$ rpki-client -vvf rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft File: r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft (raw, json) Hash identifier: I1iRVpspQoossCIOlAbEwLYP74FDSPpCmBUX+J8xNBU= Subject key identifier: 76:CC:38:78:94:11:95:AA:5E:B4:83:4F:F7:C4:AB:52:76:95:5B:B4 Authority key identifier: AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 Certificate issuer: /CN=A9127686/serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Certificate serial: 049A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft Manifest number: 0495 Signing time: Sat 05 Apr 2025 00:05:30 +0000 Manifest this update: Sat 05 Apr 2025 00:05:30 +0000 Manifest next update: Sat 12 Apr 2025 00:05:30 +0000 Files and hashes: 1: r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl (hash: JldOpLayRGjj7rIZG8aSIEoGfEiLzLGjNPMbUtbZs3Q=) 2: 54BBE48A304411EC830F8610C4F9AE02.roa (hash: ES0KtplnGhM27Vh/hroAKpFu+jIJhHlyayZgnN5P/Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1178 (0x49a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127686 Validity Not Before: Apr 5 00:05:30 2025 GMT Not After : Apr 12 00:05:30 2025 GMT Subject: CN=67f073ca-6682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0d:d2:71:20:4d:4b:fc:ab:bf:fc:a5:a9:df: a3:26:d8:dc:0a:04:c3:f6:10:38:2c:cc:6d:fa:55: 30:6d:3e:46:59:08:73:f6:f1:b8:02:7d:a1:ed:63: b2:4e:f4:36:e8:0e:50:21:7f:85:f5:75:b9:c7:54: aa:d9:c1:84:51:e6:3b:09:31:b5:c4:0d:88:60:d0: 24:e0:0b:76:b5:00:ba:76:66:20:bf:96:9a:71:12: 8d:83:42:d4:f5:bc:7d:e8:a9:f6:16:c6:cc:16:c7: b8:e9:23:90:55:be:9f:ab:50:30:bb:92:15:96:ca: 6f:7a:a7:aa:50:ac:50:aa:a3:b0:76:d3:68:45:aa: b7:9c:9c:fe:f1:d8:4d:a6:c4:26:cd:c4:18:dd:9f: f5:16:92:b5:41:41:e8:ef:79:a0:8c:59:1c:de:29: 29:14:f6:56:83:dd:84:64:51:74:47:9b:8b:e6:9f: f0:a7:31:d1:6c:23:87:95:61:ad:0f:5b:9f:e6:10: e8:3e:1f:2b:0e:f6:70:d1:a4:15:33:05:2f:c4:99: 04:c7:f9:92:a1:e6:dc:97:69:f7:78:17:b7:46:54: 0c:25:2a:31:81:d4:3e:a1:4f:5d:5f:d1:2b:df:a6: 1c:9f:b8:8c:e5:71:fe:2d:05:eb:24:a7:c9:ef:02: 22:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:CC:38:78:94:11:95:AA:5E:B4:83:4F:F7:C4:AB:52:76:95:5B:B4 X509v3 Authority Key Identifier: keyid:AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:c0:c5:19:f1:0a:b4:cc:0d:36:18:89:81:72:3a:1a:ef:31: 3f:89:c5:46:b5:45:0f:c5:7b:8b:b0:0c:5a:9c:37:d0:ef:bd: 64:c3:fd:0d:60:07:3b:a5:a9:1d:e5:41:91:0e:70:68:3e:d1: 41:fe:06:a9:13:52:0b:ca:cb:a8:66:72:f9:21:c6:e4:dd:b9: d5:f8:3c:45:c7:ee:eb:6a:7d:2c:35:ad:15:1d:6c:41:6b:d6: f1:b9:bd:c1:71:44:0a:50:93:80:b4:da:a5:9a:3c:01:9b:e8: fd:66:42:cc:b8:2e:91:b3:3d:3c:91:92:fe:37:4a:c3:a9:a1: 24:c1:c9:23:f6:d5:d9:48:54:76:2a:e5:f5:b3:54:f2:dc:58: a0:5a:fe:53:eb:79:d6:fe:ef:b6:db:57:5f:ed:01:6f:c6:11: 65:a3:21:9d:37:38:05:b8:da:2f:f1:ef:5d:b0:ca:b0:c8:0e: 41:e1:4c:51:af:41:bd:fe:d9:58:5a:fa:80:5a:32:96:eb:b7: b6:9d:44:de:d5:de:78:47:30:b3:63:30:a2:9d:74:0a:6a:22: f3:63:15:65:20:e1:59:f0:71:5e:61:7b:b3:1f:0f:f9:6e:c8: de:6d:b8:bd:03:1f:4b:c6:59:7c:aa:9e:9c:7a:3f:80:1b:8a: f7:78:af:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2ODYxMTAvBgNVBAUTKEFGNzFGNUIxNjc5NUY5QjdDRjJCMjQ1ODQ4MDc3RTEx Njg1QkE2RjAwHhcNMjUwNDA1MDAwNTMwWhcNMjUwNDEyMDAwNTMwWjAYMRYwFAYD VQQDEw02N2YwNzNjYS02NjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApA3ScSBNS/yrv/ylqd+jJtjcCgTD9hA4LMxt+lUwbT5GWQhz9vG4An2h7WOy TvQ26A5QIX+F9XW5x1Sq2cGEUeY7CTG1xA2IYNAk4At2tQC6dmYgv5aacRKNg0LU 9bx96Kn2FsbMFse46SOQVb6fq1Awu5IVlspveqeqUKxQqqOwdtNoRaq3nJz+8dhN psQmzcQY3Z/1FpK1QUHo73mgjFkc3ikpFPZWg92EZFF0R5uL5p/wpzHRbCOHlWGt D1uf5hDoPh8rDvZw0aQVMwUvxJkEx/mSoebcl2n3eBe3RlQMJSoxgdQ+oU9dX9Er 36Ycn7iM5XH+LQXrJKfJ7wIitQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbMOHiU EZWqXrSDT/fEq1J2lVu0MB8GA1UdIwQYMBaAFK9x9bFnlfm3zyskWEgHfhFoW6bw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY4Ni9DNzRCMUZGRTMw NDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1iZlBLeVJZU0FkLUVXaGJw dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzSDFzV2VWLWJmUEt5UllTQWQtRVdoYnB2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzY4Ni9DNzRCMUZGRTMwNDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1i ZlBLeVJZU0FkLUVXaGJwdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBwMUZ8Qq0zA02GImBcjoa7zE/icVGtUUPxXuLsAxanDfQ771kw/0N YAc7pakd5UGRDnBoPtFB/gapE1ILysuoZnL5Icbk3bnV+DxFx+7ran0sNa0VHWxB a9bxub3BcUQKUJOAtNqlmjwBm+j9ZkLMuC6Rsz08kZL+N0rDqaEkwckj9tXZSFR2 KuX1s1Ty3FigWv5T63nW/u+221df7QFvxhFloyGdNzgFuNov8e9dsMqwyA5B4UxR r0G9/tlYWvqAWjKW67e2nUTe1d54RzCzYzCinXQKaiLzYxVlIOFZ8HFeYXuzHw/5 bsjebbi9Ax9Lxll8qp6cej+AG4r3eK+U -----END CERTIFICATE-----Generated at Sun Apr 6 06:32:56 2025 by rpki-client