$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: RlcAmd/Do/CC7YGxgsA17KHSqaEvdfrRHb5tBTYem/E= Subject key identifier: B1:90:13:9A:69:C3:27:16:65:32:31:28:54:19:CE:51:0B:C4:47:05 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 032C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 0329 Signing time: Thu 03 Apr 2025 01:07:42 +0000 Manifest this update: Thu 03 Apr 2025 01:07:42 +0000 Manifest next update: Thu 10 Apr 2025 01:07:42 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: mYa1gW5fPVHhbOcUusDyHjP4W3FWPG8OvZ8ew+/JuPk=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: M8EeCK4wseDGRAVaayv2SdcAD2UENUp0dQWvk3BdYlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C Validity Not Before: Apr 3 01:07:42 2025 GMT Not After : Apr 10 01:07:42 2025 GMT Subject: CN=67eddf5e-7874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:14:aa:a1:3e:02:a7:0b:42:b7:0b:00:5e:8d: 69:59:0b:be:8d:5a:3c:5f:49:2e:86:51:5f:0a:38: 09:92:3a:ce:ad:b0:d1:1c:48:99:80:52:9e:d9:e5: 26:aa:68:d7:81:6e:dc:b0:a1:ac:a8:f4:6a:99:b6: 1d:f1:ad:91:e9:df:b5:4c:7e:2d:8e:49:6c:13:15: a1:ed:1e:d8:c1:7c:b2:7e:96:4a:1c:01:f0:e8:41: f9:76:08:4b:ab:b9:24:fd:ee:31:c1:8a:5d:6a:76: 0a:a8:fb:a7:83:56:c8:86:28:58:27:45:b1:c9:73: 60:3f:19:da:4d:87:4c:bb:2c:fd:cb:86:1f:61:f6: 00:21:d7:b6:ff:6f:82:ea:11:fb:5d:76:6a:9f:4d: cd:eb:4e:65:94:14:42:9a:02:ac:29:6c:67:aa:f9: 8d:5f:39:ec:46:23:aa:dc:4e:4e:ea:16:9b:49:f7: 08:74:9b:49:94:cc:67:42:86:de:e3:86:9b:86:1f: b3:41:bc:51:48:05:50:c0:bf:16:54:00:cd:65:dd: f2:36:e3:25:b5:8c:02:91:2c:b1:4a:f5:16:d7:d7: 57:86:2c:58:0a:fa:71:80:28:a6:ec:7b:01:db:f7: 50:9a:88:14:84:86:d1:4e:45:c8:54:73:ae:b8:f5: 70:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:90:13:9A:69:C3:27:16:65:32:31:28:54:19:CE:51:0B:C4:47:05 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:90:f0:05:22:cd:1f:26:21:af:d7:b3:13:f4:2f:d5:88:1d: dc:0e:b8:7b:71:ac:ba:40:2b:21:be:02:a5:b3:e8:ad:cc:00: 1b:1f:c7:9f:31:6f:d7:74:49:8e:97:f3:a1:ed:2b:c6:68:6e: d0:ec:4b:6b:5a:99:2c:72:13:97:5d:3c:ac:5d:9c:65:8d:9d: 3d:a9:28:fc:4f:53:79:bb:ba:b8:d5:63:e6:c0:c1:6b:8e:db: a3:c8:f5:fe:f7:68:e3:79:51:62:1a:20:ae:6f:29:a8:1f:ec: 27:3e:6e:28:70:7a:37:6e:22:1c:74:4f:a2:f7:c3:6c:59:f5: 18:90:ed:ad:e4:90:d5:b4:e1:4b:30:8b:85:21:65:e6:20:4f: 31:d2:fb:50:c1:35:33:58:38:8b:26:16:e2:63:94:c3:21:87: 4e:39:76:b0:99:69:63:95:67:ea:a0:55:fb:03:39:f0:4b:12: 7b:9b:ce:d1:e2:3e:99:4f:9f:5a:12:f0:ea:bd:29:af:9f:9a: 86:2b:06:0a:d4:3f:3f:a7:0b:ac:0b:55:1c:a8:48:a1:5f:57: 1d:56:a3:6a:cc:da:1a:be:cc:90:0a:15:d5:2c:f5:a6:3f:64: 16:57:e0:10:e6:93:ef:8e:45:df:95:a7:40:a7:33:82:fa:57: 1f:45:2f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwNDAzMDEwNzQyWhcNMjUwNDEwMDEwNzQyWjAYMRYwFAYD VQQDEw02N2VkZGY1ZS03ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhSqoT4CpwtCtwsAXo1pWQu+jVo8X0kuhlFfCjgJkjrOrbDRHEiZgFKe2eUm qmjXgW7csKGsqPRqmbYd8a2R6d+1TH4tjklsExWh7R7YwXyyfpZKHAHw6EH5dghL q7kk/e4xwYpdanYKqPung1bIhihYJ0WxyXNgPxnaTYdMuyz9y4YfYfYAIde2/2+C 6hH7XXZqn03N605llBRCmgKsKWxnqvmNXznsRiOq3E5O6habSfcIdJtJlMxnQobe 44abhh+zQbxRSAVQwL8WVADNZd3yNuMltYwCkSyxSvUW19dXhixYCvpxgCim7HsB 2/dQmogUhIbRTkXIVHOuuPVwkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGQE5pp wycWZTIxKFQZzlELxEcFMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhkPAFIs0fJiGv17MT9C/ViB3cDrh7cay6QCshvgKls+itzAAbH8ef MW/XdEmOl/Oh7SvGaG7Q7EtrWpkschOXXTysXZxljZ09qSj8T1N5u7q41WPmwMFr jtujyPX+92jjeVFiGiCubymoH+wnPm4ocHo3biIcdE+i98NsWfUYkO2t5JDVtOFL MIuFIWXmIE8x0vtQwTUzWDiLJhbiY5TDIYdOOXawmWljlWfqoFX7AznwSxJ7m87R 4j6ZT59aEvDqvSmvn5qGKwYK1D8/pwusC1UcqEihX1cdVqNqzNoavsyQChXVLPWm P2QWV+AQ5pPvjkXfladApzOC+lcfRS9l -----END CERTIFICATE-----Generated at Fri Apr 4 21:29:55 2025 by rpki-client