$ rpki-client -vvf rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft File: bcDHAorrOzsmYx9pJXBQC2DtJxk.mft (raw, json) Hash identifier: WKmR/HFoku9HZfF26zYqOp5Y0oW0DKnHc3cIHsP3fng= Subject key identifier: 4A:E1:0B:47:39:82:F9:3E:B8:6B:FE:76:3A:B9:EB:E9:2F:0A:32:84 Authority key identifier: 6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 Certificate issuer: /CN=A913A81E/serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Certificate serial: 0714 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft Manifest number: 070E Signing time: Fri 04 Apr 2025 22:01:51 +0000 Manifest this update: Fri 04 Apr 2025 22:01:51 +0000 Manifest next update: Fri 11 Apr 2025 22:01:51 +0000 Files and hashes: 1: bcDHAorrOzsmYx9pJXBQC2DtJxk.crl (hash: obsl7O1nvVDUpT1gUddvbsbOrcbHpNLme/HdGz8Nb1k=) 2: C562A08C34FC11EB9AA0EE7DC4F9AE02.roa (hash: iwf2bc8877eQNQdlvgE9Pwyqx+IwGNsKelNjJ8iJuYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1812 (0x714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A81E Validity Not Before: Apr 4 22:01:51 2025 GMT Not After : Apr 11 22:01:51 2025 GMT Subject: CN=67f056cf-6407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f4:dd:54:15:48:e5:9f:03:c4:47:42:90:6b: ac:53:a4:9f:df:00:35:f8:fc:ab:5a:0d:eb:bd:b1: 35:c9:f0:71:68:b0:1b:21:46:93:ba:80:e8:5b:a9: 0e:70:1e:a7:bf:19:8e:95:af:ab:f6:ee:d8:70:67: bd:86:11:e6:05:44:24:85:2b:44:63:74:17:24:82: 78:3c:88:b5:ee:95:4e:f7:e1:70:ee:23:b7:ff:96: 29:03:be:35:cd:f6:0c:3d:25:d2:12:a8:0e:83:07: f2:2e:cc:64:01:0d:8f:01:85:c2:44:28:a5:f4:63: f3:74:f9:7f:ec:98:a2:0e:64:38:f8:2b:fe:b0:ce: 9d:a8:13:79:ad:3c:80:3d:7b:9b:1b:9a:6b:1c:4e: 78:a1:38:0a:1b:15:db:de:ef:76:c1:d5:77:ec:1d: 6c:a4:c8:9c:3b:af:07:4e:a0:35:e8:6a:c8:59:66: 5f:8c:19:e6:a4:03:2c:46:92:e1:c8:50:be:ed:1b: 11:08:5a:a8:54:2f:de:fe:31:13:95:f0:63:81:f9: b2:19:a8:a1:d6:3e:3b:48:0b:1a:c0:51:b5:77:16: 11:2f:3f:1c:c5:60:8c:86:85:8b:52:0d:e9:7b:54: b4:ae:33:af:6e:b2:ee:60:eb:bf:7d:d1:93:05:a0: 7c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E1:0B:47:39:82:F9:3E:B8:6B:FE:76:3A:B9:EB:E9:2F:0A:32:84 X509v3 Authority Key Identifier: keyid:6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:1a:ed:2b:d1:cd:39:f3:18:c0:58:69:63:66:97:cd:bc:00: 76:52:1f:dc:d7:67:a7:95:15:5d:c3:cd:7a:0c:f5:7d:85:8c: 93:4f:79:ea:7c:2f:5d:60:2a:34:55:84:af:33:92:b7:b8:f2: 5f:af:f8:80:0b:70:10:4f:b3:08:76:be:b9:82:58:2e:95:f8: 99:70:3b:f8:4b:77:16:56:b0:d8:0c:47:28:2c:bb:83:4e:7a: 3d:62:8e:e6:c0:b0:ea:0b:b5:7c:e5:57:14:02:0f:57:b6:cd: f4:6e:c4:b7:08:82:9f:62:a9:37:58:57:5e:29:9c:16:0b:24: 32:d7:b7:9a:e7:57:f6:e9:bc:36:7d:5b:ff:9a:b4:b7:ee:4b: 52:39:ea:ce:12:31:8b:46:6e:24:e4:8d:80:2e:e7:06:f2:1f: 9f:22:df:1e:90:eb:c6:6d:05:6c:08:7f:4f:b0:44:32:64:70: 2e:53:6e:d9:7b:15:bc:8c:04:4a:fe:5e:de:c2:6e:6c:2f:e0: 6c:53:dd:8d:a6:44:6a:c5:5d:4c:aa:6f:dd:a1:d5:54:9c:5c: 6a:df:9a:1a:43:37:c6:bd:2a:4b:55:21:d3:b3:6e:df:4b:d4: a7:6e:e2:bf:00:d4:e8:f1:d8:88:c8:d1:f5:78:8e:01:5e:b6: 07:e5:07:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MUUxMTAvBgNVBAUTKDZEQzBDNzAyOEFFQjNCM0IyNjYzMUY2OTI1NzA1MDBC NjBFRDI3MTkwHhcNMjUwNDA0MjIwMTUxWhcNMjUwNDExMjIwMTUxWjAYMRYwFAYD VQQDEw02N2YwNTZjZi02NDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPTdVBVI5Z8DxEdCkGusU6Sf3wA1+PyrWg3rvbE1yfBxaLAbIUaTuoDoW6kO cB6nvxmOla+r9u7YcGe9hhHmBUQkhStEY3QXJIJ4PIi17pVO9+Fw7iO3/5YpA741 zfYMPSXSEqgOgwfyLsxkAQ2PAYXCRCil9GPzdPl/7JiiDmQ4+Cv+sM6dqBN5rTyA PXubG5prHE54oTgKGxXb3u92wdV37B1spMicO68HTqA16GrIWWZfjBnmpAMsRpLh yFC+7RsRCFqoVC/e/jETlfBjgfmyGaih1j47SAsawFG1dxYRLz8cxWCMhoWLUg3p e1S0rjOvbrLuYOu/fdGTBaB8BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErhC0c5 gvk+uGv+djq56+kvCjKEMB8GA1UdIwQYMBaAFG3AxwKK6zs7JmMfaSVwUAtg7ScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgxRS85MUM5NTU5QzM0 RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96c21ZeDlwSlhCUUMyRHRK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjREhBb3JyT3pzbVl4OXBKWEJRQzJEdEp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgxRS85MUM5NTU5QzM0RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96 c21ZeDlwSlhCUUMyRHRKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvGu0r0c058xjAWGljZpfNvAB2Uh/c12enlRVdw816DPV9hYyTT3nq fC9dYCo0VYSvM5K3uPJfr/iAC3AQT7MIdr65glgulfiZcDv4S3cWVrDYDEcoLLuD Tno9Yo7mwLDqC7V85VcUAg9Xts30bsS3CIKfYqk3WFdeKZwWCyQy17ea51f26bw2 fVv/mrS37ktSOerOEjGLRm4k5I2ALucG8h+fIt8ekOvGbQVsCH9PsEQyZHAuU27Z exW8jARK/l7ewm5sL+BsU92NpkRqxV1Mqm/dodVUnFxq35oaQzfGvSpLVSHTs27f S9SnbuK/ANTo8diIyNH1eI4BXrYH5QdJ -----END CERTIFICATE-----Generated at Sat Apr 5 19:34:51 2025 by rpki-client