$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft File: u7bmAQQ3QyUFSIC308E15vx8yrE.mft (raw, json) Hash identifier: PspjU5Bc3K2TE86z5ynYGs0lGQ9Zf6d3hLuoWx5EjA4= Subject key identifier: 06:6B:84:62:4E:25:5B:F4:DB:4C:7F:2A:A2:78:82:4B:FE:C8:DA:9C Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft Manifest number: 01CB Signing time: Sat 29 Mar 2025 02:29:16 +0000 Manifest this update: Sat 29 Mar 2025 02:29:16 +0000 Manifest next update: Sat 05 Apr 2025 02:29:16 +0000 Files and hashes: 1: u7bmAQQ3QyUFSIC308E15vx8yrE.crl (hash: CQ+AdMHoucKLaNki4nH2rxFG/troAd6ZOhrqB2EX02k=) 2: CCB0DBA8CB2911EE9CE70483C4F9AE02.roa (hash: +L4H64N18c7HC9b7a2kMN0oPwzUDs4ByILHmodSVj7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A Validity Not Before: Mar 29 02:29:16 2025 GMT Not After : Apr 5 02:29:16 2025 GMT Subject: CN=67e75afc-6d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:40:c2:76:02:8d:39:b0:51:a4:97:37:5a:5c: c3:95:d9:91:af:c0:ef:7e:ee:1e:f5:fe:cf:35:84: 03:f7:d6:61:ce:80:e7:f2:10:fb:5a:ec:b2:29:ba: 1c:92:d0:36:2f:67:c2:85:f3:b4:b6:46:eb:9a:c8: b4:f2:9e:da:a1:78:03:f6:56:de:51:b6:7b:51:e5: 50:6b:35:90:df:27:84:f3:62:c2:8d:b2:02:de:d7: a9:e7:ac:2d:c1:38:dd:fc:e5:1c:af:ef:41:e8:d3: f9:9d:c9:f0:06:e4:58:db:da:77:c6:c3:c7:b7:37: d4:7a:df:fe:8c:a1:61:7c:7d:2f:c5:74:04:55:15: ca:1a:8e:08:76:de:56:a2:69:40:71:0f:bd:3a:4d: d1:93:41:5e:ec:3a:15:21:e2:09:96:ea:87:3b:42: ae:2b:9f:61:be:a3:8d:03:f1:0f:27:01:5b:df:2d: 00:fb:e8:68:39:d7:00:4c:a5:9d:6b:0e:de:55:d9: e3:a9:7f:9c:68:e6:5b:f1:9c:6d:ad:aa:55:c2:9c: bc:78:e6:55:53:50:8f:da:47:f3:8c:a0:df:d0:91: 81:a5:c4:65:f3:e7:c0:24:4d:f0:e5:a6:cb:e7:af: 81:42:da:ff:67:31:88:74:fa:c9:c8:e8:13:0c:81: b0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6B:84:62:4E:25:5B:F4:DB:4C:7F:2A:A2:78:82:4B:FE:C8:DA:9C X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:4d:d6:ed:63:24:d9:e4:6f:d5:27:7d:f8:39:51:90:90:e3: 70:00:58:46:2f:3d:95:cb:e9:14:0f:d4:37:78:e8:0c:04:6b: a7:94:dc:47:a0:99:6e:46:14:f6:70:db:87:46:f6:74:b6:55: 01:0d:35:36:31:f6:6c:13:3e:8c:f1:e7:dd:73:76:59:82:e9: 48:35:2d:4f:be:0d:8d:cd:cb:96:76:ea:5e:b3:c3:6a:45:4f: 34:ce:8a:e7:4d:4f:51:db:b7:e3:2a:6c:e2:00:36:54:d6:43: 3b:59:ce:41:c2:0c:54:51:9c:ae:51:24:51:6d:40:55:b9:94: 0e:5c:75:54:b4:0c:b9:5b:34:50:78:bd:25:59:f5:97:4b:5a: 7a:59:a1:3f:27:2d:e9:99:de:81:bb:d5:9a:02:31:62:47:69: 4f:e9:d0:71:8c:92:07:4a:56:64:3f:dd:19:8f:16:39:41:47: ac:8f:20:7d:5f:d2:3d:a5:8a:f9:f4:d4:4c:3e:a5:f2:aa:cb: 26:10:f4:cf:2c:4c:8f:cb:a7:dc:71:f1:f3:1b:70:ee:47:0b: 2a:e3:57:dd:67:d4:6d:f5:bc:b3:93:f3:c0:df:9a:09:3a:08: 15:2c:2d:5b:e1:37:7b:de:a5:92:f8:dc:96:b4:4d:82:f5:38: 14:6c:de:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjUwMzI5MDIyOTE2WhcNMjUwNDA1MDIyOTE2WjAYMRYwFAYD VQQDEw02N2U3NWFmYy02ZDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kDCdgKNObBRpJc3WlzDldmRr8Dvfu4e9f7PNYQD99ZhzoDn8hD7WuyyKboc ktA2L2fChfO0tkbrmsi08p7aoXgD9lbeUbZ7UeVQazWQ3yeE82LCjbIC3tep56wt wTjd/OUcr+9B6NP5ncnwBuRY29p3xsPHtzfUet/+jKFhfH0vxXQEVRXKGo4Idt5W omlAcQ+9Ok3Rk0Fe7DoVIeIJluqHO0KuK59hvqONA/EPJwFb3y0A++hoOdcATKWd aw7eVdnjqX+caOZb8ZxtrapVwpy8eOZVU1CP2kfzjKDf0JGBpcRl8+fAJE3w5abL 56+BQtr/ZzGIdPrJyOgTDIGw9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZrhGJO JVv020x/KqJ4gkv+yNqcMB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA0QS85NUE4MTAxNDUwNzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5 VUZTSUMzMDhFMTV2eDh5ckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0TdbtYyTZ5G/VJ334OVGQkONwAFhGLz2Vy+kUD9Q3eOgMBGunlNxH oJluRhT2cNuHRvZ0tlUBDTU2MfZsEz6M8efdc3ZZgulINS1Pvg2NzcuWdupes8Nq RU80zornTU9R27fjKmziADZU1kM7Wc5BwgxUUZyuUSRRbUBVuZQOXHVUtAy5WzRQ eL0lWfWXS1p6WaE/Jy3pmd6Bu9WaAjFiR2lP6dBxjJIHSlZkP90ZjxY5QUesjyB9 X9I9pYr59NRMPqXyqssmEPTPLEyPy6fccfHzG3DuRwsq41fdZ9Rt9byzk/PA35oJ OggVLC1b4Td73qWS+NyWtE2C9TgUbN5I -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:02 2025 by rpki-client