$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: qsLwAICndPUqVsM8S4JXsWywPJwSAZlMwzac98+J3jc= Subject key identifier: 70:47:43:BF:49:06:18:D0:B2:9D:22:F7:19:A9:0F:38:3A:2E:DA:59 Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: AC Signing time: Sat 29 Mar 2025 05:30:43 +0000 Manifest this update: Sat 29 Mar 2025 05:30:42 +0000 Manifest next update: Sat 05 Apr 2025 05:30:42 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: N7J+0xQWBQPCXmoSQbIjy4Oomo87aXTGkrfsrk14rqE=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: 5edOTZ9WpkItw4RWOBwB3WoAQbD4XzuXBzAkLSr3s8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B Validity Not Before: Mar 29 05:30:42 2025 GMT Not After : Apr 5 05:30:42 2025 GMT Subject: CN=67e78583-981e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b5:2d:33:b6:a9:bc:68:e5:80:a2:e3:00:ef: 12:34:a8:2b:8b:7b:f8:10:69:dd:89:41:c3:71:2f: 8b:14:28:10:7e:5b:c0:a2:aa:f4:87:b6:ef:92:76: 1c:2c:66:13:9e:83:15:9a:3a:59:a2:d9:f9:37:01: c6:99:bf:3e:7a:87:fc:97:7e:5a:86:4c:e5:f2:79: 23:1e:b3:d3:bf:fc:21:32:34:fb:59:34:9c:a6:5b: a7:08:7f:fd:a9:62:5e:34:85:e9:58:72:61:be:4f: 98:74:9b:88:4e:73:ba:87:62:c6:e5:e9:ea:ef:50: 5c:bc:47:44:4a:15:2e:c3:60:a3:c9:34:b7:09:18: 65:db:6f:24:f9:b8:20:82:eb:2b:09:33:f6:55:87: a9:5b:eb:ce:57:b3:57:56:36:da:8b:f4:af:28:cb: a9:88:16:49:a0:f3:14:96:49:6c:87:b6:cb:f0:e1: 23:f8:5d:bf:3c:3b:d6:77:59:1c:46:87:b7:80:6f: 1b:66:84:90:56:1a:ac:0d:f8:e2:40:c0:a8:38:d1: 23:27:be:b6:a1:65:75:8f:ab:b1:28:94:9e:c2:a9: 5c:4d:62:7b:ee:1b:40:27:1c:43:33:fc:98:e3:1c: 17:15:ed:29:4d:4a:40:2d:d6:c8:99:5f:5d:08:c3: 37:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:47:43:BF:49:06:18:D0:B2:9D:22:F7:19:A9:0F:38:3A:2E:DA:59 X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e3:53:ee:7f:98:1e:f6:c7:47:9d:38:3c:7c:7a:7d:01:96: f0:d9:68:4c:6b:25:21:8a:ca:c4:49:ea:af:fe:54:98:a1:3f: 24:11:9a:80:55:fb:34:37:7f:10:03:bc:bb:6e:58:e7:17:9d: 19:2a:0c:40:6d:38:84:ce:7a:96:da:28:82:70:f0:64:02:81: 1a:df:3d:fb:c6:1f:97:50:b4:ad:0d:a7:58:60:87:52:c0:fa: 20:aa:74:ee:05:1c:8b:bf:37:44:54:be:ab:fb:c3:1f:ac:4b: 0f:dd:19:73:e7:f3:52:b1:bd:6b:9d:7d:74:52:eb:95:9f:aa: 8f:71:4e:f7:63:8a:a1:c5:75:2c:0b:3e:2d:ba:56:8f:0f:6d: fc:0e:25:a0:9c:d8:37:e7:50:10:64:92:01:3a:ac:91:da:50: 4f:60:2f:84:0f:f4:83:43:89:39:4d:2a:db:80:05:3b:b2:d6: 02:2f:a9:5a:49:56:f5:5c:96:e6:42:e0:51:73:fb:c5:5a:15: 92:29:61:85:55:1c:fe:94:b8:42:8c:ad:3c:d4:64:e2:3d:68: 35:da:0f:58:90:fa:23:c9:a6:4c:50:c4:76:fd:b0:01:5f:33: 84:d2:97:d0:98:a5:63:8c:ae:36:18:36:5a:40:bb:22:a4:94: 15:bd:cf:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUwMzI5MDUzMDQyWhcNMjUwNDA1MDUzMDQyWjAYMRYwFAYD VQQDEw02N2U3ODU4My05ODFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLUtM7apvGjlgKLjAO8SNKgri3v4EGndiUHDcS+LFCgQflvAoqr0h7bvknYc LGYTnoMVmjpZotn5NwHGmb8+eof8l35ahkzl8nkjHrPTv/whMjT7WTScplunCH/9 qWJeNIXpWHJhvk+YdJuITnO6h2LG5enq71BcvEdEShUuw2CjyTS3CRhl228k+bgg gusrCTP2VYepW+vOV7NXVjbai/SvKMupiBZJoPMUlklsh7bL8OEj+F2/PDvWd1kc Roe3gG8bZoSQVhqsDfjiQMCoONEjJ762oWV1j6uxKJSewqlcTWJ77htAJxxDM/yY 4xwXFe0pTUpALdbImV9dCMM3AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBHQ79J BhjQsp0i9xmpDzg6LtpZMB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB241Puf5ge9sdHnTg8fHp9AZbw2WhMayUhisrESeqv/lSYoT8kEZqA Vfs0N38QA7y7bljnF50ZKgxAbTiEznqW2iiCcPBkAoEa3z37xh+XULStDadYYIdS wPogqnTuBRyLvzdEVL6r+8MfrEsP3Rlz5/NSsb1rnX10UuuVn6qPcU73Y4qhxXUs Cz4tulaPD238DiWgnNg351AQZJIBOqyR2lBPYC+ED/SDQ4k5TSrbgAU7stYCL6la SVb1XJbmQuBRc/vFWhWSKWGFVRz+lLhCjK081GTiPWg12g9YkPojyaZMUMR2/bAB XzOE0pfQmKVjjK42GDZaQLsipJQVvc9n -----END CERTIFICATE-----Generated at Fri Apr 4 21:57:59 2025 by rpki-client