$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft File: 3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft (raw, json) Hash identifier: e/l3VoEH7I/i4ezXpjqw4/j73ls7OaXaqSlWpjvHOek= Subject key identifier: CD:07:C1:44:44:24:8D:31:D9:5D:57:23:E5:A7:17:3D:AA:A0:81:31 Authority key identifier: DE:F3:31:7C:BD:14:D7:DB:AA:27:BF:FE:3F:E5:A7:B8:A6:ED:CF:B9 Certificate issuer: /CN=A9127EEB/serialNumber=DEF3317CBD14D7DBAA27BFFE3FE5A7B8A6EDCFB9 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft Manifest number: 2C Signing time: Thu 03 Apr 2025 06:59:43 +0000 Manifest this update: Thu 03 Apr 2025 06:59:42 +0000 Manifest next update: Thu 10 Apr 2025 06:59:42 +0000 Files and hashes: 1: 3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl (hash: NJj/sLh6tBnbQsYw/PHQi/mvqo4Nb4T1RlKjsouT9Gc=) 2: 5E704778D3BB11EF80C3AF80C4F9AE02.roa (hash: 6R+DK419OzXAOf6Yc2d9Jp6bFe9vmgNgpzMg+OP71f4=) 3: 5EDC5882D3BB11EF80C3AF80C4F9AE02.roa (hash: PJbzNrEkpbuhikAan3mFGxS/ZJai+blTb1hTbzhhLXc=) 4: 5DEB6B02D3BB11EF80C3AF80C4F9AE02.roa (hash: QSPivy5RJK48HHT2SlrvrCH9DPiTCFPajDEwNKBnEww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EEB Validity Not Before: Apr 3 06:59:42 2025 GMT Not After : Apr 10 06:59:42 2025 GMT Subject: CN=67ee31de-0d31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ca:51:6a:be:b7:ff:65:51:8c:c3:af:a1:77: 17:10:f8:c7:2c:bc:90:4d:fa:3b:68:ad:5d:10:7b: 3f:8e:86:fd:60:65:24:98:0a:44:75:9c:13:d0:f3: 09:0f:24:3c:5d:88:c7:f7:28:b0:56:a4:20:0c:07: ad:5e:ae:75:43:58:80:d4:3f:2a:69:4b:c2:09:ed: cb:2c:49:85:84:e7:8a:0d:96:2f:42:1d:55:b2:39: 55:be:79:d4:29:49:d8:01:78:e1:bd:2d:9d:12:83: 19:fd:4c:77:88:a8:64:66:68:00:15:65:6e:5d:86: 81:62:7a:17:ba:5c:ac:f5:42:e3:00:ca:27:3f:f9: b0:24:4f:21:29:8f:c8:15:3a:7f:cd:21:ab:c8:bd: e6:7c:05:86:98:d8:f1:3a:70:d1:79:3b:35:31:22: 9d:54:b8:80:84:84:1d:a3:b1:ac:7b:9e:ff:a2:a2: f9:6e:4f:cf:97:e9:f6:fb:a8:32:78:36:d0:f1:6f: b7:0d:30:cb:bb:82:b1:0c:05:67:38:80:2f:ed:ee: 1e:b8:89:3e:05:2f:5b:5d:5c:80:99:3b:99:c8:68: 3e:99:58:f7:1b:0e:78:7e:eb:87:57:40:2e:5f:09: 2d:47:8f:66:56:03:13:19:de:b5:8e:c0:d5:c6:3d: 51:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:07:C1:44:44:24:8D:31:D9:5D:57:23:E5:A7:17:3D:AA:A0:81:31 X509v3 Authority Key Identifier: keyid:DE:F3:31:7C:BD:14:D7:DB:AA:27:BF:FE:3F:E5:A7:B8:A6:ED:CF:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:22:8c:52:68:3b:1c:01:cd:01:21:51:93:de:aa:9e:cd:31: 3d:c4:ae:ce:c5:25:4e:9c:f7:b9:25:91:2a:81:e0:32:da:b1: f6:78:8a:7b:30:6f:84:ed:f9:1b:b6:d4:f6:95:74:9d:0d:17: 99:fe:60:b0:f1:12:73:1c:e5:ef:b2:27:98:c3:c9:db:62:dc: 58:fe:f2:04:e0:d2:63:0c:15:6b:10:8c:8a:31:a8:6b:b8:65: 5b:66:27:77:5a:b4:b6:ea:7d:5d:3b:de:c9:d0:d5:57:71:09: b2:71:5d:19:65:49:72:3a:19:e6:34:1c:05:15:99:f7:11:8a: da:f7:7c:ec:b6:4a:bf:07:94:2e:3a:fa:cd:81:bb:fc:6d:73: 06:9b:ff:b5:79:1d:1d:c2:84:39:fb:77:8e:0f:e5:62:88:76: 69:3a:10:ec:70:4b:cc:7b:1e:5d:3a:7b:14:ef:09:82:e8:25: 93:45:84:08:83:89:43:b0:74:28:3d:e8:a8:93:50:9c:86:0c: 42:b0:23:01:56:b7:33:2e:5a:55:43:89:31:53:bc:3f:18:e8: 5f:6f:ab:a5:8a:96:fa:c4:92:e6:3c:e0:a9:58:aa:78:fa:df: 21:27:98:9b:52:45:01:37:27:09:49:c8:08:69:11:68:a5:83: ea:b4:57:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0VFQjExMC8GA1UEBRMoREVGMzMxN0NCRDE0RDdEQkFBMjdCRkZFM0ZFNUE3QjhB NkVEQ0ZCOTAeFw0yNTA0MDMwNjU5NDJaFw0yNTA0MTAwNjU5NDJaMBgxFjAUBgNV BAMTDTY3ZWUzMWRlLTBkMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9ylFqvrf/ZVGMw6+hdxcQ+McsvJBN+jtorV0Qez+Ohv1gZSSYCkR1nBPQ8wkP JDxdiMf3KLBWpCAMB61ernVDWIDUPyppS8IJ7cssSYWE54oNli9CHVWyOVW+edQp SdgBeOG9LZ0Sgxn9THeIqGRmaAAVZW5dhoFiehe6XKz1QuMAyic/+bAkTyEpj8gV On/NIavIveZ8BYaY2PE6cNF5OzUxIp1UuICEhB2jsax7nv+iovluT8+X6fb7qDJ4 NtDxb7cNMMu7grEMBWc4gC/t7h64iT4FL1tdXICZO5nIaD6ZWPcbDnh+64dXQC5f CS1Hj2ZWAxMZ3rWOwNXGPVGFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzQfBREQk jTHZXVcj5acXPaqggTEwHwYDVR0jBBgwFoAU3vMxfL0U19uqJ7/+P+WnuKbtz7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3RUVCL0Y1N0M5NEIwRDNC QTExRUY5NDdCMDU4MEM0RjlBRTAyLzN2TXhmTDBVMTl1cUo3Xy1QLVdudUtidHo3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3ZNeGZMMFUxOXVxSjdfLVAtV251S2J0ejdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 RUVCL0Y1N0M5NEIwRDNCQTExRUY5NDdCMDU4MEM0RjlBRTAyLzN2TXhmTDBVMTl1 cUo3Xy1QLVdudUtidHo3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADMijFJoOxwBzQEhUZPeqp7NMT3Ers7FJU6c97klkSqB4DLasfZ4insw b4Tt+Ru21PaVdJ0NF5n+YLDxEnMc5e+yJ5jDydti3Fj+8gTg0mMMFWsQjIoxqGu4 ZVtmJ3datLbqfV073snQ1VdxCbJxXRllSXI6GeY0HAUVmfcRitr3fOy2Sr8HlC46 +s2Bu/xtcwab/7V5HR3ChDn7d44P5WKIdmk6EOxwS8x7Hl06exTvCYLoJZNFhAiD iUOwdCg96KiTUJyGDEKwIwFWtzMuWlVDiTFTvD8Y6F9vq6WKlvrEkuY84KlYqnj6 3yEnmJtSRQE3JwlJyAhpEWilg+q0V1c= -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:37 2025 by rpki-client