$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: 2I04g6ojpChqMOUjEJc4FWbu4LGSkHRRsxoLa4wA9og= Subject key identifier: FB:FE:07:34:00:F3:46:65:C5:0D:98:40:91:92:A9:DB:71:30:B7:12 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: B1 Signing time: Thu 15 May 2025 05:18:52 +0000 Manifest this update: Thu 15 May 2025 05:18:51 +0000 Manifest next update: Thu 22 May 2025 05:18:51 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: ZOfHQ8HzSwSHh782FpxzmQRPEDc66w251p73HEQWysQ=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: 8wJfVmwicvQp5ybkXyvh/U8tiFP/mOR8lTRB18DXQ0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: May 15 05:18:51 2025 GMT Not After : May 22 05:18:51 2025 GMT Subject: CN=6825793b-3318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9c:72:ee:7f:f4:d2:f4:fd:f0:a0:b3:8c:0d: bf:2a:92:ee:82:92:70:c6:f2:69:05:f4:87:1e:fa: 4f:d5:b9:48:82:c5:b6:85:f0:5a:ce:06:5a:1e:80: ba:d1:2a:79:32:8b:dc:7f:d4:18:43:3c:ff:1a:b2: 50:8d:a0:67:bf:d9:ca:27:22:85:1c:d2:de:de:4c: e5:81:e3:bc:f3:be:02:40:a7:7a:d8:74:8c:f2:89: 5e:16:6d:1c:2c:e0:5a:3a:6d:ea:78:89:e2:9a:03: d1:1d:f2:f2:f3:ba:43:1d:00:6f:f1:c5:3b:d1:09: cc:ad:56:4b:2f:a3:d4:50:52:ad:d9:6b:c6:6a:87: 0b:b1:7c:13:10:f8:85:9c:a3:f9:3f:00:06:2e:30: 93:a7:a6:a3:f6:80:ac:4a:c6:a5:f0:70:d6:5e:c0: b5:79:cb:14:0b:a2:40:6d:1c:1d:7c:1f:ed:fa:3a: 16:24:0a:3c:33:20:37:2c:74:5f:b4:b1:77:44:e5: 07:15:f6:4c:7b:1a:8e:d5:af:4f:c7:5a:e4:1a:36: 0d:d4:86:12:cd:b5:a5:c4:71:71:82:7e:59:27:42: bb:32:2c:40:27:e2:9a:94:9d:56:94:0b:8f:0a:15: fc:a4:5e:e8:5b:b6:48:bf:7f:c8:29:31:26:4e:de: 67:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:FE:07:34:00:F3:46:65:C5:0D:98:40:91:92:A9:DB:71:30:B7:12 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:fe:d7:b9:60:f2:7e:b7:a1:8f:ca:80:c4:dc:41:d8:54:cd: f6:07:da:b3:2f:75:0c:c2:e5:95:a0:4f:d2:d4:20:fb:87:59: 05:a6:14:28:9f:d1:e5:a3:3d:0f:28:4c:80:db:b1:58:0b:7a: 5f:5f:c0:6c:f0:77:41:c4:b1:c4:d1:26:c8:1b:be:e2:66:35: cb:1b:c4:75:6d:20:fb:3d:be:af:2e:bc:e7:ca:26:37:34:6f: 6a:4c:7c:9f:5a:d7:ba:63:4d:b3:6f:4b:32:7b:b7:78:1f:9d: 50:fa:a6:02:f3:fb:1a:a4:88:62:4f:fd:b4:e8:98:22:02:ca: 9d:5d:08:b8:bd:cd:ac:ed:ed:d3:f1:e7:52:c9:ac:0a:c4:05: 77:b4:11:01:af:a4:53:13:45:16:88:fd:72:56:48:19:1b:63: fa:1e:7e:b2:ae:e9:ea:ec:94:99:b4:98:73:be:ef:28:d0:17: ab:f6:77:e6:90:15:be:3d:09:57:c8:24:85:79:a6:af:8d:b7: dd:56:66:25:5d:77:ab:7a:b0:ff:3e:a5:c5:21:4f:b7:eb:3f: 30:23:03:f3:80:09:b3:c7:55:f4:e9:26:71:e5:bd:b4:19:6f: 0e:cc:02:1f:66:b8:76:b7:5c:37:b7:81:fa:c7:79:c7:99:4e: e0:7f:45:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUwNTE1MDUxODUxWhcNMjUwNTIyMDUxODUxWjAYMRYwFAYD VQQDEw02ODI1NzkzYi0zMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZxy7n/00vT98KCzjA2/KpLugpJwxvJpBfSHHvpP1blIgsW2hfBazgZaHoC6 0Sp5Movcf9QYQzz/GrJQjaBnv9nKJyKFHNLe3kzlgeO8874CQKd62HSM8oleFm0c LOBaOm3qeInimgPRHfLy87pDHQBv8cU70QnMrVZLL6PUUFKt2WvGaocLsXwTEPiF nKP5PwAGLjCTp6aj9oCsSsal8HDWXsC1ecsUC6JAbRwdfB/t+joWJAo8MyA3LHRf tLF3ROUHFfZMexqO1a9Px1rkGjYN1IYSzbWlxHFxgn5ZJ0K7MixAJ+KalJ1WlAuP ChX8pF7oW7ZIv3/IKTEmTt5npQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPv+BzQA 80ZlxQ2YQJGSqdtxMLcSMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB/te5YPJ+t6GPyoDE3EHYVM32B9qzL3UMwuWVoE/S1CD7h1kFphQo n9Hloz0PKEyA27FYC3pfX8Bs8HdBxLHE0SbIG77iZjXLG8R1bSD7Pb6vLrznyiY3 NG9qTHyfWte6Y02zb0sye7d4H51Q+qYC8/sapIhiT/206JgiAsqdXQi4vc2s7e3T 8edSyawKxAV3tBEBr6RTE0UWiP1yVkgZG2P6Hn6yrunq7JSZtJhzvu8o0Ber9nfm kBW+PQlXyCSFeaavjbfdVmYlXXererD/PqXFIU+36z8wIwPzgAmzx1X06SZx5b20 GW8OzAIfZrh2t1w3t4H6x3nHmU7gf0Vs -----END CERTIFICATE-----Generated at Fri May 16 02:33:23 2025 by rpki-client