$ rpki-client -vvf rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft File: P9OJWVL9hJqXvBEkdJUChMaGhkU.mft (raw, json) Hash identifier: GmsEw6z6z8e2WStGxMtgUwrTq6MW8Gh4GbhOlqZFtwk= Subject key identifier: B8:94:8A:A3:18:31:8C:89:D6:EB:3D:4E:96:4D:02:78:87:7E:33:29 Authority key identifier: 3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 Certificate issuer: /CN=A91C609A/serialNumber=3FD3895952FD849A97BC112474950284C6868645 Certificate serial: 07B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft Manifest number: 07AA Signing time: Thu 24 Apr 2025 21:03:15 +0000 Manifest this update: Thu 24 Apr 2025 21:03:14 +0000 Manifest next update: Thu 01 May 2025 21:03:14 +0000 Files and hashes: 1: P9OJWVL9hJqXvBEkdJUChMaGhkU.crl (hash: MtWN5afUGhXJ2+z5NQfQccuZVBEUBTYiSeNxYGXzpDc=) 2: A84FB264FD7011EAA1DF3534C4F9AE02.roa (hash: ipH52NvI6j7Qm3VJ3UEcq9yvGVo2LC48K1opbVhCFvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1972 (0x7b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C609A, serialNumber=3FD3895952FD849A97BC112474950284C6868645 Validity Not Before: Apr 24 21:03:14 2025 GMT Not After : May 1 21:03:14 2025 GMT Subject: CN=680aa713-851a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:75:92:1b:db:f7:04:86:bc:0a:f1:ad:4e:95: c5:1a:87:f2:fb:7f:65:f1:26:7d:fe:9a:a3:88:cd: 22:62:9a:73:41:6e:77:e4:11:85:82:98:f2:86:ca: 55:de:1c:e9:4c:f6:e8:b8:f2:9d:78:fd:7e:3c:52: 18:0f:51:53:40:62:3a:9b:6b:3e:9c:bb:5e:b8:03: 63:83:e3:01:6a:69:d5:bd:3a:b1:45:cf:e1:2e:f1: 93:ff:14:5d:cf:e3:6e:e5:2e:e6:78:c5:5e:a8:c5: 71:f6:9e:13:85:12:d6:4d:fc:e3:02:eb:64:36:1a: 9f:ce:47:dd:61:4a:56:98:af:b9:03:0e:a5:03:ff: 87:dc:4d:d2:2a:4c:e8:43:18:07:03:89:60:cf:44: c4:fd:4b:0b:92:2e:a3:52:fe:e5:94:1a:6b:46:13: dd:15:0b:ff:fa:0a:57:0e:b6:f7:32:00:d6:61:50: 58:b6:ea:83:d4:fd:df:74:0f:85:67:4d:3c:c0:be: 9c:29:2b:f2:c6:c1:93:0e:83:a6:4f:39:5b:be:94: eb:3e:1e:36:7d:4a:72:24:5e:83:70:61:13:49:26: a8:ef:7e:a9:77:c1:6e:9a:c7:05:b8:25:ba:f6:a9: 77:da:3a:35:26:35:78:bd:c7:fb:35:01:ee:91:40: d0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:94:8A:A3:18:31:8C:89:D6:EB:3D:4E:96:4D:02:78:87:7E:33:29 X509v3 Authority Key Identifier: keyid:3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ca:4f:57:ba:bf:4d:6a:53:11:d8:48:96:bd:21:dd:43:f8: b1:88:f2:9e:b8:22:41:63:cc:0a:34:62:f1:91:ac:96:9e:48: d3:40:4c:dd:40:c2:f8:22:7c:6b:18:8e:c6:d1:eb:dd:3e:bf: 82:34:0a:af:52:79:b3:79:ef:ce:77:13:41:2b:99:4d:b1:b4: cc:dc:f1:fc:0b:5e:ad:91:59:28:75:4a:48:9a:c4:cf:dd:56: 77:3c:38:e0:78:33:c7:d6:88:60:85:2d:7f:d6:f6:48:ec:67: 3d:cc:cd:f6:a9:ab:9e:0c:dd:93:52:77:09:4d:a2:6f:55:06: 66:e8:bd:b2:c2:d6:82:0c:b8:2b:26:6d:e0:64:8a:f4:e2:3d: 67:07:5d:bb:e9:dd:e7:04:25:ac:03:41:ba:5c:87:b2:22:06: f1:e4:f4:0f:0f:07:27:ec:55:90:12:38:7d:02:37:2e:ae:5c: 7f:0e:47:85:24:c8:3f:f5:9a:c8:cc:19:38:11:f8:03:10:c5: 88:94:7a:77:ba:83:ee:fc:1f:c0:34:d9:c5:7a:6c:b7:87:da: 03:82:04:ee:85:c2:82:27:ee:87:38:46:50:92:83:d2:97:e5: 87:a7:30:e1:91:09:5b:a0:d6:d8:0c:fb:41:ed:00:ed:24:65: 9c:c4:d5:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYwOUExMTAvBgNVBAUTKDNGRDM4OTU5NTJGRDg0OUE5N0JDMTEyNDc0OTUwMjg0 QzY4Njg2NDUwHhcNMjUwNDI0MjEwMzE0WhcNMjUwNTAxMjEwMzE0WjAYMRYwFAYD VQQDEw02ODBhYTcxMy04NTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHWSG9v3BIa8CvGtTpXFGofy+39l8SZ9/pqjiM0iYppzQW535BGFgpjyhspV 3hzpTPbouPKdeP1+PFIYD1FTQGI6m2s+nLteuANjg+MBamnVvTqxRc/hLvGT/xRd z+Nu5S7meMVeqMVx9p4ThRLWTfzjAutkNhqfzkfdYUpWmK+5Aw6lA/+H3E3SKkzo QxgHA4lgz0TE/UsLki6jUv7llBprRhPdFQv/+gpXDrb3MgDWYVBYtuqD1P3fdA+F Z008wL6cKSvyxsGTDoOmTzlbvpTrPh42fUpyJF6DcGETSSao736pd8FumscFuCW6 9ql32jo1JjV4vcf7NQHukUDQfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiUiqMY MYyJ1us9TpZNAniHfjMpMB8GA1UdIwQYMBaAFD/TiVlS/YSal7wRJHSVAoTGhoZF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjA5QS9BMzdBRTkyNkZE NkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhKcVh2QkVrZEpVQ2hNYUdo a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5T0pXVkw5aEpxWHZCRWtkSlVDaE1hR2hrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjA5QS9BMzdBRTkyNkZENkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhK cVh2QkVrZEpVQ2hNYUdoa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKyk9Xur9NalMR2EiWvSHdQ/ixiPKeuCJBY8wKNGLxkayWnkjTQEzd QML4InxrGI7G0evdPr+CNAqvUnmzee/OdxNBK5lNsbTM3PH8C16tkVkodUpImsTP 3VZ3PDjgeDPH1ohghS1/1vZI7Gc9zM32qaueDN2TUncJTaJvVQZm6L2ywtaCDLgr Jm3gZIr04j1nB1276d3nBCWsA0G6XIeyIgbx5PQPDwcn7FWQEjh9Ajcurlx/DkeF JMg/9ZrIzBk4EfgDEMWIlHp3uoPu/B/ANNnFemy3h9oDggTuhcKCJ+6HOEZQkoPS l+WHpzDhkQlboNbYDPtB7QDtJGWcxNW9 -----END CERTIFICATE-----Generated at Sat Apr 26 13:02:27 2025 by rpki-client