$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft File: 3glSX1epVbpvLTKtIoMwQhUYLkU.mft (raw, json) Hash identifier: TYggsocV8DnmhsGey0LAlIi+Nhb7wNpCbo4qCQVtOeo= Subject key identifier: FF:7E:69:C2:08:85:D1:C6:22:6E:CF:A6:FB:AD:47:2E:8A:07:2E:DE Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft Manifest number: 012E Signing time: Thu 03 Apr 2025 03:48:44 +0000 Manifest this update: Thu 03 Apr 2025 03:48:43 +0000 Manifest next update: Thu 10 Apr 2025 03:48:43 +0000 Files and hashes: 1: 3glSX1epVbpvLTKtIoMwQhUYLkU.crl (hash: jV5cQCsugfpvMK5HHKJsLS9V8UIbZGbkwDpaTi0rELU=) 2: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (hash: 0Dz92F7ct8bVXTADuiwvMmdgfbqvyjCznAHcDYM7e2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32 Validity Not Before: Apr 3 03:48:43 2025 GMT Not After : Apr 10 03:48:43 2025 GMT Subject: CN=67ee051b-816d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:68:97:3e:e6:96:dc:54:4c:94:1e:a3:3e:52: 3f:c8:f3:75:62:13:47:f0:9a:c4:2f:be:c9:80:33: c4:23:99:1d:76:fe:ae:2d:98:f0:f6:74:76:74:63: e7:98:75:3d:f7:18:7e:80:67:ff:00:1e:f0:1e:ff: b2:75:fc:1e:56:d4:cb:46:e8:0f:46:71:0b:b9:ea: f1:53:c8:65:13:79:0f:85:9f:f2:e5:15:57:09:4f: 43:c6:b4:24:5b:8e:c7:5e:29:af:16:fe:19:3c:2f: 50:ea:b8:0e:e1:71:e2:20:19:34:55:61:29:39:06: c5:16:9f:7c:9a:69:b5:63:df:b1:3c:95:11:b5:87: 27:df:79:a3:d3:05:78:4f:e3:b1:bf:52:cb:3e:2b: 5f:62:d4:8c:29:bd:5c:51:e1:c8:af:a0:61:f1:d4: 2a:d7:a3:e0:6e:82:09:44:0d:4e:7d:7d:3f:b1:04: 1c:db:fe:57:28:c3:1b:1e:55:6f:65:95:37:6e:9e: 2b:5b:b2:b7:e2:13:ec:6d:10:3d:9a:de:3c:e5:f5: f9:39:dc:79:56:0a:bb:61:d8:87:cf:20:35:a4:96: e3:2d:51:30:4d:62:c8:bb:ff:53:e3:87:0e:27:d2: 75:3f:01:5c:da:31:4b:f8:68:ef:14:24:dd:bd:d3: 23:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7E:69:C2:08:85:D1:C6:22:6E:CF:A6:FB:AD:47:2E:8A:07:2E:DE X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:fe:34:6b:b2:f5:77:0f:48:52:fe:a9:38:86:4e:19:52:a0: 0e:bf:9e:22:ea:cf:ce:af:36:83:5a:67:ad:15:c4:fb:5b:e0: 92:b2:e1:7c:12:eb:30:8d:24:6f:22:e7:b2:a6:c3:2d:b0:c6: 82:c7:5d:c7:ed:7e:c6:92:c6:f5:8e:18:44:48:48:95:b1:81: 8d:84:82:92:03:ef:6c:1d:6c:fd:96:63:cd:e0:8a:33:a9:57: e8:80:f3:36:db:24:90:8e:ca:ba:34:58:9c:85:94:e3:d8:92: f7:b7:c7:fe:e4:cb:a3:e6:b1:ae:a5:4b:6d:70:5e:dd:f0:98: 0d:37:a7:de:8b:1f:17:39:f0:ab:f1:b3:73:10:ee:be:80:2f: d0:6c:4c:bf:3a:fc:db:11:9a:e9:61:d7:aa:94:77:8e:15:e3: 71:c6:96:67:a0:2c:f0:50:c1:4f:d4:1e:ae:04:a2:3f:98:31: e7:1f:66:d1:c6:46:a8:64:6b:f9:03:e0:ac:55:2e:40:a4:ec: 50:86:d8:76:b7:e6:35:7c:66:bf:27:ec:e7:7b:6d:d5:04:ae: ee:ba:6f:4d:89:5c:bf:88:ed:3f:0e:63:ee:b4:a2:bb:62:20: e6:dc:61:b7:75:86:3e:f7:c5:94:3d:a5:77:cc:61:b6:db:34: e3:6e:fc:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjUwNDAzMDM0ODQzWhcNMjUwNDEwMDM0ODQzWjAYMRYwFAYD VQQDEw02N2VlMDUxYi04MTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WiXPuaW3FRMlB6jPlI/yPN1YhNH8JrEL77JgDPEI5kddv6uLZjw9nR2dGPn mHU99xh+gGf/AB7wHv+ydfweVtTLRugPRnELuerxU8hlE3kPhZ/y5RVXCU9DxrQk W47HXimvFv4ZPC9Q6rgO4XHiIBk0VWEpOQbFFp98mmm1Y9+xPJURtYcn33mj0wV4 T+Oxv1LLPitfYtSMKb1cUeHIr6Bh8dQq16PgboIJRA1OfX0/sQQc2/5XKMMbHlVv ZZU3bp4rW7K34hPsbRA9mt485fX5Odx5Vgq7YdiHzyA1pJbjLVEwTWLIu/9T44cO J9J1PwFc2jFL+GjvFCTdvdMj5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9+acII hdHGIm7PpvutRy6KBy7eMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUMzMi9DNEVBMUI5RTQ2RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZi cHZMVEt0SW9Nd1FoVVlMa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl/jRrsvV3D0hS/qk4hk4ZUqAOv54i6s/OrzaDWmetFcT7W+CSsuF8 EuswjSRvIueypsMtsMaCx13H7X7Gksb1jhhESEiVsYGNhIKSA+9sHWz9lmPN4Ioz qVfogPM22ySQjsq6NFichZTj2JL3t8f+5Muj5rGupUttcF7d8JgNN6feix8XOfCr 8bNzEO6+gC/QbEy/OvzbEZrpYdeqlHeOFeNxxpZnoCzwUMFP1B6uBKI/mDHnH2bR xkaoZGv5A+CsVS5ApOxQhth2t+Y1fGa/J+zne23VBK7uum9NiVy/iO0/DmPutKK7 YiDm3GG3dYY+98WUPaV3zGG22zTjbvxh -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:40 2025 by rpki-client