$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: srnFwfqWIpZuBl8XjYopu9b3DxGdllxiabks26diGFE= Subject key identifier: 45:D6:35:79:46:7C:AA:76:8E:54:30:33:C2:D7:FA:4D:D4:99:7E:41 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: 7F Signing time: Sun 27 Apr 2025 05:34:14 +0000 Manifest this update: Sun 27 Apr 2025 05:34:14 +0000 Manifest next update: Sun 04 May 2025 05:34:14 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: Jnw0J2GASf1H205InUROo224YQBF+QOHZ8I9OtKxIrA=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: qpNZ0Lm7ohL4bDYSXZ5HFsKxSW3wfA050YYCOcr+GtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 05:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Apr 27 05:34:14 2025 GMT Not After : May 4 05:34:14 2025 GMT Subject: CN=680dc1d6-6874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:8d:9e:cb:ff:fc:00:c9:3e:cf:ad:4e:dd:b1: 25:94:8a:e8:b0:6a:9f:67:1e:f6:2a:39:71:78:5a: 34:62:0e:c8:fc:df:77:78:1e:86:7a:9d:7f:1c:91: 26:5d:7d:f8:3f:5a:40:0a:46:1e:2e:13:24:93:04: 9f:6d:3d:3f:a2:13:54:37:da:92:73:d3:7b:7a:42: 8d:0f:19:ee:ad:5e:34:e4:0f:4c:dc:01:38:a9:ef: 4e:63:89:91:c2:76:08:60:42:6a:7d:55:6c:6e:80: 27:bb:d9:98:85:23:2e:48:20:e2:58:2f:f3:8a:b5: 58:ca:c5:af:db:fd:59:58:23:62:41:19:4e:f4:da: ba:aa:ba:45:cc:8b:7d:ba:df:ce:3e:8d:00:01:28: 16:6e:0b:64:ba:51:9f:90:92:d4:04:d5:38:5e:60: cf:26:c5:07:58:00:b4:42:49:21:80:23:4d:6a:62: 53:6a:6a:e1:4f:f9:51:59:c7:d5:19:7d:c2:02:6b: 24:49:11:e0:2c:a3:ed:44:18:79:2c:ca:a5:b0:14: d6:63:c5:b6:8a:7a:dd:fa:d5:2d:f8:3d:ab:38:63: a2:65:bd:fa:e1:30:a7:e4:11:da:16:33:5a:3a:b5: ec:be:6d:25:03:e3:0c:25:22:34:3a:dc:e5:e3:9e: 62:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D6:35:79:46:7C:AA:76:8E:54:30:33:C2:D7:FA:4D:D4:99:7E:41 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:b6:d1:b5:59:48:fe:c0:61:90:c1:31:35:b8:13:aa:47:f6: 38:58:46:30:56:ba:cf:c5:74:7d:21:69:31:c9:1d:2e:c9:eb: f3:2b:89:59:21:f2:48:b8:5b:a2:44:8b:58:41:8c:7a:96:30: 6d:92:ca:99:94:22:8d:93:c4:49:83:03:bc:a5:af:60:e0:d2: b0:1c:29:df:83:d0:bc:89:0e:ad:ca:fb:2e:7d:20:e1:6e:15: f6:37:e1:f1:6e:b3:64:ac:9f:35:38:28:7b:c3:b1:ec:e7:29: 0f:97:c0:3e:f9:db:0b:74:9d:35:dd:cf:0e:ee:d2:c7:c3:c7: 45:c4:76:5b:da:dd:07:03:3e:6f:18:be:d5:13:9c:fb:d1:c7: fa:40:0c:f0:b5:de:7a:a0:60:a1:21:8c:31:9b:cc:1b:6e:08: c9:db:15:13:61:16:03:56:3b:ab:ab:69:50:58:0d:a2:df:c0: aa:2a:4d:68:a7:70:56:4f:67:17:71:13:49:81:f7:f1:ce:a0: f6:7e:a3:79:8b:de:15:6a:43:f1:8f:40:e9:70:ec:48:bb:07: 62:0f:d4:ca:aa:17:48:da:10:08:d9:87:10:63:42:c6:61:fa: 96:bd:20:03:e6:81:b4:00:96:6c:4b:1d:ce:8e:d9:e1:81:fa: f8:e7:f1:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUwNDI3MDUzNDE0WhcNMjUwNTA0MDUzNDE0WjAYMRYwFAYD VQQDEw02ODBkYzFkNi02ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/Y2ey//8AMk+z61O3bEllIrosGqfZx72KjlxeFo0Yg7I/N93eB6Gep1/HJEm XX34P1pACkYeLhMkkwSfbT0/ohNUN9qSc9N7ekKNDxnurV405A9M3AE4qe9OY4mR wnYIYEJqfVVsboAnu9mYhSMuSCDiWC/zirVYysWv2/1ZWCNiQRlO9Nq6qrpFzIt9 ut/OPo0AASgWbgtkulGfkJLUBNU4XmDPJsUHWAC0QkkhgCNNamJTamrhT/lRWcfV GX3CAmskSRHgLKPtRBh5LMqlsBTWY8W2inrd+tUt+D2rOGOiZb364TCn5BHaFjNa OrXsvm0lA+MMJSI0Otzl455iPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXWNXlG fKp2jlQwM8LX+k3UmX5BMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjttG1WUj+wGGQwTE1uBOqR/Y4WEYwVrrPxXR9IWkxyR0uyevzK4lZ IfJIuFuiRItYQYx6ljBtksqZlCKNk8RJgwO8pa9g4NKwHCnfg9C8iQ6tyvsufSDh bhX2N+HxbrNkrJ81OCh7w7Hs5ykPl8A++dsLdJ013c8O7tLHw8dFxHZb2t0HAz5v GL7VE5z70cf6QAzwtd56oGChIYwxm8wbbgjJ2xUTYRYDVjurq2lQWA2i38CqKk1o p3BWT2cXcRNJgffxzqD2fqN5i94VakPxj0DpcOxIuwdiD9TKqhdI2hAI2YcQY0LG YfqWvSAD5oG0AJZsSx3Ojtnhgfr45/G1 -----END CERTIFICATE-----Generated at Tue Apr 29 00:30:37 2025 by rpki-client