$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft File: 5tdlUVTja2lxFXTiB5a2gCxDtxU.mft (raw, json) Hash identifier: 1t2KTBy0OPh3NDbzLFSdVRXwhMuQ0YooDILq/EWrPFM= Subject key identifier: 7F:D2:FE:9B:B7:27:F4:F2:45:81:80:F4:6F:8D:FE:FF:5C:43:27:34 Authority key identifier: E6:D7:65:51:54:E3:6B:69:71:15:74:E2:07:96:B6:80:2C:43:B7:15 Certificate issuer: /CN=A9118EDB/serialNumber=E6D7655154E36B69711574E20796B6802C43B715 Certificate serial: 04CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft Manifest number: 04C9 Signing time: Sun 20 Apr 2025 23:28:01 +0000 Manifest this update: Sun 20 Apr 2025 23:28:01 +0000 Manifest next update: Sun 27 Apr 2025 23:28:01 +0000 Files and hashes: 1: 5tdlUVTja2lxFXTiB5a2gCxDtxU.crl (hash: gBFF3nbotg8QqZ/IZoJydSXh1flGyG2aPgWibTvNNLo=) 2: BA4D01561DE011ECB872BC27C4F9AE02.roa (hash: wf1/Eq3D00+NNmg7EFhhzne2/Whu9vsX8s0Y7UfB8bU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.crl rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 23:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EDB, serialNumber=E6D7655154E36B69711574E20796B6802C43B715 Validity Not Before: Apr 20 23:28:01 2025 GMT Not After : Apr 27 23:28:01 2025 GMT Subject: CN=68058301-e34b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f2:91:e7:da:b0:db:ee:ee:b5:e0:fe:7c:54: a1:80:c7:bd:c8:5a:15:77:08:d2:a9:79:a7:f6:26: 3d:f6:ba:c4:c4:40:9e:02:2a:5a:46:78:ed:e5:e9: 8d:8b:8b:46:83:14:e0:7f:f9:a6:85:f9:f1:01:94: bd:da:b6:d0:ba:d9:1e:78:ba:f1:b5:a8:dc:62:e5: cc:40:3e:11:a3:69:f0:b0:48:c8:3d:04:99:3c:cd: d3:93:6f:aa:01:a3:a6:ac:a0:c4:96:89:62:ba:bc: bb:ab:c4:0f:6f:8b:b8:00:b2:a3:6a:f6:53:04:9e: 61:23:92:82:8e:94:2c:60:15:39:b8:bb:3a:cb:a6: 55:c9:8d:67:52:b6:17:79:36:16:96:81:6d:bd:33: e5:aa:79:22:1b:de:65:17:94:95:64:80:f5:f6:b9: b7:aa:32:36:89:c5:57:a7:d8:d3:c6:c5:e5:0f:a7: d4:a9:fd:df:c7:90:c9:38:ca:2b:27:8b:be:5e:06: 2c:af:94:d2:db:e7:55:0b:db:92:6b:e8:93:8f:f3: 0c:94:f0:2d:11:d8:1c:df:d6:84:5e:f3:9a:b5:50: c0:89:14:a9:6d:ee:cb:c6:3c:ee:0e:90:6f:6e:7b: 08:d5:24:d0:47:7a:18:f7:02:09:3e:1c:89:9e:02: 4c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D2:FE:9B:B7:27:F4:F2:45:81:80:F4:6F:8D:FE:FF:5C:43:27:34 X509v3 Authority Key Identifier: keyid:E6:D7:65:51:54:E3:6B:69:71:15:74:E2:07:96:B6:80:2C:43:B7:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:78:21:b7:eb:26:57:97:f6:52:92:51:94:00:36:c1:bb:ce: 48:cc:d7:7d:81:fb:cb:ed:6d:a8:26:9d:6d:01:84:ce:c4:14: b4:41:a6:df:11:2f:2c:6f:75:08:4b:2c:10:97:f4:7b:1d:79: 9e:ff:9d:35:58:54:65:a6:b2:15:7a:69:8f:a8:12:37:cd:ca: 6e:5d:b5:e1:ae:99:2c:a9:c8:6e:e6:a3:7c:f8:e0:cf:31:f7: c8:0f:e0:5b:16:9d:da:d4:e3:b1:d1:67:a0:5f:b2:6b:73:a5: 74:11:ee:57:2c:6b:f3:cf:ae:51:78:cc:82:9f:2f:0a:94:ff: ef:3d:5b:cb:27:b2:17:bb:d0:c9:ca:7b:7c:01:50:dc:c3:3c: 4c:75:d1:95:5e:cc:9f:8b:9c:28:d5:a8:be:12:14:85:eb:66: 53:90:e9:b9:44:e7:51:06:c5:1f:4a:bb:aa:27:4a:6b:5d:95: e6:7c:55:e6:d9:1d:b0:55:8a:69:b7:5b:2f:79:f4:31:cc:e1: 18:6c:6a:11:26:b0:ba:26:ad:33:65:41:63:f3:c1:6e:92:15: 57:e0:37:97:46:54:d3:b7:63:9d:1a:df:83:19:b6:81:7d:c2: d0:8f:56:a2:d2:97:cb:9a:a7:03:2b:d1:db:09:8b:8a:18:6b: ee:02:91:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFREIxMTAvBgNVBAUTKEU2RDc2NTUxNTRFMzZCNjk3MTE1NzRFMjA3OTZCNjgw MkM0M0I3MTUwHhcNMjUwNDIwMjMyODAxWhcNMjUwNDI3MjMyODAxWjAYMRYwFAYD VQQDEw02ODA1ODMwMS1lMzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/KR59qw2+7uteD+fFShgMe9yFoVdwjSqXmn9iY99rrExECeAipaRnjt5emN i4tGgxTgf/mmhfnxAZS92rbQutkeeLrxtajcYuXMQD4Ro2nwsEjIPQSZPM3Tk2+q AaOmrKDEloliury7q8QPb4u4ALKjavZTBJ5hI5KCjpQsYBU5uLs6y6ZVyY1nUrYX eTYWloFtvTPlqnkiG95lF5SVZID19rm3qjI2icVXp9jTxsXlD6fUqf3fx5DJOMor J4u+XgYsr5TS2+dVC9uSa+iTj/MMlPAtEdgc39aEXvOatVDAiRSpbe7LxjzuDpBv bnsI1STQR3oY9wIJPhyJngJMUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/S/pu3 J/TyRYGA9G+N/v9cQyc0MB8GA1UdIwQYMBaAFObXZVFU42tpcRV04geWtoAsQ7cV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVEQi8zMDlCRTZCRTFE REQxMUVDODgzQjQ0MjNDNEY5QUUwMi81dGRsVVZUamEybHhGWFRpQjVhMmdDeER0 eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV0ZGxVVlRqYTJseEZYVGlCNWEyZ0N4RHR4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVEQi8zMDlCRTZCRTFEREQxMUVDODgzQjQ0MjNDNEY5QUUwMi81dGRsVVZUamEy bHhGWFRpQjVhMmdDeER0eFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5eCG36yZXl/ZSklGUADbBu85IzNd9gfvL7W2oJp1tAYTOxBS0Qabf ES8sb3UISywQl/R7HXme/501WFRlprIVemmPqBI3zcpuXbXhrpksqchu5qN8+ODP MffID+BbFp3a1OOx0WegX7Jrc6V0Ee5XLGvzz65ReMyCny8KlP/vPVvLJ7IXu9DJ ynt8AVDcwzxMddGVXsyfi5wo1ai+EhSF62ZTkOm5ROdRBsUfSruqJ0prXZXmfFXm 2R2wVYppt1svefQxzOEYbGoRJrC6Jq0zZUFj88FukhVX4DeXRlTTt2OdGt+DGbaB fcLQj1ai0pfLmqcDK9HbCYuKGGvuApHd -----END CERTIFICATE-----Generated at Mon Apr 21 07:15:28 2025 by rpki-client