$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft File: 07chXhZgoZ79Lncvm6envcbuDSg.mft (raw, json) Hash identifier: PXxO0+d6+L1qQ27guTniefqGkOT3BdHwcHvvViGitpo= Subject key identifier: 08:92:67:B4:BC:9E:B3:D2:F2:A1:C5:7C:F8:70:BE:86:63:01:EE:87 Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 0913 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft Manifest number: 08F7 Signing time: Fri 28 Mar 2025 20:42:17 +0000 Manifest this update: Fri 28 Mar 2025 20:42:16 +0000 Manifest next update: Fri 04 Apr 2025 20:42:16 +0000 Files and hashes: 1: 07chXhZgoZ79Lncvm6envcbuDSg.crl (hash: t4qggrEI23Ks0ARAJlD3YP1i+bOpU7s4Psa+KSokcAo=) 2: 42B13940C3C011EE86C2C317C4F9AE02.roa (hash: LGFMxkvmdVELBOkg0tqQjRMiBrTGNLnJnZeQEwD+enQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2323 (0x913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9 Validity Not Before: Mar 28 20:42:16 2025 GMT Not After : Apr 4 20:42:16 2025 GMT Subject: CN=67e709a9-a966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:fb:7e:48:8e:8b:14:95:a2:8f:13:c2:5d:3e: aa:cb:93:c1:63:8a:1b:0c:9d:1b:b7:a6:53:95:f3: eb:10:41:eb:0e:00:4c:bf:94:2a:63:0e:06:9c:d3: 0b:e2:be:b6:37:22:a3:1c:66:ea:ec:c6:87:b8:26: d0:42:3c:1c:92:83:7b:7c:fe:11:cb:13:8e:bf:32: 68:6f:dd:c9:57:3c:68:4b:66:e9:10:85:ba:b4:c2: 2a:bb:95:69:a2:2e:d5:26:35:86:6b:83:31:46:ec: 0a:64:3a:d0:4f:9b:d6:46:07:4b:c1:87:1a:f2:ad: e7:69:1b:69:62:f3:a0:71:63:ea:5c:5a:da:69:d6: 5b:c8:8e:80:bc:38:3a:6d:08:b0:3a:22:ba:83:85: 57:8d:20:76:39:40:5a:88:7f:9f:0f:5f:86:b0:61: 8d:0e:c4:e3:d3:26:71:8f:a6:af:97:9f:93:e4:68: b1:eb:3d:74:9f:0e:fd:aa:d9:c5:6c:ad:28:a6:3d: 7d:d9:c6:44:78:c0:97:73:1d:38:5f:04:4b:88:a0: 77:1c:74:e7:7a:58:5c:65:d0:df:22:6e:9f:c6:d8: 5b:e2:14:9e:15:71:95:60:79:f8:32:60:7f:a7:90: ec:ee:6d:4b:fe:b5:30:be:64:ce:e7:91:9a:93:1d: 3c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:92:67:B4:BC:9E:B3:D2:F2:A1:C5:7C:F8:70:BE:86:63:01:EE:87 X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:7f:58:f5:f2:5e:4f:77:d3:06:21:ca:94:36:12:a2:7c:94: df:05:83:69:8d:89:8e:88:22:70:0a:f4:b1:9c:66:c7:c1:3c: e9:69:f5:3e:21:d3:91:a1:36:3a:06:87:18:79:42:f9:2e:00: a4:d5:49:1e:82:bf:a0:bf:b4:9b:99:72:20:ae:36:cc:ef:46: 2c:62:8b:77:3c:a2:03:0c:d5:a1:20:5e:c5:43:82:59:79:cc: ba:fe:f0:4a:ba:56:07:24:69:8c:66:9d:14:03:26:ff:bd:96: 5f:3e:b5:9e:4d:be:46:01:5e:29:82:53:73:e4:63:b1:dd:3c: 65:be:32:12:93:2e:b5:35:4d:e2:62:9a:a0:52:d8:09:35:72: 5c:c7:14:5b:4b:bf:a1:dd:4d:24:18:3f:0d:e6:36:87:78:15: 89:e6:53:4c:bb:28:a3:d9:d2:41:35:0f:63:27:fd:e9:59:a0: 6f:b1:4b:37:a6:e9:2e:41:a5:85:8d:ae:ac:2c:47:e6:6f:31: 18:00:cf:9f:5c:17:88:29:fa:4a:71:fd:36:73:52:22:88:dc: 75:93:91:e9:a3:50:b1:f4:67:eb:f7:5c:53:19:15:da:10:67: 01:13:25:69:3a:97:e4:7b:69:7e:e9:0c:18:f2:23:de:0d:e8: 90:f9:ab:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjUwMzI4MjA0MjE2WhcNMjUwNDA0MjA0MjE2WjAYMRYwFAYD VQQDEw02N2U3MDlhOS1hOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzft+SI6LFJWijxPCXT6qy5PBY4obDJ0bt6ZTlfPrEEHrDgBMv5QqYw4GnNML 4r62NyKjHGbq7MaHuCbQQjwckoN7fP4RyxOOvzJob93JVzxoS2bpEIW6tMIqu5Vp oi7VJjWGa4MxRuwKZDrQT5vWRgdLwYca8q3naRtpYvOgcWPqXFraadZbyI6AvDg6 bQiwOiK6g4VXjSB2OUBaiH+fD1+GsGGNDsTj0yZxj6avl5+T5Gix6z10nw79qtnF bK0opj192cZEeMCXcx04XwRLiKB3HHTnelhcZdDfIm6fxthb4hSeFXGVYHn4MmB/ p5Ds7m1L/rUwvmTO55Gakx08WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiSZ7S8 nrPS8qHFfPhwvoZjAe6HMB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkJDOS84M0ZGOUZFQ0FBODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29a NzlMbmN2bTZlbnZjYnVEU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5f1j18l5Pd9MGIcqUNhKifJTfBYNpjYmOiCJwCvSxnGbHwTzpafU+ IdORoTY6BocYeUL5LgCk1Ukegr+gv7SbmXIgrjbM70YsYot3PKIDDNWhIF7FQ4JZ ecy6/vBKulYHJGmMZp0UAyb/vZZfPrWeTb5GAV4pglNz5GOx3TxlvjISky61NU3i YpqgUtgJNXJcxxRbS7+h3U0kGD8N5jaHeBWJ5lNMuyij2dJBNQ9jJ/3pWaBvsUs3 pukuQaWFja6sLEfmbzEYAM+fXBeIKfpKcf02c1IiiNx1k5Hpo1Cx9Gfr91xTGRXa EGcBEyVpOpfke2l+6QwY8iPeDeiQ+asY -----END CERTIFICATE-----Generated at Fri Apr 4 17:50:23 2025 by rpki-client