$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: /4tPUxdVeGEC+3O63WRDIrKpNP+d+yFJK1GsSy7Rue0= Subject key identifier: B0:03:A1:C6:0F:4D:7E:80:9E:5C:60:69:E0:D9:FB:60:F5:E5:D7:D9 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 18BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 18AE Signing time: Thu 24 Apr 2025 16:30:32 +0000 Manifest this update: Thu 24 Apr 2025 16:30:31 +0000 Manifest next update: Thu 01 May 2025 16:30:31 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: Z4PT3Uj7Q7ZE+mY30nzqJOH7MLelr8CTmyenyv2UudU=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: i+oJi6jpDEgYGCAfWO68s9CmpJ8yXleP5d3NPE288zQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6335 (0x18bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Apr 24 16:30:31 2025 GMT Not After : May 1 16:30:31 2025 GMT Subject: CN=680a6728-5666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:74:d6:92:c5:eb:53:11:ef:00:b5:9a:80:3f: c1:9f:89:26:97:68:7b:3e:7f:29:0c:36:fd:f1:9c: b7:f7:a2:78:f9:94:78:3a:27:8a:47:0b:b3:50:fe: c4:ec:a1:df:dd:59:da:9f:d3:af:5f:c6:26:0a:01: 3a:75:99:4c:28:1f:07:73:04:15:de:e2:a2:09:fc: 0f:c2:c1:6e:06:21:2c:4f:50:c4:29:7a:18:94:9c: d0:54:c9:42:af:46:f7:20:4a:4a:c3:b4:00:00:f7: 93:10:b3:5c:59:f7:cb:c0:53:cc:d9:ef:32:31:05: 84:33:d8:e4:1c:d3:2f:c7:dc:24:a6:af:cd:36:cc: a9:d1:49:eb:22:e9:b4:c3:ca:26:61:33:13:9b:ec: d3:45:f8:c9:3d:93:64:a1:d3:99:f7:ee:05:48:60: 46:0e:99:45:c8:4f:0a:3a:73:18:ee:86:34:7d:1f: dd:6f:5f:b9:31:c6:17:61:6b:5d:7c:e6:02:49:bf: 81:99:8c:80:88:f6:91:af:c7:3b:d3:4a:0b:1e:f4: ba:64:53:6a:9d:45:be:0e:2d:fe:a7:ef:07:d3:d9: bc:77:7d:e7:21:03:2e:e3:e1:03:30:51:76:4b:21: ad:72:a6:c6:1b:d9:0b:bf:aa:a9:ae:ed:d7:5e:c0: c6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:03:A1:C6:0F:4D:7E:80:9E:5C:60:69:E0:D9:FB:60:F5:E5:D7:D9 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:a3:d6:aa:56:a4:5a:a7:d5:ba:95:fd:c9:b7:85:16:c4:a9: 30:10:a2:2f:58:14:09:5d:18:57:a5:d6:fa:22:32:50:62:11: e8:4c:15:7e:c7:20:1b:1d:0f:ad:a0:bf:58:30:d3:32:be:cb: 59:62:49:6b:9e:23:95:ab:93:05:d6:8f:1c:36:45:c4:0f:08: 93:7c:90:5f:55:00:16:7f:06:fb:4c:c3:cf:c8:29:d1:70:ee: ae:1f:63:4e:ba:77:3b:7a:ef:ce:22:fc:8c:30:5a:51:52:f9: 6a:1c:52:6f:93:af:c5:8c:c1:93:0b:32:0c:64:2d:11:c1:39: 23:a2:ac:e5:a1:11:df:f4:3d:25:59:a6:be:6a:e3:73:da:62: 8a:55:4f:30:98:ce:87:1d:38:be:c2:b6:e9:d1:68:ef:68:81: e6:a4:bb:18:09:dc:7c:8e:32:79:d8:17:5e:18:6a:a0:56:44: 4c:4f:0e:64:2a:b5:b3:fc:33:87:8f:1c:1b:43:81:13:2f:05: 37:5a:fd:17:05:f9:ae:5d:88:13:3e:bc:b1:eb:6b:af:7c:8f: 88:70:2d:2c:e4:02:e4:62:0c:41:9f:64:42:4c:cc:a6:a4:7c: c7:1f:70:de:07:cb:41:da:c9:20:a1:44:45:f6:a2:7e:e5:b2: cc:db:82:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUwNDI0MTYzMDMxWhcNMjUwNTAxMTYzMDMxWjAYMRYwFAYD VQQDEw02ODBhNjcyOC01NjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznTWksXrUxHvALWagD/Bn4kml2h7Pn8pDDb98Zy396J4+ZR4OieKRwuzUP7E 7KHf3Vnan9OvX8YmCgE6dZlMKB8HcwQV3uKiCfwPwsFuBiEsT1DEKXoYlJzQVMlC r0b3IEpKw7QAAPeTELNcWffLwFPM2e8yMQWEM9jkHNMvx9wkpq/NNsyp0UnrIum0 w8omYTMTm+zTRfjJPZNkodOZ9+4FSGBGDplFyE8KOnMY7oY0fR/db1+5McYXYWtd fOYCSb+BmYyAiPaRr8c700oLHvS6ZFNqnUW+Di3+p+8H09m8d33nIQMu4+EDMFF2 SyGtcqbGG9kLv6qpru3XXsDGswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLADocYP TX6AnlxgaeDZ+2D15dfZMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANo9aqVqRap9W6lf3Jt4UWxKkwEKIvWBQJXRhXpdb6IjJQYhHoTBV+ xyAbHQ+toL9YMNMyvstZYklrniOVq5MF1o8cNkXEDwiTfJBfVQAWfwb7TMPPyCnR cO6uH2NOunc7eu/OIvyMMFpRUvlqHFJvk6/FjMGTCzIMZC0RwTkjoqzloRHf9D0l Waa+auNz2mKKVU8wmM6HHTi+wrbp0WjvaIHmpLsYCdx8jjJ52BdeGGqgVkRMTw5k KrWz/DOHjxwbQ4ETLwU3Wv0XBfmuXYgTPryx62uvfI+IcC0s5ALkYgxBn2RCTMym pHzHH3DeB8tB2skgoURF9qJ+5bLM24KS -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:35 2025 by rpki-client