$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: WBwnGpZgo/khVN+q0/qjr8bhVrLRRYVsaAc7LtLp6L0= Subject key identifier: AB:08:0E:6B:88:1C:7E:2E:9C:ED:F8:78:36:AA:1C:93:73:95:CE:0C Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0C7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0C77 Signing time: Thu 24 Apr 2025 18:12:53 +0000 Manifest this update: Thu 24 Apr 2025 18:12:53 +0000 Manifest next update: Thu 01 May 2025 18:12:53 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: OAVfkNg9B+pPtthu6KT+pV1K7B/9bSK/JYqo6R6WwiE=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: ZlxWP9id3BOwgT849Ql20JmEjoi9oTlH+F8ceOZ0tcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB, serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: Apr 24 18:12:53 2025 GMT Not After : May 1 18:12:53 2025 GMT Subject: CN=680a7f25-78cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:96:f6:1d:a2:32:02:bc:a9:c2:e8:2a:f9:ed: 38:1d:6d:96:75:aa:53:14:aa:6e:35:16:cc:d0:e4: 30:75:48:81:8a:1b:a4:63:e9:56:99:71:c9:bc:63: 7b:e9:cf:44:0b:c9:bb:26:f7:64:2d:d0:60:b0:02: b1:d6:a3:73:ab:40:76:1d:7f:63:7c:ae:55:76:41: 3a:c4:2e:2e:82:c6:1d:fe:c0:a7:bf:93:1f:93:e5: 0f:30:25:7e:5e:d7:61:91:ac:35:e3:9b:63:2e:27: 9a:23:ce:2b:ce:22:7f:c6:40:3c:47:5d:9e:04:b0: f3:aa:cc:2b:86:d4:40:67:f1:c0:03:d0:c1:f3:3d: 54:d0:b7:fc:aa:27:96:5e:58:50:26:3d:01:ce:0c: 8a:29:e0:91:54:49:2b:fd:7a:2f:15:12:81:0a:88: 88:00:5a:ee:83:7c:99:1e:07:33:c3:9b:ee:32:24: 70:e8:ba:76:94:e8:6c:ec:44:37:73:25:2d:3d:2d: 7c:1f:ba:28:18:86:80:2c:e1:2d:8f:be:83:4a:8a: 0a:38:15:85:09:dd:52:64:d5:90:dc:e4:81:3a:f9: db:c6:4e:2b:3b:5f:97:f4:ad:34:83:4a:b6:70:59: 6b:fe:73:2c:d5:d9:45:1c:83:80:e7:eb:cb:f8:81: 50:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:08:0E:6B:88:1C:7E:2E:9C:ED:F8:78:36:AA:1C:93:73:95:CE:0C X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:5e:ba:bd:66:10:49:e4:dc:d0:d6:ba:e9:94:6a:3f:27:41: b6:21:97:57:1f:60:d7:e7:33:08:3f:cc:0e:1e:1c:36:7d:16: 10:24:fb:86:8c:2b:42:3f:0b:8f:26:d1:de:c3:8d:af:ee:42: 15:ee:f9:4f:21:29:0d:1b:be:45:17:8c:7d:fe:38:89:37:32: 50:6f:e3:0b:66:ba:6b:73:ca:b8:4b:84:26:45:d4:b8:22:2f: d7:2f:53:88:7c:c4:db:f9:dc:ab:4d:20:72:84:4b:c6:89:b2: 6c:e3:0b:14:04:17:35:bd:22:32:2f:20:3b:2d:05:6f:db:8c: 3c:36:48:88:14:b2:f3:85:42:c3:85:a8:84:43:22:ef:0e:6b: 61:44:a1:2d:54:23:3b:b3:b1:98:17:ad:f4:f9:33:67:c4:b2: 7e:64:09:86:b0:9b:a3:8b:2f:26:e0:84:cf:a6:2e:11:27:a2: e6:dd:c0:99:f0:80:cf:79:21:f7:83:ab:0e:3a:93:2b:72:77: fb:09:4d:cd:79:84:e3:db:6b:a8:da:87:ad:54:fc:2d:ef:44: b0:1f:05:64:57:74:84:32:1d:e5:7b:e9:aa:01:60:c6:c5:27: 76:91:07:27:b6:88:f7:77:cc:e0:c1:73:7e:04:2f:96:16:65: a5:1a:df:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjUwNDI0MTgxMjUzWhcNMjUwNTAxMTgxMjUzWjAYMRYwFAYD VQQDEw02ODBhN2YyNS03OGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJb2HaIyArypwugq+e04HW2WdapTFKpuNRbM0OQwdUiBihukY+lWmXHJvGN7 6c9EC8m7JvdkLdBgsAKx1qNzq0B2HX9jfK5VdkE6xC4ugsYd/sCnv5Mfk+UPMCV+ Xtdhkaw145tjLieaI84rziJ/xkA8R12eBLDzqswrhtRAZ/HAA9DB8z1U0Lf8qieW XlhQJj0BzgyKKeCRVEkr/XovFRKBCoiIAFrug3yZHgczw5vuMiRw6Lp2lOhs7EQ3 cyUtPS18H7ooGIaALOEtj76DSooKOBWFCd1SZNWQ3OSBOvnbxk4rO1+X9K00g0q2 cFlr/nMs1dlFHIOA5+vL+IFQxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsIDmuI HH4unO34eDaqHJNzlc4MMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtXrq9ZhBJ5NzQ1rrplGo/J0G2IZdXH2DX5zMIP8wOHhw2fRYQJPuG jCtCPwuPJtHew42v7kIV7vlPISkNG75FF4x9/jiJNzJQb+MLZrprc8q4S4QmRdS4 Ii/XL1OIfMTb+dyrTSByhEvGibJs4wsUBBc1vSIyLyA7LQVv24w8NkiIFLLzhULD haiEQyLvDmthRKEtVCM7s7GYF630+TNnxLJ+ZAmGsJujiy8m4ITPpi4RJ6Lm3cCZ 8IDPeSH3g6sOOpMrcnf7CU3NeYTj22uo2oetVPwt70SwHwVkV3SEMh3le+mqAWDG xSd2kQcntoj3d8zgwXN+BC+WFmWlGt8D -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:12 2025 by rpki-client