$ rpki-client -vvf rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft File: 1FgFH22pUil0dbSEvd0Pu-NJDnA.mft (raw, json) Hash identifier: gReAG9GGYxx3fvvB5Rjv350e5uS0G9OymHltzxt/OME= Subject key identifier: 89:A3:6F:52:DB:10:97:ED:4B:DF:81:7D:B7:91:EE:B8:AA:8F:07:0A Authority key identifier: D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70 Certificate issuer: /CN=A915D85E/serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70 Certificate serial: 0718 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft Manifest number: 0705 Signing time: Fri 28 Mar 2025 22:14:42 +0000 Manifest this update: Fri 28 Mar 2025 22:14:42 +0000 Manifest next update: Fri 04 Apr 2025 22:14:42 +0000 Files and hashes: 1: 1FgFH22pUil0dbSEvd0Pu-NJDnA.crl (hash: 1G5dNUnCo0m5moK+tXI8445+3hXQoVMQKmBS7PNyYkk=) 2: 9B5A7020522911ED9136DF2AC4F9AE02.roa (hash: U4a8o1KXqQZowZ9aJ6tXOocb6xkGyoj65dTRVzeEvrE=) 3: C56E8DD2724511EEBCA61115C4F9AE02.roa (hash: 09bFX2dGjr3s64xPntk+AHhbgnnoKQa9dhQxXv7NDRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.crl rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D85E Validity Not Before: Mar 28 22:14:42 2025 GMT Not After : Apr 4 22:14:42 2025 GMT Subject: CN=67e71f52-b8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:96:37:43:3d:1b:ac:21:30:43:4f:f5:79:74: 29:d3:9c:09:38:07:a2:62:53:86:14:10:b9:a1:a0: df:71:df:5e:27:e0:1d:a5:59:4c:98:08:2b:d8:5d: 65:93:16:36:77:73:cc:57:a5:0d:6d:d7:af:39:84: dc:95:63:3b:84:85:18:4f:f2:76:54:13:ef:a2:0c: dd:9a:97:fb:5e:45:8d:82:4c:2d:51:96:67:0b:50: f8:66:fa:38:2a:cb:f8:ad:46:b1:d5:4a:eb:f6:f1: ff:c0:78:50:5d:ab:39:bb:f6:ef:73:21:0e:30:e2: 4d:0e:04:88:7d:4f:dc:5d:93:ab:2f:72:45:df:db: 81:56:8d:47:47:40:ef:54:cf:2c:00:89:a1:9d:20: 94:27:7d:64:ad:fa:32:c1:a7:1f:08:69:a4:9b:6b: 56:06:28:24:d4:8a:bf:77:81:d9:0e:6e:22:4f:de: 11:66:91:de:11:5e:b2:f8:1c:da:52:04:42:7d:ed: d8:50:82:71:cd:1d:dd:ec:4a:32:08:d2:46:c6:2c: 6a:33:4d:8d:f9:e8:b4:de:58:9f:b3:2d:f5:d7:e2: 20:6e:70:3c:8a:17:f1:46:5a:c5:09:56:66:a1:5e: fe:04:c3:b2:62:69:8a:22:f0:99:81:fa:12:f4:ac: 80:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A3:6F:52:DB:10:97:ED:4B:DF:81:7D:B7:91:EE:B8:AA:8F:07:0A X509v3 Authority Key Identifier: keyid:D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:19:6a:79:de:e1:f1:b9:aa:1a:19:e4:11:2c:57:a9:f1:02: 7f:87:13:01:5c:79:b4:d1:7c:08:bc:52:9e:79:88:99:f1:dd: 8e:ab:81:2c:fb:b9:10:2f:a4:9a:2f:74:c5:5d:43:3b:ca:48: 91:51:95:03:43:5b:b0:8a:74:78:1a:b5:f0:3e:4a:37:9b:ed: 6e:b2:e2:06:ee:35:24:3a:ed:34:ba:33:0f:af:2f:59:ca:1b: c5:da:91:97:6b:95:0e:15:79:d0:93:8b:47:60:9e:7f:f3:83: 7f:99:91:9f:74:88:81:e0:1a:ba:4f:8b:8d:29:a9:ec:e1:51: bb:a4:b5:13:2a:fe:56:ff:25:7e:9c:61:f5:b5:b1:c7:be:a7: 11:6a:81:d0:43:f5:08:00:22:dd:6a:51:a1:e2:02:cd:83:1f: a1:4b:a1:4f:e4:54:87:63:c4:3d:43:eb:cf:5b:ea:c3:df:10: ab:22:67:b2:84:20:85:07:bb:c9:36:d7:4f:a2:07:b7:b1:11: 30:d2:f4:5d:58:58:76:42:ac:5d:ec:97:04:53:89:9e:72:6f: 9d:a4:8a:cb:37:72:3c:c8:2c:f7:ac:60:da:4f:de:e7:2a:c3: e6:cf:cd:d7:4f:b0:c4:6a:38:88:8b:f1:9a:18:95:a8:5a:1c: dc:37:81:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ4NUUxMTAvBgNVBAUTKEQ0NTgwNTFGNkRBOTUyMjk3NDc1QjQ4NEJEREQwRkJC RTM0OTBFNzAwHhcNMjUwMzI4MjIxNDQyWhcNMjUwNDA0MjIxNDQyWjAYMRYwFAYD VQQDEw02N2U3MWY1Mi1iOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JY3Qz0brCEwQ0/1eXQp05wJOAeiYlOGFBC5oaDfcd9eJ+AdpVlMmAgr2F1l kxY2d3PMV6UNbdevOYTclWM7hIUYT/J2VBPvogzdmpf7XkWNgkwtUZZnC1D4Zvo4 Ksv4rUax1Urr9vH/wHhQXas5u/bvcyEOMOJNDgSIfU/cXZOrL3JF39uBVo1HR0Dv VM8sAImhnSCUJ31krfoywacfCGmkm2tWBigk1Iq/d4HZDm4iT94RZpHeEV6y+Bza UgRCfe3YUIJxzR3d7EoyCNJGxixqM02N+ei03lifsy311+IgbnA8ihfxRlrFCVZm oV7+BMOyYmmKIvCZgfoS9KyAuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImjb1Lb EJftS9+BfbeR7riqjwcKMB8GA1UdIwQYMBaAFNRYBR9tqVIpdHW0hL3dD7vjSQ5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDg1RS83M0VGOTA5QzNC QjUxMUVCQjREMTM3N0RDNEY5QUUwMi8xRmdGSDIycFVpbDBkYlNFdmQwUHUtTkpE bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGZ0ZIMjJwVWlsMGRiU0V2ZDBQdS1OSkRuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDg1RS83M0VGOTA5QzNCQjUxMUVCQjREMTM3N0RDNEY5QUUwMi8xRmdGSDIycFVp bDBkYlNFdmQwUHUtTkpEbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8GWp53uHxuaoaGeQRLFep8QJ/hxMBXHm00XwIvFKeeYiZ8d2Oq4Es +7kQL6SaL3TFXUM7ykiRUZUDQ1uwinR4GrXwPko3m+1usuIG7jUkOu00ujMPry9Z yhvF2pGXa5UOFXnQk4tHYJ5/84N/mZGfdIiB4Bq6T4uNKans4VG7pLUTKv5W/yV+ nGH1tbHHvqcRaoHQQ/UIACLdalGh4gLNgx+hS6FP5FSHY8Q9Q+vPW+rD3xCrImey hCCFB7vJNtdPoge3sREw0vRdWFh2Qqxd7JcEU4mecm+dpIrLN3I8yCz3rGDaT97n KsPmz83XT7DEajiIi/GaGJWoWhzcN4Hd -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:44 2025 by rpki-client