$ rpki-client -vvf rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft File: wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft (raw, json) Hash identifier: vE0xkoPfz6JctP6LMMORHhJwydGzCTTToXGGPpmdTX8= Subject key identifier: 85:08:E3:39:BF:3F:D4:1B:8F:0A:4F:DF:11:6A:A7:C8:33:81:1B:B1 Authority key identifier: C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 Certificate issuer: /CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft Manifest number: 01B1 Signing time: Sat 19 Apr 2025 02:34:15 +0000 Manifest this update: Sat 19 Apr 2025 02:34:15 +0000 Manifest next update: Sat 26 Apr 2025 02:34:15 +0000 Files and hashes: 1: wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl (hash: iATU0hX5+tTFS/jPhS5xkaWkMKJ5gPHhYKLGLuUltE0=) 2: 949A543291B011EDA9CB747CC4F9AE02.roa (hash: IXWkWs++k8QNiBEV5gRLUUd6hmjdG0gw9M6G9nB2OC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 02:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111D36, serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Validity Not Before: Apr 19 02:34:15 2025 GMT Not After : Apr 26 02:34:15 2025 GMT Subject: CN=68030ba7-0203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f5:eb:5f:ee:11:0d:a0:d6:73:73:23:ca:cf: f4:c6:bc:28:91:ac:f3:07:ef:d0:c7:de:38:c2:98: 0d:08:fa:7d:a7:32:64:0a:61:cb:93:fc:05:33:ca: 34:d0:6a:5f:4c:a3:e4:d2:42:78:b4:9a:ed:29:9e: cb:63:f7:49:3e:37:93:42:f6:e4:68:16:38:b6:08: 4b:68:11:97:a5:39:aa:13:e3:97:fd:cf:06:4b:09: 23:3e:8a:06:9f:ce:69:2b:af:82:5f:fa:30:bb:f6: 9b:72:07:05:56:4b:f0:94:72:74:d9:cf:55:51:4d: a8:67:7f:a1:a4:42:7d:17:82:8b:dc:b7:8d:e4:cc: 3d:2d:a8:36:41:9d:81:a1:d0:c2:48:71:03:c6:f2: a3:9e:02:bc:bb:ba:65:6a:05:35:23:d9:ae:18:e7: 51:17:c4:5d:38:91:9b:53:e1:d1:b9:73:23:29:b0: bd:12:11:30:82:d1:28:93:61:2a:0b:35:dd:68:eb: b1:68:62:d2:55:ff:2e:be:f2:56:4a:1f:98:7e:b4: 70:c6:b3:8d:92:f6:5f:74:9a:2e:fa:76:b5:b8:b5: c7:af:15:0d:10:04:6b:54:51:87:b3:60:90:b5:27: 11:87:00:81:ea:75:b2:80:e9:90:24:2e:84:98:54: f2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:08:E3:39:BF:3F:D4:1B:8F:0A:4F:DF:11:6A:A7:C8:33:81:1B:B1 X509v3 Authority Key Identifier: keyid:C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:7a:1d:79:b2:42:71:78:d8:d6:de:16:3b:39:b6:ee:b8:e3: fa:3e:2d:f6:0a:2d:db:99:ed:03:51:05:04:02:7e:fd:22:cf: 48:67:75:9e:01:f0:fc:90:ca:b4:60:67:ab:c9:07:68:8a:85: 1c:d3:3a:0b:ab:7a:5b:34:bf:c3:df:09:31:d8:25:11:4b:d6: 09:fc:d8:64:27:5a:1c:53:d1:05:73:e8:b0:99:a3:20:ca:8a: 91:08:4a:03:4b:ff:79:bc:66:9b:57:e5:b9:8f:49:a4:9d:86: 19:cd:e8:41:28:84:89:46:79:f3:9d:ab:31:11:e6:62:ec:b5: b5:22:f8:6b:54:17:fd:9d:3c:c2:d0:da:0e:b2:ad:a2:79:06: 8c:7d:45:85:9a:86:32:88:fd:f3:e6:00:ce:54:86:f8:3d:3f: d9:6a:1a:60:ab:cf:d9:79:c2:18:1d:7c:2c:22:4b:ab:a8:a4: 21:11:bc:5d:b7:e3:ec:48:55:39:84:06:73:77:be:2a:80:36: ea:59:b8:fa:18:00:78:3e:cd:9d:3b:a2:d7:90:e9:22:ae:7a: 8e:ef:c2:28:3c:5e:8c:37:88:d1:a7:33:34:cb:03:02:cc:80: fd:e7:68:9e:b9:27:83:55:a7:65:78:c1:02:4c:53:2e:99:7b: 63:34:de:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFEMzYxMTAvBgNVBAUTKEMwQUVGNjI1QUY5RDUwNEFFODQ3RjY5MjNEQTg5MTA2 OUM5MDAzRjQwHhcNMjUwNDE5MDIzNDE1WhcNMjUwNDI2MDIzNDE1WjAYMRYwFAYD VQQDEw02ODAzMGJhNy0wMjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfXrX+4RDaDWc3Mjys/0xrwokazzB+/Qx944wpgNCPp9pzJkCmHLk/wFM8o0 0GpfTKPk0kJ4tJrtKZ7LY/dJPjeTQvbkaBY4tghLaBGXpTmqE+OX/c8GSwkjPooG n85pK6+CX/owu/abcgcFVkvwlHJ02c9VUU2oZ3+hpEJ9F4KL3LeN5Mw9Lag2QZ2B odDCSHEDxvKjngK8u7plagU1I9muGOdRF8RdOJGbU+HRuXMjKbC9EhEwgtEok2Eq CzXdaOuxaGLSVf8uvvJWSh+YfrRwxrONkvZfdJou+na1uLXHrxUNEARrVFGHs2CQ tScRhwCB6nWygOmQJC6EmFTyIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUI4zm/ P9QbjwpP3xFqp8gzgRuxMB8GA1UdIwQYMBaAFMCu9iWvnVBK6Ef2kj2okQackAP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUQzNi9GQzEzQTNFNDkx QUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVFcm9SX2FTUGFpUkJweVFB X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLNzJKYS1kVUVyb1JfYVNQYWlSQnB5UUFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUQzNi9GQzEzQTNFNDkxQUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVF cm9SX2FTUGFpUkJweVFBX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpeh15skJxeNjW3hY7ObbuuOP6Pi32Ci3bme0DUQUEAn79Is9IZ3We AfD8kMq0YGeryQdoioUc0zoLq3pbNL/D3wkx2CURS9YJ/NhkJ1ocU9EFc+iwmaMg yoqRCEoDS/95vGabV+W5j0mknYYZzehBKISJRnnznasxEeZi7LW1IvhrVBf9nTzC 0NoOsq2ieQaMfUWFmoYyiP3z5gDOVIb4PT/Zahpgq8/ZecIYHXwsIkurqKQhEbxd t+PsSFU5hAZzd74qgDbqWbj6GAB4Ps2dO6LXkOkirnqO78IoPF6MN4jRpzM0ywMC zID952ieuSeDVadleMECTFMumXtjNN5Z -----END CERTIFICATE-----Generated at Sun Apr 20 21:06:30 2025 by rpki-client