$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft File: rCjcKlVLTjOaOZyWQrTOAmio37A.mft (raw, json) Hash identifier: JihlBC+B7rVQHDYX+LBC3XylbnO0z2nAvjAhsSjr/fc= Subject key identifier: FA:11:BA:48:B3:30:F7:C0:8B:B3:2C:81:78:9C:55:DA:D0:B1:80:25 Authority key identifier: AC:28:DC:2A:55:4B:4E:33:9A:39:9C:96:42:B4:CE:02:68:A8:DF:B0 Certificate issuer: /CN=A915EA46/serialNumber=AC28DC2A554B4E339A399C9642B4CE0268A8DFB0 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft Manifest number: 4B Signing time: Sat 29 Mar 2025 06:38:13 +0000 Manifest this update: Sat 29 Mar 2025 06:38:12 +0000 Manifest next update: Sat 05 Apr 2025 06:38:12 +0000 Files and hashes: 1: rCjcKlVLTjOaOZyWQrTOAmio37A.crl (hash: HenQnLYF4A/EvXHD8ITnmhMbk8K5n5ao+74z1T0WYAk=) 2: A1E99A4E9C1211EFB233147EC4F9AE02.roa (hash: 3ye2avJW3DGdXLpGllemApGuBs5Hg/Dy3+TFvLk8rE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.crl rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA46 Validity Not Before: Mar 29 06:38:12 2025 GMT Not After : Apr 5 06:38:12 2025 GMT Subject: CN=67e79555-9406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5f:19:d6:33:13:34:0b:e9:54:1e:d7:32:12: 50:79:38:e2:42:3b:77:28:a5:59:ab:97:83:45:3d: bb:a1:16:e4:a5:b8:ed:97:7d:9f:9f:0f:d6:67:e4: 76:c8:78:67:2d:63:3c:f0:d7:c3:42:63:c3:0c:f7: 6b:b2:69:f8:57:f2:ae:e9:6e:86:ed:ae:43:2f:f3: ef:91:e9:e7:67:75:0d:ff:af:9b:16:9b:92:43:2f: 91:4d:76:3f:2e:74:f4:dd:3f:1f:08:6f:a9:a1:77: 9d:50:30:d7:ad:da:45:12:91:ca:87:55:ef:58:d6: 9c:e8:f5:3c:9e:34:ff:25:16:fe:2e:33:7b:25:15: 82:51:45:cd:5e:29:d7:ad:a3:fc:b3:3d:d2:88:89: e0:35:9b:e4:b9:da:54:6e:54:17:29:c6:54:1c:8c: c0:cc:5f:bb:38:65:91:e5:8d:e3:cf:09:41:47:61: 41:3a:d5:cb:79:df:8f:e9:b9:c8:3c:c0:1a:24:bf: d2:8b:6b:79:3f:ab:43:45:5a:f7:93:b0:79:12:19: 32:41:56:de:1e:ee:ab:a8:d6:18:4b:f8:ec:f8:ad: 6e:96:cd:fe:e7:33:3e:61:ba:cf:5f:2d:67:6b:72: 5d:5e:ea:d5:ff:cd:35:49:71:89:48:fe:37:80:da: 1e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:11:BA:48:B3:30:F7:C0:8B:B3:2C:81:78:9C:55:DA:D0:B1:80:25 X509v3 Authority Key Identifier: keyid:AC:28:DC:2A:55:4B:4E:33:9A:39:9C:96:42:B4:CE:02:68:A8:DF:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4a:8e:a6:ba:9f:f2:8c:50:a6:a0:b7:9b:d2:d6:29:58:5f: 94:17:94:be:dc:be:04:57:d6:2f:ce:1c:99:2b:51:11:93:2e: 39:be:7d:5f:f5:a3:b0:f0:cf:70:4c:6d:58:8a:51:33:ac:27: cc:77:64:af:7b:c4:41:4d:e0:10:29:b6:c4:8a:33:2b:d7:33: d0:38:62:ed:27:1d:37:53:47:51:57:24:fe:bf:5c:2b:82:01: 1f:6e:15:b9:3e:6d:46:40:09:61:1c:5e:45:4c:26:7e:1f:ec: 0d:0b:a3:27:c8:93:fb:fb:df:4f:36:a0:fc:3e:3d:c7:06:b8: 1d:ec:a4:d6:a1:6e:66:7e:f9:86:66:4d:25:cd:f9:20:5b:4e: 78:c6:72:2a:d0:87:67:01:b3:db:e9:c6:da:81:68:f6:ee:07: 58:29:01:89:8e:8e:b2:2e:7b:91:57:e5:5c:25:aa:d5:48:42: d4:bc:d7:0b:70:27:05:eb:bf:f1:72:b1:94:fc:90:8d:75:a3: f5:e6:45:e9:30:b6:7a:bc:47:f1:2e:04:23:3b:98:ad:b7:b7: 04:06:f7:d7:d1:03:45:4c:68:81:4c:99:a1:2c:63:93:30:98: 47:60:48:6d:8f:f8:79:6b:e5:dc:75:94:ea:e6:e3:38:f6:92: 98:ad:a3:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RUE0NjExMC8GA1UEBRMoQUMyOERDMkE1NTRCNEUzMzlBMzk5Qzk2NDJCNENFMDI2 OEE4REZCMDAeFw0yNTAzMjkwNjM4MTJaFw0yNTA0MDUwNjM4MTJaMBgxFjAUBgNV BAMTDTY3ZTc5NTU1LTk0MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqXxnWMxM0C+lUHtcyElB5OOJCO3copVmrl4NFPbuhFuSluO2XfZ+fD9Zn5HbI eGctYzzw18NCY8MM92uyafhX8q7pbobtrkMv8++R6edndQ3/r5sWm5JDL5FNdj8u dPTdPx8Ib6mhd51QMNet2kUSkcqHVe9Y1pzo9TyeNP8lFv4uM3slFYJRRc1eKdet o/yzPdKIieA1m+S52lRuVBcpxlQcjMDMX7s4ZZHljePPCUFHYUE61ct534/pucg8 wBokv9KLa3k/q0NFWveTsHkSGTJBVt4e7quo1hhL+Oz4rW6Wzf7nMz5hus9fLWdr cl1e6tX/zTVJcYlI/jeA2h5VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+hG6SLMw 98CLsyyBeJxV2tCxgCUwHwYDVR0jBBgwFoAUrCjcKlVLTjOaOZyWQrTOAmio37Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFQTQ2L0RCREEyQ0M0OUMx MTExRUY5MkZCQTk3Q0M0RjlBRTAyL3JDamNLbFZMVGpPYU9aeVdRclRPQW1pbzM3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckNqY0tsVkxUak9hT1p5V1FyVE9BbWlvMzdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVF QTQ2L0RCREEyQ0M0OUMxMTExRUY5MkZCQTk3Q0M0RjlBRTAyL3JDamNLbFZMVGpP YU9aeVdRclRPQW1pbzM3QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABJKjqa6n/KMUKagt5vS1ilYX5QXlL7cvgRX1i/OHJkrURGTLjm+fV/1 o7Dwz3BMbViKUTOsJ8x3ZK97xEFN4BAptsSKMyvXM9A4Yu0nHTdTR1FXJP6/XCuC AR9uFbk+bUZACWEcXkVMJn4f7A0LoyfIk/v73082oPw+PccGuB3spNahbmZ++YZm TSXN+SBbTnjGcirQh2cBs9vpxtqBaPbuB1gpAYmOjrIue5FX5VwlqtVIQtS81wtw JwXrv/FysZT8kI11o/XmRekwtnq8R/EuBCM7mK23twQG99fRA0VMaIFMmaEsY5Mw mEdgSG2P+Hlr5dx1lOrm4zj2kpito+A= -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:47 2025 by rpki-client