$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft File: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json) Hash identifier: ocUXqe543h/Ie5/URQ8wUerF7fJlhhdkhbII3hxiu7w= Subject key identifier: 96:66:E2:83:AB:54:48:6D:6B:8C:BC:0C:60:DE:4A:B2:2C:C3:CB:D5 Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 Certificate issuer: /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft Manifest number: 18 Signing time: Sat 05 Apr 2025 07:17:41 +0000 Manifest this update: Sat 05 Apr 2025 07:17:40 +0000 Manifest next update: Sat 12 Apr 2025 07:17:40 +0000 Files and hashes: 1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: P9bEaSXc3ZDbdRkNSZ3O2Pce84uxPu/OFS0+gCFAJkQ=) 2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91418C7 Validity Not Before: Apr 5 07:17:40 2025 GMT Not After : Apr 12 07:17:40 2025 GMT Subject: CN=67f0d915-3107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2b:e5:0c:79:f7:ec:79:16:06:be:1a:1b:19: 95:dd:75:5b:b0:6c:c9:31:d4:e1:8f:1f:a2:e5:c0: 6f:fa:52:84:8c:23:74:33:61:d6:05:6f:24:21:e2: a5:db:67:14:c2:49:9a:97:4f:c6:1b:71:27:b1:92: 37:d2:bb:25:0d:04:ff:0f:cc:b2:c6:10:5a:76:43: 42:a1:b2:07:7a:47:8f:fd:33:36:a0:22:81:c4:54: da:f3:5d:f5:02:ba:6e:ed:50:17:99:c7:f1:40:d6: 01:53:0b:5b:50:cb:dd:b9:65:24:b1:5a:8a:40:74: bc:85:ab:c4:2e:22:c4:3a:aa:13:ed:c6:ca:37:12: a6:a7:41:51:90:fc:39:a4:39:fd:38:13:57:5b:04: a8:1a:41:46:bb:ea:77:79:a1:2b:0a:1e:45:65:b7: ac:f6:09:93:03:89:d0:a8:55:9d:d3:bb:83:b6:0f: 37:1b:d5:ed:73:1d:3c:de:5d:63:23:44:97:e5:f7: b6:de:75:a2:5a:01:b5:cd:d5:4b:1b:14:a4:09:26: 6a:1a:85:fe:07:ce:07:6c:27:70:40:ef:4a:4f:ab: 8a:14:2a:c4:4b:b8:8e:1c:15:41:54:77:58:a5:c7: 88:a8:db:f5:ca:ac:ea:20:f5:80:bc:fc:ff:f5:d9: 6d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:66:E2:83:AB:54:48:6D:6B:8C:BC:0C:60:DE:4A:B2:2C:C3:CB:D5 X509v3 Authority Key Identifier: keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:68:25:b5:7d:a9:de:89:ce:c9:23:4e:cc:72:1a:55:ef:05: 78:43:9e:03:81:b3:f0:69:26:7a:0c:1b:bb:69:40:06:9d:39: 06:76:37:02:a0:73:e1:07:7c:03:97:ee:f0:d9:82:70:e0:b3: 4a:e7:b8:e4:8d:9b:9d:0d:87:f6:c7:86:db:bb:ae:79:a8:28: fa:59:70:5f:9f:83:fe:6c:01:01:2f:b7:f6:19:58:46:1f:ae: 64:c2:24:1e:59:14:56:d8:31:16:16:5c:f3:b5:1b:a3:8f:50: 64:2d:29:79:46:e6:fa:69:e2:0a:24:22:6e:e1:a5:10:91:fc: 10:82:71:16:11:ee:0f:ff:68:09:ea:4f:40:4f:ca:6c:ca:b0: 3f:27:1a:67:bf:b6:be:30:7e:69:83:2c:85:0d:df:c8:08:5f: 25:a6:5e:0e:e5:79:3d:a0:c2:aa:60:cf:12:15:cb:78:be:31: b7:28:c9:a1:73:ca:78:ff:5a:01:04:48:f0:34:21:d0:ab:34: b6:fc:0e:b6:59:47:71:62:56:22:26:88:d2:6c:0e:20:f9:9b: 41:c3:ed:fc:00:26:29:40:ec:1b:f0:46:33:03:62:42:e8:fd: 57:08:6b:89:90:8d:23:3c:f3:5a:f5:98:2e:90:ad:04:b1:fa: a8:1e:a2:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MThDNzExMC8GA1UEBRMoRTM2OTI5MEZENzE5RTNFNDk4N0Q3MTlBNzNCMUVDNzdB QUFGNDlCNjAeFw0yNTA0MDUwNzE3NDBaFw0yNTA0MTIwNzE3NDBaMBgxFjAUBgNV BAMTDTY3ZjBkOTE1LTMxMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvK+UMeffseRYGvhobGZXddVuwbMkx1OGPH6LlwG/6UoSMI3QzYdYFbyQh4qXb ZxTCSZqXT8YbcSexkjfSuyUNBP8PzLLGEFp2Q0Khsgd6R4/9MzagIoHEVNrzXfUC um7tUBeZx/FA1gFTC1tQy925ZSSxWopAdLyFq8QuIsQ6qhPtxso3EqanQVGQ/Dmk Of04E1dbBKgaQUa76nd5oSsKHkVlt6z2CZMDidCoVZ3Tu4O2Dzcb1e1zHTzeXWMj RJfl97bedaJaAbXN1UsbFKQJJmoahf4HzgdsJ3BA70pPq4oUKsRLuI4cFUFUd1il x4io2/XKrOog9YC8/P/12W0zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlmbig6tU SG1rjLwMYN5KsizDy9UwHwYDVR0jBBgwFoAU42kpD9cZ4+SYfXGac7Hsd6qvSbYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxOEM3L0Y5MzAwMUI2RjhD RjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1TWWZYR2FjN0hzZDZxdlNi WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDJrcEQ5Y1o0LVNZZlhHYWM3SHNkNnF2U2JZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx OEM3L0Y5MzAwMUI2RjhDRjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1T WWZYR2FjN0hzZDZxdlNiWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIZoJbV9qd6JzskjTsxyGlXvBXhDngOBs/BpJnoMG7tpQAadOQZ2NwKg c+EHfAOX7vDZgnDgs0rnuOSNm50Nh/bHhtu7rnmoKPpZcF+fg/5sAQEvt/YZWEYf rmTCJB5ZFFbYMRYWXPO1G6OPUGQtKXlG5vpp4gokIm7hpRCR/BCCcRYR7g//aAnq T0BPymzKsD8nGme/tr4wfmmDLIUN38gIXyWmXg7leT2gwqpgzxIVy3i+MbcoyaFz ynj/WgEESPA0IdCrNLb8DrZZR3FiViImiNJsDiD5m0HD7fwAJilA7BvwRjMDYkLo /VcIa4mQjSM881r1mC6QrQSx+qgeouo= -----END CERTIFICATE-----Generated at Sat Apr 5 11:41:16 2025 by rpki-client