$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: 75XI+QCcRN0qr+bLIUjYz/5bRdvQqPCyCL5KXxACU88= Subject key identifier: 57:44:3C:C7:8B:4C:E0:6E:78:83:A0:55:54:07:1B:D2:54:28:4A:93 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: 7F Signing time: Fri 25 Apr 2025 05:41:44 +0000 Manifest this update: Fri 25 Apr 2025 05:41:43 +0000 Manifest next update: Fri 02 May 2025 05:41:43 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: WeD0G5vpF2TdUh872Bl61T0GVNQoSSf3gwBGc4L3/wo=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Apr 25 05:41:43 2025 GMT Not After : May 2 05:41:43 2025 GMT Subject: CN=680b2097-0e06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d8:99:0a:a0:c7:67:9c:41:09:59:8a:10:19: 82:31:60:fd:a0:a2:b0:a6:e6:bf:c5:f0:3d:8b:cc: af:90:23:09:ab:1e:70:fc:ba:d1:e7:a1:1e:5c:b3: 16:bd:e1:db:00:1f:c3:0b:dd:5d:25:b1:a3:f4:80: d4:98:88:3b:4b:e5:1e:4d:4a:ba:56:8d:79:41:56: b1:9a:3e:d8:56:94:04:94:9d:bb:e8:8e:17:c3:c3: ed:66:f5:fc:74:62:f6:0d:0b:51:7b:b5:6d:4d:36: c8:45:7f:fb:25:08:c3:88:25:15:90:0b:c2:de:ce: 66:d6:6c:74:f6:a7:7e:47:df:41:9c:95:53:0d:5a: 1a:e7:83:52:58:0d:9d:1f:54:9b:66:83:a1:84:e7: 6e:7f:81:5d:ce:ad:b0:18:47:db:10:fd:7a:b4:b6: 04:33:2a:6a:17:a1:b5:97:a7:e6:50:eb:40:80:97: 91:b2:c7:f5:a3:e4:11:d0:09:fe:bc:b3:6d:9a:52: 16:74:c0:f2:81:d9:ea:b3:d2:66:6c:00:d0:b8:38: 18:b5:47:9d:ec:44:92:cb:ac:eb:97:26:44:3d:4d: 01:3e:46:81:9a:e8:f8:2e:e0:61:e8:11:aa:87:f5: 85:fe:5c:f1:f5:ea:03:66:0d:cb:05:57:1c:bb:10: 9a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:44:3C:C7:8B:4C:E0:6E:78:83:A0:55:54:07:1B:D2:54:28:4A:93 X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:14:0b:fd:3d:94:c9:d1:b0:bf:ff:71:69:bf:26:6a:7b:45: 73:16:c6:a5:97:d8:17:15:2d:93:d0:b0:24:80:46:9a:44:d0: f2:14:54:f6:0e:8d:9c:57:49:32:38:40:82:be:91:df:9d:b5: 55:b5:46:36:1c:fb:5c:36:cf:f5:39:99:95:26:08:fb:f2:5f: e5:a4:0d:05:99:ad:e1:40:97:e7:cb:60:43:d8:16:d3:7e:28: 7a:0e:13:1a:a6:db:e5:40:c4:80:97:84:ea:e5:f6:97:b8:a2: 0b:4d:08:a9:9d:62:a3:21:87:bc:a4:75:01:84:52:14:ee:73: de:7e:9e:68:23:72:f4:fc:71:c1:47:2d:90:89:90:a2:a3:56: d8:d6:9b:38:ff:ce:d1:26:20:92:d2:c4:02:06:85:b1:d3:d9: cf:02:cf:f0:42:18:c0:37:35:e3:d7:bb:f2:fc:08:14:f0:ef: ee:0d:e6:0d:d4:41:83:a8:e1:02:1e:1c:ff:39:c8:d4:0d:0f: 1c:67:a2:33:b4:a8:b3:69:dc:d8:62:5e:ec:1b:84:42:59:82: 97:99:d0:74:dc:87:78:c8:c2:e2:22:44:76:af:e2:79:e6:1f: 45:7e:33:c7:46:78:f8:6a:61:a3:57:9d:a4:43:2a:cf:59:72: 2d:ca:1b:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjUwNDI1MDU0MTQzWhcNMjUwNTAyMDU0MTQzWjAYMRYwFAYD VQQDEw02ODBiMjA5Ny0wZTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9iZCqDHZ5xBCVmKEBmCMWD9oKKwpua/xfA9i8yvkCMJqx5w/LrR56EeXLMW veHbAB/DC91dJbGj9IDUmIg7S+UeTUq6Vo15QVaxmj7YVpQElJ276I4Xw8PtZvX8 dGL2DQtRe7VtTTbIRX/7JQjDiCUVkAvC3s5m1mx09qd+R99BnJVTDVoa54NSWA2d H1SbZoOhhOduf4Fdzq2wGEfbEP16tLYEMypqF6G1l6fmUOtAgJeRssf1o+QR0An+ vLNtmlIWdMDygdnqs9JmbADQuDgYtUed7ESSy6zrlyZEPU0BPkaBmuj4LuBh6BGq h/WF/lzx9eoDZg3LBVccuxCaiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdEPMeL TOBueIOgVVQHG9JUKEqTMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6FAv9PZTJ0bC//3FpvyZqe0VzFsall9gXFS2T0LAkgEaaRNDyFFT2 Do2cV0kyOECCvpHfnbVVtUY2HPtcNs/1OZmVJgj78l/lpA0Fma3hQJfny2BD2BbT fih6DhMaptvlQMSAl4Tq5faXuKILTQipnWKjIYe8pHUBhFIU7nPefp5oI3L0/HHB Ry2QiZCio1bY1ps4/87RJiCS0sQCBoWx09nPAs/wQhjANzXj17vy/AgU8O/uDeYN 1EGDqOECHhz/OcjUDQ8cZ6IztKizadzYYl7sG4RCWYKXmdB03Id4yMLiIkR2r+J5 5h9FfjPHRnj4amGjV52kQyrPWXItyhtY -----END CERTIFICATE-----Generated at Sat Apr 26 15:22:55 2025 by rpki-client