$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft File: CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft (raw, json) Hash identifier: YHD8P1gm8A8cPa9TE11Dc8I4XbaxteTGBGmfJUtlGVk= Subject key identifier: 4B:B0:B1:82:32:3A:E3:60:DB:7F:74:A7:39:2E:83:84:2C:C4:EE:9F Authority key identifier: 0A:45:C5:0E:37:23:5A:2A:A2:23:E9:F3:13:31:F6:94:28:E0:D9:46 Certificate issuer: /CN=A9128C53/serialNumber=0A45C50E37235A2AA223E9F31331F69428E0D946 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft Manifest number: 0100 Signing time: Sun 13 Apr 2025 03:58:33 +0000 Manifest this update: Sun 13 Apr 2025 03:58:33 +0000 Manifest next update: Sun 20 Apr 2025 03:58:33 +0000 Files and hashes: 1: CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl (hash: bP9LQ53SAzf5A7TcHyqKT92CcXVmMSIf6FUlgegkwmE=) 2: 04A9BC6EDAC011EE94B8705AC4F9AE02.roa (hash: KPnhqjLLs6yDc2UwZmMfmiNxRsrivufpZvf1sQ6QcZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 03:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C53, serialNumber=0A45C50E37235A2AA223E9F31331F69428E0D946 Validity Not Before: Apr 13 03:58:33 2025 GMT Not After : Apr 20 03:58:33 2025 GMT Subject: CN=67fb3669-eaf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2b:8f:42:a0:f5:45:b1:58:c0:5e:3e:cb:8b: 3a:0a:aa:bb:c1:b3:e1:25:65:ba:3d:fd:16:7d:97: 49:aa:70:1a:c9:9d:67:db:9a:78:04:08:10:60:04: 51:97:89:25:30:91:7a:db:bb:64:2d:83:36:a1:7b: 49:00:f8:ba:fe:7e:06:68:b8:98:7d:15:2b:10:0f: c1:01:80:a2:0d:75:71:89:5b:a9:c7:0e:83:7f:58: e7:31:41:a7:31:e9:3e:8f:83:8e:ba:8a:f4:92:5b: 75:fa:7f:59:cd:8a:a2:63:de:75:76:b2:37:96:a0: b1:65:77:c1:5c:22:d7:7d:9d:43:75:44:00:46:37: 64:6c:c1:cb:03:e2:38:99:ef:3b:fc:2b:65:9c:e6: 21:52:c4:14:90:61:77:97:cc:cf:25:49:05:53:b3: c7:4d:e6:61:3f:29:bc:d4:c3:ac:bd:e5:c3:7b:4f: 2f:62:1f:2b:31:19:e1:17:58:b5:16:ab:cc:a0:77: 7c:41:25:f3:00:8d:21:71:e5:d5:9b:99:23:5a:f2: 2d:d4:6e:b1:2e:e9:af:fa:a0:f4:68:07:89:18:91: a8:57:e9:b5:37:e3:3a:9b:1d:5b:95:9c:15:47:20: 85:15:2a:1e:c4:60:c1:dc:a3:d8:cc:f0:38:f9:da: 8e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B0:B1:82:32:3A:E3:60:DB:7F:74:A7:39:2E:83:84:2C:C4:EE:9F X509v3 Authority Key Identifier: keyid:0A:45:C5:0E:37:23:5A:2A:A2:23:E9:F3:13:31:F6:94:28:E0:D9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:10:73:9b:37:2c:1f:2c:47:4b:eb:6a:1f:e6:4c:dd:50:84: 21:a6:c2:3b:b7:da:d6:79:9d:5e:a7:a2:93:56:d9:bb:ce:12: 70:aa:ae:69:16:cb:0a:86:bd:d3:96:03:01:d4:5e:3c:fa:54: 0f:69:f9:b6:ca:10:a1:5d:69:82:e5:bc:12:0c:53:db:f7:63: 49:1e:7e:8c:d2:f5:09:b8:6d:cf:a5:4f:77:3f:c3:49:1a:2b: 3c:7d:35:c0:0f:f0:25:f8:33:d0:e6:5e:fb:33:71:b2:8a:6a: f7:4b:84:7b:59:c0:ee:b1:30:cf:6c:3c:1e:ef:32:de:77:ad: 28:30:d4:bf:40:2e:5d:dd:73:bb:b4:5b:e8:53:70:9f:d6:43: 9e:1d:d7:20:0b:8a:5e:50:bd:c8:6c:3a:b9:b1:ac:f6:da:f6: 6a:1e:6f:45:ce:00:55:99:52:7b:a5:f3:4f:64:62:41:2c:3c: e3:fb:06:5f:c2:11:62:bc:f2:1a:f8:49:10:29:97:2c:c0:7a: 44:a6:a6:e8:31:52:c0:c7:26:ce:f4:a5:7c:b5:b7:81:ae:81: 74:a1:14:85:ad:c8:b2:bd:ee:07:a3:e8:14:71:bb:46:92:36: b1:a9:41:a4:3a:8b:07:e1:c3:b3:f6:41:92:c3:16:bc:fe:35: 4e:37:49:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDNTMxMTAvBgNVBAUTKDBBNDVDNTBFMzcyMzVBMkFBMjIzRTlGMzEzMzFGNjk0 MjhFMEQ5NDYwHhcNMjUwNDEzMDM1ODMzWhcNMjUwNDIwMDM1ODMzWjAYMRYwFAYD VQQDEw02N2ZiMzY2OS1lYWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSuPQqD1RbFYwF4+y4s6Cqq7wbPhJWW6Pf0WfZdJqnAayZ1n25p4BAgQYARR l4klMJF627tkLYM2oXtJAPi6/n4GaLiYfRUrEA/BAYCiDXVxiVupxw6Df1jnMUGn Mek+j4OOuor0klt1+n9ZzYqiY951drI3lqCxZXfBXCLXfZ1DdUQARjdkbMHLA+I4 me87/CtlnOYhUsQUkGF3l8zPJUkFU7PHTeZhPym81MOsveXDe08vYh8rMRnhF1i1 FqvMoHd8QSXzAI0hceXVm5kjWvIt1G6xLumv+qD0aAeJGJGoV+m1N+M6mx1blZwV RyCFFSoexGDB3KPYzPA4+dqOFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuwsYIy OuNg2390pzkug4QsxO6fMB8GA1UdIwQYMBaAFApFxQ43I1oqoiPp8xMx9pQo4NlG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM1My9FQTZFQ0UwQTkz ODExMUVFQkZDQkZGMjRDNEY5QUUwMi9Da1hGRGpjaldpcWlJLW56RXpIMmxDamcy VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrWEZEamNqV2lxaUktbnpFekgybENqZzJVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM1My9FQTZFQ0UwQTkzODExMUVFQkZDQkZGMjRDNEY5QUUwMi9Da1hGRGpjaldp cWlJLW56RXpIMmxDamcyVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjEHObNywfLEdL62of5kzdUIQhpsI7t9rWeZ1ep6KTVtm7zhJwqq5p FssKhr3TlgMB1F48+lQPafm2yhChXWmC5bwSDFPb92NJHn6M0vUJuG3PpU93P8NJ Gis8fTXAD/Al+DPQ5l77M3Gyimr3S4R7WcDusTDPbDwe7zLed60oMNS/QC5d3XO7 tFvoU3Cf1kOeHdcgC4peUL3IbDq5saz22vZqHm9FzgBVmVJ7pfNPZGJBLDzj+wZf whFivPIa+EkQKZcswHpEpqboMVLAxybO9KV8tbeBroF0oRSFrciyve4Ho+gUcbtG kjaxqUGkOosH4cOz9kGSwxa8/jVON0lm -----END CERTIFICATE-----Generated at Mon Apr 14 16:19:17 2025 by rpki-client