$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: rv8BTRZ5OFUeMRLqufmLHZ9U4hzLprRUCu7b99Am2lk= Subject key identifier: D4:D8:12:35:E0:4D:74:49:A7:8D:5E:EB:FF:DD:EE:40:93:EE:22:9F Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01C9 Signing time: Tue 13 May 2025 02:09:41 +0000 Manifest this update: Tue 13 May 2025 02:09:40 +0000 Manifest next update: Tue 20 May 2025 02:09:40 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: 9nyIN1lt1TnhBfoICcIj3EfOyfu5LVhpsSzgjnUaQD4=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: May 13 02:09:40 2025 GMT Not After : May 20 02:09:40 2025 GMT Subject: CN=6822a9e4-ae9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:18:e4:7f:a4:8f:f7:2e:ba:88:7c:b3:5b:f6: 78:a0:de:d6:4d:fc:96:63:ef:bc:a3:df:4a:a8:25: b5:76:f6:6a:ec:d4:07:3a:6e:a3:1d:c9:2a:2b:ed: c0:74:fe:c3:78:3f:8b:d4:ea:84:9b:1a:47:cc:3b: 5f:b7:0e:45:1a:ec:b6:c9:16:a3:71:81:30:0a:d6: 7d:06:b3:91:b5:71:e6:04:4a:6d:a9:81:4f:70:9e: df:68:34:77:a2:74:e4:de:0e:30:8d:87:42:b8:d4: 99:ae:2e:aa:7d:4b:f1:2d:53:45:37:dd:36:02:b9: 4c:94:15:02:1c:03:0e:c1:d4:6e:50:70:ff:d0:85: 9a:20:27:55:f1:e8:75:30:51:69:c7:46:15:18:ae: 0d:18:4e:0c:1b:2f:8c:a3:bd:ce:16:92:e2:70:ea: 1f:6b:4e:19:e2:4b:64:a8:6c:b5:8d:76:fb:6f:e8: 97:ec:e0:74:b6:24:6e:7d:c2:45:e6:d8:3d:d3:8b: 45:c0:84:b4:86:c2:95:5d:fd:17:6b:70:be:ee:ec: 57:d6:2c:38:48:27:b0:da:f4:dd:bd:7b:c4:e2:22: 66:12:9b:fa:00:21:eb:fa:1c:ab:18:a8:a4:9c:37: df:56:f5:61:14:df:1f:2e:5a:de:c0:ea:e0:54:72: 33:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D8:12:35:E0:4D:74:49:A7:8D:5E:EB:FF:DD:EE:40:93:EE:22:9F X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d5:00:6b:4e:e7:82:b2:df:d6:03:48:63:47:95:05:ea:12: 74:20:de:4e:c5:e5:6f:39:26:d7:3d:2c:de:ed:fb:0e:3a:b9: 34:5b:0c:bd:bc:7d:21:aa:83:96:9d:d7:e2:12:ee:11:98:7a: fd:de:70:5e:d2:3a:9a:18:83:d3:16:ee:b2:8e:06:2a:b6:22: ee:be:49:e7:fd:f7:12:37:cb:4b:d3:61:5b:2c:40:f5:82:f2: e3:81:9a:a7:6c:09:8f:74:a5:70:c4:cb:c5:1e:c9:7b:f3:f6: 76:79:b8:1f:b1:ca:6f:8c:14:73:2c:d2:9b:13:87:3a:3a:c9: f0:7b:25:2c:55:fa:33:6f:d5:69:0f:73:1e:e3:2b:a6:d4:b2: 46:70:df:08:96:1a:33:0f:78:bf:1a:8a:7c:26:2a:f7:c8:bb: 4a:7e:38:79:6b:3e:9e:eb:17:2b:51:97:54:5f:e7:9c:2b:7d: 42:e4:a7:48:e2:ee:b4:58:9d:31:7b:cd:6a:1f:db:ff:52:1e: d6:24:a3:ec:30:fd:ef:8d:0d:c3:cb:a0:09:51:4b:e5:0b:5b: ef:56:69:c3:07:8f:74:ea:8b:e7:d9:57:45:3a:d5:ac:4f:80: f9:82:29:34:77:20:53:34:d4:81:ed:b2:33:46:7c:41:eb:32: 9d:6a:ab:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwNTEzMDIwOTQwWhcNMjUwNTIwMDIwOTQwWjAYMRYwFAYD VQQDEw02ODIyYTllNC1hZTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRjkf6SP9y66iHyzW/Z4oN7WTfyWY++8o99KqCW1dvZq7NQHOm6jHckqK+3A dP7DeD+L1OqEmxpHzDtftw5FGuy2yRajcYEwCtZ9BrORtXHmBEptqYFPcJ7faDR3 onTk3g4wjYdCuNSZri6qfUvxLVNFN902ArlMlBUCHAMOwdRuUHD/0IWaICdV8eh1 MFFpx0YVGK4NGE4MGy+Mo73OFpLicOofa04Z4ktkqGy1jXb7b+iX7OB0tiRufcJF 5tg904tFwIS0hsKVXf0Xa3C+7uxX1iw4SCew2vTdvXvE4iJmEpv6ACHr+hyrGKik nDffVvVhFN8fLlrewOrgVHIzPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTYEjXg TXRJp41e6//d7kCT7iKfMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD1QBrTueCst/WA0hjR5UF6hJ0IN5OxeVvOSbXPSze7fsOOrk0Wwy9 vH0hqoOWndfiEu4RmHr93nBe0jqaGIPTFu6yjgYqtiLuvknn/fcSN8tL02FbLED1 gvLjgZqnbAmPdKVwxMvFHsl78/Z2ebgfscpvjBRzLNKbE4c6OsnweyUsVfozb9Vp D3Me4yum1LJGcN8IlhozD3i/Gop8Jir3yLtKfjh5az6e6xcrUZdUX+ecK31C5KdI 4u60WJ0xe81qH9v/Uh7WJKPsMP3vjQ3Dy6AJUUvlC1vvVmnDB4906ovn2VdFOtWs T4D5gik0dyBTNNSB7bIzRnxB6zKdaquc -----END CERTIFICATE-----Generated at Wed May 14 07:19:05 2025 by rpki-client