$ rpki-client -vvf rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft File: F61gXQbH7QoUSFwCoS8AFwmiLWI.mft (raw, json) Hash identifier: N8+sHuoY3+LDjjTg7/qUdC/+gX8cw/F3dyMJlzgUDiY= Subject key identifier: 0E:DC:C1:96:1C:2F:F1:FE:06:9C:F1:64:F1:BD:06:79:5A:29:7F:96 Authority key identifier: 17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 Certificate issuer: /CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft Manifest number: 0130 Signing time: Sat 05 Apr 2025 03:54:19 +0000 Manifest this update: Sat 05 Apr 2025 03:54:19 +0000 Manifest next update: Sat 12 Apr 2025 03:54:19 +0000 Files and hashes: 1: F61gXQbH7QoUSFwCoS8AFwmiLWI.crl (hash: yedtzaXVq4fk0q8RcYdc19dPt6uHlgqy+03yieZIYEk=) 2: 0294C902459511EE982FBC6DC4F9AE02.roa (hash: ImURD0YXIXR8XStDPLYGz5z7015ogkyNT0YFkxGE7dU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BEA7 Validity Not Before: Apr 5 03:54:19 2025 GMT Not After : Apr 12 03:54:19 2025 GMT Subject: CN=67f0a96b-567e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:79:23:fd:59:8c:6d:75:ab:8c:70:6e:da:43: 67:41:4e:86:4f:7b:97:cc:60:29:47:e6:25:47:42: 57:ad:b5:c1:da:2d:a5:a2:06:2c:45:0e:b0:4a:2c: 05:8f:02:33:28:75:e3:29:4b:85:1a:3e:74:5b:c0: 9a:35:46:10:e9:13:06:3d:48:38:e2:d5:73:19:13: cf:20:f9:a8:1f:b8:15:dd:88:1e:be:61:54:84:1e: b5:17:5c:b4:b2:ef:58:58:9c:b8:ef:a6:57:6e:bc: a7:d8:08:4a:6d:a0:9e:82:7d:81:1c:b8:b3:bc:7f: d3:26:5d:c6:4b:6e:99:dc:20:fe:6f:53:18:74:98: 33:7a:e7:be:7a:04:bb:eb:c7:71:da:b4:d0:65:da: a4:bc:92:0d:1a:a7:59:49:a0:ca:d4:fe:11:43:8a: a3:c7:31:d2:df:68:3b:c0:dd:e2:55:79:8f:62:82: 1a:d8:27:e4:57:66:9c:42:54:6e:08:22:7f:43:12: 68:b3:3b:e6:4d:4d:77:f6:35:6f:2d:1d:c8:e9:9b: d6:62:6b:6b:35:ae:1f:e3:c2:8b:7b:c6:bc:14:7c: 4b:2a:51:3b:63:61:51:aa:10:44:1d:16:bf:ed:ca: 3e:0d:6d:e2:cc:ee:0d:33:46:b6:60:b7:8f:80:95: 35:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:DC:C1:96:1C:2F:F1:FE:06:9C:F1:64:F1:BD:06:79:5A:29:7F:96 X509v3 Authority Key Identifier: keyid:17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:44:19:9c:fa:75:32:46:2d:f8:36:56:26:b3:b5:08:ae:36: b5:cd:d1:7b:17:04:1f:78:21:21:ca:2e:39:2b:6f:df:85:f2: 46:31:84:78:a1:ab:2b:3e:2c:7d:b0:9d:9a:c7:b4:f4:2d:e8: 0e:40:e3:16:9c:d6:db:b7:b8:5f:48:a9:b9:ba:ba:91:50:89: 61:40:ee:2e:12:5e:1d:6b:8f:60:d0:fc:c0:6d:2f:29:a8:bc: 4e:c4:b9:6e:c0:88:38:8d:88:ec:e1:69:44:a4:c8:9f:6a:c4: b3:f9:1b:13:13:53:84:38:ef:0e:ca:90:83:77:a3:ec:73:b1: 56:22:46:19:76:8f:c5:07:60:1d:70:e2:21:c2:7c:b8:d6:dc: a9:72:8b:a2:02:31:3c:8f:50:ec:ef:c5:da:ad:c1:de:60:5f: d4:01:9b:60:56:a2:79:af:99:1a:96:d1:31:30:c0:77:dc:88: da:16:d2:69:47:a5:85:f2:a4:2f:ec:44:a2:49:69:dd:17:18: 2f:6f:4c:4e:f6:57:3c:4e:72:b5:ec:8c:1e:c9:bd:29:f5:83: c9:30:78:3f:7c:00:cf:92:dd:bd:c9:de:ab:b8:4d:16:cf:85: 77:e0:88:fb:e4:b7:b9:06:e5:e9:86:b3:53:9e:77:e7:f1:e5: 51:79:e3:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJFQTcxMTAvBgNVBAUTKDE3QUQ2MDVEMDZDN0VEMEExNDQ4NUMwMkExMkYwMDE3 MDlBMjJENjIwHhcNMjUwNDA1MDM1NDE5WhcNMjUwNDEyMDM1NDE5WjAYMRYwFAYD VQQDEw02N2YwYTk2Yi01NjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3kj/VmMbXWrjHBu2kNnQU6GT3uXzGApR+YlR0JXrbXB2i2logYsRQ6wSiwF jwIzKHXjKUuFGj50W8CaNUYQ6RMGPUg44tVzGRPPIPmoH7gV3YgevmFUhB61F1y0 su9YWJy476ZXbryn2AhKbaCegn2BHLizvH/TJl3GS26Z3CD+b1MYdJgzeue+egS7 68dx2rTQZdqkvJINGqdZSaDK1P4RQ4qjxzHS32g7wN3iVXmPYoIa2CfkV2acQlRu CCJ/QxJoszvmTU139jVvLR3I6ZvWYmtrNa4f48KLe8a8FHxLKlE7Y2FRqhBEHRa/ 7co+DW3izO4NM0a2YLePgJU1RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7cwZYc L/H+BpzxZPG9BnlaKX+WMB8GA1UdIwQYMBaAFBetYF0Gx+0KFEhcAqEvABcJoi1i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkVBNy9CRTY3RDcxMDQ1 OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdRb1VTRndDb1M4QUZ3bWlM V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y2MWdYUWJIN1FvVVNGd0NvUzhBRndtaUxXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkVBNy9CRTY3RDcxMDQ1OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdR b1VTRndDb1M4QUZ3bWlMV0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFRBmc+nUyRi34NlYms7UIrja1zdF7FwQfeCEhyi45K2/fhfJGMYR4 oasrPix9sJ2ax7T0LegOQOMWnNbbt7hfSKm5urqRUIlhQO4uEl4da49g0PzAbS8p qLxOxLluwIg4jYjs4WlEpMifasSz+RsTE1OEOO8OypCDd6Psc7FWIkYZdo/FB2Ad cOIhwny41typcouiAjE8j1Ds78XarcHeYF/UAZtgVqJ5r5kaltExMMB33IjaFtJp R6WF8qQv7ESiSWndFxgvb0xO9lc8TnK17Iweyb0p9YPJMHg/fADPkt29yd6ruE0W z4V34Ij75Le5BuXphrNTnnfn8eVReeMU -----END CERTIFICATE-----Generated at Sat Apr 5 07:57:16 2025 by rpki-client