$ rpki-client -vvf rpki.apnic.net/member_repository/A912E3C7/865887B6B26711EFA565A849C4F9AE02/iTrFeQFBVhhq6vUDS6C0km-S43Q.mft File: iTrFeQFBVhhq6vUDS6C0km-S43Q.mft (raw, json) Hash identifier: 5BCqe2IIoEXHsxjLhGmuC6upqZG1xxttwhEyxK6v350= Subject key identifier: 5A:73:05:19:45:03:AC:71:8C:DE:B7:97:74:54:4D:B2:96:B4:C3:BA Authority key identifier: 89:3A:C5:79:01:41:56:18:6A:EA:F5:03:4B:A0:B4:92:6F:92:E3:74 Certificate issuer: /CN=A912E3C7/serialNumber=893AC579014156186AEAF5034BA0B4926F92E374 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iTrFeQFBVhhq6vUDS6C0km-S43Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E3C7/865887B6B26711EFA565A849C4F9AE02/iTrFeQFBVhhq6vUDS6C0km-S43Q.mft Manifest number: 43 Signing time: Sat 05 Apr 2025 06:45:13 +0000 Manifest this update: Sat 05 Apr 2025 06:45:13 +0000 Manifest next update: Sat 12 Apr 2025 06:45:13 +0000 Files and hashes: 1: iTrFeQFBVhhq6vUDS6C0km-S43Q.crl (hash: 2qilwrlmu9J4naEPEc/PyJNWMdzRovVZxS8YsiPRxkY=) 2: FB729544B57F11EF8BDF3346C4F9AE02.roa (hash: wnr7gdAIv5Jdc15Z3sjp6boqd+eAUfOZ3eJD4U6UCSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E3C7/865887B6B26711EFA565A849C4F9AE02/iTrFeQFBVhhq6vUDS6C0km-S43Q.crl rsync://rpki.apnic.net/member_repository/A912E3C7/865887B6B26711EFA565A849C4F9AE02/iTrFeQFBVhhq6vUDS6C0km-S43Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iTrFeQFBVhhq6vUDS6C0km-S43Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E3C7 Validity Not Before: Apr 5 06:45:13 2025 GMT Not After : Apr 12 06:45:13 2025 GMT Subject: CN=67f0d179-4f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d2:39:1e:1a:5e:a0:ab:ed:a5:8a:68:40:15: c1:e1:a8:b4:48:f4:ad:26:3b:63:6f:a2:6e:a8:ab: 3d:9e:7a:4f:af:74:6f:f4:03:b3:3a:72:2f:f0:5e: 7c:02:87:95:32:4b:81:17:30:64:7e:98:d8:c7:70: 89:b3:c9:53:4d:55:cf:30:71:9f:b6:b2:17:17:bd: ff:0b:10:1d:2a:86:11:26:cb:a8:67:5f:b3:39:ca: da:8d:19:2f:d9:61:19:b4:7f:7d:de:81:e7:66:73: 98:30:d9:e1:c0:c2:37:5c:25:dd:6d:0a:59:e1:67: ff:e7:7e:63:eb:66:63:11:97:55:ad:10:f9:4b:ec: 9a:60:1f:19:1a:22:f8:66:5b:0e:45:63:88:8b:56: 76:5f:d7:69:74:30:14:30:e9:21:eb:42:43:c3:97: b6:e1:51:e1:95:3a:3d:2f:b3:b9:07:47:85:4e:fd: 46:5a:b2:52:fd:fc:e9:07:b2:8b:16:3c:ea:de:b7: 6d:41:1e:d9:b4:bf:07:63:00:6b:7b:5a:94:a8:9c: c0:c6:bd:ec:a1:cb:49:30:d6:a8:1a:76:b1:de:6f: 54:f8:2c:d2:1d:32:46:a0:60:67:8d:01:ff:e3:d3: d4:83:59:ee:1a:81:68:64:b0:e1:ae:e1:1d:7c:07: 7d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:73:05:19:45:03:AC:71:8C:DE:B7:97:74:54:4D:B2:96:B4:C3:BA X509v3 Authority Key Identifier: keyid:89:3A:C5:79:01:41:56:18:6A:EA:F5:03:4B:A0:B4:92:6F:92:E3:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E3C7/865887B6B26711EFA565A849C4F9AE02/iTrFeQFBVhhq6vUDS6C0km-S43Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iTrFeQFBVhhq6vUDS6C0km-S43Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E3C7/865887B6B26711EFA565A849C4F9AE02/iTrFeQFBVhhq6vUDS6C0km-S43Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:00:6e:25:51:95:55:d4:d5:d9:e8:b7:3c:67:a8:09:8d:5d: 55:b9:dd:0d:a5:52:1d:f7:71:15:84:ec:54:f2:c7:9b:b3:bc: 6e:2c:f9:e0:e2:12:52:d5:38:be:bf:71:fc:af:b2:92:b3:5a: c8:ae:57:46:2e:ae:bc:5e:c6:f0:38:62:f2:bf:30:6d:7d:ac: eb:c6:9e:0f:b7:ea:79:d1:58:f3:6d:cd:fc:cf:32:59:b9:66: aa:68:ed:3f:d9:58:90:bd:75:7d:c8:77:3a:c8:e6:b9:4b:be: 1b:28:73:9f:8b:ef:0a:40:71:a1:dd:cb:15:66:ae:5a:b7:c4: 89:96:51:48:36:c0:f4:de:00:25:38:86:d8:0f:29:7a:b2:b6: 2e:40:a1:7a:ad:a4:33:2b:7b:aa:ec:04:75:10:0b:21:f2:c7: 9f:12:0b:84:3d:c5:04:65:60:e0:13:77:a1:c0:cf:a5:3e:f1: fc:87:5c:e6:a4:f0:d9:cd:cf:1e:ad:3d:04:0c:e0:7d:f6:43: a3:17:50:9e:30:57:49:d7:f7:41:a5:f7:d4:2f:e8:d3:2b:59: d6:63:15:3c:e0:2c:aa:e5:e0:8c:6c:91:47:e2:45:3d:2a:46: 24:74:f6:d5:79:23:df:ea:2d:e9:b2:eb:28:7d:c7:b5:16:ae: cb:31:67:91 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTNDNzExMC8GA1UEBRMoODkzQUM1NzkwMTQxNTYxODZBRUFGNTAzNEJBMEI0OTI2 RjkyRTM3NDAeFw0yNTA0MDUwNjQ1MTNaFw0yNTA0MTIwNjQ1MTNaMBgxFjAUBgNV BAMTDTY3ZjBkMTc5LTRmMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs0jkeGl6gq+2limhAFcHhqLRI9K0mO2Nvom6oqz2eek+vdG/0A7M6ci/wXnwC h5UyS4EXMGR+mNjHcImzyVNNVc8wcZ+2shcXvf8LEB0qhhEmy6hnX7M5ytqNGS/Z YRm0f33egedmc5gw2eHAwjdcJd1tClnhZ//nfmPrZmMRl1WtEPlL7JpgHxkaIvhm Ww5FY4iLVnZf12l0MBQw6SHrQkPDl7bhUeGVOj0vs7kHR4VO/UZaslL9/OkHsosW POret21BHtm0vwdjAGt7WpSonMDGveyhy0kw1qgadrHeb1T4LNIdMkagYGeNAf/j 09SDWe4agWhksOGu4R18B30zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWnMFGUUD rHGM3reXdFRNspa0w7owHwYDVR0jBBgwFoAUiTrFeQFBVhhq6vUDS6C0km+S43Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFM0M3Lzg2NTg4N0I2QjI2 NzExRUZBNTY1QTg0OUM0RjlBRTAyL2lUckZlUUZCVmhocTZ2VURTNkMwa20tUzQz US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVRyRmVRRkJWaGhxNnZVRFM2QzBrbS1TNDNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF M0M3Lzg2NTg4N0I2QjI2NzExRUZBNTY1QTg0OUM0RjlBRTAyL2lUckZlUUZCVmho cTZ2VURTNkMwa20tUzQzUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI4AbiVRlVXU1dnotzxnqAmNXVW53Q2lUh33cRWE7FTyx5uzvG4s+eDi ElLVOL6/cfyvspKzWsiuV0YurrxexvA4YvK/MG19rOvGng+36nnRWPNtzfzPMlm5 Zqpo7T/ZWJC9dX3IdzrI5rlLvhsoc5+L7wpAcaHdyxVmrlq3xImWUUg2wPTeACU4 htgPKXqyti5AoXqtpDMre6rsBHUQCyHyx58SC4Q9xQRlYOATd6HAz6U+8fyHXOak 8NnNzx6tPQQM4H32Q6MXUJ4wV0nX90Gl99Qv6NMrWdZjFTzgLKrl4IxskUfiRT0q RiR09tV5I9/qLemy6yh9x7UWrssxZ5E= -----END CERTIFICATE-----Generated at Sun Apr 6 21:55:30 2025 by rpki-client