$ rpki-client -vvf rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft File: a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft (raw, json) Hash identifier: AM+8lNPe2KLndrI5QA786RvkGRO66bUuDypJRbIaY30= Subject key identifier: 93:E3:9C:54:4B:09:C1:C2:B2:94:B9:2F:20:76:1F:12:73:4B:89:92 Authority key identifier: 6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D Certificate issuer: /CN=A9164655/serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D Certificate serial: 0539 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft Manifest number: 0535 Signing time: Sat 10 May 2025 23:03:53 +0000 Manifest this update: Sat 10 May 2025 23:03:53 +0000 Manifest next update: Sat 17 May 2025 23:03:53 +0000 Files and hashes: 1: a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl (hash: KnTTdn5P3hqDl1UcceQ4ffK61E3z4jPCbLWMLfpj9NI=) 2: B2CB84D4F3E211EB9512E219C4F9AE02.roa (hash: AKQYRTBp1uq5xNSQ+35Oq/CNR0101RtjFiouleUDl3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1337 (0x539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164655, serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D Validity Not Before: May 10 23:03:53 2025 GMT Not After : May 17 23:03:53 2025 GMT Subject: CN=681fdb59-142b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bf:82:38:69:ec:71:ab:c7:23:e3:a8:7c:4c: 18:2a:dc:1d:77:2f:b7:ab:ab:16:86:7b:75:bf:79: 51:58:e6:f6:cf:31:7c:27:d2:2d:f0:35:80:d8:7e: e5:26:a8:a6:f8:0b:c1:81:27:5c:b6:11:51:8b:81: 41:3a:2d:26:80:cb:0c:7d:79:94:80:aa:d7:58:73: 04:55:e7:1d:7a:2b:e0:79:a8:fd:89:60:7a:5e:de: c7:c7:5c:bb:c0:7b:a3:0a:df:64:64:f3:c7:a5:1c: 2f:07:52:6a:c5:7d:79:00:2a:9e:13:be:13:89:1e: 52:9c:d8:d7:57:08:7e:94:6a:58:52:5a:52:1a:95: 53:98:c8:5e:49:ee:43:b0:d1:05:96:cf:9d:78:e1: 94:d6:aa:9c:55:9a:b0:35:b2:bf:69:8b:51:9c:85: 15:c7:c9:53:9c:57:c1:d4:3b:fb:47:9e:42:74:57: 70:32:e0:ab:a7:07:ca:04:f7:b0:41:08:6a:a8:ef: 91:2a:94:28:a2:59:e2:72:9f:20:2e:42:fe:7d:3d: 55:ef:1b:45:d4:5f:db:32:75:0e:ae:8f:fa:ec:2f: f3:58:bd:14:cb:74:6a:fa:aa:48:9c:46:0e:98:be: c8:a6:39:c1:77:fb:5a:57:e5:16:12:56:b3:79:5c: b1:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E3:9C:54:4B:09:C1:C2:B2:94:B9:2F:20:76:1F:12:73:4B:89:92 X509v3 Authority Key Identifier: keyid:6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:12:1e:39:09:05:04:63:09:eb:bd:78:04:d6:17:de:05:2a: 76:e7:91:89:66:63:1a:a1:70:cd:43:89:a3:1d:99:cc:a4:d5: 2c:c0:dd:bd:70:bf:7d:a6:97:a2:8c:e9:f6:63:14:be:ee:c4: b4:1d:de:e4:54:ad:ec:52:13:0c:4b:f9:ae:d0:29:77:27:a8: f5:e5:17:a2:2b:c4:c2:28:4b:82:cc:5d:b5:16:09:92:68:2f: aa:eb:16:67:1b:2b:45:72:40:ca:9f:03:65:82:99:aa:e8:06: 0f:d5:29:51:33:fe:40:fb:2e:44:72:56:b8:20:53:36:0c:d9: 0b:c5:97:3e:f4:20:2d:38:70:c5:52:cf:27:b9:9e:0e:78:0c: d9:53:d9:3a:81:65:55:79:c9:35:1c:fe:22:37:ae:35:ad:b8: 7b:c1:14:0e:63:00:e1:c1:83:0a:c6:ab:19:2f:d2:96:02:a5: d3:f6:66:83:ea:28:1a:b6:8b:db:0b:59:2e:2b:56:8e:86:05: 55:63:37:6e:1d:6b:60:10:f1:56:fc:f2:3c:b8:f9:86:56:67: 63:7d:83:31:3d:0c:bc:ff:ed:16:f4:21:42:d4:2f:f9:cd:cd: 15:bd:aa:4b:31:ef:25:e4:27:f9:40:b7:0e:cd:fd:a7:39:6e: 49:80:50:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NTUxMTAvBgNVBAUTKDZCRDE0NUVDRTQyQUU0RkQ4MkFENjdDRkQxQTQwNTlB OUVBQjNBNkQwHhcNMjUwNTEwMjMwMzUzWhcNMjUwNTE3MjMwMzUzWjAYMRYwFAYD VQQDEw02ODFmZGI1OS0xNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwr+COGnscavHI+OofEwYKtwddy+3q6sWhnt1v3lRWOb2zzF8J9It8DWA2H7l Jqim+AvBgSdcthFRi4FBOi0mgMsMfXmUgKrXWHMEVecdeivgeaj9iWB6Xt7Hx1y7 wHujCt9kZPPHpRwvB1JqxX15ACqeE74TiR5SnNjXVwh+lGpYUlpSGpVTmMheSe5D sNEFls+deOGU1qqcVZqwNbK/aYtRnIUVx8lTnFfB1Dv7R55CdFdwMuCrpwfKBPew QQhqqO+RKpQoolnicp8gLkL+fT1V7xtF1F/bMnUOro/67C/zWL0Uy3Rq+qpInEYO mL7IpjnBd/taV+UWElazeVyxMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPjnFRL CcHCspS5LyB2HxJzS4mSMB8GA1UdIwQYMBaAFGvRRezkKuT9gq1nz9GkBZqeqzpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY1NS9EOEJCODQ5QUYz REUxMUVCOUU1RUMwNkVDNEY5QUUwMi9hOUZGN09RcTVQMkNyV2ZQMGFRRm1wNnJP bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5RkY3T1FxNVAyQ3JXZlAwYVFGbXA2ck9tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY1NS9EOEJCODQ5QUYzREUxMUVCOUU1RUMwNkVDNEY5QUUwMi9hOUZGN09RcTVQ MkNyV2ZQMGFRRm1wNnJPbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMEh45CQUEYwnrvXgE1hfeBSp255GJZmMaoXDNQ4mjHZnMpNUswN29 cL99ppeijOn2YxS+7sS0Hd7kVK3sUhMMS/mu0Cl3J6j15ReiK8TCKEuCzF21FgmS aC+q6xZnGytFckDKnwNlgpmq6AYP1SlRM/5A+y5Ecla4IFM2DNkLxZc+9CAtOHDF Us8nuZ4OeAzZU9k6gWVVeck1HP4iN641rbh7wRQOYwDhwYMKxqsZL9KWAqXT9maD 6igatovbC1kuK1aOhgVVYzduHWtgEPFW/PI8uPmGVmdjfYMxPQy8/+0W9CFC1C/5 zc0VvapLMe8l5Cf5QLcOzf2nOW5JgFCe -----END CERTIFICATE-----Generated at Sun May 11 12:35:32 2025 by rpki-client