$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft File: 7bQ_87hP5VlboMvE9ruHNxPkG7I.mft (raw, json) Hash identifier: BW+F1uFguOrd/UIdlBJALEabka/PZJug6Crr+33W8TI= Subject key identifier: 73:50:45:E3:1B:25:A7:D6:86:F3:C1:F8:B8:72:41:16:2F:9B:A3:3A Authority key identifier: ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 Certificate issuer: /CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Certificate serial: 0682 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft Manifest number: 067B Signing time: Fri 28 Mar 2025 22:35:15 +0000 Manifest this update: Fri 28 Mar 2025 22:35:14 +0000 Manifest next update: Fri 04 Apr 2025 22:35:14 +0000 Files and hashes: 1: 7bQ_87hP5VlboMvE9ruHNxPkG7I.crl (hash: myHbUN3K1K+5DZnrLZABCX9XVAJNOHZtBVml0OB+5Ng=) 2: 44E9156C730811EC89C1CE31C4F9AE02.roa (hash: 3P7zE+Wtx98FiHeFJ5MpJ+Mdyi0A3n8ttsX2hYFO/Pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:35:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1666 (0x682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D85 Validity Not Before: Mar 28 22:35:14 2025 GMT Not After : Apr 4 22:35:14 2025 GMT Subject: CN=67e72422-97ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:ea:7c:0d:1f:9b:41:c8:e1:d2:b3:ad:e0: 12:3d:ff:c3:d7:14:ab:53:cf:ab:a7:2c:ea:c1:00: 03:28:81:e4:e3:6e:cb:2a:a7:1a:49:b5:d5:a6:52: d0:a8:c4:7b:3b:d7:7e:83:e7:c9:a2:e5:1a:09:9e: 90:89:8e:07:4b:10:b1:49:ce:8b:48:80:9c:45:52: 45:8a:76:a4:d8:3f:8a:f6:2b:30:3e:44:12:95:86: 0a:44:92:c7:39:b3:26:96:6d:28:04:d6:fc:bc:f9: b3:8d:5d:5e:2b:59:a2:6b:88:af:6b:c5:2f:b3:fd: 59:a3:7b:f0:6e:40:f4:d2:3f:5e:5c:22:40:cd:10: 09:66:bf:a2:c0:88:32:cb:4f:70:ca:e6:e9:c8:37: 31:a3:26:46:07:e8:0d:a3:dc:30:6f:5d:24:5a:11: cc:cb:84:bd:e4:98:28:07:c4:71:41:31:62:cd:16: f1:51:69:1b:40:f1:d0:24:1e:66:54:cb:d6:93:0f: 96:47:29:e3:5f:01:e1:15:72:c1:cc:62:3e:d9:79: ca:8d:73:27:b8:0a:68:ed:e7:bd:cd:47:65:7e:59: 3d:2d:f9:ee:4e:fa:bb:c5:db:9f:05:74:97:a2:34: 3f:08:9e:78:cb:c0:fa:60:88:5d:3a:a9:7b:84:ff: d4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:50:45:E3:1B:25:A7:D6:86:F3:C1:F8:B8:72:41:16:2F:9B:A3:3A X509v3 Authority Key Identifier: keyid:ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:f8:a9:6d:e9:2d:0d:56:66:99:b2:28:0f:24:e1:2e:21:a6: 14:a5:cb:40:a2:d9:e1:c7:68:4a:04:1e:37:7b:ab:8e:14:15: 66:df:6a:07:f6:5c:6e:47:67:65:8b:80:67:24:b9:59:68:e7: 09:21:1b:fa:89:7d:eb:98:8c:0c:74:35:20:63:17:b0:40:b4: 23:f0:39:93:00:e6:61:e0:49:20:8a:1e:dd:78:74:c8:cc:45: 65:ab:07:26:6a:14:16:a5:be:5d:78:75:fa:21:aa:14:39:a5: 70:c9:70:72:e5:e4:07:e4:95:da:1b:51:9b:bb:56:52:ee:6b: 6c:16:9f:3b:d3:76:ba:cf:7b:9d:38:44:1e:83:3a:f6:d4:8a: f3:6a:68:b9:92:19:a3:19:50:67:23:a3:3d:ce:99:5e:e8:14: 10:fe:f8:41:f4:8d:8f:2d:aa:ce:5b:c3:a4:5b:64:42:4a:a7: bf:2d:2a:a4:b1:5a:ad:d2:3d:58:11:04:22:89:19:67:d8:33: 54:c3:e2:09:65:63:cd:5d:3d:72:95:d6:7e:c3:fb:f5:ce:a7: 19:3e:9d:f2:70:df:31:67:c5:0c:de:1a:4f:cc:69:2b:4d:c7: b1:45:a5:09:02:80:98:50:a0:5c:ee:97:26:11:36:40:c4:5c: 5f:42:f1:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEODUxMTAvBgNVBAUTKEVEQjQzRkYzQjg0RkU1NTk1QkEwQ0JDNEY2QkI4NzM3 MTNFNDFCQjIwHhcNMjUwMzI4MjIzNTE0WhcNMjUwNDA0MjIzNTE0WjAYMRYwFAYD VQQDEw02N2U3MjQyMi05N2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxHqfA0fm0HI4dKzreASPf/D1xSrU8+rpyzqwQADKIHk427LKqcaSbXVplLQ qMR7O9d+g+fJouUaCZ6QiY4HSxCxSc6LSICcRVJFinak2D+K9iswPkQSlYYKRJLH ObMmlm0oBNb8vPmzjV1eK1mia4iva8Uvs/1Zo3vwbkD00j9eXCJAzRAJZr+iwIgy y09wyubpyDcxoyZGB+gNo9wwb10kWhHMy4S95JgoB8RxQTFizRbxUWkbQPHQJB5m VMvWkw+WRynjXwHhFXLBzGI+2XnKjXMnuApo7ee9zUdlflk9LfnuTvq7xdufBXSX ojQ/CJ54y8D6YIhdOql7hP/UwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNQReMb JafWhvPB+LhyQRYvm6M6MB8GA1UdIwQYMBaAFO20P/O4T+VZW6DLxPa7hzcT5Buy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0Q4NS83MUE2RjdENDZD NkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVWbGJvTXZFOXJ1SE54UGtH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdiUV84N2hQNVZsYm9NdkU5cnVITnhQa0c3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0Q4NS83MUE2RjdENDZDNkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVW bGJvTXZFOXJ1SE54UGtHN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn+Klt6S0NVmaZsigPJOEuIaYUpctAotnhx2hKBB43e6uOFBVm32oH 9lxuR2dli4BnJLlZaOcJIRv6iX3rmIwMdDUgYxewQLQj8DmTAOZh4Ekgih7deHTI zEVlqwcmahQWpb5deHX6IaoUOaVwyXBy5eQH5JXaG1Gbu1ZS7mtsFp8703a6z3ud OEQegzr21Irzami5khmjGVBnI6M9zple6BQQ/vhB9I2PLarOW8OkW2RCSqe/LSqk sVqt0j1YEQQiiRln2DNUw+IJZWPNXT1yldZ+w/v1zqcZPp3ycN8xZ8UM3hpPzGkr TcexRaUJAoCYUKBc7pcmETZAxFxfQvFw -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:35 2025 by rpki-client