$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: 4t+JJuxaaesQ+uEAAnGwUKNpEy/VQarJGogTbsmRjlA= Subject key identifier: BE:0B:A0:41:B8:0E:8D:8B:81:15:20:98:B4:63:B2:FD:2D:95:E5:F0 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 74 Signing time: Tue 13 May 2025 06:00:52 +0000 Manifest this update: Tue 13 May 2025 06:00:51 +0000 Manifest next update: Tue 20 May 2025 06:00:51 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: 0Ug6+Rgkgwoxc70PvpQsLYtqCy+7cRg95QCGdgAJmcs=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: May 13 06:00:51 2025 GMT Not After : May 20 06:00:51 2025 GMT Subject: CN=6822e014-62b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:21:1c:3d:a3:7b:e5:59:77:b9:d8:e6:2d: 05:27:b9:e9:80:7c:89:35:2b:80:06:d9:58:bf:db: b4:ef:0d:b7:99:33:83:98:a3:f0:29:ac:e2:f2:e7: 46:20:b6:51:1d:d4:05:18:6e:53:5d:9e:dd:bc:8e: 82:3d:7c:88:1b:25:38:32:ec:f1:e4:8d:e9:bd:9c: 7c:4c:e5:7f:49:f5:a5:e8:2c:99:48:f0:07:35:a1: b5:a9:eb:76:8a:61:bc:21:42:2a:60:1e:9a:b1:a3: 02:dc:07:3b:99:13:2b:8e:b7:ec:26:a9:23:83:27: bc:6d:bf:d4:0e:ee:48:0c:a9:6a:e6:b7:85:40:b5: e8:e6:2c:e4:24:66:74:ef:ce:c3:2b:0b:a6:62:a1: c6:a4:30:0c:c6:4d:68:f2:2e:69:a4:ed:72:fd:bd: 17:bb:32:bd:51:1c:08:1a:5f:70:78:90:7f:44:1d: d2:d5:de:e0:af:54:c0:a2:39:c3:59:0f:45:9e:3b: e1:7f:0c:83:cb:86:e7:cb:47:5c:3c:2d:12:56:16: 7c:b7:d7:51:2f:05:a3:6c:ce:c7:a8:cb:3a:fa:19: 89:66:1b:61:f3:b4:f3:da:07:88:5c:5a:7c:1e:12: 68:76:fb:b7:58:6d:23:ce:a9:ba:d1:29:f6:35:24: 37:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0B:A0:41:B8:0E:8D:8B:81:15:20:98:B4:63:B2:FD:2D:95:E5:F0 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:3d:47:e0:2e:b8:63:a0:44:58:a0:74:ce:72:06:b3:2d:f8: 7a:a8:cf:2b:bc:dc:39:fb:cc:aa:d1:d1:c8:4f:af:2a:70:f1: f6:68:82:93:6c:de:b7:b6:ec:4e:f4:e7:3d:d2:ae:bd:15:be: 13:9b:3c:fb:26:80:d8:a0:8a:f9:8c:97:16:9b:d2:00:f5:d3: 12:b5:e6:ce:25:b1:53:b1:37:51:52:bc:e9:78:9d:a4:d2:34: 6f:91:9e:3d:25:56:e6:ca:5c:17:93:e7:f4:82:4f:80:13:44: 77:4a:d7:96:78:10:b1:a8:e1:be:16:27:ea:90:d3:e5:4e:3c: 76:5e:29:1b:cc:1e:1a:1f:7d:94:2e:b2:a3:a4:c5:0b:d2:68: 2a:bc:0d:0c:64:d8:19:d9:44:84:12:ed:7d:86:e9:1f:3a:26: 07:77:75:52:42:62:47:c2:9b:2e:fe:1b:a4:20:fe:85:7e:03: e7:87:44:12:1a:2e:aa:d5:a9:d1:e1:16:87:ea:90:88:2d:62: f4:3f:d7:f5:20:87:54:00:7e:0b:4f:ae:4d:15:07:f0:e2:dc: a1:88:56:01:9e:41:6c:a2:73:57:49:41:5b:c5:2f:b6:67:32: c5:2a:41:79:cf:21:26:af:3a:71:bd:b9:0b:2a:b6:63:56:ac: 9e:74:3c:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEVFRDExMC8GA1UEBRMoNjkxOEFBNzFGMzZCMDQ2MzUzQTY1Q0MwODk3OEIxOEVG RkI5RjVDNjAeFw0yNTA1MTMwNjAwNTFaFw0yNTA1MjAwNjAwNTFaMBgxFjAUBgNV BAMTDTY4MjJlMDE0LTYyYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6YyEcPaN75Vl3udjmLQUnuemAfIk1K4AG2Vi/27TvDbeZM4OYo/AprOLy50Yg tlEd1AUYblNdnt28joI9fIgbJTgy7PHkjem9nHxM5X9J9aXoLJlI8Ac1obWp63aK YbwhQipgHpqxowLcBzuZEyuOt+wmqSODJ7xtv9QO7kgMqWrmt4VAtejmLOQkZnTv zsMrC6ZiocakMAzGTWjyLmmk7XL9vRe7Mr1RHAgaX3B4kH9EHdLV3uCvVMCiOcNZ D0WeO+F/DIPLhufLR1w8LRJWFny311EvBaNszseoyzr6GYlmG2HztPPaB4hcWnwe Emh2+7dYbSPOqbrRKfY1JDdlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvgugQbgO jYuBFSCYtGOy/S2V5fAwHwYDVR0jBBgwFoAUaRiqcfNrBGNTplzAiXixjv+59cYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRUVELzM3NDAyQURFODUz QjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTlj WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVJpcWNmTnJCR05UcGx6QWlYaXhqdi01OWNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RUVELzM3NDAyQURFODUzQjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdO VHBsekFpWGl4anYtNTljWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACw9R+AuuGOgRFigdM5yBrMt+Hqozyu83Dn7zKrR0chPrypw8fZogpNs 3re27E705z3Srr0VvhObPPsmgNigivmMlxab0gD10xK15s4lsVOxN1FSvOl4naTS NG+Rnj0lVubKXBeT5/SCT4ATRHdK15Z4ELGo4b4WJ+qQ0+VOPHZeKRvMHhoffZQu sqOkxQvSaCq8DQxk2BnZRIQS7X2G6R86Jgd3dVJCYkfCmy7+G6Qg/oV+A+eHRBIa LqrVqdHhFofqkIgtYvQ/1/Ugh1QAfgtPrk0VB/Di3KGIVgGeQWyic1dJQVvFL7Zn MsUqQXnPISavOnG9uQsqtmNWrJ50PLU= -----END CERTIFICATE-----Generated at Tue May 13 19:36:55 2025 by rpki-client