$ rpki-client -vvf rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft File: RByw2GqSzt--gIPe1peibWI-5lU.mft (raw, json) Hash identifier: wD0csH/MKZc8u9Yt8SPKDn5wtpWfcsZ0iXeQfvqyvdM= Subject key identifier: AB:43:31:04:13:D1:D9:62:F7:79:1B:CF:80:2A:34:15:D0:E9:01:1A Authority key identifier: 44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 Certificate issuer: /CN=A9171235/serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Certificate serial: 032C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft Manifest number: 0324 Signing time: Sun 11 May 2025 00:40:22 +0000 Manifest this update: Sun 11 May 2025 00:40:22 +0000 Manifest next update: Sun 18 May 2025 00:40:21 +0000 Files and hashes: 1: RByw2GqSzt--gIPe1peibWI-5lU.crl (hash: iDW3pP55umobJ9hUW9sZtzMvOlTWOMLArPkZok1ktXs=) 2: 9C072F22C9E411EC956B0A3CC4F9AE02.roa (hash: YgVhX2rX+zPQ1467o887/FhnDxbWRkvwY5a2EYtW2qQ=) 3: 9CD74392C9E411EC956B0A3CC4F9AE02.roa (hash: 4fhVLBhfu57aeFMCKT6xqBWKFb9Ogft79B2/qJ68TUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171235, serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Validity Not Before: May 11 00:40:22 2025 GMT Not After : May 18 00:40:21 2025 GMT Subject: CN=681ff1f6-e108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:c6:16:48:83:81:ff:45:d7:28:5c:41:36: c6:2a:4c:8c:da:52:5c:a6:80:3d:23:79:6b:55:81: 75:f1:03:f0:29:35:23:75:3b:61:ef:fe:53:87:a6: 1b:3a:73:c7:fa:a9:1c:a2:07:00:7e:8c:fc:4f:63: 0f:a7:5d:6c:e4:bc:5c:0a:8d:da:4c:86:c5:0a:c8: 81:04:3e:00:ba:cc:12:de:a5:19:bf:50:db:9d:90: 68:24:0e:cd:93:a3:ac:fb:dd:bf:ab:91:d6:10:8c: 4f:ee:b8:02:42:c0:ed:42:fe:d6:ae:05:40:91:e3: c2:89:7b:0e:b5:7b:1f:5c:3e:5a:52:fc:77:d5:f2: bb:b4:91:b5:8d:75:de:c6:d6:c6:ff:50:5f:2d:5b: 31:f6:ed:4f:8e:0f:fd:8f:d8:3f:d5:a4:fa:e7:9c: c3:f8:05:a0:02:89:4c:73:33:8b:63:bf:45:d6:bc: 37:6a:ff:1e:d1:e5:4b:2c:1d:da:ec:86:32:86:42: c5:f7:e4:d8:07:15:2d:50:f7:53:6a:9c:14:6a:85: 4b:0b:71:f8:8f:2a:fd:67:19:9c:ac:04:5d:b0:0b: 37:80:0e:0a:e6:b9:2b:2c:3d:ab:7e:65:d6:a1:7c: 2a:5b:e7:ec:82:ff:67:d4:23:b0:c8:14:39:88:28: 22:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:43:31:04:13:D1:D9:62:F7:79:1B:CF:80:2A:34:15:D0:E9:01:1A X509v3 Authority Key Identifier: keyid:44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:1e:a0:2f:70:71:68:0d:05:d2:71:de:c4:55:f9:02:d3:55: 79:4c:67:ba:56:82:6c:c7:2e:9e:40:4c:99:57:87:6a:a9:de: 55:d2:8b:7f:28:35:c1:d5:4b:dc:6a:01:56:18:76:4d:af:04: 42:b1:9e:ca:d7:34:a8:d6:5f:ad:e1:a4:99:e1:4c:07:6a:48: 07:a4:b2:1c:d3:df:87:06:cd:a7:e3:50:c6:2c:d8:c2:a3:ce: bd:f5:41:cf:72:6d:7c:59:c3:26:61:4b:fa:e1:99:26:9a:cd: 54:f1:83:a7:05:2d:e3:7c:10:e9:a3:72:b5:47:6e:32:1e:f8: bc:ef:e1:ab:ab:5f:7c:59:a4:29:1b:02:f9:30:6d:dd:7d:a0: 9f:a5:ab:e4:53:0e:55:59:69:ac:a8:a9:92:25:88:41:f8:0c: 75:3d:3a:ea:e4:8f:f7:e5:b3:38:7d:16:75:33:97:c3:69:93: 52:51:45:89:07:be:59:fa:63:23:0f:7e:77:19:3a:da:f1:de: c2:96:08:b4:cd:20:e2:ec:9f:d8:9f:2a:2d:05:e4:4b:5c:ce: e3:8a:63:2e:bd:33:20:5d:37:30:99:a4:a9:8d:f7:f9:ce:e0: 67:eb:e3:31:f7:37:5e:89:5a:10:6b:50:97:c1:3c:18:a7:dd: 56:67:3e:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyMzUxMTAvBgNVBAUTKDQ0MUNCMEQ4NkE5MkNFREZCRTgwODNERUQ2OTdBMjZE NjIzRUU2NTUwHhcNMjUwNTExMDA0MDIyWhcNMjUwNTE4MDA0MDIxWjAYMRYwFAYD VQQDEw02ODFmZjFmNi1lMTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub3GFkiDgf9F1yhcQTbGKkyM2lJcpoA9I3lrVYF18QPwKTUjdTth7/5Th6Yb OnPH+qkcogcAfoz8T2MPp11s5LxcCo3aTIbFCsiBBD4AuswS3qUZv1DbnZBoJA7N k6Os+92/q5HWEIxP7rgCQsDtQv7WrgVAkePCiXsOtXsfXD5aUvx31fK7tJG1jXXe xtbG/1BfLVsx9u1Pjg/9j9g/1aT655zD+AWgAolMczOLY79F1rw3av8e0eVLLB3a 7IYyhkLF9+TYBxUtUPdTapwUaoVLC3H4jyr9ZxmcrARdsAs3gA4K5rkrLD2rfmXW oXwqW+fsgv9n1COwyBQ5iCgikQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtDMQQT 0dli93kbz4AqNBXQ6QEaMB8GA1UdIwQYMBaAFEQcsNhqks7fvoCD3taXom1iPuZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTIzNS9ERDYxRTIyRUM1 REQxMUVDQkVGNDJDNzdDNEY5QUUwMi9SQnl3MkdxU3p0LS1nSVBlMXBlaWJXSS01 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCeXcyR3FTenQtLWdJUGUxcGVpYldJLTVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTIzNS9ERDYxRTIyRUM1REQxMUVDQkVGNDJDNzdDNEY5QUUwMi9SQnl3MkdxU3p0 LS1nSVBlMXBlaWJXSS01bFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4HqAvcHFoDQXScd7EVfkC01V5TGe6VoJsxy6eQEyZV4dqqd5V0ot/ KDXB1UvcagFWGHZNrwRCsZ7K1zSo1l+t4aSZ4UwHakgHpLIc09+HBs2n41DGLNjC o8699UHPcm18WcMmYUv64Zkmms1U8YOnBS3jfBDpo3K1R24yHvi87+Grq198WaQp GwL5MG3dfaCfpavkUw5VWWmsqKmSJYhB+Ax1PTrq5I/35bM4fRZ1M5fDaZNSUUWJ B75Z+mMjD353GTra8d7Clgi0zSDi7J/YnyotBeRLXM7jimMuvTMgXTcwmaSpjff5 zuBn6+Mx9zdeiVoQa1CXwTwYp91WZz7w -----END CERTIFICATE-----Generated at Mon May 12 19:48:32 2025 by rpki-client