$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft File: 24aQ9k5_gyrPw6am6EIdQXfIlPY.mft (raw, json) Hash identifier: rt41xJjrzUrXan/7Yidh/dgMTL0lnlzdiFbenIrkSss= Subject key identifier: A0:A0:8C:AE:CC:B1:7E:8C:1D:8C:5B:64:B3:65:AE:81:5D:FD:E3:1D Authority key identifier: DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 Certificate issuer: /CN=A91F0FAA/serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft Manifest number: 0174 Signing time: Sun 11 May 2025 02:43:27 +0000 Manifest this update: Sun 11 May 2025 02:43:26 +0000 Manifest next update: Sun 18 May 2025 02:43:26 +0000 Files and hashes: 1: 24aQ9k5_gyrPw6am6EIdQXfIlPY.crl (hash: yfyiRjokRANt2UXuKMqHtoZHK5m2iOXfiGQ5WCG3Iyc=) 2: 6B5723D8F89F11ED8F29921CC4F9AE02.roa (hash: SdXEUbD7bDMQhTYpbl9h+rsPxGL65X2f3Ma+s3etM2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FAA, serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Validity Not Before: May 11 02:43:26 2025 GMT Not After : May 18 02:43:26 2025 GMT Subject: CN=68200ecf-6e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:43:e3:a2:b1:49:45:c7:7c:4b:73:00:1f:db: 74:b5:55:f8:e1:16:b5:e1:db:27:33:e2:ca:a0:12: b0:54:24:76:5f:8f:ed:12:fb:fc:7c:81:03:15:c5: ff:22:6b:d5:1b:0f:d0:59:8d:e0:13:49:e2:e1:00: d5:6e:c0:bc:9b:7e:b7:ff:11:d3:c2:8d:9f:f1:c5: fa:1a:67:d5:8c:e2:48:59:0c:de:c3:e7:9c:66:06: aa:a1:8c:8c:5d:9f:44:21:04:e9:40:a7:6e:12:3d: 7b:72:e6:49:f9:1a:84:a3:40:8c:2e:ec:65:14:76: ef:c4:ce:d9:4b:fc:f7:71:e7:76:ed:a3:d3:6e:c6: f7:1e:cf:cd:cf:3f:eb:b0:c9:29:c5:58:e1:a7:45: 5c:d5:43:c0:c5:a4:3e:f4:10:89:1e:84:89:07:1b: 82:06:11:d9:ba:65:fb:ea:32:bb:96:75:be:7b:86: 65:2b:d3:1d:6a:e0:e6:f3:a8:50:0c:dd:8e:d3:89: 5c:4e:50:67:ff:e9:a5:c6:8f:9d:09:b5:d7:bc:c2: 69:07:c5:cc:ae:b4:13:d0:ce:f7:eb:30:22:1f:65: 6e:a7:b9:00:e9:fe:b1:d6:43:d2:02:67:de:95:2c: 41:a3:3d:c0:2a:e3:d7:dc:6d:ab:52:0c:c0:d3:6f: d2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A0:8C:AE:CC:B1:7E:8C:1D:8C:5B:64:B3:65:AE:81:5D:FD:E3:1D X509v3 Authority Key Identifier: keyid:DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:50:00:84:8e:3f:c2:3e:9b:d6:a2:a2:63:53:8a:d7:c5:30: 91:d3:17:78:fc:bd:af:e3:7c:e2:d5:63:3b:cc:00:5b:21:c2: d8:34:bc:35:a6:9a:02:05:4f:8a:7f:a1:69:cd:78:d2:10:a6: 2c:ec:ab:ce:59:e4:31:ab:75:6f:74:31:5b:b1:c9:e5:a8:1d: aa:c6:7f:5d:fe:5d:ff:df:b9:2e:cb:5d:78:76:88:bf:84:87: be:30:d8:5f:90:a3:9c:c0:61:35:68:79:af:2e:01:bc:b0:b3: 46:04:38:58:e1:3f:29:d5:ca:9e:30:8a:fb:3d:87:c0:23:f0: b2:f1:3f:9d:9d:cc:ea:bc:b8:6b:97:89:ad:98:5a:fa:ab:5c: 4b:cb:4e:b2:54:bd:02:2b:85:df:db:41:b3:63:00:a4:69:11: 02:66:39:6e:e0:24:df:2a:31:06:df:6c:ec:0b:c6:f0:2c:c3: ae:ad:94:2c:54:45:d8:ed:62:82:39:70:4b:c6:0a:32:dd:b3: eb:3a:50:c0:9e:5f:c3:e1:de:ec:aa:41:e8:5d:1f:ae:61:56: 3d:c6:29:cd:9d:bb:a8:4b:2c:64:86:5c:cd:57:b5:48:5b:28: 3d:62:9d:c3:06:44:29:ae:f1:f5:9f:26:47:d0:02:c7:8e:89: 4f:21:5e:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGQUExMTAvBgNVBAUTKERCODY5MEY2NEU3RjgzMkFDRkMzQTZBNkU4NDIxRDQx NzdDODk0RjYwHhcNMjUwNTExMDI0MzI2WhcNMjUwNTE4MDI0MzI2WjAYMRYwFAYD VQQDEw02ODIwMGVjZi02ZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0PjorFJRcd8S3MAH9t0tVX44Ra14dsnM+LKoBKwVCR2X4/tEvv8fIEDFcX/ ImvVGw/QWY3gE0ni4QDVbsC8m363/xHTwo2f8cX6GmfVjOJIWQzew+ecZgaqoYyM XZ9EIQTpQKduEj17cuZJ+RqEo0CMLuxlFHbvxM7ZS/z3ced27aPTbsb3Hs/Nzz/r sMkpxVjhp0Vc1UPAxaQ+9BCJHoSJBxuCBhHZumX76jK7lnW+e4ZlK9MdauDm86hQ DN2O04lcTlBn/+mlxo+dCbXXvMJpB8XMrrQT0M736zAiH2Vup7kA6f6x1kPSAmfe lSxBoz3AKuPX3G2rUgzA02/SLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCgjK7M sX6MHYxbZLNlroFd/eMdMB8GA1UdIwQYMBaAFNuGkPZOf4Mqz8OmpuhCHUF3yJT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZBQS9GRTEwMUNDQ0Y4 OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5clB3NmFtNkVJZFFYZkls UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI0YVE5azVfZ3lyUHc2YW02RUlkUVhmSWxQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZBQS9GRTEwMUNDQ0Y4OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5 clB3NmFtNkVJZFFYZklsUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKUACEjj/CPpvWoqJjU4rXxTCR0xd4/L2v43zi1WM7zABbIcLYNLw1 ppoCBU+Kf6FpzXjSEKYs7KvOWeQxq3VvdDFbscnlqB2qxn9d/l3/37kuy114doi/ hIe+MNhfkKOcwGE1aHmvLgG8sLNGBDhY4T8p1cqeMIr7PYfAI/Cy8T+dnczqvLhr l4mtmFr6q1xLy06yVL0CK4Xf20GzYwCkaRECZjlu4CTfKjEG32zsC8bwLMOurZQs VEXY7WKCOXBLxgoy3bPrOlDAnl/D4d7sqkHoXR+uYVY9xinNnbuoSyxkhlzNV7VI Wyg9Yp3DBkQprvH1nyZH0ALHjolPIV5y -----END CERTIFICATE-----Generated at Tue May 13 01:22:07 2025 by rpki-client