$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft File: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft (raw, json) Hash identifier: h8Q4lEtWo7uc25/Kiuhvnpvo7yV1365tl8oAKvg2hHI= Subject key identifier: C9:0A:A1:13:3A:BC:DD:F0:07:39:85:DB:B0:4A:3B:CE:09:AD:91:0F Authority key identifier: EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 Certificate issuer: /CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Certificate serial: 07C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft Manifest number: 07BC Signing time: Tue 22 Apr 2025 21:05:37 +0000 Manifest this update: Tue 22 Apr 2025 21:05:37 +0000 Manifest next update: Tue 29 Apr 2025 21:05:37 +0000 Files and hashes: 1: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl (hash: +9tDDrrAY6zJBuTyskPDvtFj2AMlPXkwgUMiSulYIt0=) 2: D3EE2024F42211EA8FE7AE53C4F9AE02.roa (hash: GW9s3WIygsKZLnHwRZ6mSkc9+Me0q/KYVWFIK75BZGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 20:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1987 (0x7c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D8B, serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Validity Not Before: Apr 22 21:05:37 2025 GMT Not After : Apr 29 21:05:37 2025 GMT Subject: CN=680804a1-42a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:98:b9:5a:a1:5e:d3:d1:3f:54:d5:67:e1:13: 87:37:e1:71:21:21:9b:7f:c4:3e:85:7a:24:8f:7d: 2b:3b:d3:57:6f:63:8d:30:a4:dd:88:b5:c9:f3:83: 38:85:de:5c:91:c5:41:eb:ee:a2:59:69:ca:08:6f: 35:c2:9a:47:03:d1:de:84:e6:1a:04:27:29:9c:5b: 1b:87:38:33:a5:51:65:4d:25:b0:61:ce:73:b0:da: 53:cd:50:62:8c:c2:fd:51:52:64:29:32:eb:71:4e: 09:ae:e6:2a:4d:85:3d:78:d3:7a:65:e3:63:38:d6: 5d:4b:25:5e:a4:0a:49:52:d3:e4:fc:e2:b0:bc:80: c9:0d:ba:4c:a4:7a:5c:62:41:83:f1:62:9e:a9:97: 66:0d:6f:e2:44:87:3f:30:27:85:e8:ef:dd:1d:ec: 51:c9:be:c6:ec:5a:cb:80:3c:94:c6:1d:e4:8d:80: 85:58:dc:c0:35:e8:14:8b:dd:4b:84:e1:90:c3:b8: a6:03:43:31:0e:f3:73:78:c8:92:74:c8:e9:24:e8: 2c:dd:89:83:9f:7e:dd:2b:f4:09:94:62:3a:be:48: d5:67:d9:a8:c4:8f:f0:72:5e:e5:9c:00:9d:cd:4b: 3d:7b:00:77:33:92:c5:03:56:fc:98:14:3c:95:78: 1c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0A:A1:13:3A:BC:DD:F0:07:39:85:DB:B0:4A:3B:CE:09:AD:91:0F X509v3 Authority Key Identifier: keyid:EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:7d:25:a2:ee:dc:35:78:1f:4d:58:8b:51:6f:f5:78:f6:df: de:a3:c4:c9:5e:43:ae:e0:18:07:09:ba:2d:42:c4:8b:26:9b: db:21:89:ba:3c:72:8d:59:b0:ab:aa:6e:2f:03:18:ee:d5:0a: 59:b5:cf:ee:c3:6c:eb:0b:1e:40:dd:81:53:ee:86:31:12:0e: f5:ff:0b:04:13:9b:9b:45:96:b3:83:e7:aa:0d:78:e0:13:d3: ce:59:2b:36:5b:94:ec:03:29:da:35:89:3d:4c:2e:d9:e9:50: b4:81:2e:88:c6:52:b0:a5:ba:f3:62:43:7f:bf:a9:35:28:fa: d6:58:68:e9:15:5e:78:e7:ac:87:83:a2:0f:56:11:0d:09:e1: 73:33:a9:c0:55:6d:c4:e6:6c:37:08:d0:9b:fa:42:70:df:b3: 03:82:97:09:72:2a:61:01:e0:de:45:90:3b:7f:87:a6:d0:67: d1:26:e1:4d:fa:fd:42:ff:47:b7:ab:ba:cb:79:66:db:fc:02: 9c:83:bf:64:c3:d2:c2:76:3c:f6:7b:1d:4c:c0:e2:57:15:94: 90:4e:79:90:c7:12:0c:9f:90:1c:f9:4e:0f:0b:10:59:b5:03: 94:a6:2b:0b:1d:fc:04:e5:37:48:e9:6a:bd:97:98:6e:6c:8e: 22:8d:51:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEOEIxMTAvBgNVBAUTKEVGMUE5NkQxMTJERTE2MjJCMTFDOEM3RTk0QUVCMDQw RURENkFCMDAwHhcNMjUwNDIyMjEwNTM3WhcNMjUwNDI5MjEwNTM3WjAYMRYwFAYD VQQDEw02ODA4MDRhMS00MmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZi5WqFe09E/VNVn4ROHN+FxISGbf8Q+hXokj30rO9NXb2ONMKTdiLXJ84M4 hd5ckcVB6+6iWWnKCG81wppHA9HehOYaBCcpnFsbhzgzpVFlTSWwYc5zsNpTzVBi jML9UVJkKTLrcU4JruYqTYU9eNN6ZeNjONZdSyVepApJUtPk/OKwvIDJDbpMpHpc YkGD8WKeqZdmDW/iRIc/MCeF6O/dHexRyb7G7FrLgDyUxh3kjYCFWNzANegUi91L hOGQw7imA0MxDvNzeMiSdMjpJOgs3YmDn37dK/QJlGI6vkjVZ9moxI/wcl7lnACd zUs9ewB3M5LFA1b8mBQ8lXgcsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkKoRM6 vN3wBzmF27BKO84JrZEPMB8GA1UdIwQYMBaAFO8altES3hYisRyMfpSusEDt1qsA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ4Qi9EMDBBQTg1Q0Y0 MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZpS3hISXgtbEs2d1FPM1dx d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd4cVcwUkxlRmlLeEhJeC1sSzZ3UU8zV3F3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ4Qi9EMDBBQTg1Q0Y0MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZp S3hISXgtbEs2d1FPM1dxd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrfSWi7tw1eB9NWItRb/V49t/eo8TJXkOu4BgHCbotQsSLJpvbIYm6 PHKNWbCrqm4vAxju1QpZtc/uw2zrCx5A3YFT7oYxEg71/wsEE5ubRZazg+eqDXjg E9POWSs2W5TsAynaNYk9TC7Z6VC0gS6IxlKwpbrzYkN/v6k1KPrWWGjpFV5456yH g6IPVhENCeFzM6nAVW3E5mw3CNCb+kJw37MDgpcJciphAeDeRZA7f4em0GfRJuFN +v1C/0e3q7rLeWbb/AKcg79kw9LCdjz2ex1MwOJXFZSQTnmQxxIMn5Ac+U4PCxBZ tQOUpisLHfwE5TdI6Wq9l5hubI4ijVF9 -----END CERTIFICATE-----Generated at Tue Apr 22 23:04:52 2025 by rpki-client