$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: MlzA/lCpg25DgLtmXNBuygC2I2iaENFh7Ap1D+vIWmk= Subject key identifier: 83:B2:24:68:C8:2D:46:2D:13:01:2C:B5:F5:A1:29:33:0A:BF:F3:1B Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 0230 Signing time: Sat 29 Mar 2025 02:10:41 +0000 Manifest this update: Sat 29 Mar 2025 02:10:41 +0000 Manifest next update: Sat 05 Apr 2025 02:10:41 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: 6AXHWZLcg8W0OJIMU7XM4PvRJFGZjQGMrKJ+9z43d6k=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: KNUSUG9icP8Pvhz1F1p7tJVMNn5LFGkVNJkPaQqPTVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD Validity Not Before: Mar 29 02:10:41 2025 GMT Not After : Apr 5 02:10:41 2025 GMT Subject: CN=67e756a1-f28b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e2:9d:11:98:17:22:55:7b:63:a2:a6:55:52: f3:21:9b:a2:bf:5e:fb:68:dc:55:d8:de:c5:e1:c8: f1:c7:bf:b2:ec:d7:08:28:13:1d:69:0c:4a:4a:54: 3c:af:c6:2f:fb:e0:51:f1:a3:ff:e6:a0:ca:f8:88: 0a:03:ec:07:6b:c6:30:31:8e:55:90:5d:22:ac:9d: b5:bf:24:b5:5d:e7:29:94:67:62:75:ea:d1:6e:9e: 41:f2:23:c8:64:52:51:42:2b:43:e3:2f:54:f8:f4: bc:b6:b9:9e:b3:39:ac:fb:26:56:08:73:33:89:bc: 4b:01:e0:a6:44:bc:94:22:cf:03:e7:bf:82:18:c2: 29:67:85:8e:0f:5d:e5:b4:93:0e:92:c2:73:85:43: 56:71:ff:41:98:d9:71:f6:5e:28:dd:b9:59:bf:92: 3a:05:aa:28:51:77:56:f0:31:b5:fb:af:ea:e2:c8: 77:71:17:a0:8a:c2:26:a9:1b:46:f0:7f:87:30:d8: 33:5e:22:8c:91:23:bc:46:97:9e:4d:f2:de:3f:4e: 66:c8:f7:e1:db:53:0f:a7:09:51:30:72:70:10:b9: a5:32:65:07:dd:8d:d5:ee:0c:14:f9:06:4f:48:2e: 9b:73:3f:2b:4f:1d:63:aa:80:99:e0:b2:95:fc:d7: c6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B2:24:68:C8:2D:46:2D:13:01:2C:B5:F5:A1:29:33:0A:BF:F3:1B X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:43:e3:33:97:cb:ff:39:19:42:9a:56:9e:89:d0:2c:d7:82: 17:74:2a:4a:2d:0d:e6:18:05:ec:85:fc:92:f5:d7:a5:ae:ec: 56:e9:de:2b:b0:4c:83:e7:04:7a:fb:6d:e2:b6:0e:d2:ce:2a: c3:fd:76:ac:80:b1:cf:8c:52:d6:94:5c:db:73:16:de:27:af: f2:ff:52:b6:9f:74:9b:f6:8f:ed:32:e2:f1:b3:db:ff:a6:0c: 80:59:c2:26:aa:d4:bf:4c:d9:cb:cf:53:92:c9:54:a0:54:7c: b9:71:f2:23:39:61:70:6c:20:e6:a7:c6:19:77:48:46:e0:4e: 93:56:22:40:67:c5:1c:bb:6a:33:ae:59:b3:cd:db:ac:a1:23: ea:9e:2f:fc:bf:72:1f:eb:d4:66:64:fb:d1:df:e8:23:56:a5: cf:93:fd:8d:5e:2c:95:59:bd:be:47:a1:d3:20:67:09:bb:10: 53:65:bf:45:e1:ac:5d:6e:3b:24:8d:a4:f8:c7:38:c3:9c:1f: 7e:ba:c1:7f:c5:b0:f6:8b:f9:78:8d:da:2e:c9:bc:bf:73:ad: 5f:67:a1:3e:03:03:72:3b:49:3c:bd:9c:bb:6b:4f:18:76:39: 96:ca:9d:a2:aa:2a:a0:a1:ae:d3:d8:cb:62:9d:75:3d:18:a3: 7c:94:89:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUwMzI5MDIxMDQxWhcNMjUwNDA1MDIxMDQxWjAYMRYwFAYD VQQDEw02N2U3NTZhMS1mMjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuKdEZgXIlV7Y6KmVVLzIZuiv177aNxV2N7F4cjxx7+y7NcIKBMdaQxKSlQ8 r8Yv++BR8aP/5qDK+IgKA+wHa8YwMY5VkF0irJ21vyS1XecplGdiderRbp5B8iPI ZFJRQitD4y9U+PS8trmeszms+yZWCHMzibxLAeCmRLyUIs8D57+CGMIpZ4WOD13l tJMOksJzhUNWcf9BmNlx9l4o3blZv5I6BaooUXdW8DG1+6/q4sh3cRegisImqRtG 8H+HMNgzXiKMkSO8RpeeTfLeP05myPfh21MPpwlRMHJwELmlMmUH3Y3V7gwU+QZP SC6bcz8rTx1jqoCZ4LKV/NfGpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOyJGjI LUYtEwEstfWhKTMKv/MbMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Q+Mzl8v/ORlCmlaeidAs14IXdCpKLQ3mGAXshfyS9delruxW6d4r sEyD5wR6+23itg7SzirD/XasgLHPjFLWlFzbcxbeJ6/y/1K2n3Sb9o/tMuLxs9v/ pgyAWcImqtS/TNnLz1OSyVSgVHy5cfIjOWFwbCDmp8YZd0hG4E6TViJAZ8Ucu2oz rlmzzdusoSPqni/8v3If69RmZPvR3+gjVqXPk/2NXiyVWb2+R6HTIGcJuxBTZb9F 4axdbjskjaT4xzjDnB9+usF/xbD2i/l4jdouyby/c61fZ6E+AwNyO0k8vZy7a08Y djmWyp2iqiqgoa7T2MtinXU9GKN8lIkT -----END CERTIFICATE-----Generated at Fri Apr 4 22:30:03 2025 by rpki-client