$ rpki-client -vvf rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft File: 84XzeRdwIPCIv3TaLANG2HnCKh0.mft (raw, json) Hash identifier: 8iKNX7AHhPsdanPdvUCx1RzODjEO5FakPUAnHF5VkiA= Subject key identifier: EE:63:EE:2A:E0:6C:35:F0:14:44:D1:77:0A:0B:D2:08:4F:95:D9:85 Authority key identifier: F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D Certificate issuer: /CN=A9112AD5/serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft Manifest number: 040E Signing time: Wed 09 Apr 2025 00:10:22 +0000 Manifest this update: Wed 09 Apr 2025 00:10:21 +0000 Manifest next update: Wed 16 Apr 2025 00:10:21 +0000 Files and hashes: 1: 84XzeRdwIPCIv3TaLANG2HnCKh0.crl (hash: z1AtT6GtrnFs+noBrv19f/AFIDMVEvBgy5IEnDiEaOY=) 2: 3C09B1A2640F11ECBC536111C4F9AE02.roa (hash: x1o/7SXGT/4CedCgS5u41onm9GYNi5PSdU5ws280Sfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:10:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112AD5 Validity Not Before: Apr 9 00:10:21 2025 GMT Not After : Apr 16 00:10:21 2025 GMT Subject: CN=67f5baee-866b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3e:23:e6:e5:84:8f:43:8e:b3:54:1b:3a:30: 92:3b:3e:53:b7:95:cc:fd:64:a9:6d:64:08:ea:cb: 63:4c:1b:5f:9d:bf:b3:23:04:16:d7:ce:3f:9d:cb: 55:ba:8e:71:e2:76:7f:16:16:e0:4a:b8:95:c2:3a: 05:e9:ae:97:65:e5:a3:35:06:9b:cb:d7:7e:73:aa: 25:a2:70:42:bb:e4:01:0f:6c:14:25:13:a0:7f:86: 55:ec:06:c2:b6:be:46:00:90:6f:79:3c:90:84:84: 35:02:39:3e:c7:2f:6e:bd:91:69:3a:6a:7a:88:02: 65:83:49:92:38:81:8e:2e:15:ae:a0:85:a0:21:be: 60:5e:06:c9:65:bc:2e:64:26:24:c9:8d:a9:bd:10: 71:72:d6:69:8e:34:f4:98:17:5d:85:34:91:07:78: 73:61:12:61:e6:e7:b9:87:19:99:59:b1:c8:f8:df: 90:75:0e:48:e1:1b:f5:9c:83:68:e1:2c:72:08:3e: ff:b3:58:28:78:60:21:13:ce:ef:8f:06:c9:f7:3f: de:ce:62:a5:1b:79:51:8c:d1:c7:3d:05:9c:d9:02: 8a:f5:3a:39:26:ea:e9:f0:0a:9f:9e:6a:67:54:cb: 27:c7:5c:7f:ad:17:3d:9a:9a:27:c2:a7:0f:14:a7: d6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:63:EE:2A:E0:6C:35:F0:14:44:D1:77:0A:0B:D2:08:4F:95:D9:85 X509v3 Authority Key Identifier: keyid:F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:82:5d:9a:e1:9c:df:4c:46:48:fc:9e:41:ec:99:80:54:46: 36:f8:4c:7d:cf:a5:35:be:66:c5:e3:1b:b8:c0:f7:f7:18:92: 48:c9:fb:1e:e5:44:87:13:74:f1:86:0c:7f:b1:b9:63:7b:80: 07:90:68:c0:4e:5c:35:68:14:db:60:fc:a3:98:bf:0f:75:b3: 50:7a:94:dd:92:7d:17:c4:6e:84:53:81:52:73:56:f7:90:4c: be:e3:ef:80:48:81:83:e5:fc:92:13:b9:11:7d:71:86:03:25: d8:28:94:fd:dc:4f:10:60:7f:21:c8:97:a1:4d:b0:8b:7e:e0: 70:d9:a0:02:19:29:7c:0c:f6:b6:61:94:a1:a5:ff:8a:40:83: c4:a0:04:d4:b9:79:36:eb:4c:6c:8b:14:88:8a:ec:93:6b:2b: 7d:c7:41:68:9f:6e:45:ad:ba:17:f5:d2:63:96:cd:6c:9a:d5: fa:ab:4a:59:8c:00:da:12:13:a8:a1:2d:2a:78:83:58:f7:41: a8:a2:89:e8:d7:9a:e5:c6:31:3c:6f:c9:89:c4:50:19:ea:ac: fb:f5:6d:25:5d:ec:a8:3d:19:81:1e:12:76:36:e2:cd:e8:f1: 77:5d:f4:e0:02:8d:f1:23:f8:c8:21:18:10:76:89:1b:d3:3d: a2:de:54:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBRDUxMTAvBgNVBAUTKEYzODVGMzc5MTc3MDIwRjA4OEJGNzREQTJDMDM0NkQ4 NzlDMjJBMUQwHhcNMjUwNDA5MDAxMDIxWhcNMjUwNDE2MDAxMDIxWjAYMRYwFAYD VQQDEw02N2Y1YmFlZS04NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwj4j5uWEj0OOs1QbOjCSOz5Tt5XM/WSpbWQI6stjTBtfnb+zIwQW184/nctV uo5x4nZ/FhbgSriVwjoF6a6XZeWjNQaby9d+c6olonBCu+QBD2wUJROgf4ZV7AbC tr5GAJBveTyQhIQ1Ajk+xy9uvZFpOmp6iAJlg0mSOIGOLhWuoIWgIb5gXgbJZbwu ZCYkyY2pvRBxctZpjjT0mBddhTSRB3hzYRJh5ue5hxmZWbHI+N+QdQ5I4Rv1nINo 4SxyCD7/s1goeGAhE87vjwbJ9z/ezmKlG3lRjNHHPQWc2QKK9To5Jurp8Aqfnmpn VMsnx1x/rRc9mponwqcPFKfWwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5j7irg bDXwFETRdwoL0ghPldmFMB8GA1UdIwQYMBaAFPOF83kXcCDwiL902iwDRth5wiod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkFENS9GNDc5NTgwRTY0 MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQQ0l2M1RhTEFORzJIbkNL aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0WHplUmR3SVBDSXYzVGFMQU5HMkhuQ0toMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkFENS9GNDc5NTgwRTY0MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQ Q0l2M1RhTEFORzJIbkNLaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4gl2a4ZzfTEZI/J5B7JmAVEY2+Ex9z6U1vmbF4xu4wPf3GJJIyfse 5USHE3Txhgx/sblje4AHkGjATlw1aBTbYPyjmL8PdbNQepTdkn0XxG6EU4FSc1b3 kEy+4++ASIGD5fySE7kRfXGGAyXYKJT93E8QYH8hyJehTbCLfuBw2aACGSl8DPa2 YZShpf+KQIPEoATUuXk260xsixSIiuyTayt9x0Fon25FrboX9dJjls1smtX6q0pZ jADaEhOooS0qeINY90Gooono15rlxjE8b8mJxFAZ6qz79W0lXeyoPRmBHhJ2NuLN 6PF3XfTgAo3xI/jIIRgQdokb0z2i3lRP -----END CERTIFICATE-----Generated at Thu Apr 10 18:40:23 2025 by rpki-client