$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: mbLxYztTPf6iWdd7G5GTSUUFIo+uq3h/nY3LjpFo+i0= Subject key identifier: 3B:40:B7:D1:F4:C4:35:CE:AD:A9:43:39:02:CB:22:A2:01:A7:A0:51 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: EC Signing time: Mon 07 Apr 2025 04:22:22 +0000 Manifest this update: Mon 07 Apr 2025 04:22:22 +0000 Manifest next update: Mon 14 Apr 2025 04:22:22 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: 5Q7ItHJh9trwfujCE/5St4uMwhsaosZBcsG1dZNou/k=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: rp2KgXfSmtmZKYQY55JUof6yTTeOYpzuHhK8PCwpS0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 04:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF Validity Not Before: Apr 7 04:22:22 2025 GMT Not After : Apr 14 04:22:22 2025 GMT Subject: CN=67f352fe-38fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:c9:8f:2c:23:6a:35:36:f2:48:bd:26:a7: cc:4a:9e:03:5e:0e:62:6c:82:10:15:f6:21:50:68: 0e:3b:e7:71:b9:0d:73:c2:dc:57:81:56:92:54:21: e9:f7:36:a1:46:54:18:e6:e5:ba:e7:0e:bd:42:15: 5f:11:a6:98:5a:b8:45:98:24:8c:8a:47:87:29:ec: a6:6b:dd:f8:ef:c2:c0:85:90:e9:c1:9b:0b:b9:a4: 79:ae:d7:ee:61:6a:e0:43:a9:c6:0b:31:ad:dc:56: 27:41:2c:95:03:b2:f9:24:55:5b:26:3e:28:47:1c: 62:af:e3:1d:4e:db:e1:9d:b0:99:05:0a:de:8a:84: 67:62:9d:04:0a:3b:15:41:63:15:99:b5:b8:0f:99: 6f:d9:2d:b2:44:7a:cf:92:4e:4b:ee:ee:c6:e1:8c: 2b:87:1f:3f:a2:82:be:1b:d4:67:cb:22:d3:84:9a: 62:f7:e8:43:be:89:06:ec:eb:29:43:1b:7b:dd:e7: 33:18:4a:1a:c9:7a:23:e5:43:fc:45:1d:d0:c6:2f: e0:2e:e7:f1:47:d7:78:21:ed:72:1d:12:dd:2e:3c: 68:53:77:c6:9f:5b:63:89:c3:cb:df:bf:fe:d5:f6: d3:ec:e6:8f:8c:ab:46:0a:de:39:0e:fc:d7:80:80: dc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:40:B7:D1:F4:C4:35:CE:AD:A9:43:39:02:CB:22:A2:01:A7:A0:51 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:7a:70:e7:c5:d0:50:46:9b:17:c1:bf:76:66:1d:5c:8e:1c: d3:17:77:65:79:a8:2f:d1:f9:7d:ec:cd:ea:33:0c:f7:9f:7d: 87:da:27:53:8f:43:85:c2:b2:24:af:fc:84:d7:24:3f:8c:16: 12:e3:bc:94:62:9c:1e:00:25:7b:1e:62:0e:f0:2b:52:79:d8: 8d:64:7e:83:05:23:e7:27:65:a5:d6:44:27:c3:62:6e:0b:46: 4d:b7:13:09:5f:b6:5b:a8:f6:73:be:b4:3c:d8:74:35:94:ea: 21:6e:84:1c:20:cc:ad:49:e1:65:8d:8b:8a:c9:da:7d:bf:b8: 46:51:9e:06:88:54:64:76:0e:7a:a9:03:ce:9f:d0:72:8b:10: f6:27:b1:7a:b3:83:8d:ca:2a:82:71:1b:4d:be:29:86:1e:fe: 54:f9:81:16:61:86:1e:4e:2e:47:0b:e3:69:70:d7:2f:73:6e: cc:f3:15:3c:4b:4a:ea:47:a7:7f:d8:8f:10:de:91:30:45:0f: 21:98:8f:00:62:a8:9f:e8:89:92:71:9b:59:99:55:1c:1a:f2: 58:5c:28:25:16:82:ff:29:0e:24:c3:35:9a:bf:e6:1f:77:f4: 6c:c3:7e:fc:a3:76:9c:fd:46:62:49:27:07:f1:81:01:7e:d5: 70:21:5a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUwNDA3MDQyMjIyWhcNMjUwNDE0MDQyMjIyWjAYMRYwFAYD VQQDEw02N2YzNTJmZS0zOGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyePJjywjajU28ki9JqfMSp4DXg5ibIIQFfYhUGgOO+dxuQ1zwtxXgVaSVCHp 9zahRlQY5uW65w69QhVfEaaYWrhFmCSMikeHKeyma93478LAhZDpwZsLuaR5rtfu YWrgQ6nGCzGt3FYnQSyVA7L5JFVbJj4oRxxir+MdTtvhnbCZBQreioRnYp0ECjsV QWMVmbW4D5lv2S2yRHrPkk5L7u7G4Ywrhx8/ooK+G9RnyyLThJpi9+hDvokG7Osp Qxt73eczGEoayXoj5UP8RR3Qxi/gLufxR9d4Ie1yHRLdLjxoU3fGn1tjicPL37/+ 1fbT7OaPjKtGCt45DvzXgIDcnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtAt9H0 xDXOralDOQLLIqIBp6BRMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoenDnxdBQRpsXwb92Zh1cjhzTF3dleagv0fl97M3qMwz3n32H2idT j0OFwrIkr/yE1yQ/jBYS47yUYpweACV7HmIO8CtSediNZH6DBSPnJ2Wl1kQnw2Ju C0ZNtxMJX7ZbqPZzvrQ82HQ1lOohboQcIMytSeFljYuKydp9v7hGUZ4GiFRkdg56 qQPOn9ByixD2J7F6s4ONyiqCcRtNvimGHv5U+YEWYYYeTi5HC+NpcNcvc27M8xU8 S0rqR6d/2I8Q3pEwRQ8hmI8AYqif6ImScZtZmVUcGvJYXCglFoL/KQ4kwzWav+Yf d/Rsw378o3ac/UZiSScH8YEBftVwIVo+ -----END CERTIFICATE-----Generated at Mon Apr 7 17:23:21 2025 by rpki-client