$ rpki-client -vvf rpki.apnic.net/member_repository/A9141274/D99F3AFAFB2311EF9F15C74AC4F9AE02/aVihqzrPf5Xtpa2cnkHkSbbRF_I.mft File: aVihqzrPf5Xtpa2cnkHkSbbRF_I.mft (raw, json) Hash identifier: yo3wqWbWjbiQ+jN+6SEo/ko5M5pPQp5NbQ4/tZHb/zU= Subject key identifier: 21:C5:9D:B0:56:D9:E8:2D:58:FC:54:C6:C1:FF:DA:AD:5F:82:63:DB Authority key identifier: 69:58:A1:AB:3A:CF:7F:95:ED:A5:AD:9C:9E:41:E4:49:B6:D1:17:F2 Certificate issuer: /CN=A9141274/serialNumber=6958A1AB3ACF7F95EDA5AD9C9E41E449B6D117F2 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aVihqzrPf5Xtpa2cnkHkSbbRF_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141274/D99F3AFAFB2311EF9F15C74AC4F9AE02/aVihqzrPf5Xtpa2cnkHkSbbRF_I.mft Manifest number: 19 Signing time: Tue 15 Apr 2025 06:44:39 +0000 Manifest this update: Tue 15 Apr 2025 06:44:38 +0000 Manifest next update: Tue 22 Apr 2025 06:44:38 +0000 Files and hashes: 1: aVihqzrPf5Xtpa2cnkHkSbbRF_I.crl (hash: O9ro2Rho8EtgprI0GZaITJPyS+ne+0ylZM1crVpgVLc=) 2: 1C8955ACFB3911EFA7A85D5EC4F9AE02.roa (hash: M3snfK7ggVA+iQyGKxoZGKOn/y2wDmLDbPmf0CbxKc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141274/D99F3AFAFB2311EF9F15C74AC4F9AE02/aVihqzrPf5Xtpa2cnkHkSbbRF_I.crl rsync://rpki.apnic.net/member_repository/A9141274/D99F3AFAFB2311EF9F15C74AC4F9AE02/aVihqzrPf5Xtpa2cnkHkSbbRF_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aVihqzrPf5Xtpa2cnkHkSbbRF_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 06:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141274, serialNumber=6958A1AB3ACF7F95EDA5AD9C9E41E449B6D117F2 Validity Not Before: Apr 15 06:44:38 2025 GMT Not After : Apr 22 06:44:38 2025 GMT Subject: CN=67fe0056-f316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:45:fc:d3:76:6c:ae:9d:d9:05:72:c7:7c:af: 78:6a:b8:cc:62:cf:23:6c:c5:ef:bb:e3:54:08:79: cc:f7:05:ed:74:ed:ec:c2:d1:a5:c1:4c:83:b5:23: 95:57:4f:89:00:ff:3a:95:04:0a:0d:80:37:48:e2: 57:b2:1a:fa:2a:53:80:e6:06:d3:a8:d7:d2:6b:07: 7d:44:23:28:ed:e6:ff:b9:5c:4d:79:17:93:67:60: 15:6c:ac:8f:e6:29:87:65:29:e0:3d:bf:1e:0c:ac: 99:29:9e:cd:26:80:f2:08:a8:10:82:22:c0:cc:7e: a8:a3:40:2d:f7:8f:c3:0f:05:8e:22:ed:b9:f6:ab: ca:11:57:ef:d8:bc:29:77:b6:7f:ae:65:83:88:e0: b7:93:a4:5a:cd:d7:03:90:e5:4f:67:5f:e7:bc:c1: 21:af:65:4e:18:74:e8:1d:95:c5:94:2c:b6:c7:f3: fb:28:51:93:75:6f:dc:da:b6:ea:59:17:aa:3d:b1: bc:f6:db:6f:47:a2:e0:dd:2d:af:9c:d1:a5:49:36: ff:ab:34:87:0e:41:68:60:e4:15:72:ab:d7:20:3d: c5:be:8f:a0:3e:fd:62:98:4f:7d:33:c1:2d:a9:cb: ca:5d:d1:dc:fe:5f:9e:d6:bf:2b:eb:e2:72:2b:9f: 2d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C5:9D:B0:56:D9:E8:2D:58:FC:54:C6:C1:FF:DA:AD:5F:82:63:DB X509v3 Authority Key Identifier: keyid:69:58:A1:AB:3A:CF:7F:95:ED:A5:AD:9C:9E:41:E4:49:B6:D1:17:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141274/D99F3AFAFB2311EF9F15C74AC4F9AE02/aVihqzrPf5Xtpa2cnkHkSbbRF_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aVihqzrPf5Xtpa2cnkHkSbbRF_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141274/D99F3AFAFB2311EF9F15C74AC4F9AE02/aVihqzrPf5Xtpa2cnkHkSbbRF_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:08:6f:ae:a7:d3:c3:9b:d3:3e:1d:17:d1:2a:ab:c7:dc:49: fb:e4:94:4f:b6:cc:92:23:8d:d5:a0:ae:03:5b:36:48:a4:e5: c8:0c:80:a4:92:ec:8c:31:6d:c3:5d:bb:9e:ed:8f:1b:ba:94: 7e:29:38:84:8c:f1:f4:3d:1f:5c:4e:55:47:6a:cf:41:9a:3d: 1a:4e:45:45:11:6b:90:62:c5:61:85:d9:82:2b:d5:ab:e3:6b: d0:83:a2:f5:d4:cf:a9:ec:58:d4:f0:d1:15:71:b5:2a:dd:34: cc:fb:13:ba:4a:a4:e5:0c:f4:3d:c4:0d:18:6b:b5:ad:20:2f: 64:2e:8a:d1:7b:b5:13:b0:11:47:4d:af:c1:c8:b5:e0:2c:ff: 21:5c:dd:02:a5:51:20:7f:77:68:e2:0e:69:1c:1f:59:ec:f1: c3:d5:f2:f2:f5:f6:b8:79:b6:1c:b9:4a:51:70:dc:61:b9:2b: 0d:d3:82:67:bc:ab:5a:b3:bd:bc:48:09:b4:ad:08:16:70:2f: 59:81:c7:c1:52:22:df:82:e3:c6:b7:72:c7:55:7c:ab:ff:20: 6c:5b:9e:72:42:25:f6:00:42:71:27:e4:dd:69:7c:07:f3:ee: 11:0d:c9:40:27:c4:04:a1:65:4a:9c:7f:2e:f5:48:91:dd:d7: 46:4e:e5:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTI3NDExMC8GA1UEBRMoNjk1OEExQUIzQUNGN0Y5NUVEQTVBRDlDOUU0MUU0NDlC NkQxMTdGMjAeFw0yNTA0MTUwNjQ0MzhaFw0yNTA0MjIwNjQ0MzhaMBgxFjAUBgNV BAMTDTY3ZmUwMDU2LWYzMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFRfzTdmyundkFcsd8r3hquMxizyNsxe+741QIecz3Be107ezC0aXBTIO1I5VX T4kA/zqVBAoNgDdI4leyGvoqU4DmBtOo19JrB31EIyjt5v+5XE15F5NnYBVsrI/m KYdlKeA9vx4MrJkpns0mgPIIqBCCIsDMfqijQC33j8MPBY4i7bn2q8oRV+/YvCl3 tn+uZYOI4LeTpFrN1wOQ5U9nX+e8wSGvZU4YdOgdlcWULLbH8/soUZN1b9zatupZ F6o9sbz2229HouDdLa+c0aVJNv+rNIcOQWhg5BVyq9cgPcW+j6A+/WKYT30zwS2p y8pd0dz+X57Wvyvr4nIrny3HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIcWdsFbZ 6C1Y/FTGwf/arV+CY9swHwYDVR0jBBgwFoAUaVihqzrPf5Xtpa2cnkHkSbbRF/Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxMjc0L0Q5OUYzQUZBRkIy MzExRUY5RjE1Qzc0QUM0RjlBRTAyL2FWaWhxenJQZjVYdHBhMmNua0hrU2JiUkZf SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVZpaHF6clBmNVh0cGEyY25rSGtTYmJSRl9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx Mjc0L0Q5OUYzQUZBRkIyMzExRUY5RjE1Qzc0QUM0RjlBRTAyL2FWaWhxenJQZjVY dHBhMmNua0hrU2JiUkZfSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHsIb66n08Ob0z4dF9Eqq8fcSfvklE+2zJIjjdWgrgNbNkik5cgMgKSS 7IwxbcNdu57tjxu6lH4pOISM8fQ9H1xOVUdqz0GaPRpORUURa5BixWGF2YIr1avj a9CDovXUz6nsWNTw0RVxtSrdNMz7E7pKpOUM9D3EDRhrta0gL2QuitF7tROwEUdN r8HIteAs/yFc3QKlUSB/d2jiDmkcH1ns8cPV8vL19rh5thy5SlFw3GG5Kw3Tgme8 q1qzvbxICbStCBZwL1mBx8FSIt+C48a3csdVfKv/IGxbnnJCJfYAQnEn5N1pfAfz 7hENyUAnxAShZUqcfy71SJHd10ZO5dg= -----END CERTIFICATE-----Generated at Wed Apr 16 17:18:11 2025 by rpki-client