$ rpki-client -vvf rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft File: f30yDyoH5DPdvf4oV_XTGTVFF7k.mft (raw, json) Hash identifier: 35zWO77NeEiepUAKgSbg+14F9dTs7nljrsMBzzr9OMw= Subject key identifier: 0C:45:7B:64:4C:6D:11:FF:35:DB:3C:42:E6:39:E5:0B:C1:85:59:77 Authority key identifier: 7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 Certificate issuer: /CN=A914877B/serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Certificate serial: 0BBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft Manifest number: 0BB7 Signing time: Fri 18 Apr 2025 18:57:55 +0000 Manifest this update: Fri 18 Apr 2025 18:57:55 +0000 Manifest next update: Fri 25 Apr 2025 18:57:55 +0000 Files and hashes: 1: f30yDyoH5DPdvf4oV_XTGTVFF7k.crl (hash: yqcY4a0QvfxThQsXt2TNOG5G961cibTlBOmayVjiUXQ=) 2: 800676321BD311EAA341A62DC4F9AE02.roa (hash: RHZCYYPvQQbME4QEcXK5NVornLFSgAMnD5MRoiwlBuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 18:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3006 (0xbbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914877B, serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Validity Not Before: Apr 18 18:57:55 2025 GMT Not After : Apr 25 18:57:55 2025 GMT Subject: CN=6802a0b3-3684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fc:be:63:72:76:50:c0:e5:96:bc:97:74:94: 79:bf:33:b6:c6:56:99:be:65:e0:91:46:91:ee:f5: 94:84:60:88:9d:cf:48:63:7c:fe:86:19:4c:3a:d4: 20:80:de:a0:4c:b8:94:f9:43:19:cc:af:f3:ef:d5: 0f:81:43:9d:93:df:23:6e:73:23:8e:46:2c:c8:4c: de:d8:24:cf:c3:5f:88:5e:d6:9f:cb:f5:36:59:11: 46:78:6a:2e:e4:6d:bf:e3:72:1b:d1:db:95:43:20: 0d:ba:74:4e:09:87:e2:7a:30:a3:c6:fe:ee:2e:17: 07:24:d4:e0:88:65:cf:27:b8:ca:9f:9b:95:bb:9c: a1:7a:18:74:49:46:4a:c5:2c:9f:b8:93:17:07:d7: 94:c6:7a:82:6b:f8:31:8d:a9:c4:bc:5d:db:7e:92: 19:6c:b4:94:62:02:16:05:41:64:88:60:13:39:4b: a5:89:d6:45:a1:38:1c:76:a8:52:a8:aa:5e:10:6c: 70:0b:46:20:35:44:ed:36:b8:18:3b:66:64:d8:94: a6:5a:5d:1f:66:75:c5:4b:68:60:d1:9c:f2:51:d2: 1f:f7:02:e6:72:24:d2:cf:3f:00:5f:9f:1b:b9:bf: 9b:1d:46:bc:ab:f0:06:c6:f0:b0:66:30:3e:a4:cc: 27:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:45:7B:64:4C:6D:11:FF:35:DB:3C:42:E6:39:E5:0B:C1:85:59:77 X509v3 Authority Key Identifier: keyid:7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:ad:82:e5:01:2f:95:79:0c:06:60:79:2a:78:fe:9e:bf:2d: 93:8d:47:26:5a:7c:57:be:1d:c9:03:b2:33:cd:cf:5e:ad:51: f6:9e:b1:8d:25:00:81:9a:d9:ae:94:36:58:3a:e4:26:86:86: d5:12:2b:1d:97:2a:b7:9a:52:38:17:b3:29:ae:82:15:51:d4: 13:70:ef:26:e8:02:d7:7c:66:67:3f:83:0e:60:c5:96:77:a3: 39:0d:41:48:93:3d:80:b6:18:23:54:4d:f4:61:a4:7b:12:df: 60:37:81:99:fb:4f:c9:fa:97:8d:bb:59:eb:b1:38:de:3e:50: 00:8f:9f:96:85:24:87:6c:ff:3b:2f:33:0a:36:ee:d2:64:37: 28:de:e2:05:1a:98:43:09:b5:33:6e:a7:3d:89:70:32:98:4e: 35:3d:99:1d:ea:42:52:63:49:4c:94:18:2a:71:32:c6:50:c8: 92:cd:79:04:7c:ce:cc:d9:0e:a2:f9:7b:c1:8e:5e:cf:63:32: 20:08:a4:80:1a:30:e9:95:5b:12:a2:96:6d:82:2b:f9:74:7b: 09:e3:a4:06:43:86:65:e1:73:b9:3b:62:64:9e:40:df:90:e2: bc:32:81:bb:d4:d0:8e:ef:5d:3b:d1:85:21:87:5c:7d:d2:87: 82:42:c1:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3N0IxMTAvBgNVBAUTKDdGN0QzMjBGMkEwN0U0MzNEREJERkUyODU3RjVEMzE5 MzU0NTE3QjkwHhcNMjUwNDE4MTg1NzU1WhcNMjUwNDI1MTg1NzU1WjAYMRYwFAYD VQQDEw02ODAyYTBiMy0zNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/y+Y3J2UMDllryXdJR5vzO2xlaZvmXgkUaR7vWUhGCInc9IY3z+hhlMOtQg gN6gTLiU+UMZzK/z79UPgUOdk98jbnMjjkYsyEze2CTPw1+IXtafy/U2WRFGeGou 5G2/43Ib0duVQyANunROCYfiejCjxv7uLhcHJNTgiGXPJ7jKn5uVu5yhehh0SUZK xSyfuJMXB9eUxnqCa/gxjanEvF3bfpIZbLSUYgIWBUFkiGATOUulidZFoTgcdqhS qKpeEGxwC0YgNUTtNrgYO2Zk2JSmWl0fZnXFS2hg0ZzyUdIf9wLmciTSzz8AX58b ub+bHUa8q/AGxvCwZjA+pMwnlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxFe2RM bRH/Nds8QuY55QvBhVl3MB8GA1UdIwQYMBaAFH99Mg8qB+Qz3b3+KFf10xk1RRe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODc3Qi8yNTkxMDExRTFC RDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVEUGR2ZjRvVl9YVEdUVkZG N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzMHlEeW9INURQZHZmNG9WX1hUR1RWRkY3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODc3Qi8yNTkxMDExRTFCRDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVE UGR2ZjRvVl9YVEdUVkZGN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqrYLlAS+VeQwGYHkqeP6evy2TjUcmWnxXvh3JA7Izzc9erVH2nrGN JQCBmtmulDZYOuQmhobVEisdlyq3mlI4F7MproIVUdQTcO8m6ALXfGZnP4MOYMWW d6M5DUFIkz2AthgjVE30YaR7Et9gN4GZ+0/J+peNu1nrsTjePlAAj5+WhSSHbP87 LzMKNu7SZDco3uIFGphDCbUzbqc9iXAymE41PZkd6kJSY0lMlBgqcTLGUMiSzXkE fM7M2Q6i+XvBjl7PYzIgCKSAGjDplVsSopZtgiv5dHsJ46QGQ4Zl4XO5O2JknkDf kOK8MoG71NCO71070YUhh1x90oeCQsFe -----END CERTIFICATE-----Generated at Sat Apr 19 08:28:32 2025 by rpki-client