$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: dvt17sO5wQj3Do15/8jLjz1MHZyUpjweNhZ3vJJtBiI= Subject key identifier: 2D:AB:7D:0E:89:1B:7B:BD:1A:AF:D3:47:8F:DA:E6:2D:A2:49:25:63 Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 020D Signing time: Thu 03 Apr 2025 02:01:21 +0000 Manifest this update: Thu 03 Apr 2025 02:01:20 +0000 Manifest next update: Thu 10 Apr 2025 02:01:20 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: bzvHxMKvyZXArTYkWRrbH393cnyLBatiMP/CxSi7tA0=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: SvlTkdhfP2Vy/Mu+17rsFwHULfYPp5POSAbZ7IEAOKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758 Validity Not Before: Apr 3 02:01:20 2025 GMT Not After : Apr 10 02:01:20 2025 GMT Subject: CN=67edebf0-14cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0d:ba:33:00:b6:1e:40:0f:3c:47:9e:c3:c1: 6b:0d:69:9e:a4:30:b9:73:41:aa:6a:bc:49:f7:55: aa:03:5c:ce:f6:44:5c:17:23:fa:40:a1:30:eb:ba: 74:5b:46:b9:af:c0:7f:9a:a8:28:d6:52:e5:ec:3a: 14:4d:ab:09:e7:46:cd:d3:82:cb:1c:0f:d7:db:6f: 31:0c:e7:20:34:70:7c:bc:0f:e7:80:e3:7a:86:9a: 83:6b:0d:e9:f2:5c:af:7b:72:9b:5d:21:df:fc:18: 1d:2e:f9:7e:55:07:b8:8a:af:98:5f:c6:63:e2:17: 20:8f:f0:8a:ca:68:d3:a5:b9:3c:ab:4c:0f:bf:15: 1c:eb:e4:02:4a:c0:9a:58:aa:b9:82:79:8e:16:d2: 23:39:39:9d:45:65:e1:f9:18:16:b7:e7:c8:d4:99: 32:dd:54:42:a4:93:d3:05:ba:c8:b0:01:2b:d3:44: 03:ae:b1:53:05:cc:53:48:5b:9a:a4:3c:95:55:2e: dc:24:31:3f:6f:47:97:fd:51:ac:c1:af:96:ea:74: 38:67:81:a8:af:f8:09:69:ab:c2:48:b3:da:84:64: b9:1f:3f:90:ec:d4:d6:5f:ce:71:f9:51:cc:8b:1d: 04:40:72:f2:18:3c:34:95:d8:cc:78:3f:03:96:71: e4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AB:7D:0E:89:1B:7B:BD:1A:AF:D3:47:8F:DA:E6:2D:A2:49:25:63 X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:86:d8:28:03:cc:76:00:12:d9:1e:cc:d9:59:f5:4d:ab:1a: 51:f6:d3:88:22:95:02:98:66:01:1a:57:f1:f7:ff:39:bd:60: 04:c9:f4:b1:f4:36:62:a4:e1:85:2b:f2:96:7c:40:f6:9d:b8: ea:ab:57:ad:c0:b2:c3:ae:08:b7:2e:c5:c5:6e:c1:9f:2f:9a: 84:b0:c2:ff:1b:50:fc:8e:fc:72:c8:8c:8f:1e:14:ad:51:5a: fa:8d:0e:40:0d:cf:a5:ae:ef:0d:66:b2:8d:d6:4b:05:eb:40: 86:a5:83:01:7f:6d:af:60:9a:bb:46:fe:3c:4f:89:49:73:88: 4e:91:5f:c6:27:f0:12:d3:8a:1b:c4:a0:a6:d6:00:ec:da:97: 92:4c:55:38:0c:f3:af:dc:1d:f0:c6:2b:c4:bc:54:b1:ec:43: 35:18:6b:14:cb:38:a1:18:b6:2a:d2:38:24:89:2f:19:49:d3: 0f:93:10:55:fe:19:4d:99:e7:66:76:92:5b:a4:b0:c9:c9:67: 58:2d:54:7a:34:75:bd:f1:88:b1:2e:28:a0:97:6b:3c:bd:6d: cc:b3:ea:04:0f:22:95:93:31:c0:3b:28:d7:07:0a:1e:8b:3b: 92:52:a8:42:62:f5:bb:a2:5e:56:d4:88:d6:9e:6b:38:30:bd: e1:21:27:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUwNDAzMDIwMTIwWhcNMjUwNDEwMDIwMTIwWjAYMRYwFAYD VQQDEw02N2VkZWJmMC0xNGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3g26MwC2HkAPPEeew8FrDWmepDC5c0GqarxJ91WqA1zO9kRcFyP6QKEw67p0 W0a5r8B/mqgo1lLl7DoUTasJ50bN04LLHA/X228xDOcgNHB8vA/ngON6hpqDaw3p 8lyve3KbXSHf/BgdLvl+VQe4iq+YX8Zj4hcgj/CKymjTpbk8q0wPvxUc6+QCSsCa WKq5gnmOFtIjOTmdRWXh+RgWt+fI1Jky3VRCpJPTBbrIsAEr00QDrrFTBcxTSFua pDyVVS7cJDE/b0eX/VGswa+W6nQ4Z4Gor/gJaavCSLPahGS5Hz+Q7NTWX85x+VHM ix0EQHLyGDw0ldjMeD8DlnHkzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2rfQ6J G3u9Gq/TR4/a5i2iSSVjMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBohtgoA8x2ABLZHszZWfVNqxpR9tOIIpUCmGYBGlfx9/85vWAEyfSx 9DZipOGFK/KWfED2nbjqq1etwLLDrgi3LsXFbsGfL5qEsML/G1D8jvxyyIyPHhSt UVr6jQ5ADc+lru8NZrKN1ksF60CGpYMBf22vYJq7Rv48T4lJc4hOkV/GJ/AS04ob xKCm1gDs2peSTFU4DPOv3B3wxivEvFSx7EM1GGsUyzihGLYq0jgkiS8ZSdMPkxBV /hlNmedmdpJbpLDJyWdYLVR6NHW98YixLiigl2s8vW3Ms+oEDyKVkzHAOyjXBwoe izuSUqhCYvW7ol5W1IjWnms4ML3hISeD -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:04 2025 by rpki-client