$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft File: DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft (raw, json) Hash identifier: JrSEM9z5nSmD2Bk7fzPUYYEc+DcyuOMlnR9pLtAf/PI= Subject key identifier: 2A:7F:A9:E5:50:73:B4:FB:29:64:66:BC:68:C1:93:18:EA:38:49:39 Authority key identifier: 0C:85:59:D2:33:DB:FB:AF:BD:10:32:22:99:85:DF:3D:F9:13:48:FC Certificate issuer: /CN=A9147BCF/serialNumber=0C8559D233DBFBAFBD1032229985DF3DF91348FC Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft Manifest number: 18 Signing time: Sat 29 Mar 2025 07:16:54 +0000 Manifest this update: Sat 29 Mar 2025 07:16:54 +0000 Manifest next update: Sat 05 Apr 2025 07:16:53 +0000 Files and hashes: 1: DIVZ0jPb-6-9EDIimYXfPfkTSPw.crl (hash: 47spfE0yKd46HIY8BaR7ojOJN33g3PEwk5B/PoVWOUU=) 2: A7B64E90EA7311EF83DF9312C4F9AE02.roa (hash: x02iW5sBV6XQ3si6w5qxABkxIfONNKf7NHA5P8huw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.crl rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BCF Validity Not Before: Mar 29 07:16:54 2025 GMT Not After : Apr 5 07:16:53 2025 GMT Subject: CN=67e79e66-ab5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:99:a5:ac:d7:b9:af:b8:a2:cd:fe:4d:f2:36: 8b:81:32:d7:e1:0e:30:5c:f4:3a:0d:10:b8:5c:f1: 01:65:00:2a:ab:45:4d:1b:13:0b:99:7f:2d:5c:93: d6:70:cd:6b:98:03:79:f9:17:ed:b2:14:fd:0f:00: 44:45:cf:6f:ab:f3:c3:49:f0:1d:15:d4:fe:d9:07: 30:54:38:ee:39:63:77:f5:5e:e5:92:d3:92:e6:39: a4:37:a9:e7:9f:3d:02:0c:aa:ce:4e:07:7e:b2:38: 69:83:16:62:87:24:94:bb:fa:63:b3:28:2c:ea:a5: 0f:56:95:34:74:55:6f:f4:d8:af:2a:3a:3e:d5:fd: 56:de:92:da:23:07:cf:48:75:83:07:ae:34:f1:57: 46:c6:61:c2:7d:e5:66:ec:89:0b:d6:87:87:55:58: 07:d4:bf:f8:99:85:87:56:e0:02:80:9f:5d:ac:f0: 83:fa:6d:c6:89:cb:12:2b:42:4a:8f:d9:81:8d:a6: 27:01:eb:85:0d:79:de:01:38:79:d3:f8:14:fa:6b: 8b:ef:24:e7:77:82:52:68:6d:93:09:94:72:24:15: ac:31:6d:f6:31:c2:a0:68:b3:6a:94:36:fe:4b:98: 60:f2:98:17:c8:a9:a5:75:1f:5b:27:be:f9:7d:96: 21:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7F:A9:E5:50:73:B4:FB:29:64:66:BC:68:C1:93:18:EA:38:49:39 X509v3 Authority Key Identifier: keyid:0C:85:59:D2:33:DB:FB:AF:BD:10:32:22:99:85:DF:3D:F9:13:48:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:ca:58:fc:87:22:5e:04:06:47:9b:92:e6:80:26:13:1b:f1: 83:fc:f3:c8:17:61:b6:a3:f1:5f:8c:39:7c:d2:e2:8b:b4:f2: 15:bc:60:6c:63:d7:9d:2c:4a:32:e6:be:ab:8e:3a:31:56:26: af:91:dd:01:87:74:48:30:92:f5:8e:c2:2c:9f:58:39:a2:a1: 1c:53:7d:ad:6c:c6:b5:32:2b:2f:99:b5:5f:4b:01:0c:ae:c5: c7:ac:55:0d:a4:7a:6f:14:b9:a5:97:9d:9c:94:d2:b2:90:fa: 4a:8e:5c:59:63:58:22:3b:6f:bc:31:d1:4f:fb:4f:f7:30:d1: 82:3d:e1:94:12:08:a3:85:0e:d5:62:0d:ef:01:d7:90:da:25: 34:46:53:89:42:22:94:82:36:7f:b4:62:7d:52:01:a3:2c:1c: 01:4d:1d:cb:df:02:93:be:13:76:ff:ac:11:a7:98:9e:b2:99: 97:2b:16:fb:ed:a9:88:e0:44:16:0a:ce:20:95:f2:d7:33:a8: dc:9e:96:db:2b:0b:fd:80:1a:cc:a5:5b:e9:71:d4:17:29:69: 93:7c:db:87:f5:c8:98:3e:7b:fb:90:c2:3f:93:59:6d:4f:39: 32:90:3f:12:96:40:70:c7:58:46:f7:ea:cf:0f:0a:91:1c:dd: 5b:84:7a:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0JDRjExMC8GA1UEBRMoMEM4NTU5RDIzM0RCRkJBRkJEMTAzMjIyOTk4NURGM0RG OTEzNDhGQzAeFw0yNTAzMjkwNzE2NTRaFw0yNTA0MDUwNzE2NTNaMBgxFjAUBgNV BAMTDTY3ZTc5ZTY2LWFiNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdmaWs17mvuKLN/k3yNouBMtfhDjBc9DoNELhc8QFlACqrRU0bEwuZfy1ck9Zw zWuYA3n5F+2yFP0PAERFz2+r88NJ8B0V1P7ZBzBUOO45Y3f1XuWS05LmOaQ3qeef PQIMqs5OB36yOGmDFmKHJJS7+mOzKCzqpQ9WlTR0VW/02K8qOj7V/VbektojB89I dYMHrjTxV0bGYcJ95WbsiQvWh4dVWAfUv/iZhYdW4AKAn12s8IP6bcaJyxIrQkqP 2YGNpicB64UNed4BOHnT+BT6a4vvJOd3glJobZMJlHIkFawxbfYxwqBos2qUNv5L mGDymBfIqaV1H1snvvl9liHpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKn+p5VBz tPspZGa8aMGTGOo4STkwHwYDVR0jBBgwFoAUDIVZ0jPb+6+9EDIimYXfPfkTSPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3QkNGLzVFNzhCNjE0RUE3 MzExRUZBQzhCQzkxMUM0RjlBRTAyL0RJVlowalBiLTYtOUVESWltWVhmUGZrVFNQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRElWWjBqUGItNi05RURJaW1ZWGZQZmtUU1B3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 QkNGLzVFNzhCNjE0RUE3MzExRUZBQzhCQzkxMUM0RjlBRTAyL0RJVlowalBiLTYt OUVESWltWVhmUGZrVFNQdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ3KWPyHIl4EBkebkuaAJhMb8YP888gXYbaj8V+MOXzS4ou08hW8YGxj 150sSjLmvquOOjFWJq+R3QGHdEgwkvWOwiyfWDmioRxTfa1sxrUyKy+ZtV9LAQyu xcesVQ2kem8UuaWXnZyU0rKQ+kqOXFljWCI7b7wx0U/7T/cw0YI94ZQSCKOFDtVi De8B15DaJTRGU4lCIpSCNn+0Yn1SAaMsHAFNHcvfApO+E3b/rBGnmJ6ymZcrFvvt qYjgRBYKziCV8tczqNyeltsrC/2AGsylW+lx1BcpaZN824f1yJg+e/uQwj+TWW1P OTKQPxKWQHDHWEb36s8PCpEc3VuEeiA= -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:34 2025 by rpki-client