$ rpki-client -vvf rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft File: Br1EFUedLHUIN8XJQzYTuyWIrrg.mft (raw, json) Hash identifier: H5mHyAbt24V7wn07VyX+Cjj+EfLEhjxVO9zKVXl5uJ4= Subject key identifier: 0A:31:73:C7:13:A5:7B:34:59:9C:02:01:46:BD:44:37:E2:45:25:FE Authority key identifier: 06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 Certificate issuer: /CN=A9177FC9/serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft Manifest number: 24 Signing time: Sun 11 May 2025 06:39:41 +0000 Manifest this update: Sun 11 May 2025 06:39:40 +0000 Manifest next update: Sun 18 May 2025 06:39:40 +0000 Files and hashes: 1: Br1EFUedLHUIN8XJQzYTuyWIrrg.crl (hash: IAI+5PIS8ueSenzUksjtokKCgEvd20COKiewWSDTvgE=) 2: FDD39BD607B811F0AB98B333C4F9AE02.roa (hash: qoLPoA4lZ1ha+1hCNURiczpMXcx77W01//WQ1dkufkU=) 3: FD6DA4D407B811F0AB98B333C4F9AE02.roa (hash: 1A7do/sKIO8NT6R3NBCJ/yFYUs9LFmYB3G5A768MYYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177FC9, serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Validity Not Before: May 11 06:39:40 2025 GMT Not After : May 18 06:39:40 2025 GMT Subject: CN=6820462d-f837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:20:54:f2:2c:51:4d:bf:27:41:c3:6c:33: a3:ab:62:b9:85:f0:5a:72:79:e7:29:e7:58:da:de: d8:80:00:53:31:c9:c9:c4:be:11:12:ed:0a:4d:86: 33:4e:38:bf:78:90:49:e9:8c:ff:1a:16:07:dd:b5: c9:65:e0:0d:d5:70:d1:b3:3d:82:a2:41:4e:db:6f: 2e:d6:79:3a:e2:50:aa:a8:d1:3f:f6:c0:b2:e7:11: 85:c8:73:de:6b:a3:1a:4e:70:1a:29:8d:b7:3d:36: 1f:c8:53:3b:a8:61:25:c2:2e:7d:02:4e:2b:84:c5: 52:9d:9a:be:86:33:9f:31:77:11:6b:db:05:9d:1d: 2b:10:68:75:12:f4:72:1c:6c:0a:63:3b:3d:c6:c4: 8a:5e:2c:c2:dc:54:50:ec:4e:f6:5e:79:ad:29:30: a4:a9:61:49:7f:ca:a3:e0:19:4a:56:75:1d:da:8a: 34:9f:0d:4d:aa:b5:f6:7b:6e:12:67:e9:5c:7b:3e: 37:37:15:8f:be:1c:97:92:86:e3:b0:85:41:7b:0f: 82:5d:11:3c:f7:05:dc:56:96:33:76:23:13:a9:00: 8d:b3:24:39:a8:d4:3c:00:58:3a:0c:d5:c8:22:85: c8:1b:9b:1d:78:e1:2b:1f:45:10:03:60:88:f7:0e: 9d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:31:73:C7:13:A5:7B:34:59:9C:02:01:46:BD:44:37:E2:45:25:FE X509v3 Authority Key Identifier: keyid:06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:6b:06:56:98:c9:e3:fd:fa:44:bf:47:9f:82:49:76:ba:1e: 29:d0:45:42:3c:dc:18:03:03:9f:12:c1:c7:7d:bc:7e:29:b4: 41:ed:9e:6c:57:5e:7d:15:d5:9c:63:5c:f2:57:e2:95:5e:6e: b0:cd:f6:40:64:70:e7:65:6b:33:79:bf:be:7a:1d:4c:6e:54: 0c:22:e0:e1:0d:43:15:14:b6:84:db:b3:45:0e:58:d3:e1:0c: 64:67:de:3a:65:e5:55:4b:f4:4a:15:64:dc:38:18:98:80:d7: 4a:6c:1b:f2:88:74:c3:91:32:0e:a9:fc:aa:30:7e:4b:d9:c7: 71:1a:28:bc:0f:f3:ec:0c:64:75:09:69:ff:aa:ce:da:bb:c0: 28:88:1d:00:0a:d3:d6:cc:96:32:13:05:4c:b8:b0:a7:9f:cc: b0:15:8f:12:da:63:7f:dc:97:cc:2e:59:40:33:bf:c9:3d:0d: db:3d:fa:e3:23:5c:0a:c8:d8:93:2b:18:eb:c0:e7:d1:62:b1: 75:c9:fe:10:b8:9a:16:5d:f0:e8:81:30:b2:c1:c7:7f:25:7f: 37:9c:f1:d5:b1:5b:e6:11:2c:76:f6:39:df:f4:ec:61:4f:85: 3a:8a:65:76:66:6b:0a:d2:a5:59:55:c5:1b:bb:7e:12:61:1a: d1:9e:fd:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 N0ZDOTExMC8GA1UEBRMoMDZCRDQ0MTU0NzlEMkM3NTA4MzdDNUM5NDMzNjEzQkIy NTg4QUVCODAeFw0yNTA1MTEwNjM5NDBaFw0yNTA1MTgwNjM5NDBaMBgxFjAUBgNV BAMTDTY4MjA0NjJkLWY4MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGOCBU8ixRTb8nQcNsM6OrYrmF8Fpyeecp51ja3tiAAFMxycnEvhES7QpNhjNO OL94kEnpjP8aFgfdtcll4A3VcNGzPYKiQU7bby7WeTriUKqo0T/2wLLnEYXIc95r oxpOcBopjbc9Nh/IUzuoYSXCLn0CTiuExVKdmr6GM58xdxFr2wWdHSsQaHUS9HIc bApjOz3GxIpeLMLcVFDsTvZeea0pMKSpYUl/yqPgGUpWdR3aijSfDU2qtfZ7bhJn 6Vx7Pjc3FY++HJeShuOwhUF7D4JdETz3BdxWljN2IxOpAI2zJDmo1DwAWDoM1cgi hcgbmx144SsfRRADYIj3Dp1BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCjFzxxOl ezRZnAIBRr1EN+JFJf4wHwYDVR0jBBgwFoAUBr1EFUedLHUIN8XJQzYTuyWIrrgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3RkM5L0YzQ0JGNTUwMDc1 MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhVSU44WEpRellUdXlXSXJy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQnIxRUZVZWRMSFVJTjhYSlF6WVR1eVdJcnJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 RkM5L0YzQ0JGNTUwMDc1MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhV SU44WEpRellUdXlXSXJyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAExrBlaYyeP9+kS/R5+CSXa6HinQRUI83BgDA58Swcd9vH4ptEHtnmxX Xn0V1ZxjXPJX4pVebrDN9kBkcOdlazN5v756HUxuVAwi4OENQxUUtoTbs0UOWNPh DGRn3jpl5VVL9EoVZNw4GJiA10psG/KIdMORMg6p/KowfkvZx3EaKLwP8+wMZHUJ af+qztq7wCiIHQAK09bMljITBUy4sKefzLAVjxLaY3/cl8wuWUAzv8k9Dds9+uMj XArI2JMrGOvA59FisXXJ/hC4mhZd8OiBMLLBx38lfzec8dWxW+YRLHb2Od/07GFP hTqKZXZmawrSpVlVxRu7fhJhGtGe/S0= -----END CERTIFICATE-----Generated at Tue May 13 02:42:13 2025 by rpki-client