$ rpki-client -vvf rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft File: 6zLfknQ0rG06hoR937o9LoEAETE.mft (raw, json) Hash identifier: lG6a0DtNKI/oZU4pMMYggf5hBGgzYycxZxaHaT2f2OQ= Subject key identifier: 0D:5E:5F:FF:3D:03:E8:44:7E:D3:02:77:30:F1:8F:71:94:79:6D:90 Authority key identifier: EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 Certificate issuer: /CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft Manifest number: A7 Signing time: Thu 03 Apr 2025 05:26:58 +0000 Manifest this update: Thu 03 Apr 2025 05:26:57 +0000 Manifest next update: Thu 10 Apr 2025 05:26:57 +0000 Files and hashes: 1: 6zLfknQ0rG06hoR937o9LoEAETE.crl (hash: jzKTPgJclKOHrMWNSOu1YfhRILlhg6pHgPNcdQ9mXJ0=) 2: C562775017FD11EF9A320864C4F9AE02.roa (hash: mT/xhxJVAPolN6BiWxF1pYh0qrq0TTClAYLDrh0UW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911945B Validity Not Before: Apr 3 05:26:57 2025 GMT Not After : Apr 10 05:26:57 2025 GMT Subject: CN=67ee1c21-24ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:df:32:cd:fe:0a:89:60:21:34:9d:00:47:c9: 18:be:ee:a7:c0:5e:10:25:51:f1:57:cb:b3:ad:01: d8:92:56:dd:f9:2b:88:92:6f:78:c2:ba:f0:56:9a: 27:b1:c7:21:3c:71:b1:a7:b8:9d:07:5f:13:da:00: 17:db:33:fd:62:bc:f1:93:fd:29:1d:7f:9c:81:8b: 7e:f4:bc:98:64:c4:9a:a8:76:49:bc:2e:ec:6a:cf: a8:94:48:e0:02:bf:42:13:23:e6:f8:ce:42:88:07: 2b:29:d4:cd:ba:cf:6f:82:40:ec:36:ec:1c:7d:b8: dd:b7:1f:52:7b:94:4d:f5:44:4a:54:00:fc:77:75: db:f6:e0:7c:9d:ad:69:74:8c:77:45:83:6c:0d:89: e1:f9:bc:92:2e:48:d6:29:5f:dd:99:a0:fb:64:82: af:44:f8:91:67:d6:8a:45:29:d5:c0:25:e5:2e:e9: f2:a0:98:5d:e0:7d:5e:02:db:02:68:9e:5a:93:9c: 39:8b:eb:a7:cd:e7:bc:db:46:e0:88:dc:96:81:17: 01:36:e2:3e:8e:c6:75:24:92:e4:36:98:44:38:20: b8:4b:b9:3a:3b:e2:79:46:f1:7c:78:ee:4a:9c:54: 54:a4:40:cb:2a:c4:d4:39:38:c8:d9:cb:95:f0:4e: 74:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5E:5F:FF:3D:03:E8:44:7E:D3:02:77:30:F1:8F:71:94:79:6D:90 X509v3 Authority Key Identifier: keyid:EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:7a:37:58:15:3b:87:dc:a1:21:3e:a1:78:54:81:48:4b:ab: 33:04:ed:53:b5:ac:49:30:e3:d8:ba:be:1f:a8:64:0b:39:44: aa:7b:41:78:eb:ca:3f:13:c6:9f:be:65:03:2f:92:12:1f:e3: ae:f8:8d:93:2b:76:06:8b:df:45:88:b6:1f:d5:cb:8f:9a:04: a1:8f:4b:d1:9b:78:d0:3c:f0:1d:50:2f:e3:0a:88:d4:c9:2b: 24:43:16:37:e2:fd:44:ae:fa:ce:70:04:d7:22:da:a5:99:11: 23:a2:88:25:69:ae:71:ea:b8:3c:3d:9b:78:ae:5f:b6:c7:e2: b5:92:98:60:18:36:2c:d5:79:07:6a:10:46:45:27:6c:b5:97: 32:ba:2e:06:13:f8:99:b2:d0:9f:58:4b:f0:d6:de:c0:3a:b5: 58:43:3b:96:e3:28:44:2b:ca:f4:99:9e:bd:3c:d3:04:a5:37: e5:bd:8d:4f:56:f6:90:7a:61:89:e1:f2:a1:28:18:d9:93:45: 6c:45:9c:97:06:8e:0c:e0:8b:b9:35:7b:96:ec:6e:ed:e1:a4: 80:14:03:85:e9:ad:9e:cc:b4:0e:91:d1:88:33:9e:7e:c5:10: fd:11:17:f7:4b:78:f7:31:e2:48:ef:f9:0d:8b:78:32:18:37: df:38:fc:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0NUIxMTAvBgNVBAUTKEVCMzJERjkyNzQzNEFDNkQzQTg2ODQ3RERGQkEzRDJF ODEwMDExMzEwHhcNMjUwNDAzMDUyNjU3WhcNMjUwNDEwMDUyNjU3WjAYMRYwFAYD VQQDEw02N2VlMWMyMS0yNGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuN8yzf4KiWAhNJ0AR8kYvu6nwF4QJVHxV8uzrQHYklbd+SuIkm94wrrwVpon scchPHGxp7idB18T2gAX2zP9Yrzxk/0pHX+cgYt+9LyYZMSaqHZJvC7sas+olEjg Ar9CEyPm+M5CiAcrKdTNus9vgkDsNuwcfbjdtx9Se5RN9URKVAD8d3Xb9uB8na1p dIx3RYNsDYnh+bySLkjWKV/dmaD7ZIKvRPiRZ9aKRSnVwCXlLunyoJhd4H1eAtsC aJ5ak5w5i+unzee820bgiNyWgRcBNuI+jsZ1JJLkNphEOCC4S7k6O+J5RvF8eO5K nFRUpEDLKsTUOTjI2cuV8E50OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1eX/89 A+hEftMCdzDxj3GUeW2QMB8GA1UdIwQYMBaAFOsy35J0NKxtOoaEfd+6PS6BABEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTQ1Qi8zQUNGNzBDMDE3 RkQxMUVGOEMwODMwNjNDNEY5QUUwMi82ekxma25RMHJHMDZob1I5MzdvOUxvRUFF VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6TGZrblEwckcwNmhvUjkzN285TG9FQUVURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTQ1Qi8zQUNGNzBDMDE3RkQxMUVGOEMwODMwNjNDNEY5QUUwMi82ekxma25RMHJH MDZob1I5MzdvOUxvRUFFVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXejdYFTuH3KEhPqF4VIFIS6szBO1TtaxJMOPYur4fqGQLOUSqe0F4 68o/E8afvmUDL5ISH+Ou+I2TK3YGi99FiLYf1cuPmgShj0vRm3jQPPAdUC/jCojU ySskQxY34v1ErvrOcATXItqlmREjooglaa5x6rg8PZt4rl+2x+K1kphgGDYs1XkH ahBGRSdstZcyui4GE/iZstCfWEvw1t7AOrVYQzuW4yhEK8r0mZ69PNMEpTflvY1P VvaQemGJ4fKhKBjZk0VsRZyXBo4M4Iu5NXuW7G7t4aSAFAOF6a2ezLQOkdGIM55+ xRD9ERf3S3j3MeJI7/kNi3gyGDffOPyX -----END CERTIFICATE-----Generated at Fri Apr 4 21:52:00 2025 by rpki-client