$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: i15ruWiZ3mhiTgMqTYEu7ZLlDJDyW9LAUEw8+LjEnas= Subject key identifier: 20:F1:8B:7A:17:ED:E5:0F:0F:3E:F5:93:78:DE:5D:08:70:09:AD:2D Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0AF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0AEA Signing time: Sun 04 May 2025 19:12:06 +0000 Manifest this update: Sun 04 May 2025 19:12:05 +0000 Manifest next update: Sun 11 May 2025 19:12:05 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: JP1bIyWBc8eb+5G5L5ftrnwP/woVXynrWoozLBUAQvI=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2801 (0xaf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: May 4 19:12:05 2025 GMT Not After : May 11 19:12:05 2025 GMT Subject: CN=6817bc05-9704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f6:44:3c:82:f6:28:cc:9c:ba:53:b6:2e:5e: a7:4e:4e:8e:23:31:68:07:29:42:5e:a3:76:4a:b0: fb:92:07:b3:9e:16:af:29:58:a2:92:2c:9b:05:9e: b6:6b:cc:fb:a8:e9:bb:1a:3b:c5:dc:6f:85:18:46: c3:76:c0:6d:eb:f1:eb:2f:9a:d2:09:4c:2d:b6:91: 37:ec:56:a9:60:1d:60:98:37:42:7c:2a:06:16:71: 29:db:b1:db:4f:08:3b:16:73:62:e4:cc:16:38:9e: fd:a5:dd:01:2f:e3:d4:6f:3a:b1:fb:2b:0d:f8:a8: ce:6a:4d:3f:72:73:6a:11:41:30:d3:99:0d:77:9e: c0:c5:8e:e5:bb:29:61:77:b5:6e:6e:82:87:79:a1: 31:73:00:aa:89:52:9f:bb:ed:48:b9:73:cc:9f:8f: f0:92:90:b6:dc:0b:bf:e6:5d:21:07:db:d4:1f:db: 6b:c6:8f:53:37:d9:0d:78:ca:ca:91:c0:88:b4:c0: 23:e3:e1:73:47:27:4e:17:2f:02:62:ca:7a:87:17: 6e:1d:7a:26:89:10:44:30:a4:8f:8f:4f:d2:46:83: 4e:ea:4e:2e:5c:dd:43:9e:6e:e6:75:7c:e9:e4:40: ce:ac:97:b1:df:57:e2:86:92:60:7c:1e:9a:9f:22: f6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F1:8B:7A:17:ED:E5:0F:0F:3E:F5:93:78:DE:5D:08:70:09:AD:2D X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:4a:2c:c2:68:e1:d7:a8:c7:28:01:5d:d0:9f:ef:3e:e1:c2: ac:05:c6:54:85:91:40:47:e1:84:b2:23:5d:78:e4:e4:b5:3f: f7:cc:f1:83:c4:1a:4d:7b:08:0d:3e:9a:33:6e:70:4b:26:dc: c1:5f:b5:ca:b9:53:13:1b:6b:42:22:e3:0b:b9:99:61:1c:68: 9b:ed:37:10:e4:b5:88:ae:c8:5c:1b:f2:d2:72:eb:ea:3d:23: f8:65:d0:5d:5b:92:ca:b4:ed:1f:03:90:f6:c5:b9:a5:5a:87: 48:3a:4a:b3:e0:cd:e6:62:25:8d:0b:33:55:e8:47:7e:e4:4b: 4e:d8:7b:ae:20:62:b9:46:2e:81:e9:f4:cb:e5:57:0e:61:b6: df:a8:7c:c3:24:c9:92:ad:3d:25:63:e9:46:8b:bb:d0:97:ed: bd:47:54:f7:ee:1a:03:af:f4:26:dc:e5:30:56:4a:df:7a:d4: fa:c9:da:c1:15:66:9c:c5:c3:72:8d:2e:62:d9:db:00:83:68: 09:a7:45:77:f9:75:72:bd:42:ab:0a:35:ee:ae:fb:cb:ac:f3: 49:88:f5:7e:0b:6a:38:e7:93:ef:68:e5:eb:62:ad:70:78:53: cb:d2:6d:02:f7:e8:ec:32:1f:c5:12:da:c1:13:a7:0f:f8:2a: 1d:ec:ac:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUwNTA0MTkxMjA1WhcNMjUwNTExMTkxMjA1WjAYMRYwFAYD VQQDEw02ODE3YmMwNS05NzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/ZEPIL2KMyculO2Ll6nTk6OIzFoBylCXqN2SrD7kgeznhavKViikiybBZ62 a8z7qOm7GjvF3G+FGEbDdsBt6/HrL5rSCUwttpE37FapYB1gmDdCfCoGFnEp27Hb Twg7FnNi5MwWOJ79pd0BL+PUbzqx+ysN+KjOak0/cnNqEUEw05kNd57AxY7luylh d7VuboKHeaExcwCqiVKfu+1IuXPMn4/wkpC23Au/5l0hB9vUH9trxo9TN9kNeMrK kcCItMAj4+FzRydOFy8CYsp6hxduHXomiRBEMKSPj0/SRoNO6k4uXN1Dnm7mdXzp 5EDOrJex31fihpJgfB6anyL2AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDxi3oX 7eUPDz71k3jeXQhwCa0tMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUSizCaOHXqMcoAV3Qn+8+4cKsBcZUhZFAR+GEsiNdeOTktT/3zPGD xBpNewgNPpozbnBLJtzBX7XKuVMTG2tCIuMLuZlhHGib7TcQ5LWIrshcG/LScuvq PSP4ZdBdW5LKtO0fA5D2xbmlWodIOkqz4M3mYiWNCzNV6Ed+5EtO2HuuIGK5Ri6B 6fTL5VcOYbbfqHzDJMmSrT0lY+lGi7vQl+29R1T37hoDr/Qm3OUwVkrfetT6ydrB FWacxcNyjS5i2dsAg2gJp0V3+XVyvUKrCjXurvvLrPNJiPV+C2o455PvaOXrYq1w eFPL0m0C9+jsMh/FEtrBE6cP+Cod7KyP -----END CERTIFICATE-----Generated at Mon May 5 03:13:56 2025 by rpki-client