$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft File: sRd7K0wt-LMG0UpkMAcob4nWnMA.mft (raw, json) Hash identifier: PaaapVcUTVHG6u6l2u8f9r9KMgzgRKQml8ZiPbk6iG8= Subject key identifier: FF:3B:4C:BB:34:F6:EC:2B:CA:7D:28:D5:82:97:3E:97:90:92:1F:82 Authority key identifier: B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 Certificate issuer: /CN=A915DA5A/serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Certificate serial: 0C3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft Manifest number: 0C36 Signing time: Mon 14 Apr 2025 18:18:40 +0000 Manifest this update: Mon 14 Apr 2025 18:18:39 +0000 Manifest next update: Mon 21 Apr 2025 18:18:39 +0000 Files and hashes: 1: sRd7K0wt-LMG0UpkMAcob4nWnMA.crl (hash: a1cpRjNaawS6QBhft8kbpXqwJpI49mmPyQONmCVIXBo=) 2: 719728B803EF11EAB301F66FC4F9AE02.roa (hash: //Y9sRim1JuVKbuAKlrRjn3d7mdHR+lghtxL77FdfiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 18:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3133 (0xc3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA5A, serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Validity Not Before: Apr 14 18:18:39 2025 GMT Not After : Apr 21 18:18:39 2025 GMT Subject: CN=67fd517f-acb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ae:56:14:80:4a:33:31:f7:8b:72:34:4d:76: b1:04:a1:df:59:b4:2d:8c:50:82:d6:c1:1a:8e:16: a1:0c:7d:18:72:6c:73:80:91:95:1d:ac:ec:ec:fb: 8e:1e:e4:a3:94:ff:c6:52:4f:d7:65:ed:6b:d3:5c: a7:25:42:e7:70:66:2d:0e:ad:14:4e:6e:1a:94:7b: e4:ec:27:38:52:9c:a6:e0:da:c2:a4:8b:fd:02:04: 03:61:29:bf:7a:9a:f9:8e:b1:83:c4:f7:41:c1:f9: c5:6e:58:40:fc:04:e3:d5:70:f1:47:3b:1b:dd:f5: f4:44:cf:9f:c9:56:02:b3:93:02:da:48:32:db:d4: 30:39:d1:1d:b5:20:61:97:a8:0f:7e:94:f3:2c:96: db:6c:e5:11:e2:2a:43:f9:06:92:b0:25:e4:9a:c1: 88:fe:e9:52:ac:0a:10:80:fa:a0:a7:de:9c:dd:31: 04:25:94:96:82:c1:8a:9e:76:4c:68:7a:ab:94:95: 54:c0:6d:13:58:55:c8:78:51:47:17:16:b8:fe:a1: 1e:bb:3f:2a:ad:4d:86:da:cf:ac:54:a5:a9:c4:03: ce:d5:8c:28:9f:c0:c8:35:21:04:0a:e3:54:62:69: 43:58:dd:29:6a:1a:e9:58:0d:98:b1:80:6d:76:f4: 5c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:3B:4C:BB:34:F6:EC:2B:CA:7D:28:D5:82:97:3E:97:90:92:1F:82 X509v3 Authority Key Identifier: keyid:B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:a0:d1:f5:bf:95:d4:d1:8d:90:66:91:f3:5a:d4:01:1f:63: a2:70:8a:9e:f1:a3:90:4e:12:ed:c3:6a:f3:a8:f6:66:d2:27: a8:9e:44:67:8c:3b:35:d3:92:94:fd:9d:24:6b:20:1c:75:d7: b0:ae:b9:d6:4b:9e:51:09:12:fc:ee:f9:d4:c7:c2:78:26:32: 2e:7c:56:0b:03:51:47:91:40:6f:17:ec:b9:c2:ec:9a:7d:3b: ea:fa:e7:22:72:e3:45:0f:9c:fc:a2:8b:57:cc:6d:f2:f5:e2: b7:1e:1a:9a:60:f5:61:f3:d0:b5:a2:f6:ec:72:48:06:c7:a4: 14:72:c0:8f:29:12:b1:44:53:0c:9a:7f:a8:ec:63:3e:ee:64: ff:4a:2a:dd:48:2e:90:4b:60:7a:55:5e:57:38:76:2a:dc:ee: 97:72:86:c1:26:f8:5c:07:aa:5b:2a:e6:95:20:9f:4c:e9:ab: 22:e2:e4:e8:a1:52:23:dc:96:97:d0:71:2f:f6:c6:de:eb:1a: f4:e4:f3:62:ea:bb:82:bb:45:5f:52:b6:fd:6c:f1:51:b1:e7: 83:6c:23:32:25:0b:c8:8d:96:ca:c5:3b:9b:83:8f:04:31:ef: 30:b4:af:4e:15:1c:a4:b8:8d:44:9a:1a:a2:8d:ed:99:5c:45: ac:48:0c:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNUExMTAvBgNVBAUTKEIxMTc3QjJCNEMyREY4QjMwNkQxNEE2NDMwMDcyODZG ODlENjlDQzAwHhcNMjUwNDE0MTgxODM5WhcNMjUwNDIxMTgxODM5WjAYMRYwFAYD VQQDEw02N2ZkNTE3Zi1hY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApq5WFIBKMzH3i3I0TXaxBKHfWbQtjFCC1sEajhahDH0YcmxzgJGVHazs7PuO HuSjlP/GUk/XZe1r01ynJULncGYtDq0UTm4alHvk7Cc4Upym4NrCpIv9AgQDYSm/ epr5jrGDxPdBwfnFblhA/ATj1XDxRzsb3fX0RM+fyVYCs5MC2kgy29QwOdEdtSBh l6gPfpTzLJbbbOUR4ipD+QaSsCXkmsGI/ulSrAoQgPqgp96c3TEEJZSWgsGKnnZM aHqrlJVUwG0TWFXIeFFHFxa4/qEeuz8qrU2G2s+sVKWpxAPO1Ywon8DINSEECuNU YmlDWN0pahrpWA2YsYBtdvRcuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP87TLs0 9uwryn0o1YKXPpeQkh+CMB8GA1UdIwQYMBaAFLEXeytMLfizBtFKZDAHKG+J1pzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE1QS80NEU3NzBCMjAz RUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1MTUcwVXBrTUFjb2I0bldu TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NSZDdLMHd0LUxNRzBVcGtNQWNvYjRuV25NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REE1QS80NEU3NzBCMjAzRUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1M TUcwVXBrTUFjb2I0blduTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8oNH1v5XU0Y2QZpHzWtQBH2OicIqe8aOQThLtw2rzqPZm0ieonkRn jDs105KU/Z0kayAcddewrrnWS55RCRL87vnUx8J4JjIufFYLA1FHkUBvF+y5wuya fTvq+ucicuNFD5z8ootXzG3y9eK3HhqaYPVh89C1ovbsckgGx6QUcsCPKRKxRFMM mn+o7GM+7mT/SirdSC6QS2B6VV5XOHYq3O6XcobBJvhcB6pbKuaVIJ9M6asi4uTo oVIj3JaX0HEv9sbe6xr05PNi6ruCu0VfUrb9bPFRseeDbCMyJQvIjZbKxTubg48E Me8wtK9OFRykuI1Emhqije2ZXEWsSAx5 -----END CERTIFICATE-----Generated at Wed Apr 16 17:09:12 2025 by rpki-client