$ rpki-client -vvf rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft File: 0N7PEI0mgBt8l-NJAprx_PkKhV4.mft (raw, json) Hash identifier: Oe2EE8GeRnEvf1yLTuGoM2pz0Ox5ruQQF0LKYrP/+M4= Subject key identifier: 89:B6:DE:1A:D6:29:56:5A:9E:66:AE:A5:4A:17:5F:CC:7B:D1:23:F0 Authority key identifier: D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E Certificate issuer: /CN=A915408A/serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft Manifest number: A7 Signing time: Thu 03 Apr 2025 05:16:41 +0000 Manifest this update: Thu 03 Apr 2025 05:16:41 +0000 Manifest next update: Thu 10 Apr 2025 05:16:41 +0000 Files and hashes: 1: 0N7PEI0mgBt8l-NJAprx_PkKhV4.crl (hash: WZw5hnA6VC8uY5ImmeTvFahFk4BR67KgdJhSUJdS3qo=) 2: 421FF25E18AD11EF99EAA661C4F9AE02.roa (hash: nArjp1EJ9Qh1GSnet/WM1j0sEl6S9LUtwKPDMLMbAas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915408A Validity Not Before: Apr 3 05:16:41 2025 GMT Not After : Apr 10 05:16:41 2025 GMT Subject: CN=67ee19b9-0621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d6:1d:7f:80:cb:ae:c0:f7:7c:e2:81:bd:dd: be:40:bc:c4:80:e0:f3:ea:69:c0:5b:fa:92:4a:37: 49:99:44:1a:34:d3:8e:31:07:f8:63:d1:9b:3a:cc: 63:8f:5f:61:ed:ec:f0:9b:57:30:5b:0d:75:31:37: f0:94:da:24:80:db:4e:c4:d9:44:89:82:ea:22:74: ef:ae:a9:d7:aa:ec:a4:cb:d3:85:82:57:08:83:c9: 48:fd:21:ab:5d:4a:60:26:50:b6:77:cc:8f:db:97: c3:ed:b9:71:ab:30:c4:8c:1a:39:dd:93:7c:ed:0e: 5a:9b:c1:ff:eb:55:20:d9:92:57:31:ff:d5:2f:a8: 97:fc:6b:ad:1b:c6:ac:38:71:c2:d8:e8:5f:11:0a: 75:35:85:55:cb:70:ed:87:2a:ac:a2:ee:eb:8e:90: 7c:70:3d:c4:ad:c0:33:e2:0a:a4:4a:64:27:87:10: c4:ce:c3:d2:cf:63:c2:b0:fd:cc:a8:fd:11:8f:d3: 9e:5d:0a:dd:50:3a:75:2c:72:86:ba:b8:3e:9e:58: 48:b7:43:5a:29:ed:cc:60:ae:c0:a6:e8:92:3d:a7: eb:d7:b6:15:b5:2e:c6:65:db:40:29:17:39:9d:16: 8c:1d:e2:8d:7c:26:e7:96:c3:8c:0b:6e:b5:5f:80: be:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B6:DE:1A:D6:29:56:5A:9E:66:AE:A5:4A:17:5F:CC:7B:D1:23:F0 X509v3 Authority Key Identifier: keyid:D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ff:8e:c3:59:2f:af:0e:09:24:a8:98:13:aa:fa:98:12:70: 54:7c:11:c1:67:f5:78:b0:dd:37:9f:bd:77:3b:16:20:8d:bc: f8:54:be:1d:ca:c9:b3:4c:de:92:41:58:18:ab:71:14:2b:1c: bb:09:9e:7e:8c:08:04:ad:2d:fc:35:3e:81:88:f1:19:b9:bb: af:b7:1c:1e:86:bf:9b:fe:52:d0:bd:e3:5e:64:25:97:f2:cd: 0c:35:5f:cf:f9:25:ce:bf:bf:fa:e3:ea:b5:87:df:77:33:db: 94:09:45:4c:1d:2d:68:be:7a:4c:7d:e9:c2:1e:6f:67:de:69: 06:90:64:33:bc:26:a4:c5:0a:1a:3d:54:dd:11:74:1d:f9:ee: 86:44:32:46:2c:3d:8a:ac:1e:df:c7:59:5d:3a:fe:16:2f:22: 04:96:25:ec:69:94:02:47:90:3c:f9:c8:97:08:63:da:27:e7: 10:09:aa:f8:fa:41:7f:d5:e4:82:9e:36:a1:be:fd:ff:c7:03: 1d:0b:7e:d7:f2:1c:67:16:e3:9c:7a:c6:01:a6:7f:04:b5:77: d5:4e:fc:5c:a6:7e:de:6d:4b:e3:a9:de:cb:b2:51:a7:10:13: bf:5a:81:24:62:56:8a:f8:29:3b:5c:8b:78:37:df:6b:04:dc: 2a:3b:13:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQwOEExMTAvBgNVBAUTKEQwREVDRjEwOEQyNjgwMUI3Qzk3RTM0OTAyOUFGMUZD RjkwQTg1NUUwHhcNMjUwNDAzMDUxNjQxWhcNMjUwNDEwMDUxNjQxWjAYMRYwFAYD VQQDEw02N2VlMTliOS0wNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9Ydf4DLrsD3fOKBvd2+QLzEgODz6mnAW/qSSjdJmUQaNNOOMQf4Y9GbOsxj j19h7ezwm1cwWw11MTfwlNokgNtOxNlEiYLqInTvrqnXquyky9OFglcIg8lI/SGr XUpgJlC2d8yP25fD7blxqzDEjBo53ZN87Q5am8H/61Ug2ZJXMf/VL6iX/GutG8as OHHC2OhfEQp1NYVVy3Dthyqsou7rjpB8cD3ErcAz4gqkSmQnhxDEzsPSz2PCsP3M qP0Rj9OeXQrdUDp1LHKGurg+nlhIt0NaKe3MYK7ApuiSPafr17YVtS7GZdtAKRc5 nRaMHeKNfCbnlsOMC261X4C++wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIm23hrW KVZanmaupUoXX8x70SPwMB8GA1UdIwQYMBaAFNDezxCNJoAbfJfjSQKa8fz5CoVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDA4QS8xODg0NUY2QzE4 QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdCdDhsLU5KQXByeF9Qa0to VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBON1BFSTBtZ0J0OGwtTkpBcHJ4X1BrS2hWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDA4QS8xODg0NUY2QzE4QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdC dDhsLU5KQXByeF9Qa0toVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO/47DWS+vDgkkqJgTqvqYEnBUfBHBZ/V4sN03n713OxYgjbz4VL4d ysmzTN6SQVgYq3EUKxy7CZ5+jAgErS38NT6BiPEZubuvtxwehr+b/lLQveNeZCWX 8s0MNV/P+SXOv7/64+q1h993M9uUCUVMHS1ovnpMfenCHm9n3mkGkGQzvCakxQoa PVTdEXQd+e6GRDJGLD2KrB7fx1ldOv4WLyIEliXsaZQCR5A8+ciXCGPaJ+cQCar4 +kF/1eSCnjahvv3/xwMdC37X8hxnFuOcesYBpn8EtXfVTvxcpn7ebUvjqd7LslGn EBO/WoEkYlaK+Ck7XIt4N99rBNwqOxO7 -----END CERTIFICATE-----Generated at Fri Apr 4 22:30:07 2025 by rpki-client