$ rpki-client -vvf rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft File: _9C9_G0db07W7Tg5A59B6e3Gb7o.mft (raw, json) Hash identifier: ZQes12Qny1nVVLJ0BEs5g2objHi4pooZ9IDz/wTSIuw= Subject key identifier: 8D:CA:12:B0:DC:AA:05:44:56:27:FB:D7:E6:F0:61:34:A3:2E:82:1F Authority key identifier: FF:D0:BD:FC:6D:1D:6F:4E:D6:ED:38:39:03:9F:41:E9:ED:C6:6F:BA Certificate issuer: /CN=A919697D/serialNumber=FFD0BDFC6D1D6F4ED6ED3839039F41E9EDC66FBA Certificate serial: 0842 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft Manifest number: 0842 Signing time: Thu 24 Apr 2025 20:36:30 +0000 Manifest this update: Thu 24 Apr 2025 20:36:30 +0000 Manifest next update: Thu 01 May 2025 20:36:30 +0000 Files and hashes: 1: _9C9_G0db07W7Tg5A59B6e3Gb7o.crl (hash: SHWZOFOe1XdQatVdcGEHK0WJ5OVbBMPhRrQ/exuaU8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.crl rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2114 (0x842) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919697D, serialNumber=FFD0BDFC6D1D6F4ED6ED3839039F41E9EDC66FBA Validity Not Before: Apr 24 20:36:30 2025 GMT Not After : May 1 20:36:30 2025 GMT Subject: CN=680aa0ce-f143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:8d:44:55:51:5b:6b:98:b5:62:66:e1:17:0c: 05:ad:e6:d4:1b:1c:da:85:6f:78:a1:3b:51:4b:e3: 17:50:a3:ff:d8:57:7d:92:1d:11:35:26:cf:9a:7a: e6:81:23:e1:f2:76:1f:2d:fa:f1:ed:41:5d:e6:2a: ca:49:ca:ec:00:87:6a:60:23:08:59:99:03:34:c5: c8:a9:b0:29:ee:ba:cd:84:a6:f4:0f:19:18:1d:71: 55:b3:82:e8:bf:c0:db:4d:16:0f:f2:b1:ce:6f:83: f9:3b:cf:c3:b6:1f:63:e2:d9:d4:9b:c7:38:d8:3a: 61:08:e5:97:c6:cc:3e:55:b9:98:0a:16:71:e7:e5: f9:94:59:82:db:b5:b9:d7:76:6f:ba:6f:de:d2:d7: e7:77:34:67:7a:1b:59:3b:2e:4e:b3:b5:62:df:06: 5c:7d:ea:15:d1:61:8a:5c:8f:34:2f:a7:9c:83:b9: 20:f8:7a:a6:d1:44:4b:e6:8c:b9:72:d8:1f:17:85: 52:8d:a3:fd:4d:91:9d:95:23:22:75:87:dc:f4:7b: 26:f5:0c:03:39:eb:62:bc:31:c3:b5:77:ba:68:f0: 03:ce:39:e2:76:f6:a8:b0:34:c6:88:59:a7:ef:af: 02:28:07:b5:ba:57:81:66:d4:af:84:70:27:cc:ba: 66:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CA:12:B0:DC:AA:05:44:56:27:FB:D7:E6:F0:61:34:A3:2E:82:1F X509v3 Authority Key Identifier: keyid:FF:D0:BD:FC:6D:1D:6F:4E:D6:ED:38:39:03:9F:41:E9:ED:C6:6F:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:b7:ab:8c:91:08:5b:c7:48:1e:e6:b4:c7:82:e3:84:0a:cf: 1a:77:39:6e:0b:ab:6a:2a:2d:0c:a4:e1:81:57:4c:98:97:4e: 09:c1:e8:79:2c:34:7b:bc:7e:cf:3a:4f:2c:9b:30:54:d5:c6: df:88:98:4e:9e:89:71:c3:be:3c:6f:12:9e:ab:49:4c:5a:95: 8e:51:f0:db:44:eb:a5:51:fb:91:c6:36:11:a7:10:4e:b0:24: 06:f6:6b:87:2e:75:0b:83:96:90:fc:ca:30:dd:48:97:a5:fc: ec:44:43:22:76:de:82:3e:69:d7:84:e9:a0:bd:bd:ac:39:49: 59:5c:25:e4:ca:cd:3c:b7:ae:02:e2:dd:be:6c:ba:ef:b7:55: 67:48:cd:1c:1e:23:12:2a:a8:11:ac:97:f9:ac:93:89:30:3c: 0b:4b:c3:60:6d:0d:fb:44:69:7e:46:25:8c:35:05:88:98:49: 27:47:3f:54:7e:10:5f:16:96:6a:e1:67:51:f6:a6:b3:41:d0: b1:39:a1:85:97:70:ed:50:26:75:d9:67:47:8c:c9:53:cd:d5: 6a:d1:95:c5:a9:e0:83:28:54:24:7f:ec:b5:ee:02:e8:8f:a3: 8a:5b:fc:d8:0d:fb:40:9b:4f:d5:f2:2f:19:fe:4f:57:c1:54: 6e:84:bd:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5N0QxMTAvBgNVBAUTKEZGRDBCREZDNkQxRDZGNEVENkVEMzgzOTAzOUY0MUU5 RURDNjZGQkEwHhcNMjUwNDI0MjAzNjMwWhcNMjUwNTAxMjAzNjMwWjAYMRYwFAYD VQQDEw02ODBhYTBjZS1mMTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8I1EVVFba5i1YmbhFwwFrebUGxzahW94oTtRS+MXUKP/2Fd9kh0RNSbPmnrm gSPh8nYfLfrx7UFd5irKScrsAIdqYCMIWZkDNMXIqbAp7rrNhKb0DxkYHXFVs4Lo v8DbTRYP8rHOb4P5O8/Dth9j4tnUm8c42DphCOWXxsw+VbmYChZx5+X5lFmC27W5 13Zvum/e0tfndzRnehtZOy5Os7Vi3wZcfeoV0WGKXI80L6ecg7kg+Hqm0URL5oy5 ctgfF4VSjaP9TZGdlSMidYfc9Hsm9QwDOetivDHDtXe6aPADzjnidvaosDTGiFmn 768CKAe1uleBZtSvhHAnzLpmAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3KErDc qgVEVif71+bwYTSjLoIfMB8GA1UdIwQYMBaAFP/QvfxtHW9O1u04OQOfQentxm+6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njk3RC85RDI4RUMwQ0M3 QkYxMUVBOTAwODREMURDNEY5QUUwMi9fOUM5X0cwZGIwN1c3VGc1QTU5QjZlM0di N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL185QzlfRzBkYjA3VzdUZzVBNTlCNmUzR2I3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njk3RC85RDI4RUMwQ0M3QkYxMUVBOTAwODREMURDNEY5QUUwMi9fOUM5X0cwZGIw N1c3VGc1QTU5QjZlM0diN28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0t6uMkQhbx0ge5rTHguOECs8adzluC6tqKi0MpOGBV0yYl04Jweh5 LDR7vH7POk8smzBU1cbfiJhOnolxw748bxKeq0lMWpWOUfDbROulUfuRxjYRpxBO sCQG9muHLnULg5aQ/Mow3UiXpfzsREMidt6CPmnXhOmgvb2sOUlZXCXkys08t64C 4t2+bLrvt1VnSM0cHiMSKqgRrJf5rJOJMDwLS8NgbQ37RGl+RiWMNQWImEknRz9U fhBfFpZq4WdR9qazQdCxOaGFl3DtUCZ12WdHjMlTzdVq0ZXFqeCDKFQkf+y17gLo j6OKW/zYDftAm0/V8i8Z/k9XwVRuhL11 -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:36 2025 by rpki-client