$ rpki-client -vvf rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft File: 9bGvaeQg85sCMjAnVBm6VPjOGos.mft (raw, json) Hash identifier: fvXcTzTZYH3vA9L/VDHCNugkg1RxzVCo0pAcVqXuRo4= Subject key identifier: F9:A3:07:EC:E6:D0:33:D7:2D:6C:E0:8C:97:76:B5:35:03:1D:D0:27 Authority key identifier: F5:B1:AF:69:E4:20:F3:9B:02:32:30:27:54:19:BA:54:F8:CE:1A:8B Certificate issuer: /CN=A9117CE3/serialNumber=F5B1AF69E420F39B023230275419BA54F8CE1A8B Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft Manifest number: 4D Signing time: Mon 05 May 2025 05:02:34 +0000 Manifest this update: Mon 05 May 2025 05:02:34 +0000 Manifest next update: Mon 12 May 2025 05:02:34 +0000 Files and hashes: 1: 9bGvaeQg85sCMjAnVBm6VPjOGos.crl (hash: EBstjJIP4cdgC40KIQ3hmc7TEH9+BoiogerpmE/c/t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.crl rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 05:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117CE3, serialNumber=F5B1AF69E420F39B023230275419BA54F8CE1A8B Validity Not Before: May 5 05:02:34 2025 GMT Not After : May 12 05:02:34 2025 GMT Subject: CN=6818466a-2a42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:95:53:d8:aa:34:97:8e:2e:d7:2e:e6:8d:d7: 08:f6:1f:9a:4b:fd:6d:d0:c8:0b:8b:c3:b0:ec:2a: 4b:e5:a3:17:79:ec:f2:fb:60:c8:60:33:0d:b3:ec: 4e:eb:62:bd:6b:dc:0f:db:20:94:2c:7f:83:93:3c: ed:45:ef:3f:f9:ec:f2:bf:99:60:cb:f1:db:24:f7: 77:c1:f2:d9:36:71:e5:72:62:67:58:20:ad:67:cb: 28:c0:40:2a:1f:27:38:2b:5b:26:fb:87:40:97:1f: 54:ef:df:8a:14:19:b9:d0:09:c4:0a:ea:2f:59:30: 9c:31:61:63:76:6f:70:35:1d:b6:ba:e9:bd:47:b8: 11:90:75:49:5b:48:83:13:33:85:a4:4d:08:8e:69: 0c:71:b5:7d:6d:7f:c1:4d:43:b7:b1:9e:37:7f:c0: b0:c5:07:b1:51:53:0a:14:8d:3f:48:04:9e:93:80: 02:85:40:c6:cb:76:a3:e5:d2:59:f6:0d:92:a4:13: b3:04:29:1e:00:e4:b2:b5:80:c6:0b:bd:29:f2:a9: 2c:fb:f1:f3:50:b7:94:27:50:c2:7c:1b:1a:8f:22: 73:6d:12:1e:2f:3f:27:c7:9b:72:05:b2:e4:9d:1e: fc:24:78:43:c8:64:5d:a9:9a:2f:60:56:90:9f:a2: 1e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:A3:07:EC:E6:D0:33:D7:2D:6C:E0:8C:97:76:B5:35:03:1D:D0:27 X509v3 Authority Key Identifier: keyid:F5:B1:AF:69:E4:20:F3:9B:02:32:30:27:54:19:BA:54:F8:CE:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:98:4f:1d:74:ab:1a:a3:8a:7d:23:2e:bf:58:93:23:f3:5d: ec:5b:8c:83:03:2b:e4:ba:43:6b:14:c1:44:e3:c9:e2:39:ef: 60:cb:81:87:2c:18:cf:19:0c:72:6f:16:7f:65:23:2e:f3:4f: 35:9f:66:fd:8f:ae:23:53:bd:82:24:e0:d2:76:72:03:8d:85: 40:8a:f4:2b:36:ae:54:71:d5:f2:62:f2:9c:dc:58:e1:7a:52: f1:6b:af:1f:c3:fd:b3:29:61:58:a4:f0:3e:61:e8:4f:ca:2d: f0:92:00:26:fb:4f:06:8a:99:bf:57:4e:31:58:6d:68:91:49: 67:95:6e:b6:71:63:e5:9d:b0:3a:7f:ab:d9:0a:e8:7d:18:1c: f7:31:2b:72:b2:d4:da:1f:37:b1:b3:f7:e6:2f:cb:29:be:e0: 22:89:83:98:af:79:16:8b:60:ff:47:6c:bb:b6:c2:bf:c2:24: 28:36:db:7a:30:a8:17:87:e8:73:a0:d9:20:00:e9:c4:d4:42: d2:d1:42:fa:b8:34:40:7e:0d:8e:f5:33:68:17:bb:35:0e:af: 70:7a:50:f7:01:0b:91:63:45:61:e3:7a:18:86:2f:29:33:ff: 05:88:91:87:c1:e5:59:ad:bd:dc:8f:f4:61:b7:d6:da:bb:03: 7f:b0:7f:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx N0NFMzExMC8GA1UEBRMoRjVCMUFGNjlFNDIwRjM5QjAyMzIzMDI3NTQxOUJBNTRG OENFMUE4QjAeFw0yNTA1MDUwNTAyMzRaFw0yNTA1MTIwNTAyMzRaMBgxFjAUBgNV BAMTDTY4MTg0NjZhLTJhNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUlVPYqjSXji7XLuaN1wj2H5pL/W3QyAuLw7DsKkvloxd57PL7YMhgMw2z7E7r Yr1r3A/bIJQsf4OTPO1F7z/57PK/mWDL8dsk93fB8tk2ceVyYmdYIK1nyyjAQCof JzgrWyb7h0CXH1Tv34oUGbnQCcQK6i9ZMJwxYWN2b3A1Hba66b1HuBGQdUlbSIMT M4WkTQiOaQxxtX1tf8FNQ7exnjd/wLDFB7FRUwoUjT9IBJ6TgAKFQMbLdqPl0ln2 DZKkE7MEKR4A5LK1gMYLvSnyqSz78fNQt5QnUMJ8GxqPInNtEh4vPyfHm3IFsuSd HvwkeEPIZF2pmi9gVpCfoh5lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+aMH7ObQ M9ctbOCMl3a1NQMd0CcwHwYDVR0jBBgwFoAU9bGvaeQg85sCMjAnVBm6VPjOGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3Q0UzLzJGRDQ1Rjc4QjQ1 QjExRUY5NEU2NzQ1REM0RjlBRTAyLzliR3ZhZVFnODVzQ01qQW5WQm02VlBqT0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWJHdmFlUWc4NXNDTWpBblZCbTZWUGpPR29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 Q0UzLzJGRDQ1Rjc4QjQ1QjExRUY5NEU2NzQ1REM0RjlBRTAyLzliR3ZhZVFnODVz Q01qQW5WQm02VlBqT0dvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFaYTx10qxqjin0jLr9YkyPzXexbjIMDK+S6Q2sUwUTjyeI572DLgYcs GM8ZDHJvFn9lIy7zTzWfZv2PriNTvYIk4NJ2cgONhUCK9Cs2rlRx1fJi8pzcWOF6 UvFrrx/D/bMpYVik8D5h6E/KLfCSACb7TwaKmb9XTjFYbWiRSWeVbrZxY+WdsDp/ q9kK6H0YHPcxK3Ky1NofN7Gz9+Yvyym+4CKJg5iveRaLYP9HbLu2wr/CJCg223ow qBeH6HOg2SAA6cTUQtLRQvq4NEB+DY71M2gXuzUOr3B6UPcBC5FjRWHjehiGLykz /wWIkYfB5VmtvdyP9GG31tq7A3+wf3I= -----END CERTIFICATE-----Generated at Tue May 6 15:46:37 2025 by rpki-client