$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: 4zwaPz8lk8C7EAJPTX6ZYN/2l8JLajLnnd2deTt/SQ0= Subject key identifier: F3:02:FA:EB:64:7E:09:1C:D7:57:4F:3B:8D:11:63:D1:25:E6:86:DD Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: DD Signing time: Sat 19 Apr 2025 04:38:37 +0000 Manifest this update: Sat 19 Apr 2025 04:38:37 +0000 Manifest next update: Sat 26 Apr 2025 04:38:37 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: FzUzWf5c0pp2FjIhJP9Gv9669XuvTL4s+uMPAFN4CIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 04:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: Apr 19 04:38:37 2025 GMT Not After : Apr 26 04:38:37 2025 GMT Subject: CN=680328cd-efad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:08:5b:cd:7e:5a:d2:7d:77:07:d5:a6:f7:53: 76:61:84:9e:26:84:3e:e9:ba:24:8e:62:c2:df:b7: e8:a0:11:e3:68:c9:d4:a2:b3:c1:7f:2e:b7:7f:78: 09:8f:f3:90:de:7a:ed:0d:79:79:b0:e1:2a:bd:bf: 9c:64:a8:e1:33:8f:6c:71:ac:04:4c:d5:4a:3a:88: e5:dc:3c:1e:29:cf:4b:81:8c:e3:84:07:57:7f:ad: 7e:58:3e:0e:24:5f:e3:e0:45:a2:5d:36:9b:c1:9a: df:71:80:b5:b4:2f:78:96:24:00:06:9a:ae:3e:c1: 30:15:49:83:b1:96:55:36:8b:e6:9e:79:5c:0a:62: b5:a2:33:3e:97:c6:c7:2c:97:10:28:34:1c:e4:62: e7:d4:0a:46:d7:ba:7e:b8:de:b4:86:61:db:4e:c0: 29:21:2e:18:06:2a:36:45:93:2b:95:49:a7:16:7f: 71:fb:66:b3:77:76:0f:d0:4f:27:ec:c3:db:07:fa: df:8b:4f:05:07:03:fe:6b:60:44:b5:26:c8:1d:82: 47:80:39:9a:fc:a0:f3:1a:d0:f3:d6:5e:5e:73:d6: b2:8b:55:21:b1:42:7c:73:1c:88:6a:50:00:58:58: 21:4f:6b:1a:7e:67:ab:97:76:06:20:64:13:b8:6c: 66:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:02:FA:EB:64:7E:09:1C:D7:57:4F:3B:8D:11:63:D1:25:E6:86:DD X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:42:53:e6:d9:78:46:36:58:49:75:6e:8d:9d:fc:fb:28:cd: f7:da:2f:63:42:c2:b6:ed:fa:ec:71:ea:f7:11:90:9f:eb:47: db:dc:b1:45:fe:a9:a3:5c:63:64:fd:25:8f:fe:6a:50:14:6e: 7e:62:82:56:e8:5b:a2:ec:15:87:6e:f8:a2:00:b5:17:13:a8: 1c:69:c6:77:59:d6:c4:78:10:79:b3:20:d1:2e:ed:72:40:94: e7:28:c7:ce:29:ea:d0:92:ac:b8:b7:a0:3c:0e:d9:78:c6:ad: 0b:df:b1:3f:28:e2:63:69:44:04:49:88:9b:9a:8d:76:6d:8a: 45:5c:48:77:41:11:3f:5f:46:07:26:ab:bb:91:95:9e:2b:1c: 68:f2:34:b9:71:a9:5a:5e:8e:9b:3d:f3:65:f5:9f:ce:22:53: 6d:0c:0e:9c:c5:80:1b:7a:c3:61:35:0f:4b:34:bf:be:b8:19: 1b:5d:93:98:06:86:e0:1f:11:40:18:e1:ec:80:24:47:d7:86: 45:eb:73:e4:31:a3:14:69:7e:bb:84:8e:1e:4e:e2:82:d0:ad: 58:71:56:b4:c9:a9:d2:c7:6c:e5:29:06:1e:63:bd:5b:73:3e: 36:ad:df:00:27:35:26:7b:1c:fd:2f:e0:03:70:37:26:07:ca: 44:81:3c:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEYxQURCRDBFNzEzOTFERjIxMERFMzQ2MUU3NjU3OEI0 N0EwMTYyNEEwHhcNMjUwNDE5MDQzODM3WhcNMjUwNDI2MDQzODM3WjAYMRYwFAYD VQQDEw02ODAzMjhjZC1lZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwhbzX5a0n13B9Wm91N2YYSeJoQ+6bokjmLC37fooBHjaMnUorPBfy63f3gJ j/OQ3nrtDXl5sOEqvb+cZKjhM49scawETNVKOojl3DweKc9LgYzjhAdXf61+WD4O JF/j4EWiXTabwZrfcYC1tC94liQABpquPsEwFUmDsZZVNovmnnlcCmK1ojM+l8bH LJcQKDQc5GLn1ApG17p+uN60hmHbTsApIS4YBio2RZMrlUmnFn9x+2azd3YP0E8n 7MPbB/rfi08FBwP+a2BEtSbIHYJHgDma/KDzGtDz1l5ec9ayi1UhsUJ8cxyIalAA WFghT2safmerl3YGIGQTuGxmwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMC+utk fgkc11dPO40RY9El5obdMB8GA1UdIwQYMBaAFPGtvQ5xOR3yEN40YedleLR6AWJK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS9BOTUwREZEQUM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhmSVEzalJoNTJWNHRIb0JZ a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS9BOTUwREZEQUM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhm SVEzalJoNTJWNHRIb0JZa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmQlPm2XhGNlhJdW6Nnfz7KM332i9jQsK27frscer3EZCf60fb3LFF /qmjXGNk/SWP/mpQFG5+YoJW6Fui7BWHbviiALUXE6gcacZ3WdbEeBB5syDRLu1y QJTnKMfOKerQkqy4t6A8Dtl4xq0L37E/KOJjaUQESYibmo12bYpFXEh3QRE/X0YH Jqu7kZWeKxxo8jS5calaXo6bPfNl9Z/OIlNtDA6cxYAbesNhNQ9LNL++uBkbXZOY BobgHxFAGOHsgCRH14ZF63PkMaMUaX67hI4eTuKC0K1YcVa0yanSx2zlKQYeY71b cz42rd8AJzUmexz9L+ADcDcmB8pEgTzW -----END CERTIFICATE-----Generated at Sun Apr 20 21:57:25 2025 by rpki-client