$ rpki-client -vvf rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft File: u7hAsFOTTV4f7dQN0CPvevQouuA.mft (raw, json) Hash identifier: tXvhUhW+Ad31hEXccpjQnAhVkzwAiTGrRyeQL/2xZ0k= Subject key identifier: 80:C3:8A:3E:BA:B6:9F:55:2F:8D:87:B4:44:26:3C:0B:8B:08:1C:B3 Authority key identifier: BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 Certificate issuer: /CN=A912AD2E/serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Certificate serial: 17B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft Manifest number: 17A5 Signing time: Fri 18 Apr 2025 16:41:22 +0000 Manifest this update: Fri 18 Apr 2025 16:41:21 +0000 Manifest next update: Fri 25 Apr 2025 16:41:21 +0000 Files and hashes: 1: u7hAsFOTTV4f7dQN0CPvevQouuA.crl (hash: uH9HfJ71gqTuG0oFjQgRCGvNeKmVYA6D89CWOnIeVI8=) 2: E3D5A6F4422411E8804DBC3AC4F9AE02.roa (hash: MtUOG8te7vvd8OgcyO+YgqB1a0uCeqPJKDSTrguzMzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 16:41:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6064 (0x17b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AD2E, serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Validity Not Before: Apr 18 16:41:21 2025 GMT Not After : Apr 25 16:41:21 2025 GMT Subject: CN=680280b1-81c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:43:c9:a5:98:61:9f:fe:55:f3:80:a6:8d:3e: d7:ae:39:ab:20:f8:28:ef:82:92:d3:06:0a:53:5c: 4f:66:a1:2e:93:15:3a:35:39:97:97:ab:46:8f:ed: 09:f0:ff:17:b0:e2:61:67:37:a2:0a:6a:98:7e:6b: 50:1b:96:ed:ed:0c:c6:3c:45:a3:41:28:21:d4:1e: 59:ab:33:0e:0f:dc:2c:3e:c1:50:41:09:dd:f5:3b: 53:b0:44:31:6e:87:c9:d5:f6:d6:c8:53:f5:0c:80: 57:33:fb:eb:ab:d5:88:1b:3c:23:e2:0a:95:3e:94: e6:71:08:4e:ae:db:4e:6b:61:ad:86:a5:2d:d5:2d: 4e:4d:40:d8:f8:8e:92:1c:36:d2:13:e3:02:0f:05: 72:45:60:73:71:10:96:71:1b:f0:2a:9c:54:fa:6e: 0a:d7:7b:f0:0e:5a:c0:5d:d2:37:b7:28:a9:45:20: 59:7d:92:fd:3c:40:de:9d:00:3e:7a:b1:34:b4:d7: 86:7b:a5:50:20:27:94:9c:35:1a:69:49:bc:ca:ca: 46:4d:e6:d1:58:8a:73:91:d6:94:80:16:94:19:b1: aa:93:c5:90:63:f2:61:fb:28:64:5c:7a:fa:da:7c: c9:8b:61:85:01:1f:5e:23:11:ea:28:2a:32:25:02: 8d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C3:8A:3E:BA:B6:9F:55:2F:8D:87:B4:44:26:3C:0B:8B:08:1C:B3 X509v3 Authority Key Identifier: keyid:BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:f4:83:f2:9b:dc:0b:da:03:fe:0c:57:99:cc:8d:7e:43:1b: 33:c9:57:ee:d4:17:40:22:45:89:80:e3:e3:71:34:75:c1:88: 72:d6:e2:c1:c3:58:6f:a0:77:15:2f:18:1b:b1:10:d5:1b:c3: dc:ce:ee:3c:94:d4:54:0b:73:3a:02:a5:bc:86:c8:d0:be:dd: 5f:22:ef:66:a6:a2:e5:96:35:3c:ea:86:ea:45:18:35:1b:99: 66:1a:cf:c7:45:ca:89:53:94:aa:f6:01:a4:41:a5:16:8f:79: b1:98:eb:90:96:23:98:3d:51:c0:cd:b1:78:f4:e8:cc:6a:74: 4a:39:5c:b7:e3:0b:ee:d4:12:24:b0:30:9c:81:c2:1d:41:29: 33:6e:d5:4d:62:9d:c5:23:2b:9e:83:0e:87:19:71:fc:b9:84: b0:6e:5a:38:6c:e2:89:12:a0:48:66:85:da:26:1e:76:8d:56: 66:f0:64:61:8f:2f:97:53:b2:8c:a3:22:0f:95:2d:fe:3f:f5: f5:8f:dd:c6:5a:23:a9:65:1d:cb:66:dc:09:b3:91:47:c8:f5: fc:2c:38:7a:aa:44:49:22:18:35:f6:0d:19:75:5f:4b:9b:fa: f5:5e:dd:56:5d:49:cb:46:e4:cf:58:58:aa:ed:62:a9:94:43: d1:04:45:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFEMkUxMTAvBgNVBAUTKEJCQjg0MEIwNTM5MzRENUUxRkVERDQwREQwMjNFRjdB RjQyOEJBRTAwHhcNMjUwNDE4MTY0MTIxWhcNMjUwNDI1MTY0MTIxWjAYMRYwFAYD VQQDEw02ODAyODBiMS04MWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkPJpZhhn/5V84CmjT7XrjmrIPgo74KS0wYKU1xPZqEukxU6NTmXl6tGj+0J 8P8XsOJhZzeiCmqYfmtQG5bt7QzGPEWjQSgh1B5ZqzMOD9wsPsFQQQnd9TtTsEQx bofJ1fbWyFP1DIBXM/vrq9WIGzwj4gqVPpTmcQhOrttOa2GthqUt1S1OTUDY+I6S HDbSE+MCDwVyRWBzcRCWcRvwKpxU+m4K13vwDlrAXdI3tyipRSBZfZL9PEDenQA+ erE0tNeGe6VQICeUnDUaaUm8yspGTebRWIpzkdaUgBaUGbGqk8WQY/Jh+yhkXHr6 2nzJi2GFAR9eIxHqKCoyJQKNEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDDij66 tp9VL42HtEQmPAuLCByzMB8GA1UdIwQYMBaAFLu4QLBTk01eH+3UDdAj73r0KLrg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUQyRS8wNzhDNjJBQUM1 MzMxMUU3QTExREJCNEFDNEY5QUUwMi91N2hBc0ZPVFRWNGY3ZFFOMENQdmV2UW91 dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3aEFzRk9UVFY0ZjdkUU4wQ1B2ZXZRb3V1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUQyRS8wNzhDNjJBQUM1MzMxMUU3QTExREJCNEFDNEY5QUUwMi91N2hBc0ZPVFRW NGY3ZFFOMENQdmV2UW91dUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA9IPym9wL2gP+DFeZzI1+QxszyVfu1BdAIkWJgOPjcTR1wYhy1uLB w1hvoHcVLxgbsRDVG8Pczu48lNRUC3M6AqW8hsjQvt1fIu9mpqLlljU86obqRRg1 G5lmGs/HRcqJU5Sq9gGkQaUWj3mxmOuQliOYPVHAzbF49OjManRKOVy34wvu1BIk sDCcgcIdQSkzbtVNYp3FIyuegw6HGXH8uYSwblo4bOKJEqBIZoXaJh52jVZm8GRh jy+XU7KMoyIPlS3+P/X1j93GWiOpZR3LZtwJs5FHyPX8LDh6qkRJIhg19g0ZdV9L m/r1Xt1WXUnLRuTPWFiq7WKplEPRBEWZ -----END CERTIFICATE-----Generated at Sat Apr 19 14:24:42 2025 by rpki-client