$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: 8nNgSoOyltaX4QmhyYm+57YaPsHvi4gE/JY5QDyFKTg= Subject key identifier: BB:19:7B:06:11:4F:BE:D1:03:F8:CF:81:DE:C1:F2:E9:FF:E0:63:0E Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0EA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0E9A Signing time: Thu 24 Apr 2025 17:40:09 +0000 Manifest this update: Thu 24 Apr 2025 17:40:08 +0000 Manifest next update: Thu 01 May 2025 17:40:08 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: /LM4z5kr4CdQigjPw+bYQg2+UyQO+dtmGR4J1K0gd98=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: az5u8maauMT/Sx2+Phgo1Z/ovh8gwvsYIRukSLKNLEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3751 (0xea7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Apr 24 17:40:08 2025 GMT Not After : May 1 17:40:08 2025 GMT Subject: CN=680a7778-7fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:17:f7:31:d1:40:d6:a6:77:28:b2:b6:8a:68: d3:82:a6:8e:e6:78:fe:c0:9a:f4:87:58:93:1d:66: 11:f3:4a:8e:66:f4:ca:71:d9:b8:8e:a6:a6:04:af: c9:f0:a9:a7:97:89:3f:e0:77:b1:f5:ff:08:52:7d: e9:b5:49:f6:54:e0:93:c3:d3:db:72:e1:39:61:18: 2b:4a:c8:82:15:32:9c:aa:cd:2c:10:0f:92:54:84: e7:2c:b1:6b:df:c7:39:31:fa:9a:44:56:5d:06:4a: ac:7e:c3:3d:03:fa:9c:85:e1:01:a6:34:8b:5c:9f: 61:72:58:ae:06:6f:39:9c:04:d6:96:8c:08:a4:ee: 4f:82:d4:6f:48:ac:79:3f:9b:e0:78:3f:58:80:55: 37:92:7f:30:ff:a0:78:87:42:60:b3:0f:a9:15:ff: c3:b9:f7:c1:bb:8d:ae:a8:7c:92:c9:c0:55:19:ea: 89:e4:db:2d:3b:7e:e9:ac:75:10:d2:ba:d3:64:85: fd:c7:bb:8a:c0:86:a1:46:71:04:e7:eb:31:ac:5b: 6b:31:26:9e:9c:17:78:fa:48:94:55:4e:81:b9:b3: ca:15:4b:2e:6d:cf:92:00:d6:03:62:c5:6b:64:d1: e8:ee:1f:5e:d9:83:16:ee:74:9f:d2:72:0d:9a:25: 34:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:19:7B:06:11:4F:BE:D1:03:F8:CF:81:DE:C1:F2:E9:FF:E0:63:0E X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:60:03:81:1f:90:91:fd:16:ba:35:a4:5c:24:af:bc:08:64: 66:28:de:b9:24:81:6b:b8:26:f3:18:2d:88:7f:9b:de:e0:85: 66:4e:38:8e:07:b5:37:36:a6:92:c6:03:07:4a:bc:8c:ba:12: 10:ee:c0:d5:70:25:84:b4:da:1c:0d:9f:ee:7c:e8:3c:46:72: e9:16:f2:d0:d1:8b:6c:95:39:6e:3d:1c:2b:e3:f8:78:cc:62: 30:ce:7f:31:70:d6:5f:17:74:66:f3:53:2e:34:12:e4:af:86: 08:5d:e7:4b:79:80:64:ec:a9:43:33:88:2e:60:a8:0c:fd:0a: 0d:30:a1:3e:e6:1e:4f:23:ef:59:f1:a1:f7:65:98:f3:32:5c: 7b:d0:e2:b8:2f:5c:c0:3d:ab:72:21:0e:16:30:fb:21:2b:ad: bd:1e:4e:86:b6:b3:e3:81:11:8b:51:27:27:19:b1:e3:21:72: 55:48:8d:ec:a4:cc:df:4d:70:51:b2:3e:e9:b9:2a:26:7e:c4: 32:e5:83:1e:92:bb:a1:8a:33:82:c9:79:e1:cb:b8:71:23:84: cc:42:94:30:86:79:4d:02:75:2e:d0:dd:3f:7a:f4:c3:98:a3: c3:94:37:51:b0:aa:dd:1c:90:fb:3c:f9:72:62:a4:d2:db:73: f2:d0:fc:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUwNDI0MTc0MDA4WhcNMjUwNTAxMTc0MDA4WjAYMRYwFAYD VQQDEw02ODBhNzc3OC03ZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hf3MdFA1qZ3KLK2imjTgqaO5nj+wJr0h1iTHWYR80qOZvTKcdm4jqamBK/J 8Kmnl4k/4Hex9f8IUn3ptUn2VOCTw9PbcuE5YRgrSsiCFTKcqs0sEA+SVITnLLFr 38c5MfqaRFZdBkqsfsM9A/qcheEBpjSLXJ9hcliuBm85nATWlowIpO5PgtRvSKx5 P5vgeD9YgFU3kn8w/6B4h0Jgsw+pFf/DuffBu42uqHySycBVGeqJ5NstO37prHUQ 0rrTZIX9x7uKwIahRnEE5+sxrFtrMSaenBd4+kiUVU6BubPKFUsubc+SANYDYsVr ZNHo7h9e2YMW7nSf0nINmiU04QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsZewYR T77RA/jPgd7B8un/4GMOMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8YAOBH5CR/Ra6NaRcJK+8CGRmKN65JIFruCbzGC2If5ve4IVmTjiO B7U3NqaSxgMHSryMuhIQ7sDVcCWEtNocDZ/ufOg8RnLpFvLQ0YtslTluPRwr4/h4 zGIwzn8xcNZfF3Rm81MuNBLkr4YIXedLeYBk7KlDM4guYKgM/QoNMKE+5h5PI+9Z 8aH3ZZjzMlx70OK4L1zAPatyIQ4WMPshK629Hk6GtrPjgRGLUScnGbHjIXJVSI3s pMzfTXBRsj7puSomfsQy5YMekruhijOCyXnhy7hxI4TMQpQwhnlNAnUu0N0/evTD mKPDlDdRsKrdHJD7PPlyYqTS23Py0Pwb -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:58 2025 by rpki-client