$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft File: sCeV0uCeOqo-NtK1ktLg6fu3770.mft (raw, json) Hash identifier: agda7vngw/6suvXtFId/9sLX+0uqCkE0aFTi5IKKwnA= Subject key identifier: 51:5D:05:E4:9A:5E:50:2F:A6:3C:C5:35:AA:4A:F4:48:72:3E:A1:0A Authority key identifier: B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD Certificate issuer: /CN=A914E0FE/serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft Manifest number: 42 Signing time: Sat 29 Mar 2025 06:46:57 +0000 Manifest this update: Sat 29 Mar 2025 06:46:56 +0000 Manifest next update: Sat 05 Apr 2025 06:46:56 +0000 Files and hashes: 1: sCeV0uCeOqo-NtK1ktLg6fu3770.crl (hash: f8mHsfKpF0mGjm1oxVPI8KzDLuQYYYNvXT3NnxC+62Y=) 2: FF3178EAB14B11EFB6CD146AC4F9AE02.roa (hash: KPgMUtF2z6om6dSm7+mB/ufWiwTV8TpJVcH2+or0fgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE Validity Not Before: Mar 29 06:46:56 2025 GMT Not After : Apr 5 06:46:56 2025 GMT Subject: CN=67e79760-3504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d0:b6:35:69:cd:49:4f:37:66:3a:b1:61:23: 1e:2b:da:1c:ca:c0:68:0a:e8:70:1e:a9:7d:32:64: c5:7c:6e:bb:00:d0:0d:0c:7c:77:d1:39:4d:aa:ed: c1:56:51:f5:a0:bb:b9:30:20:94:d0:ab:31:ec:1e: bc:e2:9e:7f:36:68:99:5e:6c:ef:15:6f:5a:a6:c0: 14:cc:35:c2:c0:3c:80:6c:3a:0e:e6:c1:d1:f6:69: d5:17:69:c9:bd:2a:4a:49:27:17:e4:6f:d8:6a:93: 42:4b:da:5d:a9:bb:e5:48:5e:d5:4e:b4:fc:a3:5f: 73:4e:49:59:4e:1a:68:46:be:db:6e:05:fb:21:d5: 55:e1:fd:b3:6d:1c:3d:cb:d3:fa:da:23:69:67:d0: 45:6e:b7:1a:2e:2c:0c:fc:a7:b0:f7:4b:cf:6a:ef: 3e:f6:3c:2e:da:88:9f:b4:78:f2:21:25:c0:27:11: 62:92:4d:bb:4c:23:71:29:3b:43:07:35:ac:1f:82: 1e:10:41:23:79:12:48:1c:a9:02:ad:9d:a3:30:09: 95:c7:ba:be:22:20:7a:af:87:3f:8f:49:7e:be:fc: 45:8a:92:41:fa:c0:b8:fa:1c:f8:9d:09:3a:24:64: 00:0c:29:69:d4:af:dc:e8:cc:85:bc:3e:73:e5:6b: 50:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5D:05:E4:9A:5E:50:2F:A6:3C:C5:35:AA:4A:F4:48:72:3E:A1:0A X509v3 Authority Key Identifier: keyid:B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:29:b3:e2:e9:91:c1:d6:33:80:87:0a:d4:b0:82:fc:e3:1d: f7:dd:1c:19:97:c3:19:79:7c:2b:e7:71:90:00:15:14:07:e7: 78:ab:b1:d1:6f:fc:da:a5:3f:6f:4d:12:84:2a:94:db:9c:de: 56:64:41:67:d3:aa:ed:6f:a3:99:b7:01:fb:54:c3:b5:f6:e5: 42:3c:f5:55:60:86:9d:46:ee:32:f2:f2:87:8a:6c:00:f8:7d: 4f:d2:ef:0f:45:06:35:f6:57:b3:ae:79:fa:64:48:cd:dd:50: b8:a5:74:3e:00:52:b2:d4:2b:b3:0e:e5:b4:81:b4:c5:25:cc: b4:4f:c0:27:d5:df:83:71:7a:a7:09:ba:be:ca:a1:16:81:a5: c1:4f:89:0d:cc:c2:b8:e2:64:ac:45:df:33:97:5d:19:fa:33: 90:ed:42:4f:88:cc:b8:db:06:ed:0d:6c:19:81:38:b5:3d:e5: 14:ec:3e:99:5e:dc:13:3d:da:69:d9:58:7c:9a:28:d5:37:ac: 9e:40:d0:4e:63:f5:6c:b5:85:b6:8a:53:a5:80:de:dd:33:4d: 3a:20:d8:65:7b:45:3a:09:b1:c8:e3:db:46:2f:73:f8:ba:7d: cd:46:15:8f:37:e5:be:4b:b6:f1:a7:7e:a6:e5:b3:f6:dd:30: f8:63:62:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBGRTExMC8GA1UEBRMoQjAyNzk1RDJFMDlFM0FBQTNFMzZEMkI1OTJEMkUwRTlG QkI3RUZCRDAeFw0yNTAzMjkwNjQ2NTZaFw0yNTA0MDUwNjQ2NTZaMBgxFjAUBgNV BAMTDTY3ZTc5NzYwLTM1MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCb0LY1ac1JTzdmOrFhIx4r2hzKwGgK6HAeqX0yZMV8brsA0A0MfHfROU2q7cFW UfWgu7kwIJTQqzHsHrzinn82aJlebO8Vb1qmwBTMNcLAPIBsOg7mwdH2adUXacm9 KkpJJxfkb9hqk0JL2l2pu+VIXtVOtPyjX3NOSVlOGmhGvttuBfsh1VXh/bNtHD3L 0/raI2ln0EVutxouLAz8p7D3S89q7z72PC7aiJ+0ePIhJcAnEWKSTbtMI3EpO0MH Nawfgh4QQSN5EkgcqQKtnaMwCZXHur4iIHqvhz+PSX6+/EWKkkH6wLj6HPidCTok ZAAMKWnUr9zozIW8PnPla1DhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUV0F5Jpe UC+mPMU1qkr0SHI+oQowHwYDVR0jBBgwFoAUsCeV0uCeOqo+NtK1ktLg6fu3770w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEZFLzM3MzM0QkUyQUJD QTExRUZBOTk0RDEyOUM0RjlBRTAyL3NDZVYwdUNlT3FvLU50SzFrdExnNmZ1Mzc3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0NlVjB1Q2VPcW8tTnRLMWt0TGc2ZnUzNzcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MEZFLzM3MzM0QkUyQUJDQTExRUZBOTk0RDEyOUM0RjlBRTAyL3NDZVYwdUNlT3Fv LU50SzFrdExnNmZ1Mzc3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADwps+LpkcHWM4CHCtSwgvzjHffdHBmXwxl5fCvncZAAFRQH53irsdFv /NqlP29NEoQqlNuc3lZkQWfTqu1vo5m3AftUw7X25UI89VVghp1G7jLy8oeKbAD4 fU/S7w9FBjX2V7OuefpkSM3dULildD4AUrLUK7MO5bSBtMUlzLRPwCfV34NxeqcJ ur7KoRaBpcFPiQ3MwrjiZKxF3zOXXRn6M5DtQk+IzLjbBu0NbBmBOLU95RTsPple 3BM92mnZWHyaKNU3rJ5A0E5j9Wy1hbaKU6WA3t0zTTog2GV7RToJscjj20Yvc/i6 fc1GFY835b5LtvGnfqbls/bdMPhjYiU= -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:36 2025 by rpki-client