$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: lrXUNZPMy31EMoutCaHSuom0ZVX6dYiGhJJeGw26fDw= Subject key identifier: 23:3D:FB:2D:29:1E:23:B0:EF:1D:91:9A:7B:F0:AB:01:65:DE:35:8D Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0B1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0B16 Signing time: Sun 20 Apr 2025 19:02:09 +0000 Manifest this update: Sun 20 Apr 2025 19:02:09 +0000 Manifest next update: Sun 27 Apr 2025 19:02:09 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: sUeEDQpBU8d0y5lDl3WuwiuWN01oaeTIo1+H0IwmSfw=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: zSM1B8wSUB+mHKY/5kPPrFTVt9OokOjyYR65igDrdV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2847 (0xb1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219, serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Apr 20 19:02:09 2025 GMT Not After : Apr 27 19:02:09 2025 GMT Subject: CN=680544b1-d024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:92:16:1a:60:28:f2:6a:ee:18:dc:b7:39:da: 51:8b:25:9c:83:0c:ac:7c:6f:0b:59:04:32:a1:6d: fe:f6:f4:54:26:d5:40:95:30:9c:2a:03:23:de:d0: 9e:90:1f:cf:c8:49:8d:14:5d:78:db:81:fc:64:4c: 1e:e9:44:61:28:0d:80:0f:f9:25:9f:ec:68:2b:f6: 56:bd:2c:f8:fa:0f:8f:11:26:17:4e:50:56:90:f6: 0e:7e:e8:cd:3d:8d:41:6e:9d:d4:4c:2a:62:a5:a9: 03:a0:5a:85:01:d0:39:43:10:f0:b5:9e:69:2b:dd: 19:77:ce:bb:0a:f4:7d:c8:2c:79:91:f7:d6:1c:f3: 9c:ba:3e:8e:0c:bf:8d:94:a5:18:fe:49:21:5a:76: 9a:b5:0f:72:50:e3:53:aa:44:5f:11:6f:16:91:b5: 34:7f:98:41:ff:2e:bb:da:c9:bf:c6:34:0f:86:d4: 12:08:f8:4b:66:15:d6:68:5a:74:2d:9b:cd:ee:a8: 03:c2:88:36:e7:0c:5a:3a:b2:c2:b3:2a:3c:2e:73: 05:5d:98:be:bf:e3:37:e7:90:d8:49:73:83:6b:e6: ed:3c:db:71:35:47:98:88:3e:36:8b:74:92:be:73: 84:61:a9:ab:13:08:c0:8c:bd:04:d2:9e:0e:20:7c: dd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:3D:FB:2D:29:1E:23:B0:EF:1D:91:9A:7B:F0:AB:01:65:DE:35:8D X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:76:50:da:1c:e7:04:13:e1:74:0a:45:59:fe:09:97:14:77: b8:9b:91:3a:7d:55:0d:06:c1:6b:fb:47:18:e5:9a:67:8b:cb: 88:fc:10:f3:45:59:7f:d5:9a:4a:2a:49:49:87:ed:d5:79:42: 51:bb:22:8b:fc:70:c0:cd:d1:93:90:01:61:0b:8f:91:50:28: 95:c5:6e:e6:50:23:62:54:24:c9:de:b3:fc:64:13:f6:52:da: 6b:c6:08:f5:a2:56:6d:4a:29:28:c0:2f:8c:60:06:43:8c:99: f9:48:03:c7:03:d4:17:69:16:54:ad:30:1c:17:f4:80:8a:11: 10:7d:87:95:ed:dc:19:49:06:db:cb:1f:22:e7:32:7c:f7:c8: d7:3b:99:03:9f:9d:27:9a:53:fd:71:f2:08:05:38:cc:b3:45: 90:83:1b:c7:18:4c:f0:2e:34:5b:c1:de:dc:76:87:d3:43:7e: e1:26:c4:fc:6e:76:ad:85:ff:80:7c:88:cb:02:56:0b:ed:9f: 85:03:aa:96:9e:eb:61:20:95:9b:d2:ec:30:11:3a:ee:62:bd: 30:d2:6a:d8:4c:01:ff:58:13:3b:d9:d3:b2:69:20:a6:30:d4: 27:fa:14:6c:70:e4:3f:5b:45:0e:3b:0c:aa:9b:d8:3f:79:11: f8:f2:bf:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjUwNDIwMTkwMjA5WhcNMjUwNDI3MTkwMjA5WjAYMRYwFAYD VQQDEw02ODA1NDRiMS1kMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pIWGmAo8mruGNy3OdpRiyWcgwysfG8LWQQyoW3+9vRUJtVAlTCcKgMj3tCe kB/PyEmNFF1424H8ZEwe6URhKA2AD/kln+xoK/ZWvSz4+g+PESYXTlBWkPYOfujN PY1Bbp3UTCpipakDoFqFAdA5QxDwtZ5pK90Zd867CvR9yCx5kffWHPOcuj6ODL+N lKUY/kkhWnaatQ9yUONTqkRfEW8WkbU0f5hB/y672sm/xjQPhtQSCPhLZhXWaFp0 LZvN7qgDwog25wxaOrLCsyo8LnMFXZi+v+M355DYSXODa+btPNtxNUeYiD42i3SS vnOEYamrEwjAjL0E0p4OIHzdKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCM9+y0p HiOw7x2RmnvwqwFl3jWNMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrdlDaHOcEE+F0CkVZ/gmXFHe4m5E6fVUNBsFr+0cY5Zpni8uI/BDz RVl/1ZpKKklJh+3VeUJRuyKL/HDAzdGTkAFhC4+RUCiVxW7mUCNiVCTJ3rP8ZBP2 Utprxgj1olZtSikowC+MYAZDjJn5SAPHA9QXaRZUrTAcF/SAihEQfYeV7dwZSQbb yx8i5zJ898jXO5kDn50nmlP9cfIIBTjMs0WQgxvHGEzwLjRbwd7cdofTQ37hJsT8 bnathf+AfIjLAlYL7Z+FA6qWnuthIJWb0uwwETruYr0w0mrYTAH/WBM72dOyaSCm MNQn+hRscOQ/W0UOOwyqm9g/eRH48r/X -----END CERTIFICATE-----Generated at Tue Apr 22 18:24:30 2025 by rpki-client