$ rpki-client -vvf rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft File: rSHpWiYaLoAl4zypVIJcFHCzt6M.mft (raw, json) Hash identifier: 4ZJdhkaJPtRqFcJ7GQ3syVnSqzQy6IUsgmaY5mngZ6E= Subject key identifier: 12:BB:15:9E:17:CF:2F:84:EF:2A:BB:FF:68:62:E9:12:3C:18:7E:CC Authority key identifier: AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 Certificate issuer: /CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Certificate serial: 06FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft Manifest number: 06FA Signing time: Fri 18 Apr 2025 21:59:11 +0000 Manifest this update: Fri 18 Apr 2025 21:59:10 +0000 Manifest next update: Fri 25 Apr 2025 21:59:10 +0000 Files and hashes: 1: rSHpWiYaLoAl4zypVIJcFHCzt6M.crl (hash: DvmE4DlGS1Ts/fuEpBTg6SFNrY2WIIf++FdUk5I30go=) 2: B855A21C3E1211EB8D23EB6CC4F9AE02.roa (hash: WhAEh4S3tK527emBBM2jGEQwQFEHNqJyzLHLvoZ2c44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 21:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1791 (0x6ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508C4, serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Validity Not Before: Apr 18 21:59:10 2025 GMT Not After : Apr 25 21:59:10 2025 GMT Subject: CN=6802cb2e-6e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:2d:e9:39:be:18:48:32:5c:c3:06:ef:d3:9a: 26:3d:21:7c:42:97:ac:f4:92:c7:2e:63:0c:07:53: 40:8e:c0:7e:48:ff:bc:f5:31:93:e3:80:a2:5d:44: d8:45:ff:f0:0f:0e:db:29:02:b3:0b:c8:50:26:ff: f5:2b:69:25:a6:4f:27:99:72:d8:79:06:24:2f:f4: 01:39:1b:c1:59:69:cb:e5:e4:e3:b1:0f:93:3b:e0: a7:7b:83:bd:08:5b:51:8f:04:5d:7a:14:ae:21:1b: 02:0c:04:96:1b:19:ac:f9:cc:58:04:00:55:8a:dc: fe:ea:50:65:d1:c2:ad:3e:17:48:3c:9a:c7:b3:c2: e6:0c:13:0e:cc:9c:3c:7d:da:46:d5:4f:cf:d0:4c: f8:5a:7c:71:80:e9:93:aa:17:71:52:77:7f:14:15: d0:7b:93:26:c4:3e:ce:2c:c5:a9:0c:8d:54:ab:c2: 5a:9e:1f:67:7c:cb:1d:b2:60:0c:08:9b:51:2d:a0: d7:86:07:bb:50:a8:78:18:ad:5a:50:df:86:5c:ab: 38:40:19:54:c5:9d:64:bb:f4:eb:bb:65:f8:98:28: cf:5e:fc:f7:69:d3:ac:39:86:85:7b:9c:ec:e2:cd: ff:ae:7e:13:b2:0d:03:46:ea:3a:04:50:49:6c:b9: c1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:BB:15:9E:17:CF:2F:84:EF:2A:BB:FF:68:62:E9:12:3C:18:7E:CC X509v3 Authority Key Identifier: keyid:AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5a:ff:ef:7c:ea:37:c8:94:d8:57:7b:34:eb:cd:9a:e2:b4: 25:8a:60:af:e1:04:7a:87:d8:e8:53:1b:db:c0:a2:e0:d9:57: b6:40:8e:54:76:48:3a:b8:11:86:48:d2:c6:11:03:11:75:21: 3f:89:1a:bc:f3:94:17:62:b9:f7:98:db:fe:84:02:d0:5c:76: 47:c1:57:61:f2:b9:e4:c0:19:0b:c9:a0:dc:5e:bf:ef:ff:d9: 84:8a:ae:70:15:dc:bd:1b:97:18:f5:f4:e5:a6:65:7a:68:c0: 0f:d9:64:03:d1:87:73:9f:4f:a5:44:e2:e4:44:28:36:6c:f7: 59:18:a6:55:44:98:2a:4e:6b:2f:84:95:97:ac:40:b4:7d:55: 70:3a:66:04:f1:69:52:a3:1e:7d:5e:35:a5:e3:1c:f9:53:55: 66:e8:33:0f:cd:9b:fd:14:c1:18:57:f3:85:7b:43:7c:fc:d8: 96:39:9f:3a:41:19:e7:26:98:58:8a:ef:8b:0f:ee:16:fa:89: 49:11:4b:13:0e:68:6f:c1:f0:3f:10:e4:40:67:23:fb:90:e4: 10:d4:65:2b:9d:d4:9e:f6:31:2e:eb:d9:86:fe:c5:f2:e2:8c: 9a:0e:03:49:e0:00:51:1d:42:0d:d3:b8:49:8f:7c:4f:9f:36: 41:d9:04:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QzQxMTAvBgNVBAUTKEFEMjFFOTVBMjYxQTJFODAyNUUzM0NBOTU0ODI1QzE0 NzBCM0I3QTMwHhcNMjUwNDE4MjE1OTEwWhcNMjUwNDI1MjE1OTEwWjAYMRYwFAYD VQQDEw02ODAyY2IyZS02ZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8i3pOb4YSDJcwwbv05omPSF8Qpes9JLHLmMMB1NAjsB+SP+89TGT44CiXUTY Rf/wDw7bKQKzC8hQJv/1K2klpk8nmXLYeQYkL/QBORvBWWnL5eTjsQ+TO+Cne4O9 CFtRjwRdehSuIRsCDASWGxms+cxYBABVitz+6lBl0cKtPhdIPJrHs8LmDBMOzJw8 fdpG1U/P0Ez4WnxxgOmTqhdxUnd/FBXQe5MmxD7OLMWpDI1Uq8Janh9nfMsdsmAM CJtRLaDXhge7UKh4GK1aUN+GXKs4QBlUxZ1ku/Tru2X4mCjPXvz3adOsOYaFe5zs 4s3/rn4Tsg0DRuo6BFBJbLnB1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBK7FZ4X zy+E7yq7/2hi6RI8GH7MMB8GA1UdIwQYMBaAFK0h6VomGi6AJeM8qVSCXBRws7ej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhDNC81MzJGRENEQzNF MTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxvQWw0enlwVklKY0ZIQ3p0 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSHBXaVlhTG9BbDR6eXBWSUpjRkhDenQ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhDNC81MzJGRENEQzNFMTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxv QWw0enlwVklKY0ZIQ3p0Nk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeWv/vfOo3yJTYV3s0682a4rQlimCv4QR6h9joUxvbwKLg2Ve2QI5U dkg6uBGGSNLGEQMRdSE/iRq885QXYrn3mNv+hALQXHZHwVdh8rnkwBkLyaDcXr/v /9mEiq5wFdy9G5cY9fTlpmV6aMAP2WQD0Ydzn0+lROLkRCg2bPdZGKZVRJgqTmsv hJWXrEC0fVVwOmYE8WlSox59XjWl4xz5U1Vm6DMPzZv9FMEYV/OFe0N8/NiWOZ86 QRnnJphYiu+LD+4W+olJEUsTDmhvwfA/EORAZyP7kOQQ1GUrndSe9jEu69mG/sXy 4oyaDgNJ4ABRHUIN07hJj3xPnzZB2QQ3 -----END CERTIFICATE-----Generated at Sat Apr 19 14:16:50 2025 by rpki-client