$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft File: aZoPjRWjT1mVbLSADGxEBNwOvV0.mft (raw, json) Hash identifier: W9JZMe2/8+MGn+9gqL2PcV2wqd5zJ9QAaxOlQBHlCB8= Subject key identifier: 9D:91:F5:7B:37:8A:0D:2B:D6:43:D2:20:BF:23:C1:11:88:35:7E:96 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 3496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft Manifest number: 3479 Signing time: Sat 12 Apr 2025 15:17:10 +0000 Manifest this update: Sat 12 Apr 2025 15:17:10 +0000 Manifest next update: Sat 19 Apr 2025 15:17:10 +0000 Files and hashes: 1: aZoPjRWjT1mVbLSADGxEBNwOvV0.crl (hash: VmD7xPZ88QeeQ+vZHfK1O3vpSH02X3Gjr42itwGYHs0=) 2: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (hash: H9fsyURTb8qh5DVJOvXZinGpj/nUZcubrPdBUX+wonM=) 3: 6A9E6940B10511E591A3E484C4F9AE02.roa (hash: jaRSKEufT55PHq8OPoLG/qgSfjEXVPXjl00275Oa/lI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE, serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Apr 12 15:17:10 2025 GMT Not After : Apr 19 15:17:10 2025 GMT Subject: CN=67fa83f6-65fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cb:ce:fc:ca:ad:44:a3:52:90:30:47:9a:36: b9:20:4c:61:8b:48:ed:0e:fb:51:80:e9:2a:5a:ad: b6:f4:33:a9:d3:1f:19:de:3e:4b:5e:3d:89:9c:3e: fc:9e:b6:7a:a2:7b:b7:03:d7:cf:b6:ce:1b:65:88: 04:f4:a0:e9:4e:75:1a:ce:83:c6:fa:61:bf:8c:19: 30:6a:78:75:b2:db:ce:a3:49:b7:31:bb:69:ac:e2: be:d0:e6:3c:ca:ce:8f:45:4b:79:a9:1d:09:ab:5f: 7d:44:1e:fb:e0:88:a2:85:2b:09:f7:ff:23:79:b6: c6:64:7c:d6:15:f3:cd:71:97:df:c5:be:3f:be:e3: 91:03:8a:af:cb:c6:be:78:7e:3f:ff:6e:6b:2d:d8: c8:ed:c3:5f:3e:dc:03:a0:3e:36:9e:0d:0f:d6:d8: b1:6c:98:48:7f:89:0d:2e:37:f0:90:1a:b2:c0:7e: 94:32:ce:a2:fb:d3:17:e9:ed:b5:64:56:16:e1:97: 2c:f4:98:d3:14:3f:1f:26:76:74:5b:47:7b:7a:c6: 7d:7f:2e:42:50:98:97:38:cd:5e:dc:84:a5:ae:77: 83:2c:6f:48:c3:22:1e:4d:fa:6e:35:9c:f9:64:b1: 85:50:09:d0:b1:62:80:7a:ad:ff:a5:5d:6d:e4:8e: 48:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:91:F5:7B:37:8A:0D:2B:D6:43:D2:20:BF:23:C1:11:88:35:7E:96 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:e7:e6:f7:00:a8:1e:d1:fc:fd:f8:f5:e9:19:ae:59:00:d5: c9:c4:89:9f:89:b5:db:af:8f:c0:ab:08:78:e6:45:ae:61:b4: e8:e4:f4:5d:79:5a:58:e1:17:72:11:3e:c4:aa:bf:7d:54:61: 27:ad:d3:c5:d6:12:a6:6f:b0:76:f4:39:22:15:0a:56:5a:3b: 85:22:1a:4e:1f:a4:80:5b:cf:a7:bc:e7:e0:5a:cd:0d:e1:c8: 93:ee:8e:b9:b1:9e:3b:26:b0:f1:a7:c0:79:ea:79:aa:40:6e: bd:8b:c1:22:78:ee:7f:01:aa:77:e0:12:31:be:7c:58:ab:26: ce:e0:2c:4e:bb:ee:ca:25:c4:43:f6:f6:b4:50:3c:cf:a8:82: 18:d0:59:10:17:7b:54:20:58:35:e6:96:87:71:4f:6f:b3:d0: 12:d6:da:be:7c:e5:b7:a9:57:16:ae:19:36:de:5d:4d:cf:45: c9:42:b6:f5:53:07:25:30:59:3f:ac:21:52:0e:2c:91:48:39: 2f:4a:88:82:6c:73:19:25:f5:08:58:d7:bc:d4:71:59:9b:b8: 2a:a0:3b:f1:a9:e4:83:96:e3:a2:df:37:25:fa:ea:8c:2d:42: c6:60:1f:95:c2:c6:b2:0e:43:2a:ad:b4:d2:15:e6:85:18:42: fb:c3:e5:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjUwNDEyMTUxNzEwWhcNMjUwNDE5MTUxNzEwWjAYMRYwFAYD VQQDEw02N2ZhODNmNi02NWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcvO/MqtRKNSkDBHmja5IExhi0jtDvtRgOkqWq229DOp0x8Z3j5LXj2JnD78 nrZ6onu3A9fPts4bZYgE9KDpTnUazoPG+mG/jBkwanh1stvOo0m3MbtprOK+0OY8 ys6PRUt5qR0Jq199RB774IiihSsJ9/8jebbGZHzWFfPNcZffxb4/vuORA4qvy8a+ eH4//25rLdjI7cNfPtwDoD42ng0P1tixbJhIf4kNLjfwkBqywH6UMs6i+9MX6e21 ZFYW4Zcs9JjTFD8fJnZ0W0d7esZ9fy5CUJiXOM1e3ISlrneDLG9IwyIeTfpuNZz5 ZLGFUAnQsWKAeq3/pV1t5I5IsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2R9Xs3 ig0r1kPSIL8jwRGINX6WMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFGRS9EMTE4QUFCQTFEQUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQx bVZiTFNBREd4RUJOd092VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+5+b3AKge0fz9+PXpGa5ZANXJxImfibXbr4/Aqwh45kWuYbTo5PRd eVpY4RdyET7Eqr99VGEnrdPF1hKmb7B29DkiFQpWWjuFIhpOH6SAW8+nvOfgWs0N 4ciT7o65sZ47JrDxp8B56nmqQG69i8EieO5/Aap34BIxvnxYqybO4CxOu+7KJcRD 9va0UDzPqIIY0FkQF3tUIFg15paHcU9vs9AS1tq+fOW3qVcWrhk23l1Nz0XJQrb1 UwclMFk/rCFSDiyRSDkvSoiCbHMZJfUIWNe81HFZm7gqoDvxqeSDluOi3zcl+uqM LULGYB+VwsayDkMqrbTSFeaFGEL7w+Vs -----END CERTIFICATE-----Generated at Sat Apr 12 18:59:45 2025 by rpki-client