$ rpki-client -vvf rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft File: 3fikyb7AEE4WzOMhqWWpLGYURTA.mft (raw, json) Hash identifier: esbOMwrYUlNHkZAOlL5qi/Aq340B6hc2eTvQDDql2ok= Subject key identifier: B7:18:82:27:6C:1F:45:BB:E7:69:27:07:19:7A:63:52:63:D3:CF:D4 Authority key identifier: DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 Certificate issuer: /CN=A915518E/serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Certificate serial: 0DF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft Manifest number: 0DEA Signing time: Sun 20 Apr 2025 17:44:52 +0000 Manifest this update: Sun 20 Apr 2025 17:44:52 +0000 Manifest next update: Sun 27 Apr 2025 17:44:52 +0000 Files and hashes: 1: 3fikyb7AEE4WzOMhqWWpLGYURTA.crl (hash: nlrr3vwjQC4q2k0L5cQ9TRY0/3PFD/VpomV4ADESt6Q=) 2: 215FAD42B98611E9A053044FC4F9AE02.roa (hash: 1jbkg9LW6RgDfHIeGNZI/aPYd/3lSxoGjvv7ph3A8oA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3572 (0xdf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915518E, serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Validity Not Before: Apr 20 17:44:52 2025 GMT Not After : Apr 27 17:44:52 2025 GMT Subject: CN=68053294-5876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4e:46:da:df:80:1d:3b:1a:e3:de:af:5e:d1: 29:65:f4:cd:7e:d9:02:eb:fa:24:6c:d5:4a:79:df: 3f:44:68:44:e3:02:3a:fc:e0:56:66:21:53:3a:17: 0c:41:ab:e3:d3:42:24:9c:5d:3e:00:7d:62:db:61: bc:36:e2:9e:78:93:04:95:f8:db:23:66:a1:29:57: 50:4f:f6:bf:65:d0:7c:ec:f9:ad:b7:48:8a:ca:50: ae:04:7f:fe:91:de:51:27:d3:19:97:1c:96:81:6b: 24:28:c6:02:82:b5:a3:49:a5:6a:2d:76:c9:b7:56: 9f:33:40:66:f2:9a:c0:86:50:e6:2a:a4:a7:7e:7b: 87:c3:b8:43:0a:de:d8:85:9c:25:8b:5f:0b:fa:cd: c0:ac:b5:62:a8:3b:32:9f:3e:bc:07:61:17:f0:7d: 23:b8:52:4c:2e:6e:5f:e1:1f:02:ba:2f:05:96:75: 88:62:0b:bd:1c:22:d0:88:1b:e8:e2:36:41:6b:3c: 2c:e8:d5:5f:7f:9f:fe:09:66:64:c7:e3:18:0e:fb: b0:80:fc:e1:11:29:59:c0:87:05:f9:2d:6e:eb:c2: 2e:2f:c3:21:50:63:84:f5:cb:32:fa:51:0a:d0:40: aa:23:df:42:2f:ad:20:e3:f4:4d:1e:4d:2e:f7:63: 4c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:18:82:27:6C:1F:45:BB:E7:69:27:07:19:7A:63:52:63:D3:CF:D4 X509v3 Authority Key Identifier: keyid:DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:b5:ae:86:96:67:be:2a:41:99:13:86:28:01:6b:96:79:f9: bb:0e:fb:6e:a5:8a:68:ce:74:18:db:8b:f5:2c:d4:3c:d7:bc: 93:3f:16:f9:26:db:9a:fd:c6:b9:23:2b:8d:03:7d:53:7c:74: 1d:4e:b7:9d:e4:ce:86:07:ef:85:9a:08:62:79:89:85:12:21: 0e:95:db:97:2b:1a:6e:26:49:6e:b1:7b:f3:6f:c5:84:06:60: 3f:e1:30:02:83:8e:11:3b:55:4d:5f:d1:c8:62:50:00:1e:72: 8d:91:5c:25:35:85:0b:0c:a1:29:0f:e6:b0:f2:28:d6:cb:e8: 83:ff:c8:54:17:fe:0a:f8:9c:0a:c7:cf:11:0f:43:2a:fe:85: 4a:dd:40:9a:04:a7:0f:93:99:dc:f9:9b:7e:74:b3:e3:f6:35: c0:d4:e8:e2:86:25:36:b2:fc:f5:a8:62:22:45:6e:7f:77:83: ad:bc:75:bd:88:5f:ab:90:c7:d2:bf:f3:38:55:b4:11:44:a6: f2:ae:ca:f3:ab:90:cb:7f:9b:a1:fc:bb:c4:0f:a4:83:42:e7: 94:85:5f:03:94:df:f4:b7:24:05:80:e4:a0:d0:17:79:92:7d: 33:d2:c8:ff:15:d1:06:e1:54:a5:a0:00:15:d3:5c:c9:31:0e: 91:e8:4d:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxOEUxMTAvBgNVBAUTKERERjhBNEM5QkVDMDEwNEUxNkNDRTMyMUE5NjVBOTJD NjYxNDQ1MzAwHhcNMjUwNDIwMTc0NDUyWhcNMjUwNDI3MTc0NDUyWjAYMRYwFAYD VQQDEw02ODA1MzI5NC01ODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4E5G2t+AHTsa496vXtEpZfTNftkC6/okbNVKed8/RGhE4wI6/OBWZiFTOhcM Qavj00IknF0+AH1i22G8NuKeeJMElfjbI2ahKVdQT/a/ZdB87Pmtt0iKylCuBH/+ kd5RJ9MZlxyWgWskKMYCgrWjSaVqLXbJt1afM0Bm8prAhlDmKqSnfnuHw7hDCt7Y hZwli18L+s3ArLViqDsynz68B2EX8H0juFJMLm5f4R8Cui8FlnWIYgu9HCLQiBvo 4jZBazws6NVff5/+CWZkx+MYDvuwgPzhESlZwIcF+S1u68IuL8MhUGOE9csy+lEK 0ECqI99CL60g4/RNHk0u92NMoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcYgids H0W752knBxl6Y1Jj08/UMB8GA1UdIwQYMBaAFN34pMm+wBBOFszjIallqSxmFEUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE4RS9BNzk2RTkwQUFF MDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVFNFd6T01ocVdXcExHWVVS VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaWt5YjdBRUU0V3pPTWhxV1dwTEdZVVJUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE4RS9BNzk2RTkwQUFFMDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVF NFd6T01ocVdXcExHWVVSVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMta6Glme+KkGZE4YoAWuWefm7DvtupYpoznQY24v1LNQ817yTPxb5 Jtua/ca5IyuNA31TfHQdTred5M6GB++FmghieYmFEiEOlduXKxpuJklusXvzb8WE BmA/4TACg44RO1VNX9HIYlAAHnKNkVwlNYULDKEpD+aw8ijWy+iD/8hUF/4K+JwK x88RD0Mq/oVK3UCaBKcPk5nc+Zt+dLPj9jXA1OjihiU2svz1qGIiRW5/d4OtvHW9 iF+rkMfSv/M4VbQRRKbyrsrzq5DLf5uh/LvED6SDQueUhV8DlN/0tyQFgOSg0Bd5 kn0z0sj/FdEG4VSloAAV01zJMQ6R6E0I -----END CERTIFICATE-----Generated at Tue Apr 22 01:52:34 2025 by rpki-client