$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: mygs8+M8YeWl1EziV3Kv/9ZOKQAz3aU68AKafX+66l8= Subject key identifier: 98:18:C1:7A:0D:2E:73:90:79:74:8E:DA:2F:75:4A:37:BE:8B:6E:E0 Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1D68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1D60 Signing time: Fri 04 Apr 2025 16:10:58 +0000 Manifest this update: Fri 04 Apr 2025 16:10:57 +0000 Manifest next update: Fri 11 Apr 2025 16:10:57 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: A8QlIdQ3vIZVlfgpDkzRb7zwRKyT7Vq1Y9pK/pfuMug=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: X5h8vQiP6tB103ZWi1RDruZWJP5MBROBXJX+od9NULg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7528 (0x1d68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95 Validity Not Before: Apr 4 16:10:57 2025 GMT Not After : Apr 11 16:10:57 2025 GMT Subject: CN=67f00491-bda1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a9:21:bd:79:5e:37:d0:fd:27:32:ed:e5:c9: a9:de:87:12:b4:55:3c:30:4f:a0:48:12:84:57:95: c2:27:69:84:d5:3b:05:f1:d9:ca:aa:9c:86:4c:69: b2:42:ce:c2:af:4d:95:fb:68:d9:19:d6:52:1a:c6: ee:7e:55:32:97:66:2e:24:8a:ac:ac:64:d3:90:32: 60:f1:68:d0:a0:87:80:51:41:43:22:7b:b4:6a:a5: c7:45:a6:85:d1:b2:9e:50:53:36:6d:5a:81:d3:82: 35:d7:76:ce:93:23:10:d7:c1:bd:7a:2a:32:ba:78: 9f:3f:aa:26:0d:21:77:49:1f:dc:29:12:d1:fb:ac: 39:30:b7:be:23:70:e7:5f:88:13:2b:77:60:91:aa: a2:ee:05:a5:94:04:62:38:81:0c:57:dd:82:cd:26: 3d:b8:9b:fb:8f:7a:02:72:52:27:f1:d6:fb:a1:b9: 96:3d:d1:59:a1:da:37:96:92:e6:d0:29:20:97:19: c2:29:68:54:c9:34:08:a2:87:0c:6e:44:99:36:7b: 74:d2:58:56:c0:09:d3:11:1c:98:6e:03:39:3c:54: 0e:95:ea:25:32:d4:51:82:1d:26:99:8f:e8:02:87: 35:c6:f0:9a:a3:2b:5f:18:71:ff:87:42:61:fd:fc: db:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:18:C1:7A:0D:2E:73:90:79:74:8E:DA:2F:75:4A:37:BE:8B:6E:E0 X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:aa:7c:2a:2f:b5:ba:f3:64:46:28:63:25:3c:b5:c3:b1:28: df:5f:b1:40:b6:73:1b:9a:af:7f:f2:c8:cc:da:ae:8d:b2:13: 22:d4:ef:c1:c1:db:e9:97:11:f2:95:ca:a5:ec:84:61:14:bd: f1:6c:c7:82:b7:f2:70:a8:a0:94:90:e4:a0:35:09:0c:38:7a: b6:48:49:0e:d8:4d:22:c4:52:c1:aa:60:d3:f8:1e:e4:e9:66: fa:cb:9b:c1:6a:2e:12:d1:fd:e7:0f:f6:8e:98:98:f2:df:32: 86:7b:14:e2:44:7f:24:ef:6e:23:cf:ad:94:4c:b4:f0:79:4a: f2:85:f6:ec:4b:5c:1e:f8:55:d0:12:7f:56:c2:3c:24:3d:f1: 5c:19:b6:21:f2:3f:8a:47:ce:21:87:ca:2c:d5:2e:d6:9e:79: 19:a7:87:e1:34:19:87:42:c4:99:02:4c:b2:9b:63:fe:2a:2b: d8:8b:79:a5:fd:1b:f8:d7:76:6d:e3:c3:63:14:14:9a:1e:aa: 01:6b:54:4e:4c:1b:b5:85:cb:e9:8a:fe:2b:59:36:83:c0:b3: d7:5a:d1:ea:65:13:08:dd:21:9c:93:9b:e2:a3:94:ed:15:e1: 2e:05:17:0e:cf:c3:4b:11:50:60:c2:0e:f1:e7:cc:5a:69:6d: 13:27:a9:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjUwNDA0MTYxMDU3WhcNMjUwNDExMTYxMDU3WjAYMRYwFAYD VQQDEw02N2YwMDQ5MS1iZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqkhvXleN9D9JzLt5cmp3ocStFU8ME+gSBKEV5XCJ2mE1TsF8dnKqpyGTGmy Qs7Cr02V+2jZGdZSGsbuflUyl2YuJIqsrGTTkDJg8WjQoIeAUUFDInu0aqXHRaaF 0bKeUFM2bVqB04I113bOkyMQ18G9eioyunifP6omDSF3SR/cKRLR+6w5MLe+I3Dn X4gTK3dgkaqi7gWllARiOIEMV92CzSY9uJv7j3oCclIn8db7obmWPdFZodo3lpLm 0CkglxnCKWhUyTQIoocMbkSZNnt00lhWwAnTERyYbgM5PFQOleolMtRRgh0mmY/o Aoc1xvCaoytfGHH/h0Jh/fzbIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgYwXoN LnOQeXSO2i91Sje+i27gMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOqnwqL7W682RGKGMlPLXDsSjfX7FAtnMbmq9/8sjM2q6NshMi1O/B wdvplxHylcql7IRhFL3xbMeCt/JwqKCUkOSgNQkMOHq2SEkO2E0ixFLBqmDT+B7k 6Wb6y5vBai4S0f3nD/aOmJjy3zKGexTiRH8k724jz62UTLTweUryhfbsS1we+FXQ En9WwjwkPfFcGbYh8j+KR84hh8os1S7WnnkZp4fhNBmHQsSZAkyym2P+KivYi3ml /Rv413Zt48NjFBSaHqoBa1ROTBu1hcvpiv4rWTaDwLPXWtHqZRMI3SGck5vio5Tt FeEuBRcOz8NLEVBgwg7x58xaaW0TJ6ka -----END CERTIFICATE-----Generated at Sun Apr 6 06:48:51 2025 by rpki-client