$ rpki-client -vvf rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft File: dpU2g0Agk0lSKX69t4GJNXsToUU.mft (raw, json) Hash identifier: zTaARrapD4Wbh0RBVpzAsq4dNbLIfPTfQlSAYkyJq+A= Subject key identifier: 34:C5:D3:6F:37:03:0D:D2:03:31:69:08:5F:93:42:8B:35:D8:37:3F Authority key identifier: 76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 Certificate issuer: /CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft Manifest number: B8 Signing time: Fri 11 Apr 2025 05:10:26 +0000 Manifest this update: Fri 11 Apr 2025 05:10:26 +0000 Manifest next update: Fri 18 Apr 2025 05:10:26 +0000 Files and hashes: 1: dpU2g0Agk0lSKX69t4GJNXsToUU.crl (hash: 6Ve8JcN6hs1ub8/l1Y563oHatDE45/RocPRuGuOQn1I=) 2: CAE74ADEFD4511EEA97C9D1CC4F9AE02.roa (hash: SVtEtagldlvERL46wSvdbr/iqqig+8tKes1xS1nFqcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 05:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111623, serialNumber=769536834020934952297EBDB78189357B13A145 Validity Not Before: Apr 11 05:10:26 2025 GMT Not After : Apr 18 05:10:26 2025 GMT Subject: CN=67f8a442-7f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4a:f5:39:fc:5f:b5:3a:c9:8a:97:bd:85:86: c5:57:0b:2b:5d:11:18:22:3d:ff:1c:c2:04:0a:eb: b5:68:95:80:f9:72:ae:86:6f:e4:ed:99:03:98:bc: 05:a2:7c:ed:85:b6:6a:fb:04:7b:99:d4:90:9c:22: fd:d1:f1:80:c6:c5:16:b9:4f:dd:60:60:97:4e:6d: 88:a5:12:b2:e6:1f:5c:37:3e:0d:72:52:03:a4:51: bc:bc:95:15:ad:43:ec:ec:27:bb:ce:dc:c0:12:65: 00:67:63:8b:22:de:e7:e8:b4:ca:6c:1a:2d:c8:95: de:13:23:d5:e1:55:87:79:10:90:64:92:1b:61:cd: 3d:ff:36:5e:7f:92:36:1d:19:f4:19:c2:aa:3d:42: a6:a1:fc:b2:ed:82:1e:09:03:bf:54:73:42:7b:05: 46:6f:98:ec:49:f0:a9:e3:b0:ad:ba:17:64:05:bd: c6:21:61:38:79:df:d0:71:82:6b:44:8d:69:d9:b9: dd:cb:64:dd:cc:7d:f3:e2:a7:2a:8a:76:52:e1:b7: 06:9e:d5:42:5d:a3:d1:68:2e:b7:a7:4c:6a:48:4d: a3:4c:3e:dc:da:d5:80:cd:a5:79:cb:7e:8e:4c:d8: 20:9c:c5:44:6e:42:b7:14:5d:48:6f:eb:0c:bf:ee: cf:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:C5:D3:6F:37:03:0D:D2:03:31:69:08:5F:93:42:8B:35:D8:37:3F X509v3 Authority Key Identifier: keyid:76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:3e:fd:96:7a:6a:d5:9d:43:0c:42:49:79:07:61:c7:b9:33: 1e:19:25:c8:83:ac:d4:b6:bb:5b:cf:01:96:f6:13:c8:33:73: 76:73:a2:d2:bc:44:9f:f4:64:31:1e:c6:9d:c4:01:86:55:3c: a6:f8:69:10:e0:19:dd:22:27:b5:8f:b8:5f:17:63:56:13:f7: 1b:ba:63:de:c4:1a:a3:08:a9:24:56:f9:29:4c:02:b1:5d:01: d5:ed:c0:6a:20:e5:d0:5f:b9:27:90:81:e6:5f:ee:49:17:2b: c5:97:42:3a:08:66:92:f3:5e:91:ac:88:86:08:1c:66:c5:0e: 20:58:2d:59:94:5b:dc:c9:19:74:fd:bd:a5:24:2e:6d:31:d3: 09:10:80:af:94:f2:33:34:88:48:41:e8:4d:a5:84:43:aa:ed: f3:6b:5d:2a:b9:97:6c:3f:4d:cf:ba:c2:2a:dc:e2:ed:5c:46: fd:32:ed:aa:44:84:fd:d2:3e:7d:a9:57:06:90:79:c3:c5:d8: e1:c3:7c:2e:b0:8e:51:7a:e2:db:0b:fd:d1:bf:ac:41:32:9b: ab:a2:78:9a:86:83:07:d2:7f:3b:c0:3c:1f:61:c9:e4:18:b2: f3:e5:0f:55:a4:bb:ce:88:ee:56:2d:1b:f4:09:0b:ac:15:19: ab:13:6f:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2MjMxMTAvBgNVBAUTKDc2OTUzNjgzNDAyMDkzNDk1MjI5N0VCREI3ODE4OTM1 N0IxM0ExNDUwHhcNMjUwNDExMDUxMDI2WhcNMjUwNDE4MDUxMDI2WjAYMRYwFAYD VQQDEw02N2Y4YTQ0Mi03ZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0r1OfxftTrJipe9hYbFVwsrXREYIj3/HMIECuu1aJWA+XKuhm/k7ZkDmLwF onzthbZq+wR7mdSQnCL90fGAxsUWuU/dYGCXTm2IpRKy5h9cNz4NclIDpFG8vJUV rUPs7Ce7ztzAEmUAZ2OLIt7n6LTKbBotyJXeEyPV4VWHeRCQZJIbYc09/zZef5I2 HRn0GcKqPUKmofyy7YIeCQO/VHNCewVGb5jsSfCp47CtuhdkBb3GIWE4ed/QcYJr RI1p2bndy2TdzH3z4qcqinZS4bcGntVCXaPRaC63p0xqSE2jTD7c2tWAzaV5y36O TNggnMVEbkK3FF1Ib+sMv+7PhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDTF0283 Aw3SAzFpCF+TQos12Dc/MB8GA1UdIwQYMBaAFHaVNoNAIJNJUil+vbeBiTV7E6FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTYyMy81MEFEMDcxOEZE NDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2swbFNLWDY5dDRHSk5Yc1Rv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwVTJnMEFnazBsU0tYNjl0NEdKTlhzVG9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTYyMy81MEFEMDcxOEZENDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2sw bFNLWDY5dDRHSk5Yc1RvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDPv2WemrVnUMMQkl5B2HHuTMeGSXIg6zUtrtbzwGW9hPIM3N2c6LS vESf9GQxHsadxAGGVTym+GkQ4BndIie1j7hfF2NWE/cbumPexBqjCKkkVvkpTAKx XQHV7cBqIOXQX7knkIHmX+5JFyvFl0I6CGaS816RrIiGCBxmxQ4gWC1ZlFvcyRl0 /b2lJC5tMdMJEICvlPIzNIhIQehNpYRDqu3za10quZdsP03PusIq3OLtXEb9Mu2q RIT90j59qVcGkHnDxdjhw3wusI5ReuLbC/3Rv6xBMpuroniahoMH0n87wDwfYcnk GLLz5Q9VpLvOiO5WLRv0CQusFRmrE29S -----END CERTIFICATE-----Generated at Sat Apr 12 17:02:28 2025 by rpki-client