$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft File: Mh0Kt4oavjUafbeTINn_03KgjEU.mft (raw, json) Hash identifier: +elnlcDfY6r5V+/1ZZgXpTVQR9FcHzn8uetMUcz1w+s= Subject key identifier: C7:28:0F:BC:9B:B0:B5:D3:99:30:AF:D3:6E:FD:CF:FA:1D:76:13:BC Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft Manifest number: 01CA Signing time: Mon 07 Apr 2025 01:58:51 +0000 Manifest this update: Mon 07 Apr 2025 01:58:50 +0000 Manifest next update: Mon 14 Apr 2025 01:58:50 +0000 Files and hashes: 1: Mh0Kt4oavjUafbeTINn_03KgjEU.crl (hash: fmTs6nWjyGS7d5kWYCZrURxJu2WKC5GC12Q9ElPVlwU=) 2: 47DA361A3F8F11EF8FA3802DC4F9AE02.roa (hash: J1WS3Wr+Cq+Ya2W/A8acH4GDeK/tNPuqzs+ITQkHcD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:58:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF Validity Not Before: Apr 7 01:58:50 2025 GMT Not After : Apr 14 01:58:50 2025 GMT Subject: CN=67f3315a-ac6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f0:16:16:6c:2e:c2:9b:26:61:c3:b5:70:be: a3:8f:d1:6b:17:eb:67:72:7a:b0:f7:fa:d8:42:6b: 4f:ce:f1:fe:ed:ec:47:9d:c6:90:6d:52:50:0f:c5: d0:0f:5c:fd:09:58:46:e3:82:02:94:ba:85:7a:41: 36:df:05:ba:eb:81:35:da:35:f1:fa:20:15:30:93: ff:00:eb:1a:74:07:2b:1d:40:ee:7a:8d:1b:90:03: c2:63:95:d4:f2:cd:26:e8:fe:39:43:ba:75:8b:97: 64:26:0c:60:95:3e:0a:24:f3:2e:b2:77:ac:0e:4d: c7:c3:84:09:40:ac:a2:c7:0c:1a:3f:6a:11:b8:05: a1:50:dc:87:0b:14:d7:7f:0b:5d:19:b8:a5:9b:cd: bb:46:15:2b:80:e4:23:fc:dc:8b:f0:52:57:10:d8: 24:d9:dc:b3:83:90:0e:36:e2:66:f5:a7:00:5e:ff: b6:f7:66:35:bc:7a:f5:78:cb:90:de:16:41:b5:ae: cd:eb:8f:b2:51:88:20:72:df:48:d3:12:47:14:63: 5f:c4:ea:d0:7f:a9:94:f7:25:aa:0c:d0:6d:b9:dc: 73:86:86:23:c1:2d:e0:ad:c3:00:3c:b4:87:a4:25: be:03:21:67:52:2f:c4:e4:0b:45:4b:3b:e1:19:27: f5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:28:0F:BC:9B:B0:B5:D3:99:30:AF:D3:6E:FD:CF:FA:1D:76:13:BC X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:cb:85:1c:d3:00:e4:ed:58:ba:f8:98:01:d0:04:b5:3e:52: eb:06:d6:0e:d3:ad:9a:fa:a2:36:cd:50:25:18:7d:aa:b2:a4: d0:92:08:06:9c:37:05:79:d7:cd:e3:cc:91:5b:68:30:52:d3: 59:7a:69:43:cd:a1:ac:f7:54:45:78:83:86:f5:c5:6a:a5:63: 4e:e5:7d:00:fb:dc:eb:c5:e3:00:1c:87:e4:b3:17:0b:16:02: 12:f4:6d:2b:b9:37:58:7b:59:ae:d1:db:c7:19:10:c7:aa:8c: c7:e7:c7:39:8b:f4:59:96:4d:8d:f5:4a:24:34:6f:23:49:20: 66:6e:86:49:82:f2:85:c3:72:b5:21:2a:1e:36:6b:b7:6a:b4: 03:0f:23:76:64:b5:5e:89:84:51:6f:c5:14:cd:12:86:08:33: 3f:b3:f5:26:a9:f5:96:6d:6d:df:1d:e1:b0:a7:0f:f8:78:33: 2a:c2:03:3c:03:53:0f:30:93:7e:e6:a3:bb:ef:54:09:7d:96: 44:09:5d:8b:d6:f7:91:6f:19:70:ff:47:7f:f9:0f:b3:19:fa: c2:5c:ef:fb:34:18:ba:c8:55:da:46:54:ec:84:16:cc:da:e8: e9:90:b6:cb:e5:71:ff:5b:1c:c7:44:f1:73:64:81:4d:06:9a: 75:9a:d5:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjUwNDA3MDE1ODUwWhcNMjUwNDE0MDE1ODUwWjAYMRYwFAYD VQQDEw02N2YzMzE1YS1hYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfAWFmwuwpsmYcO1cL6jj9FrF+tncnqw9/rYQmtPzvH+7exHncaQbVJQD8XQ D1z9CVhG44IClLqFekE23wW664E12jXx+iAVMJP/AOsadAcrHUDueo0bkAPCY5XU 8s0m6P45Q7p1i5dkJgxglT4KJPMusnesDk3Hw4QJQKyixwwaP2oRuAWhUNyHCxTX fwtdGbilm827RhUrgOQj/NyL8FJXENgk2dyzg5AONuJm9acAXv+292Y1vHr1eMuQ 3hZBta7N64+yUYggct9I0xJHFGNfxOrQf6mU9yWqDNBtudxzhoYjwS3grcMAPLSH pCW+AyFnUi/E5AtFSzvhGSf1oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcoD7yb sLXTmTCv0279z/oddhO8MB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEZFRi9CMDM2M0Q2MDY0RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZq VWFmYmVUSU5uXzAzS2dqRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATy4Uc0wDk7Vi6+JgB0AS1PlLrBtYO062a+qI2zVAlGH2qsqTQkggG nDcFedfN48yRW2gwUtNZemlDzaGs91RFeIOG9cVqpWNO5X0A+9zrxeMAHIfksxcL FgIS9G0ruTdYe1mu0dvHGRDHqozH58c5i/RZlk2N9UokNG8jSSBmboZJgvKFw3K1 ISoeNmu3arQDDyN2ZLVeiYRRb8UUzRKGCDM/s/UmqfWWbW3fHeGwpw/4eDMqwgM8 A1MPMJN+5qO771QJfZZECV2L1veRbxlw/0d/+Q+zGfrCXO/7NBi6yFXaRlTshBbM 2ujpkLbL5XH/WxzHRPFzZIFNBpp1mtWj -----END CERTIFICATE-----Generated at Mon Apr 7 06:35:11 2025 by rpki-client