$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: j0W5Q1+wGNR9Gw9dt5LMxLTlCaD+Sc+MZbDqA785Wj8= Subject key identifier: 2C:8E:C7:25:AA:FC:66:F3:FC:2D:14:EE:ED:13:2B:B5:CA:9B:7E:C5 Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0EBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0EAA Signing time: Wed 14 May 2025 17:49:38 +0000 Manifest this update: Wed 14 May 2025 17:49:37 +0000 Manifest next update: Wed 21 May 2025 17:49:37 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: ofLqmZDNRXdPQ8IqFHjib3+ACSnOsOJinlmTI4v2tLs=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: 6QYV9FQpqrhneDa4DXvOdtP1INWlFJdLfJWnJ4N05bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3774 (0xebe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: May 14 17:49:37 2025 GMT Not After : May 21 17:49:37 2025 GMT Subject: CN=6824d7b1-4c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:77:96:b3:b7:b5:61:75:49:63:7c:10:c4:33: 50:28:15:b0:66:e3:e0:53:39:ee:b5:b5:bd:e5:24: 3a:43:ca:bd:37:b9:de:45:96:d4:02:40:15:61:3e: e5:cb:d9:7b:c7:17:30:0e:a8:cd:71:03:0a:e8:0c: a2:de:e1:9b:ab:a3:ca:8f:96:56:3a:6a:7d:5c:60: 72:b9:c0:b9:3e:53:b4:52:6f:b5:e5:bb:9e:9b:55: 3c:34:c0:e4:0f:07:98:79:1f:62:13:cf:74:b0:ba: 84:9e:44:0d:5f:0c:75:cb:7a:93:91:1c:8b:6d:dc: 0c:4b:0b:60:0d:93:7f:d8:b4:ad:12:48:a8:9a:4d: ca:07:4c:88:c4:d1:d4:89:f5:66:95:68:9b:1f:a3: e7:0b:77:59:ec:d3:e8:97:3a:d8:d5:a3:74:16:34: 98:21:8c:00:be:b5:22:a7:e5:44:74:9d:a8:dc:be: e0:23:b1:c0:16:71:89:8d:55:5e:2b:2f:e2:e3:20: 5d:e7:6a:12:ef:bd:99:82:43:3f:af:44:a0:28:a9: f4:4a:02:7b:77:d2:37:d3:a0:5c:6a:80:e8:b9:9e: 49:b1:88:57:03:4e:42:10:c7:1f:eb:68:c0:1a:af: f5:f3:b1:2e:f6:45:b3:e9:92:d8:c9:d2:fe:34:b7: 45:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8E:C7:25:AA:FC:66:F3:FC:2D:14:EE:ED:13:2B:B5:CA:9B:7E:C5 X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:87:a6:bc:c7:ae:3b:6b:57:a1:ed:0c:e6:f1:fa:c5:39:43: e6:04:ad:99:14:5b:79:38:71:da:17:6c:06:a7:68:e6:7d:26: c9:73:5d:ff:3e:d4:f7:e1:34:2b:84:29:3f:ce:d7:39:7a:31: 0f:17:47:aa:14:f8:16:f6:2f:71:59:52:41:98:a4:3b:60:b9: 36:ed:cc:99:a6:f7:35:74:61:ad:a9:10:73:e6:ed:13:5c:a5: 86:a9:42:62:23:27:89:e6:6d:99:7a:55:ad:b9:69:c6:62:a6: 11:1a:a7:c1:c7:d8:8d:15:30:7c:e4:c7:e6:8f:0d:95:50:b2: c8:f5:89:23:ad:ea:d9:c8:e6:48:3e:25:9a:00:e4:be:16:ba: a8:e7:9b:4e:c7:5d:05:93:b1:80:b6:b4:3e:c2:b0:62:40:9d: ae:77:3b:df:a7:7b:3a:60:9b:a3:ed:21:33:f2:c0:1f:45:c7: 50:00:05:89:65:06:11:be:0a:1e:ac:34:1f:3c:c0:cb:fc:39: e5:bd:33:87:cb:04:cc:c3:16:6a:c7:90:54:d5:ec:67:57:2c: 11:15:df:fb:68:ae:e6:bb:0e:b5:42:99:ee:1a:82:ad:e9:e8: ba:e6:cb:c8:1c:9c:eb:79:47:76:d6:f6:29:93:22:93:9c:99: c8:fc:f9:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUwNTE0MTc0OTM3WhcNMjUwNTIxMTc0OTM3WjAYMRYwFAYD VQQDEw02ODI0ZDdiMS00YzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3eWs7e1YXVJY3wQxDNQKBWwZuPgUznutbW95SQ6Q8q9N7neRZbUAkAVYT7l y9l7xxcwDqjNcQMK6Ayi3uGbq6PKj5ZWOmp9XGByucC5PlO0Um+15buem1U8NMDk DweYeR9iE890sLqEnkQNXwx1y3qTkRyLbdwMSwtgDZN/2LStEkiomk3KB0yIxNHU ifVmlWibH6PnC3dZ7NPolzrY1aN0FjSYIYwAvrUip+VEdJ2o3L7gI7HAFnGJjVVe Ky/i4yBd52oS772ZgkM/r0SgKKn0SgJ7d9I306BcaoDouZ5JsYhXA05CEMcf62jA Gq/187Eu9kWz6ZLYydL+NLdFvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyOxyWq /Gbz/C0U7u0TK7XKm37FMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9h6a8x647a1eh7Qzm8frFOUPmBK2ZFFt5OHHaF2wGp2jmfSbJc13/ PtT34TQrhCk/ztc5ejEPF0eqFPgW9i9xWVJBmKQ7YLk27cyZpvc1dGGtqRBz5u0T XKWGqUJiIyeJ5m2ZelWtuWnGYqYRGqfBx9iNFTB85Mfmjw2VULLI9YkjrerZyOZI PiWaAOS+Frqo55tOx10Fk7GAtrQ+wrBiQJ2udzvfp3s6YJuj7SEz8sAfRcdQAAWJ ZQYRvgoerDQfPMDL/DnlvTOHywTMwxZqx5BU1exnVywRFd/7aK7muw61QpnuGoKt 6ei65svIHJzreUd21vYpkyKTnJnI/Pn6 -----END CERTIFICATE-----Generated at Thu May 15 19:18:03 2025 by rpki-client