$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft File: Fz6pPabl71KPpzMJc4hIg92lJ-4.mft (raw, json) Hash identifier: Igvf8kOVngxzBuqBuob6zeQarxp6ma1BY/Y8X+cwgk4= Subject key identifier: 97:CB:E0:92:E0:B0:42:97:06:1D:36:09:48:6A:8F:1C:70:82:91:62 Authority key identifier: 17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE Certificate issuer: /CN=A9145E09/serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft Manifest number: 04 Signing time: Sat 29 Mar 2025 07:32:33 +0000 Manifest this update: Sat 29 Mar 2025 07:32:32 +0000 Manifest next update: Sat 05 Apr 2025 07:32:32 +0000 Files and hashes: 1: Fz6pPabl71KPpzMJc4hIg92lJ-4.crl (hash: T6Kf2bD+8+r9AVvlQVuhwXDfOL4APZMqVxpfLNm67Bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09 Validity Not Before: Mar 29 07:32:32 2025 GMT Not After : Apr 5 07:32:32 2025 GMT Subject: CN=67e7a210-78c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:10:fd:a1:2b:0e:31:f8:02:af:99:e3:df:e6: 82:0c:67:24:96:9c:30:6c:a6:63:53:d3:e1:88:29: 18:d7:08:d6:01:24:5c:78:31:cf:89:13:86:ba:b8: b1:71:41:a7:39:39:15:8d:11:7c:bf:fc:0c:82:8a: bc:45:94:c4:7c:86:e6:e4:bb:4a:6d:cf:ed:1c:af: 03:79:ca:31:e5:ad:29:2c:b9:48:47:ea:c9:ca:88: e2:6e:74:99:fc:ad:f3:9c:c7:08:c9:4f:4f:b7:6c: 6e:6b:d8:23:e9:87:6c:3c:be:a9:69:3d:49:73:07: 1e:37:79:68:90:02:62:fe:45:fe:b7:ac:44:9b:e9: 36:c5:ae:b6:a4:3e:40:f2:49:da:0f:0e:b7:7b:51: f4:36:5b:b3:c1:b2:ec:af:a7:ed:9c:30:f1:cf:de: d7:30:30:32:61:7a:bd:6d:f6:33:a3:0e:76:a3:c8: bc:db:6f:78:7b:16:03:a9:c2:d0:ae:79:b7:3c:d9: c5:30:c2:77:eb:c7:c6:a1:22:3b:fe:7f:4b:4a:55: c0:de:6f:f4:62:c0:a6:9f:31:22:0c:f0:2a:5e:0f: a9:9d:df:e5:4c:14:2f:d8:d5:81:11:6e:62:cc:bd: 31:35:cd:d8:23:ca:05:1b:ed:e5:2d:8c:2e:b1:75: ca:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:CB:E0:92:E0:B0:42:97:06:1D:36:09:48:6A:8F:1C:70:82:91:62 X509v3 Authority Key Identifier: keyid:17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:1f:b2:ff:f4:ca:65:cb:09:24:94:ee:0d:57:9e:c7:97:9e: 0e:11:7c:82:85:ef:17:c2:13:e4:0d:53:5c:9f:e0:81:a9:b7: 70:a3:03:34:73:7c:64:ab:84:b4:4a:f5:c6:24:34:de:f4:a4: df:91:ee:5e:78:86:31:45:66:74:d8:e3:60:35:fc:48:51:64: f8:5d:53:4f:06:54:95:fa:32:9a:1e:e6:d7:af:3f:bd:4e:9c: a9:7f:f0:44:02:c1:73:4a:20:82:7a:45:47:a8:c8:c7:1e:ed: c0:8e:62:05:90:90:db:ec:89:7c:72:59:6d:48:4c:d2:ba:44: 96:07:a6:47:9a:c8:16:a9:05:9a:19:05:db:4f:6e:0e:5b:08: 9b:96:3f:ec:08:ca:48:5e:63:12:28:a5:39:92:a3:6b:bc:b5: 5e:fb:cd:e7:1a:1c:9e:1c:5c:a2:38:84:0a:a8:1a:cc:b4:ae: b6:50:2a:a2:56:1b:62:a1:12:4c:b7:eb:66:67:52:70:e8:80: bc:05:a0:e9:f8:33:1e:49:1c:b8:0b:d6:4d:3a:db:f7:90:96: b5:7e:99:8f:37:5c:5a:ca:6f:cc:a0:6f:5e:a9:d9:ad:8f:a2: 76:c7:eb:f0:4a:f4:f5:1c:b6:cf:8f:d1:4a:32:da:36:58:10: d1:a4:f5:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMTczRUE5M0RBNkU1RUY1MjhGQTczMzA5NzM4ODQ4ODNE REE1MjdFRTAeFw0yNTAzMjkwNzMyMzJaFw0yNTA0MDUwNzMyMzJaMBgxFjAUBgNV BAMTDTY3ZTdhMjEwLTc4YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEEP2hKw4x+AKvmePf5oIMZySWnDBspmNT0+GIKRjXCNYBJFx4Mc+JE4a6uLFx Qac5ORWNEXy//AyCirxFlMR8hubku0ptz+0crwN5yjHlrSksuUhH6snKiOJudJn8 rfOcxwjJT0+3bG5r2CPph2w8vqlpPUlzBx43eWiQAmL+Rf63rESb6TbFrrakPkDy SdoPDrd7UfQ2W7PBsuyvp+2cMPHP3tcwMDJher1t9jOjDnajyLzbb3h7FgOpwtCu ebc82cUwwnfrx8ahIjv+f0tKVcDeb/RiwKafMSIM8CpeD6md3+VMFC/Y1YERbmLM vTE1zdgjygUb7eUtjC6xdcqrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl8vgkuCw QpcGHTYJSGqPHHCCkWIwHwYDVR0jBBgwFoAUFz6pPabl71KPpzMJc4hIg92lJ+4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5LzhGNjI1QzRFMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFLUHB6TUpjNGhJZzkybEot NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRno2cFBhYmw3MUtQcHpNSmM0aElnOTJsSi00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5LzhGNjI1QzRFMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFL UHB6TUpjNGhJZzkybEotNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMkfsv/0ymXLCSSU7g1XnseXng4RfIKF7xfCE+QNU1yf4IGpt3CjAzRz fGSrhLRK9cYkNN70pN+R7l54hjFFZnTY42A1/EhRZPhdU08GVJX6Mpoe5tevP71O nKl/8EQCwXNKIIJ6RUeoyMce7cCOYgWQkNvsiXxyWW1ITNK6RJYHpkeayBapBZoZ BdtPbg5bCJuWP+wIykheYxIopTmSo2u8tV77zecaHJ4cXKI4hAqoGsy0rrZQKqJW G2KhEky362ZnUnDogLwFoOn4Mx5JHLgL1k062/eQlrV+mY83XFrKb8ygb16p2a2P onbH6/BK9PUcts+P0Uoy2jZYENGk9Yc= -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:11 2025 by rpki-client