$ rpki-client -vvf rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft File: --bA8ysvL8RXYKA0LkO79VK03oU.mft (raw, json) Hash identifier: qYuitKdx6tCBieILM+l0msbkk/5cYQEMH+FpHC7umLk= Subject key identifier: 38:09:BF:D1:2D:8C:EA:19:3A:26:8E:89:85:81:47:A8:9E:16:3E:1D Authority key identifier: FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 Certificate issuer: /CN=A9124BD3/serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Certificate serial: 0D8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft Manifest number: 0D79 Signing time: Sun 20 Apr 2025 17:50:54 +0000 Manifest this update: Sun 20 Apr 2025 17:50:53 +0000 Manifest next update: Sun 27 Apr 2025 17:50:53 +0000 Files and hashes: 1: --bA8ysvL8RXYKA0LkO79VK03oU.crl (hash: 8fMdZI/BegkntvMn842RALz6qPzVjpwMMWi71p20pv8=) 2: 4C67EC06C68E11E983395515C4F9AE02.roa (hash: tP21nihbHvOPN0o7Q7ZnYvoB4lWQWRK3//ALxViNCn4=) 3: CA761A36760A11EC8FB55C23C4F9AE02.roa (hash: XcKMqxWrgr72X1rDOMRNGWOhRv7K/Bosj9SE1/JpnIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3470 (0xd8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124BD3, serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Validity Not Before: Apr 20 17:50:53 2025 GMT Not After : Apr 27 17:50:53 2025 GMT Subject: CN=680533fe-fd9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a8:a1:15:04:42:57:3f:01:25:59:73:e2:3c: 61:fb:b5:62:1f:6f:12:55:0c:51:3b:f1:45:22:55: eb:52:a3:f9:0b:d6:29:76:d9:4f:f2:b9:22:55:1d: b0:e2:c4:e4:d3:7b:be:4b:8e:00:b5:b4:02:c8:8b: ee:58:79:28:7a:42:bd:e7:0e:df:cf:ac:f1:91:94: 17:bc:1d:4f:ea:be:05:71:f3:79:12:3e:72:00:fa: 0b:f3:bd:ae:94:f7:9a:50:a3:1a:18:99:c4:ab:ec: 88:34:6d:02:6f:5e:2f:ef:5a:d8:69:58:f5:e8:9e: 78:43:27:dc:e2:f3:41:cc:08:0d:0a:ee:07:fb:f5: cd:c0:c7:31:5e:ba:84:89:08:b7:6d:78:76:e8:3b: d5:25:d3:f3:3e:58:52:50:84:69:75:d4:99:cb:8d: 87:c6:10:3a:22:a1:3f:c4:92:0f:bf:13:7a:a0:8e: ff:ad:da:ee:27:0f:93:59:09:65:13:45:b2:15:d3: 43:01:22:9a:bd:f1:1b:1d:70:5d:9f:9a:03:9f:96: 3a:82:68:17:97:48:c6:ad:f2:af:d0:cf:7d:6a:11: bf:83:b1:bb:d4:7a:a5:81:d0:6b:07:b8:95:4d:7f: 27:48:67:10:75:89:d6:67:70:8d:b4:03:7e:7a:5f: eb:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:09:BF:D1:2D:8C:EA:19:3A:26:8E:89:85:81:47:A8:9E:16:3E:1D X509v3 Authority Key Identifier: keyid:FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:a6:5d:a4:42:48:a2:f6:c1:be:d1:40:53:5c:72:63:31:d3: c0:10:a4:7d:e4:78:c5:67:20:d8:93:2e:9c:0b:04:18:ff:73: a9:69:f1:07:60:47:73:d6:da:fa:4a:b6:41:75:8f:dd:23:2c: 75:37:a2:cf:db:cd:95:8b:b1:23:16:bb:ba:24:f9:52:39:45: 49:e8:78:a4:b8:b5:36:2d:4c:35:4b:10:c5:dc:c9:54:9a:0e: b5:02:18:88:bf:78:5c:bc:90:78:e9:7b:0f:09:26:c9:b3:fb: 9b:86:6c:24:b8:ba:e1:33:fd:73:31:5e:d9:d9:87:7d:13:cf: d9:16:f2:53:b6:d5:01:48:38:20:5c:35:0d:9d:71:dc:98:fe: c7:e3:fc:b2:bf:6b:d2:68:55:a1:e0:0f:4c:4a:b7:6f:c8:87: 03:49:80:a5:f9:74:49:f7:fb:f1:e5:70:7f:19:43:7f:0e:20: 79:9e:c4:08:66:b5:f1:ed:ac:b2:c8:6e:f1:ef:7f:7a:25:e7: c7:bf:20:1d:25:69:9e:6b:56:c9:f8:c2:71:de:61:41:83:e0: 6f:1b:e2:f5:84:5a:a8:13:6a:dc:86:12:24:13:78:5e:ce:d8: d7:a3:be:0d:a2:b5:40:77:13:63:5d:d4:36:f9:a4:21:32:ca: 20:83:0a:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjRCRDMxMTAvBgNVBAUTKEZCRTZDMEYzMkIyRjJGQzQ1NzYwQTAzNDJFNDNCQkY1 NTJCNERFODUwHhcNMjUwNDIwMTc1MDUzWhcNMjUwNDI3MTc1MDUzWjAYMRYwFAYD VQQDEw02ODA1MzNmZS1mZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKihFQRCVz8BJVlz4jxh+7ViH28SVQxRO/FFIlXrUqP5C9YpdtlP8rkiVR2w 4sTk03u+S44AtbQCyIvuWHkoekK95w7fz6zxkZQXvB1P6r4FcfN5Ej5yAPoL872u lPeaUKMaGJnEq+yING0Cb14v71rYaVj16J54Qyfc4vNBzAgNCu4H+/XNwMcxXrqE iQi3bXh26DvVJdPzPlhSUIRpddSZy42HxhA6IqE/xJIPvxN6oI7/rdruJw+TWQll E0WyFdNDASKavfEbHXBdn5oDn5Y6gmgXl0jGrfKv0M99ahG/g7G71HqlgdBrB7iV TX8nSGcQdYnWZ3CNtAN+el/r7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgJv9Et jOoZOiaOiYWBR6ieFj4dMB8GA1UdIwQYMBaAFPvmwPMrLy/EV2CgNC5Du/VStN6F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNEJEMy8wRTREODY3QUM2 OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4UlhZS0EwTGtPNzlWSzAz b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0tYkE4eXN2TDhSWFlLQTBMa083OVZLMDNvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NEJEMy8wRTREODY3QUM2OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4 UlhZS0EwTGtPNzlWSzAzb1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCipl2kQkii9sG+0UBTXHJjMdPAEKR95HjFZyDYky6cCwQY/3OpafEH YEdz1tr6SrZBdY/dIyx1N6LP282Vi7EjFru6JPlSOUVJ6HikuLU2LUw1SxDF3MlU mg61AhiIv3hcvJB46XsPCSbJs/ubhmwkuLrhM/1zMV7Z2Yd9E8/ZFvJTttUBSDgg XDUNnXHcmP7H4/yyv2vSaFWh4A9MSrdvyIcDSYCl+XRJ9/vx5XB/GUN/DiB5nsQI ZrXx7ayyyG7x7396JefHvyAdJWmea1bJ+MJx3mFBg+BvG+L1hFqoE2rchhIkE3he ztjXo74NorVAdxNjXdQ2+aQhMsoggwp4 -----END CERTIFICATE-----Generated at Mon Apr 21 16:56:07 2025 by rpki-client