$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: +ocemlkD5eJvBVUkpDJPAWtpTU3W1v0AD/NDw//PBrA= Subject key identifier: 2C:02:C2:DB:9B:8E:A2:43:7A:AE:60:B5:5C:10:F8:94:F9:9B:CB:B7 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 04FF Signing time: Fri 28 Mar 2025 23:56:49 +0000 Manifest this update: Fri 28 Mar 2025 23:56:48 +0000 Manifest next update: Fri 04 Apr 2025 23:56:48 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: 3cDx3qtoVIPRdyylNnC2FtFCqW6W2ZFgSyVnF/gk9Tk=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: lwH3/LI1XgonY5xgqpT7sakTv0eerZuuX+aDEUruDuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7 Validity Not Before: Mar 28 23:56:48 2025 GMT Not After : Apr 4 23:56:48 2025 GMT Subject: CN=67e73741-5608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:90:49:04:64:78:79:13:99:a7:c4:80:5c:da: 4b:db:69:bf:0c:d3:ae:be:35:a1:91:63:82:55:ba: a8:b8:5c:37:b5:a5:f2:e8:03:43:6a:17:84:65:98: 7d:1a:78:c9:2b:9d:c5:ac:6f:c4:0e:28:4e:0b:9e: 99:d6:07:1a:5e:44:4e:45:54:49:83:26:62:4a:1a: b2:7c:0d:b7:99:06:fc:e7:ac:bf:ea:86:a7:ee:53: 2e:2c:7f:b4:8b:ff:ca:a3:f4:e7:4f:d9:c6:7c:4f: 25:41:96:5d:ad:b3:e1:b6:7e:4b:8c:6b:0d:98:a8: a4:06:21:f8:80:05:d5:d5:8c:5c:c5:6f:05:02:4b: a8:12:8e:9d:91:3b:2e:1b:58:4c:f0:f9:9b:8c:e1: 9d:4d:1b:99:fa:16:b1:54:bc:23:8b:59:4d:42:df: 30:9d:80:7e:31:a6:2c:2d:03:e7:b5:0d:c0:94:af: 8e:fd:8b:91:1a:aa:13:64:fd:3b:fc:0b:09:77:ab: d2:ce:00:02:cc:85:d3:53:66:a1:54:ba:5d:e6:b8: c7:f4:86:f8:71:a6:22:02:c2:e2:03:55:40:75:7b: af:dd:9b:b8:33:40:c3:73:a0:6d:3e:44:6a:31:3a: 0a:ff:8e:c8:d0:2a:0f:df:0b:39:ea:9a:99:08:60: 25:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:02:C2:DB:9B:8E:A2:43:7A:AE:60:B5:5C:10:F8:94:F9:9B:CB:B7 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:75:e5:f9:b2:ba:07:98:4d:c2:bd:b9:67:91:88:30:19:77: 55:90:ec:8f:7f:f9:8d:c5:da:e3:1e:62:36:9d:10:19:63:dd: 8e:24:75:1b:1f:6e:58:59:81:46:4a:77:20:c0:bc:08:fc:e9: a8:d4:37:84:89:77:49:be:52:f6:24:99:c7:b0:8a:75:15:e3: 4c:76:f2:30:04:48:5f:a1:8d:11:dd:69:87:4e:d9:32:5e:77: 97:d7:3d:cd:a3:37:f3:55:87:3e:83:cc:3d:9e:c5:b3:3a:ac: f4:84:17:52:7a:86:50:86:05:0b:c0:e7:43:7d:11:81:89:f0: b2:4f:eb:ff:d6:67:c9:53:ba:a8:b5:c6:7c:72:9a:a2:b9:cf: 64:7a:b3:8e:27:20:22:50:8f:4c:13:31:ab:a3:16:70:17:7c: af:f1:7d:96:6a:9b:3a:c8:c9:d0:33:5b:b4:5c:08:f6:62:06: 22:8e:c6:c7:8b:2a:da:87:be:ec:47:ee:82:1b:08:09:42:0c: 73:93:39:b3:8a:f5:80:5c:bb:42:21:92:5e:2c:ce:52:e3:d2: 86:79:8f:47:ac:69:bf:34:9c:f5:61:2e:42:c4:e3:9f:be:66: 9a:a8:72:54:22:91:8a:57:2f:ce:36:43:c5:fa:1c:69:2d:32: 39:c3:fb:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUwMzI4MjM1NjQ4WhcNMjUwNDA0MjM1NjQ4WjAYMRYwFAYD VQQDEw02N2U3Mzc0MS01NjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JBJBGR4eROZp8SAXNpL22m/DNOuvjWhkWOCVbqouFw3taXy6ANDaheEZZh9 GnjJK53FrG/EDihOC56Z1gcaXkRORVRJgyZiShqyfA23mQb856y/6oan7lMuLH+0 i//Ko/TnT9nGfE8lQZZdrbPhtn5LjGsNmKikBiH4gAXV1YxcxW8FAkuoEo6dkTsu G1hM8PmbjOGdTRuZ+haxVLwji1lNQt8wnYB+MaYsLQPntQ3AlK+O/YuRGqoTZP07 /AsJd6vSzgACzIXTU2ahVLpd5rjH9Ib4caYiAsLiA1VAdXuv3Zu4M0DDc6BtPkRq MToK/47I0CoP3ws56pqZCGAl5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwCwtub jqJDeq5gtVwQ+JT5m8u3MB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRdeX5sroHmE3CvblnkYgwGXdVkOyPf/mNxdrjHmI2nRAZY92OJHUb H25YWYFGSncgwLwI/Omo1DeEiXdJvlL2JJnHsIp1FeNMdvIwBEhfoY0R3WmHTtky XneX1z3NozfzVYc+g8w9nsWzOqz0hBdSeoZQhgULwOdDfRGBifCyT+v/1mfJU7qo tcZ8cpqiuc9kerOOJyAiUI9MEzGroxZwF3yv8X2Waps6yMnQM1u0XAj2YgYijsbH iyrah77sR+6CGwgJQgxzkzmzivWAXLtCIZJeLM5S49KGeY9HrGm/NJz1YS5CxOOf vmaaqHJUIpGKVy/ONkPF+hxpLTI5w/up -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:42 2025 by rpki-client