$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: GPWctIXgHbR6iQz0Tkv+BfHYuGbO2rPFGspwHvBDy7c= Subject key identifier: 1B:E9:B1:46:93:F3:F1:7D:08:F3:29:44:3D:90:2E:11:0F:D4:0C:98 Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: 1F Signing time: Tue 13 May 2025 07:08:28 +0000 Manifest this update: Tue 13 May 2025 07:08:27 +0000 Manifest next update: Tue 20 May 2025 07:08:27 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: Kvl5D3Z5Jig/Yu0NrL5K4q5Hq5S1ZPoK3UfgeWxDOR4=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: kGx1CJpE3cHBsf4M7cgjGHBrxKAD0rzUUv2UM3HRfTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: May 13 07:08:27 2025 GMT Not After : May 20 07:08:27 2025 GMT Subject: CN=6822efeb-6698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d2:a2:91:70:b0:61:c3:d7:90:1b:e8:0c:78: c4:8f:c1:dd:42:a3:a0:74:6d:7f:70:bc:68:ef:b0: 76:b1:32:27:95:53:a2:fd:8a:c5:3d:1f:84:db:d2: 6a:98:bb:f3:1a:65:67:52:74:0b:6b:f3:f8:b6:88: 68:10:10:0c:d9:79:2d:eb:06:e0:18:6d:68:e0:97: 0b:8c:d4:c9:d0:be:b9:70:31:6f:15:00:6a:6c:14: cb:8c:9f:5a:db:1d:66:2a:dc:0a:8b:f3:2b:d5:14: d8:24:12:bc:6c:d5:60:41:37:6d:aa:c3:7c:ec:9a: e8:39:7f:29:d3:41:3d:99:6c:fb:1c:7f:d0:51:d1: f8:98:d9:e3:f1:94:de:77:40:78:6e:a7:c2:89:ea: 29:7a:e7:ea:11:e1:0b:9b:cd:8d:ac:59:73:65:71: 21:93:58:4d:46:03:53:58:cb:6d:6b:ab:22:a9:fa: 95:cf:97:71:2c:a7:3f:54:f2:72:8b:22:f7:7f:c9: f6:97:55:95:97:ef:03:5a:69:82:08:73:f7:c5:01: 17:1d:fc:44:c4:34:ec:e5:0e:e8:bd:2a:71:ec:87: 03:1e:ea:f0:38:fa:03:ed:f5:b6:6d:fb:59:83:fd: fe:bb:f2:5d:10:92:33:74:be:d9:2c:26:35:d5:ff: 32:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E9:B1:46:93:F3:F1:7D:08:F3:29:44:3D:90:2E:11:0F:D4:0C:98 X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:8f:25:26:a5:09:4c:9c:65:77:3c:12:52:18:1f:08:40:3b: ed:7d:c6:0f:4d:ce:47:7d:ed:00:b0:db:90:1c:d4:5a:d5:34: 94:04:66:cb:cb:dc:09:06:6e:01:1f:2f:fa:51:8d:6e:14:86: 23:ba:5c:17:1d:58:41:d1:64:f5:bd:f6:72:21:37:1a:04:85: 99:ba:51:e3:2c:a5:48:14:57:fc:0c:ea:02:23:05:5a:d0:c8: bc:57:0d:52:be:c4:db:88:14:a9:95:64:68:3e:37:04:c3:52: de:66:49:d2:c4:d7:81:3f:30:a0:e9:f3:4b:34:77:45:4f:f9: bf:d0:1a:35:b0:86:2e:89:d7:3a:f7:96:e5:00:14:a6:13:b2: 25:0f:ef:f5:a8:fe:da:37:b0:83:38:64:89:11:27:56:11:46: c1:12:96:cc:f8:ad:9a:65:0b:4e:30:4c:07:73:37:92:3b:af: cb:5f:a8:23:6f:c8:37:91:41:0d:e7:93:a0:56:55:63:13:bc: 02:b8:68:6c:fb:d5:82:39:26:c2:21:9a:d1:82:cb:9e:bb:11: 06:44:30:86:86:9c:59:ef:56:ba:68:be:91:0d:4f:d9:6a:2e: 30:06:6d:95:b0:b9:97:57:18:41:31:53:3e:37:c2:be:bc:3a: ab:d0:26:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoQjAzNDFDMzQzRkUxNTI1Rjc2QzkyOTk2MTBDQTBFNzhF OTNFODdDMzAeFw0yNTA1MTMwNzA4MjdaFw0yNTA1MjAwNzA4MjdaMBgxFjAUBgNV BAMTDTY4MjJlZmViLTY2OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu0qKRcLBhw9eQG+gMeMSPwd1Co6B0bX9wvGjvsHaxMieVU6L9isU9H4Tb0mqY u/MaZWdSdAtr8/i2iGgQEAzZeS3rBuAYbWjglwuM1MnQvrlwMW8VAGpsFMuMn1rb HWYq3AqL8yvVFNgkErxs1WBBN22qw3zsmug5fynTQT2ZbPscf9BR0fiY2ePxlN53 QHhup8KJ6il65+oR4QubzY2sWXNlcSGTWE1GA1NYy21rqyKp+pXPl3Espz9U8nKL Ivd/yfaXVZWX7wNaaYIIc/fFARcd/ETENOzlDui9KnHshwMe6vA4+gPt9bZt+1mD /f678l0QkjN0vtksJjXV/zJFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG+mxRpPz 8X0I8ylEPZAuEQ/UDJgwHwYDVR0jBBgwFoAUsDQcND/hUl92ySmWEMoOeOk+h8Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzQyRkMzRDhBMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc0RRY05EX2hVbDkyeVNtV0VNb09lT2staDhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzQyRkMzRDhBMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5 MnlTbVdFTW9PZU9rLWg4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADGPJSalCUycZXc8ElIYHwhAO+19xg9Nzkd97QCw25Ac1FrVNJQEZsvL 3AkGbgEfL/pRjW4UhiO6XBcdWEHRZPW99nIhNxoEhZm6UeMspUgUV/wM6gIjBVrQ yLxXDVK+xNuIFKmVZGg+NwTDUt5mSdLE14E/MKDp80s0d0VP+b/QGjWwhi6J1zr3 luUAFKYTsiUP7/Wo/to3sIM4ZIkRJ1YRRsESlsz4rZplC04wTAdzN5I7r8tfqCNv yDeRQQ3nk6BWVWMTvAK4aGz71YI5JsIhmtGCy567EQZEMIaGnFnvVrpovpENT9lq LjAGbZWwuZdXGEExUz43wr68OqvQJl8= -----END CERTIFICATE-----Generated at Tue May 13 11:38:35 2025 by rpki-client