$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: BvfWfpEfRF5FN7AItFRJAdZ8LS502JWAuWJQf+3gshI= Subject key identifier: 31:E3:40:A5:8C:7B:28:F3:34:91:D2:C7:76:9B:8B:95:65:75:51:7F Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0970 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0950 Signing time: Wed 14 May 2025 20:21:47 +0000 Manifest this update: Wed 14 May 2025 20:21:46 +0000 Manifest next update: Wed 21 May 2025 20:21:46 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: HYVnzuWJZlt+Qellr+VjNovlKi0cwb24PlF+i5ycrwA=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2416 (0x970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: May 14 20:21:46 2025 GMT Not After : May 21 20:21:46 2025 GMT Subject: CN=6824fb5a-559d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a3:3f:da:95:8b:c9:07:ad:1d:da:85:6d:ce: 9a:85:cc:77:df:c6:d9:59:e2:c5:1d:04:56:f8:4a: 2e:d6:91:fe:75:0f:0e:6b:e2:f2:97:f6:54:03:8a: 61:67:75:8c:7e:9b:dc:d8:70:0e:e7:84:26:ae:1d: 0e:b9:fc:de:6d:9e:d8:83:94:01:1f:ce:71:6a:6e: 42:3a:88:ec:ba:1a:29:3a:f7:f2:6a:2b:cf:c1:c1: 55:04:06:37:5d:1b:6b:46:af:a0:c5:7a:f3:35:90: 6b:8e:5c:92:8e:51:5d:bd:1c:0b:c7:7d:00:1a:e5: 93:ed:81:f1:34:4d:5c:77:d1:85:a2:fb:6c:8a:5c: 77:53:ba:ee:ae:b0:81:a2:25:c0:b9:92:56:b7:67: 0b:1f:bc:67:3b:03:2f:90:b6:3e:a8:a4:b8:fb:1e: f9:6d:f7:42:be:91:dd:57:e0:8a:bc:dc:f9:47:e2: 1f:01:65:58:19:c5:75:1b:50:19:72:ae:36:f9:4c: 0d:3d:c5:42:15:7c:c7:a4:00:9d:4b:20:db:48:71: 3a:a8:89:bf:07:a2:9e:a1:d7:7f:d5:ce:fd:56:fd: 8d:9f:1f:cb:d2:8f:ac:f4:b4:f8:1c:d0:5b:b2:a7: 97:4c:d6:f2:1f:5f:8a:69:21:81:6a:7f:85:eb:30: eb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:E3:40:A5:8C:7B:28:F3:34:91:D2:C7:76:9B:8B:95:65:75:51:7F X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:38:81:56:48:56:a4:89:cb:e7:2c:47:19:92:e7:a1:8e:7d: a9:94:25:8d:05:2d:12:81:4b:68:bd:ae:70:c3:d4:bc:51:25: 90:46:ad:3a:94:bd:84:40:fa:c1:3f:a0:4c:13:96:22:b8:af: f9:a8:4d:d0:8a:47:46:fc:a2:9a:84:47:97:ee:b0:d2:c0:52: 0a:c7:13:a5:c6:b2:7c:d7:0c:b7:31:b4:73:c8:66:80:95:b1: 3b:12:cc:02:9c:89:2f:26:74:9d:90:2e:30:12:b4:94:41:b2: f1:64:eb:51:6d:fd:5d:f6:14:b9:bc:3a:6d:67:0f:db:7b:55: e6:5a:5b:15:fe:72:da:17:82:04:bf:8f:ef:48:64:2f:b1:d9: 63:c3:e9:00:30:f7:60:18:5a:83:66:57:95:fa:0f:f6:3a:af: e8:61:f4:59:af:f4:b1:2b:ff:7f:c9:11:4b:11:5c:ac:1f:e1: 15:7b:b9:aa:4e:b2:32:9d:c8:26:4c:47:43:d4:92:4e:c1:94: f6:c7:ab:d7:aa:c9:02:cd:53:ad:3d:d2:3b:3a:cd:a1:f4:7e: 29:e9:48:e3:30:5f:76:2a:49:b8:16:9d:30:22:2f:63:00:50: 89:98:9f:fe:66:4d:7d:bf:e9:fe:b0:1e:28:e8:84:e8:5e:6f: e3:8e:13:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwNTE0MjAyMTQ2WhcNMjUwNTIxMjAyMTQ2WjAYMRYwFAYD VQQDEw02ODI0ZmI1YS01NTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8aM/2pWLyQetHdqFbc6ahcx338bZWeLFHQRW+Eou1pH+dQ8Oa+Lyl/ZUA4ph Z3WMfpvc2HAO54Qmrh0OufzebZ7Yg5QBH85xam5COojsuhopOvfyaivPwcFVBAY3 XRtrRq+gxXrzNZBrjlySjlFdvRwLx30AGuWT7YHxNE1cd9GFovtsilx3U7rurrCB oiXAuZJWt2cLH7xnOwMvkLY+qKS4+x75bfdCvpHdV+CKvNz5R+IfAWVYGcV1G1AZ cq42+UwNPcVCFXzHpACdSyDbSHE6qIm/B6Keodd/1c79Vv2Nnx/L0o+s9LT4HNBb sqeXTNbyH1+KaSGBan+F6zDrlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHjQKWM eyjzNJHSx3abi5VldVF/MB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZOIFWSFakicvnLEcZkuehjn2plCWNBS0SgUtova5ww9S8USWQRq06 lL2EQPrBP6BME5YiuK/5qE3QikdG/KKahEeX7rDSwFIKxxOlxrJ81wy3MbRzyGaA lbE7EswCnIkvJnSdkC4wErSUQbLxZOtRbf1d9hS5vDptZw/be1XmWlsV/nLaF4IE v4/vSGQvsdljw+kAMPdgGFqDZleV+g/2Oq/oYfRZr/SxK/9/yRFLEVysH+EVe7mq TrIyncgmTEdD1JJOwZT2x6vXqskCzVOtPdI7Os2h9H4p6UjjMF92Kkm4Fp0wIi9j AFCJmJ/+Zk19v+n+sB4o6IToXm/jjhMZ -----END CERTIFICATE-----Generated at Thu May 15 00:01:08 2025 by rpki-client