$ rpki-client -vvf rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft File: ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft (raw, json) Hash identifier: sWuSnkA4TbARv8DVm4eQmJzl+fNVxmVYTSWrZ6M2GKo= Subject key identifier: 87:2F:19:CF:A0:BD:3E:05:E4:FC:4D:BA:2B:19:19:1C:8E:03:AE:B2 Authority key identifier: 6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A Certificate issuer: /CN=A9199BDF/serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Certificate serial: 0F38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft Manifest number: 0F2C Signing time: Thu 24 Apr 2025 17:36:32 +0000 Manifest this update: Thu 24 Apr 2025 17:36:31 +0000 Manifest next update: Thu 01 May 2025 17:36:31 +0000 Files and hashes: 1: ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl (hash: znHRir1GZ7eb/l4uWJvJityQggN5DyOfqHIK+DR9fVs=) 2: D193920E709411E99F95933EC4F9AE02.roa (hash: 0Os8j4kYKwSeqmj5yGoBBZfTw2aGD2KOY509iiv178E=) 3: 76E5D6AE727411EFAD2ACD27C4F9AE02.roa (hash: seqCKD6Db6uHjZMFtslvwJ+ELyFHvSU96+t1eEuQ2I0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3896 (0xf38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199BDF, serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Validity Not Before: Apr 24 17:36:31 2025 GMT Not After : May 1 17:36:31 2025 GMT Subject: CN=680a769f-d1f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:39:52:8f:a1:a6:93:bb:12:f0:ba:42:6d:e2: 78:76:1b:47:06:98:fe:66:2e:3c:c1:dd:21:f0:27: 11:81:11:69:1a:75:bf:80:d3:c1:b5:3d:e7:1e:95: 76:10:c6:03:72:31:5c:b1:09:95:16:36:84:ac:1c: 82:9b:cd:4d:36:b4:a0:d4:4d:ff:be:ce:c7:de:cb: 0e:cc:ec:04:b1:09:a8:7c:cb:23:bc:ff:98:82:b5: 45:6d:73:97:0e:6a:ba:a0:c5:45:58:0e:8c:72:f4: 45:fa:a5:85:9b:d6:6c:8e:4f:7e:30:18:ec:3d:af: c9:b7:9b:12:59:e9:e1:d5:5c:c8:91:ad:74:87:38: e2:1f:8f:03:64:a1:8b:de:63:a8:6d:c2:e0:86:0a: e9:7b:ad:e5:7d:0c:b6:cf:c9:20:27:f4:24:14:15: 45:e6:a3:d2:c0:40:82:84:4c:a7:9c:83:f6:5e:02: 5e:48:ae:c4:8c:55:a8:df:d7:2a:88:2f:b3:db:b8: 89:48:59:3c:23:8b:db:07:7d:93:d3:68:9a:93:19: 96:60:47:ed:d6:a4:95:07:18:28:26:39:e5:99:d4: a0:75:1d:58:ba:da:d7:0b:98:df:e6:7c:c9:ff:48: 9a:0b:7a:42:7b:48:30:c6:47:0e:57:23:84:a9:b8: f0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:2F:19:CF:A0:BD:3E:05:E4:FC:4D:BA:2B:19:19:1C:8E:03:AE:B2 X509v3 Authority Key Identifier: keyid:6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:92:f6:4e:e3:a8:a5:81:62:e3:2b:7c:ce:cd:41:69:58:6b: 59:a8:ce:95:1e:60:91:5d:89:82:2d:20:7e:12:00:82:45:b5: 50:d3:37:bf:e0:04:35:59:dc:3f:4b:ff:fa:58:4e:35:2a:c4: ac:0e:9e:e2:b9:76:a2:6b:ba:74:1e:49:a1:f9:27:46:ce:04: ec:fa:76:cf:51:7e:2a:35:f3:bb:e9:ab:24:cc:94:91:f8:73: 31:f4:7a:d7:db:ed:9b:8d:46:80:cd:e4:cd:71:90:03:57:88: 96:0c:ef:51:55:c5:38:45:88:ff:12:3f:09:9f:ed:c9:8e:46: 45:d3:9d:23:60:a4:42:b7:71:cc:87:d6:33:6d:79:b8:b7:73: 02:e9:f8:b8:7b:2a:26:3e:d5:3d:bc:be:f5:c7:d0:52:8d:ac: 0a:ef:7d:81:af:9d:14:16:2d:22:54:0f:1a:6b:66:7b:58:c8: 05:18:47:87:f7:2b:d4:1e:c0:67:d9:4c:27:f6:23:b9:5b:fb: 5f:cc:e3:a7:cf:b8:d1:09:e6:cf:27:59:0b:9a:fe:8b:ac:71: 69:f4:d4:12:3b:c7:e5:79:be:b7:3c:2c:8a:5f:80:23:91:54: 84:48:53:59:cc:67:a4:a1:bc:cf:10:4a:c3:12:c6:1f:44:e4: 89:b1:51:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCREYxMTAvBgNVBAUTKDZBNEY0MzExMDA1MEYwNjgxOTY0RDg1OEY5MTQ0RTA1 MkJCODg5OUEwHhcNMjUwNDI0MTczNjMxWhcNMjUwNTAxMTczNjMxWjAYMRYwFAYD VQQDEw02ODBhNzY5Zi1kMWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTlSj6Gmk7sS8LpCbeJ4dhtHBpj+Zi48wd0h8CcRgRFpGnW/gNPBtT3nHpV2 EMYDcjFcsQmVFjaErByCm81NNrSg1E3/vs7H3ssOzOwEsQmofMsjvP+YgrVFbXOX Dmq6oMVFWA6McvRF+qWFm9Zsjk9+MBjsPa/Jt5sSWenh1VzIka10hzjiH48DZKGL 3mOobcLghgrpe63lfQy2z8kgJ/QkFBVF5qPSwECChEynnIP2XgJeSK7EjFWo39cq iC+z27iJSFk8I4vbB32T02iakxmWYEft1qSVBxgoJjnlmdSgdR1YutrXC5jf5nzJ /0iaC3pCe0gwxkcOVyOEqbjwRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcvGc+g vT4F5PxNuisZGRyOA66yMB8GA1UdIwQYMBaAFGpPQxEAUPBoGWTYWPkUTgUruIma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUJERi9FNzBFMEE5ODcw OTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThHZ1paTmhZLVJST0JTdTRp Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrOURFUUJROEdnWlpOaFktUlJPQlN1NGlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUJERi9FNzBFMEE5ODcwOTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThH Z1paTmhZLVJST0JTdTRpWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6kvZO46ilgWLjK3zOzUFpWGtZqM6VHmCRXYmCLSB+EgCCRbVQ0ze/ 4AQ1Wdw/S//6WE41KsSsDp7iuXaia7p0Hkmh+SdGzgTs+nbPUX4qNfO76askzJSR +HMx9HrX2+2bjUaAzeTNcZADV4iWDO9RVcU4RYj/Ej8Jn+3JjkZF050jYKRCt3HM h9YzbXm4t3MC6fi4eyomPtU9vL71x9BSjawK732Br50UFi0iVA8aa2Z7WMgFGEeH 9yvUHsBn2Uwn9iO5W/tfzOOnz7jRCebPJ1kLmv6LrHFp9NQSO8fleb63PCyKX4Aj kVSESFNZzGekobzPEErDEsYfROSJsVFr -----END CERTIFICATE-----Generated at Sat Apr 26 14:36:48 2025 by rpki-client