$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: n5jxTO4qALm3YME0ZSQpIbr/3J+mWBkz5sR/KUE5o1A= Subject key identifier: 05:40:4C:F3:0F:EF:07:BF:D0:C8:D4:AC:5A:4F:D2:BB:93:82:59:1D Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0FA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0F99 Signing time: Tue 08 Apr 2025 17:33:01 +0000 Manifest this update: Tue 08 Apr 2025 17:33:01 +0000 Manifest next update: Tue 15 Apr 2025 17:33:01 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: 4uS99pgbnbv5JeS3XqT/43niPCuKKkm0YyEG754e0Oc=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 17:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4005 (0xfa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2 Validity Not Before: Apr 8 17:33:01 2025 GMT Not After : Apr 15 17:33:01 2025 GMT Subject: CN=67f55dcd-c21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:0d:d3:5e:16:31:a8:84:d1:fc:4d:52:65:d2: 09:10:4c:34:0b:94:ab:2c:e3:77:b4:1a:48:58:8d: 55:5e:ce:34:60:fb:9d:e8:46:a3:3b:93:13:60:df: 68:89:1d:1d:5d:e5:34:85:3e:56:1a:07:41:92:c9: 23:63:d2:d6:96:cc:fd:c2:19:38:ab:15:62:fd:87: 53:34:bc:63:aa:7f:d1:63:d5:cd:f4:f0:d3:18:a2: 17:7c:a2:79:81:03:de:cb:90:da:bc:d1:43:08:1f: 18:a8:f2:55:fc:55:13:6f:55:53:c6:a9:67:32:c1: e8:4a:8a:9b:d1:a9:00:92:cf:97:27:07:3c:b9:95: 86:59:29:75:ea:34:00:b0:e0:a2:e9:14:55:a4:b3: 02:3d:a6:a7:cb:d5:8f:aa:52:b8:2d:f5:98:0c:9b: 2d:8e:a6:09:50:40:55:f7:53:9d:fc:00:28:f5:13: e9:99:4a:a9:02:c2:1b:53:7e:15:bf:b4:41:09:5b: 98:cf:74:ba:65:0f:c8:5d:e2:de:de:71:05:6b:f1: 66:4e:30:f9:96:fc:7e:e2:e3:d1:ca:69:17:1f:68: 21:88:79:e6:6e:53:48:aa:27:77:e7:d9:8b:fa:02: 0e:67:6f:27:0c:4f:4d:8b:95:29:c8:da:08:42:12: 1e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:40:4C:F3:0F:EF:07:BF:D0:C8:D4:AC:5A:4F:D2:BB:93:82:59:1D X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:8e:dd:ef:b5:4f:e3:20:05:61:ad:bd:5d:7f:3c:f0:b8:4e: 27:52:71:62:15:8b:87:ba:9a:ff:86:33:be:63:9b:fd:b3:86: 6b:56:c3:b4:a7:a9:f5:5b:9c:7c:16:5d:11:ee:41:17:d8:a4: f3:98:35:12:5b:f1:0a:03:d5:c4:51:e1:da:22:87:6c:8e:7f: c6:bd:53:c6:7a:b5:a0:38:75:51:2d:6a:9d:24:ee:dc:c3:1c: a2:4a:fe:a8:ad:73:af:09:f3:03:cf:36:73:20:70:f9:1e:9a: b3:9a:b0:64:a7:1e:c8:cc:51:62:69:88:32:dd:ed:b1:ad:87: 7f:0f:de:2b:46:fd:b5:47:3d:b2:3b:82:bb:eb:37:fd:6a:e1: 4d:75:8a:4e:bf:18:84:82:d3:10:49:d2:75:13:a7:a6:4b:a4: c2:da:40:7a:8a:09:9a:9b:56:20:a8:03:9b:06:e3:92:4c:87: d6:b6:5e:51:54:2a:8b:b1:55:b6:ef:af:b2:27:f5:17:a4:6c: f4:f5:dd:48:0e:05:7f:d4:b6:ca:32:0a:99:9f:f0:c2:a2:ab: 16:07:9a:3a:c7:ed:56:2c:f4:f2:59:02:ba:66:a9:9d:89:bf: cf:b7:79:13:cf:6d:1d:dd:84:89:1e:57:30:f5:80:11:17:c1: ba:f0:58:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwNDA4MTczMzAxWhcNMjUwNDE1MTczMzAxWjAYMRYwFAYD VQQDEw02N2Y1NWRjZC1jMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Q3TXhYxqITR/E1SZdIJEEw0C5SrLON3tBpIWI1VXs40YPud6EajO5MTYN9o iR0dXeU0hT5WGgdBkskjY9LWlsz9whk4qxVi/YdTNLxjqn/RY9XN9PDTGKIXfKJ5 gQPey5DavNFDCB8YqPJV/FUTb1VTxqlnMsHoSoqb0akAks+XJwc8uZWGWSl16jQA sOCi6RRVpLMCPaany9WPqlK4LfWYDJstjqYJUEBV91Od/AAo9RPpmUqpAsIbU34V v7RBCVuYz3S6ZQ/IXeLe3nEFa/FmTjD5lvx+4uPRymkXH2ghiHnmblNIqid359mL +gIOZ28nDE9Ni5UpyNoIQhIe4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVATPMP 7we/0MjUrFpP0ruTglkdMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEjt3vtU/jIAVhrb1dfzzwuE4nUnFiFYuHupr/hjO+Y5v9s4ZrVsO0 p6n1W5x8Fl0R7kEX2KTzmDUSW/EKA9XEUeHaIodsjn/GvVPGerWgOHVRLWqdJO7c wxyiSv6orXOvCfMDzzZzIHD5HpqzmrBkpx7IzFFiaYgy3e2xrYd/D94rRv21Rz2y O4K76zf9auFNdYpOvxiEgtMQSdJ1E6emS6TC2kB6igmam1YgqAObBuOSTIfWtl5R VCqLsVW276+yJ/UXpGz09d1IDgV/1LbKMgqZn/DCoqsWB5o6x+1WLPTyWQK6Zqmd ib/Pt3kTz20d3YSJHlcw9YARF8G68Fhx -----END CERTIFICATE-----Generated at Thu Apr 10 18:56:13 2025 by rpki-client