$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: QZsA/ErSFQKlwNibzQJFzAZ0PQS915ENIQgX5jsl3hY= Subject key identifier: 59:6A:B8:8C:77:AE:16:0C:4F:E3:EF:61:F5:97:51:16:2D:57:8D:71 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: 9D Signing time: Thu 15 May 2025 05:50:01 +0000 Manifest this update: Thu 15 May 2025 05:50:00 +0000 Manifest next update: Thu 22 May 2025 05:50:00 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: RzgLevj23H/djCj43Gp8hIZ1FCVvbbn01F7HkeVVFIA=) 2: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: 8/Hd/HSfsJzaFCQ02un66M2YDgdginFixcaFn5JQidY=) 3: DB9E3242C8E811EF86365B2AC4F9AE02.roa (hash: v6pTRro113en+h2WsmtXqk2rxE6NwkgghVA0fGJU70E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: May 15 05:50:00 2025 GMT Not After : May 22 05:50:00 2025 GMT Subject: CN=68258089-893b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e4:fb:80:49:50:09:c5:f2:9a:58:4e:bd:29: 31:43:4d:d6:9b:60:b3:08:dd:c8:fa:3f:eb:59:25: 65:94:39:c0:fc:2e:49:fd:19:1a:9a:5a:f2:03:dd: c6:ff:66:8d:c6:91:08:87:ed:1b:e9:a4:07:eb:a3: d6:0e:d4:f6:73:87:7f:fd:9f:40:09:ee:0d:07:38: 9c:d1:41:37:7c:f8:e6:04:26:7a:34:3f:d6:4c:b6: da:2d:49:bc:f8:7b:11:ad:e1:69:19:dd:dd:a0:e8: 5d:1f:67:68:06:69:df:e7:9b:ae:1a:50:29:5e:42: 6e:1e:36:70:ca:ef:d8:70:e0:db:e4:75:a8:fd:46: c3:0d:f1:fb:d9:cf:ce:d8:61:a9:95:fa:a2:cc:50: 3e:f2:4c:16:17:88:97:78:9b:49:98:ee:39:6f:60: e6:39:42:1d:0c:c3:fd:7e:50:b9:9e:68:83:41:b3: a7:43:7c:52:0d:a8:93:9a:10:f7:c6:a6:ff:35:be: 1d:fb:1d:e1:79:fa:71:24:fb:50:12:97:06:28:e3: e0:35:91:ff:b3:8e:d6:01:48:ab:ac:e9:90:85:37: 65:72:5d:d9:9c:a3:e2:1c:d1:cf:51:81:2e:ec:d3: f5:88:23:4a:97:2e:74:bd:b1:bd:8e:30:c3:77:f0: de:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6A:B8:8C:77:AE:16:0C:4F:E3:EF:61:F5:97:51:16:2D:57:8D:71 X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:27:01:ad:c1:fe:79:83:b4:f9:94:e2:2b:9d:8e:0a:5d:69: 5b:83:2e:5b:67:7f:df:48:08:55:d5:b9:d0:c8:15:ae:09:9e: 3d:f0:2a:6d:15:48:0a:e2:65:08:49:69:1f:29:73:9f:c1:b8: 3a:09:4f:24:24:e6:14:61:15:50:84:ed:ad:71:71:9b:f2:c3: 75:36:09:f6:55:c7:3d:03:61:a9:4c:05:a9:91:7b:2b:b6:ce: 1c:0e:a0:59:84:84:8f:86:0a:98:78:a5:d7:59:ab:c4:48:7c: 42:81:e7:d4:2d:65:64:df:cb:13:7c:0a:d5:7f:37:5e:a9:69: 53:6e:5c:a7:17:26:f8:fa:74:3d:f9:75:ff:4c:0d:f1:60:65: 31:d4:f2:1d:65:3a:8b:06:37:1e:3b:bc:2b:ef:ce:dd:12:00: ff:9e:ff:24:6d:b5:b0:7c:f0:ef:a3:cf:75:47:c7:65:76:f6: 12:91:93:c1:f9:15:5a:8e:40:49:ce:ed:47:2d:6c:ec:6c:e2: 35:ff:dc:67:67:fc:84:f1:8b:59:77:52:65:d3:f1:00:b9:bd: 1d:88:bc:54:63:ca:6a:a4:62:ad:40:18:26:dd:63:1b:0a:c0: 0c:81:f2:7b:de:90:1b:7f:ac:71:81:c1:e0:6f:96:f9:75:d2: 54:c5:a7:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUwNTE1MDU1MDAwWhcNMjUwNTIyMDU1MDAwWjAYMRYwFAYD VQQDEw02ODI1ODA4OS04OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOT7gElQCcXymlhOvSkxQ03Wm2CzCN3I+j/rWSVllDnA/C5J/RkamlryA93G /2aNxpEIh+0b6aQH66PWDtT2c4d//Z9ACe4NBzic0UE3fPjmBCZ6ND/WTLbaLUm8 +HsRreFpGd3doOhdH2doBmnf55uuGlApXkJuHjZwyu/YcODb5HWo/UbDDfH72c/O 2GGplfqizFA+8kwWF4iXeJtJmO45b2DmOUIdDMP9flC5nmiDQbOnQ3xSDaiTmhD3 xqb/Nb4d+x3hefpxJPtQEpcGKOPgNZH/s47WAUirrOmQhTdlcl3ZnKPiHNHPUYEu 7NP1iCNKly50vbG9jjDDd/DeLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlquIx3 rhYMT+PvYfWXURYtV41xMB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHJwGtwf55g7T5lOIrnY4KXWlbgy5bZ3/fSAhV1bnQyBWuCZ498Cpt FUgK4mUISWkfKXOfwbg6CU8kJOYUYRVQhO2tcXGb8sN1Ngn2Vcc9A2GpTAWpkXsr ts4cDqBZhISPhgqYeKXXWavESHxCgefULWVk38sTfArVfzdeqWlTblynFyb4+nQ9 +XX/TA3xYGUx1PIdZTqLBjceO7wr787dEgD/nv8kbbWwfPDvo891R8dldvYSkZPB +RVajkBJzu1HLWzsbOI1/9xnZ/yE8YtZd1Jl0/EAub0diLxUY8pqpGKtQBgm3WMb CsAMgfJ73pAbf6xxgcHgb5b5ddJUxads -----END CERTIFICATE-----Generated at Fri May 16 07:16:58 2025 by rpki-client