$ rpki-client -vvf rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft File: J-OLvrji2ycfz6F8E0feawaDRGA.mft (raw, json) Hash identifier: 9GL4+vXOPBrCaSdxGeWBuIOhlHZ1qkJpZiEwrAQIK6E= Subject key identifier: 72:FF:8C:CD:28:69:A8:BD:2A:B6:7D:97:5D:F6:D7:D3:FD:77:BE:D7 Authority key identifier: 27:E3:8B:BE:B8:E2:DB:27:1F:CF:A1:7C:13:47:DE:6B:06:83:44:60 Certificate issuer: /CN=A9151E54/serialNumber=27E38BBEB8E2DB271FCFA17C1347DE6B06834460 Certificate serial: 0524 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft Manifest number: 0520 Signing time: Fri 28 Mar 2025 23:47:54 +0000 Manifest this update: Fri 28 Mar 2025 23:47:53 +0000 Manifest next update: Fri 04 Apr 2025 23:47:53 +0000 Files and hashes: 1: J-OLvrji2ycfz6F8E0feawaDRGA.crl (hash: hP6b1WGEpp72wn+J6UaJDtSaHVg13+IAtM1VhNvzibQ=) 2: 7D20FF46F3E511EBB8BBF720C4F9AE02.roa (hash: znarIi95IxbY5QtfZt5UpV1pUKWZGLwbMyxU7w7HIcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.crl rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1316 (0x524) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151E54 Validity Not Before: Mar 28 23:47:53 2025 GMT Not After : Apr 4 23:47:53 2025 GMT Subject: CN=67e73529-edc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:88:97:a0:8f:89:ad:a1:62:5d:06:0a:8e:16: d7:03:a3:3d:54:d1:ab:80:f0:37:98:8a:c6:c2:34: ad:d5:ea:e5:c9:46:d2:08:b0:ed:ae:ac:bc:df:51: 1d:a4:ed:7b:6d:1d:a5:87:f2:19:03:49:19:ad:32: e4:14:58:31:7d:59:5f:e7:94:d4:cb:5e:69:55:36: 2a:04:d9:e4:33:a5:ae:d9:38:69:d2:9e:fa:44:01: 16:54:9f:2a:38:da:6b:70:a8:6b:d5:58:23:ad:01: 97:49:51:05:c2:30:71:18:de:4c:db:cf:11:ab:58: 62:cf:f3:03:0a:81:5c:35:2f:1d:69:b2:ae:6b:ea: e9:77:53:ec:c5:ec:ce:b1:c9:e9:ca:4d:cd:cf:44: fa:12:f7:ce:c3:12:9d:19:89:0d:1b:b6:05:54:b3: c4:5f:36:ea:e9:11:0a:21:6c:ad:40:48:c4:e8:cf: 19:42:67:ad:78:d3:5e:61:36:d3:7d:9a:fc:cc:d1: 32:30:8f:cd:7a:46:59:20:47:17:dd:ac:22:fa:94: a0:1e:b4:e8:03:84:29:b9:de:30:98:aa:3e:a1:94: 38:4c:9e:2a:b7:df:f9:5a:0a:48:a0:36:da:50:d1: a1:90:a9:8c:b6:7f:0e:c3:70:51:45:ac:f5:05:94: 36:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:FF:8C:CD:28:69:A8:BD:2A:B6:7D:97:5D:F6:D7:D3:FD:77:BE:D7 X509v3 Authority Key Identifier: keyid:27:E3:8B:BE:B8:E2:DB:27:1F:CF:A1:7C:13:47:DE:6B:06:83:44:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:59:42:21:db:b1:f3:ca:04:d8:1c:a1:a0:26:25:ad:c7:8d: f1:91:ee:10:51:a9:ce:4f:8b:4f:64:64:29:51:67:34:d3:12: b3:c0:ed:f4:ef:d6:62:5e:ec:08:1b:3c:8f:dd:b2:78:7a:73: ed:1a:77:43:c9:01:58:e6:54:3b:45:23:23:7f:d1:29:75:f3: 41:b6:a4:d9:6c:5f:05:4f:39:81:54:8d:42:7b:7b:97:0d:c4: a9:3b:3a:b8:ba:72:6b:c7:8d:36:f2:59:a6:d1:83:1c:e1:a7: 9d:41:c3:fc:d4:ca:c3:0f:6e:18:49:e1:29:49:af:45:ab:5a: b2:07:fe:2c:0d:fc:3b:75:46:d6:be:3f:90:2b:ce:3f:d8:6b: 8a:7c:9f:08:eb:ed:cd:71:34:1c:05:ae:9c:8a:3d:30:fb:1a: 0d:34:9a:52:0c:f5:27:d9:ce:ec:62:34:8e:73:fb:a1:19:77: da:d5:c2:9f:fb:4a:3c:c7:04:05:51:29:2c:8b:9c:c0:1b:f4: ce:92:61:62:a9:16:73:f3:43:13:f6:da:26:94:26:75:cc:25: 6d:e1:0f:f8:e1:8e:42:99:68:7b:13:fe:23:6a:ff:0e:07:3f: 94:2f:f5:8d:4e:b7:5d:52:7f:a2:c5:09:4f:54:28:79:b7:2d: eb:17:89:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFNTQxMTAvBgNVBAUTKDI3RTM4QkJFQjhFMkRCMjcxRkNGQTE3QzEzNDdERTZC MDY4MzQ0NjAwHhcNMjUwMzI4MjM0NzUzWhcNMjUwNDA0MjM0NzUzWjAYMRYwFAYD VQQDEw02N2U3MzUyOS1lZGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoiXoI+JraFiXQYKjhbXA6M9VNGrgPA3mIrGwjSt1erlyUbSCLDtrqy831Ed pO17bR2lh/IZA0kZrTLkFFgxfVlf55TUy15pVTYqBNnkM6Wu2Thp0p76RAEWVJ8q ONprcKhr1VgjrQGXSVEFwjBxGN5M288Rq1hiz/MDCoFcNS8dabKua+rpd1PsxezO scnpyk3Nz0T6EvfOwxKdGYkNG7YFVLPEXzbq6REKIWytQEjE6M8ZQmeteNNeYTbT fZr8zNEyMI/NekZZIEcX3awi+pSgHrToA4Qpud4wmKo+oZQ4TJ4qt9/5WgpIoDba UNGhkKmMtn8Ow3BRRaz1BZQ2wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHL/jM0o aai9KrZ9l13219P9d77XMB8GA1UdIwQYMBaAFCfji7644tsnH8+hfBNH3msGg0Rg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUU1NC9BRkQxN0EzNkYz RTIxMUVCQUFDRUE3MURDNEY5QUUwMi9KLU9MdnJqaTJ5Y2Z6NkY4RTBmZWF3YURS R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0otT0x2cmppMnljZno2RjhFMGZlYXdhRFJHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUU1NC9BRkQxN0EzNkYzRTIxMUVCQUFDRUE3MURDNEY5QUUwMi9KLU9MdnJqaTJ5 Y2Z6NkY4RTBmZWF3YURSR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNWUIh27HzygTYHKGgJiWtx43xke4QUanOT4tPZGQpUWc00xKzwO30 79ZiXuwIGzyP3bJ4enPtGndDyQFY5lQ7RSMjf9EpdfNBtqTZbF8FTzmBVI1Ce3uX DcSpOzq4unJrx4028lmm0YMc4aedQcP81MrDD24YSeEpSa9Fq1qyB/4sDfw7dUbW vj+QK84/2GuKfJ8I6+3NcTQcBa6cij0w+xoNNJpSDPUn2c7sYjSOc/uhGXfa1cKf +0o8xwQFUSksi5zAG/TOkmFiqRZz80MT9tomlCZ1zCVt4Q/44Y5CmWh7E/4jav8O Bz+UL/WNTrddUn+ixQlPVCh5ty3rF4mk -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:41 2025 by rpki-client