0:b7:b1:e7:66:a3:47: 92:ec:c1:a1:30:e5:3f:59:1d:e8:f4:6a:bd:d2:49: 2d:74:28:cf:66:08:7b:c2:7c:19:67:3a:06:60:b8: e2:e8:f3:bc:88:fb:2d:33:f8:1d:b4:f2:cd:7e:16: dd:87:d5:7b:9b:6e:23:43:94:87:e8:aa:45:37:ee: d8:80:26:69:db:6d:59:78:5e:4c:d4:2d:71:98:a6: 73:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:50:88:34:15:3B:9F:19:CF:84:A2:35:76:6E:62:4F:AE:AA:43:18 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:bf:af:b2:a3:f5:27:e1:78:26:2c:a1:18:de:9a:c9:49:c0: b6:a0:4a:1f:55:c0:6e:01:9c:cc:67:79:bc:ea:1e:14:fc:a8: 7d:ef:5d:4c:96:25:4c:3d:05:4d:f2:75:9e:79:e3:a2:43:08: 27:76:bd:6d:25:4f:68:8d:30:c0:1f:ea:a2:8f:b3:a7:12:14: 27:d8:9d:19:ed:aa:7b:f1:b2:0c:05:a6:a2:eb:c0:b5:6c:f2: 0a:b6:2a:50:b7:7e:b7:18:2c:14:8e:a2:1b:6b:14:98:fd:be: b4:a3:21:99:08:23:23:31:c4:70:ba:be:e1:9f:49:8a:c7:1c: 60:62:b6:52:b0:cb:11:6a:f7:c7:a5:ff:91:c5:3e:69:54:7a: 56:1c:d0:02:7a:05:bc:55:8d:c1:6d:c4:2a:47:f3:54:73:23: b2:17:95:70:79:e8:6d:50:6a:2a:97:d5:81:8e:f1:e5:33:12: 84:94:83:78:db:47:18:01:6a:13:d7:a3:a1:19:03:eb:4d:0c: 00:3f:cd:f3:88:36:96:6a:4b:1a:3a:b3:19:23:18:87:a7:3a: 6e:60:25:8c:b4:f3:ac:d1:6f:84:79:24:49:44:ff:2d:64:08: c4:29:77:b8:e4:2e:42:76:58:1e:33:c4:01:d6:4a:b0:df:ee: c9:d2:9c:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUwNDI1MDI0OTI5WhcNMjUwNTAyMDI0OTI5WjAYMRYwFAYD VQQDEw02ODBhZjgzYS1hMDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LkE6cQcdK1irQCJqGpi9dCAqpHqvRuB6cH7g1LRkVPiLFUskHszOUL/J5US VURb07iT8H8usp2wu8OxwlHNDENREQYlAcmU8mC6SaBWi1/K4x16nvhjm6ceLkWV 83JnFBPOMHV4v539fydJSCd2jLkPoNm9XQG81GlimeSgFe/0caeQV1RejKhbjOoX WfrJTFZRi7T1mACW0n5nhLVrpp3EtH53J5sGBziscbC3sedmo0eS7MGhMOU/WR3o 9Gq90kktdCjPZgh7wnwZZzoGYLji6PO8iPstM/gdtPLNfhbdh9V7m24jQ5SH6KpF N+7YgCZp221ZeF5M1C1xmKZzkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhQiDQV O58Zz4SiNXZuYk+uqkMYMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzv6+yo/Un4XgmLKEY3prJScC2oEofVcBuAZzMZ3m86h4U/Kh9711M liVMPQVN8nWeeeOiQwgndr1tJU9ojTDAH+qij7OnEhQn2J0Z7ap78bIMBaai68C1 bPIKtipQt363GCwUjqIbaxSY/b60oyGZCCMjMcRwur7hn0mKxxxgYrZSsMsRavfH pf+RxT5pVHpWHNACegW8VY3BbcQqR/NUcyOyF5VweehtUGoql9WBjvHlMxKElIN4 20cYAWoT16OhGQPrTQwAP83ziDaWaksaOrMZIxiHpzpuYCWMtPOs0W+EeSRJRP8t ZAjEKXe45C5CdlgeM8QB1kqw3+7J0px8 -----END CERTIFICATE-----Generated at Sat Apr 26 05:26:18 2025 by rpki-client