$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.mft (raw, json) Hash identifier: Eq5EJ3hdFW8rVnPmIFE0lte6pbahUrQh/EU8RIF2nNI= Subject key identifier: E8:F5:C5:F5:61:29:B1:4E:D2:24:58:6F:B8:DF:E8:C4:1B:DC:86:E6 Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 06FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft Manifest number: 06F6 Signing time: Fri 28 Mar 2025 22:14:07 +0000 Manifest this update: Fri 28 Mar 2025 22:14:06 +0000 Manifest next update: Fri 04 Apr 2025 22:14:06 +0000 Files and hashes: 1: 1O0zil4gh9gu9ML2RZm0ERJy5eA.crl (hash: t2x0/7Zx+sUUuPFSEOfIniIumA5CjxyU7Zcit3FvVbg=) 2: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (hash: P6M32s9N/Ait6pG90TBg5gFRqcz9Jw3z+OITkwygUn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4 Validity Not Before: Mar 28 22:14:06 2025 GMT Not After : Apr 4 22:14:06 2025 GMT Subject: CN=67e71f2e-3eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:74:5c:89:49:85:97:e2:78:38:f9:e2:13:32: 41:62:d4:70:60:bf:11:d1:5c:c9:79:c2:7b:b6:08: 8c:22:d3:9c:2b:f8:cb:4e:ea:5f:a9:cd:6f:dc:c3: cd:be:70:5a:b9:5e:80:27:a9:10:1f:cb:6b:7c:ad: c8:62:bc:32:bd:d2:0a:57:9f:39:d3:e9:45:89:dc: 2f:2e:ca:a8:f6:a5:7b:34:17:6d:46:1f:32:4b:ba: 46:78:7e:75:2d:17:79:5f:4f:32:6c:3c:42:01:c4: 45:f9:76:ab:83:c0:75:d3:f1:6a:4e:3d:9e:70:ff: 25:c5:43:51:1f:47:45:ba:ff:28:95:15:8b:00:67: 9f:b2:7e:e3:48:fa:ce:31:9b:fe:78:68:88:fd:74: b0:8d:7e:8a:45:33:df:bd:62:30:9b:56:ec:16:97: e3:90:65:eb:de:1e:91:bc:a4:f9:3f:46:33:dc:6e: 9e:5c:2c:ea:4c:5f:f9:d2:9b:6c:aa:5c:12:17:34: 53:c0:3e:b0:38:2c:e6:60:0c:48:52:5a:0e:fa:49: aa:7f:d1:2f:ce:2e:f9:cf:a2:d0:cf:e3:8d:b5:5a: 25:51:b4:8a:0a:8a:59:8a:c2:12:d0:f1:e8:cb:6d: 04:41:18:93:6d:16:2f:99:4c:27:07:70:dd:88:62: e2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F5:C5:F5:61:29:B1:4E:D2:24:58:6F:B8:DF:E8:C4:1B:DC:86:E6 X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:bf:69:de:77:b2:ac:be:1d:d3:52:22:0f:81:73:bd:ae:de: 56:22:a7:ee:55:94:be:92:2c:56:8a:f7:4b:07:02:6a:a7:fd: 69:0d:f1:65:17:67:2f:85:cc:f7:a6:fb:7b:59:e8:0f:ac:dd: d9:16:de:c1:e4:74:5e:c5:df:f4:79:77:5c:53:d3:5a:4c:c7: 69:22:c7:f8:f0:80:73:b6:fa:84:6c:d6:04:ed:24:6a:76:00: f1:ab:b0:15:0c:57:f9:89:c9:01:b6:e2:a5:7f:69:9f:5c:24: 95:01:04:f2:27:8c:6f:31:bc:fc:79:e7:bf:0e:31:4c:c6:06: ed:1e:86:8e:81:84:a1:71:c7:8b:35:98:37:a7:31:e2:26:6f: e5:23:62:b4:9d:b8:26:6e:e7:39:c4:64:87:99:7b:c0:48:e2: a2:8d:2d:33:1f:0a:b1:89:8e:40:d3:50:cc:8c:03:96:b9:c6: 24:70:6f:16:c3:6a:72:c5:1d:3d:08:85:32:26:73:f9:2b:d8: 20:5a:a4:1a:ec:82:47:eb:7d:34:c6:d5:0e:e5:37:6d:60:c9: 01:4b:5a:fe:dd:c0:fe:4b:5a:f5:16:1b:13:28:a8:67:8c:7c: 75:0a:76:53:f4:10:ca:1b:f0:24:3e:89:13:10:c7:6c:90:f7: 3d:4d:1e:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjUwMzI4MjIxNDA2WhcNMjUwNDA0MjIxNDA2WjAYMRYwFAYD VQQDEw02N2U3MWYyZS0zZWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHRciUmFl+J4OPniEzJBYtRwYL8R0VzJecJ7tgiMItOcK/jLTupfqc1v3MPN vnBauV6AJ6kQH8trfK3IYrwyvdIKV5850+lFidwvLsqo9qV7NBdtRh8yS7pGeH51 LRd5X08ybDxCAcRF+Xarg8B10/FqTj2ecP8lxUNRH0dFuv8olRWLAGefsn7jSPrO MZv+eGiI/XSwjX6KRTPfvWIwm1bsFpfjkGXr3h6RvKT5P0Yz3G6eXCzqTF/50pts qlwSFzRTwD6wOCzmYAxIUloO+kmqf9Evzi75z6LQz+ONtVolUbSKCopZisIS0PHo y20EQRiTbRYvmUwnB3DdiGLikwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOj1xfVh KbFO0iRYb7jf6MQb3IbmMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5 Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXv2ned7Ksvh3TUiIPgXO9rt5WIqfuVZS+kixWivdLBwJqp/1pDfFl F2cvhcz3pvt7WegPrN3ZFt7B5HRexd/0eXdcU9NaTMdpIsf48IBztvqEbNYE7SRq dgDxq7AVDFf5ickBtuKlf2mfXCSVAQTyJ4xvMbz8eee/DjFMxgbtHoaOgYShcceL NZg3pzHiJm/lI2K0nbgmbuc5xGSHmXvASOKijS0zHwqxiY5A01DMjAOWucYkcG8W w2pyxR09CIUyJnP5K9ggWqQa7IJH6300xtUO5TdtYMkBS1r+3cD+S1r1FhsTKKhn jHx1CnZT9BDKG/AkPokTEMdskPc9TR6Z -----END CERTIFICATE-----Generated at Fri Apr 4 18:27:45 2025 by rpki-client