$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft File: 34UAobIJAKu39Z62mwcBjfgEXF4.mft (raw, json) Hash identifier: SCHQTbOHqpeTU7D3OVFTxBj5UjxLPclXN8GnfEfP3DE= Subject key identifier: F1:8C:54:54:E7:B8:87:A6:2C:D2:7C:05:0C:F4:A1:67:39:13:F7:63 Authority key identifier: DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E Certificate issuer: /CN=A916EB73/serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Certificate serial: 3473 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft Manifest number: 346B Signing time: Fri 04 Apr 2025 15:20:58 +0000 Manifest this update: Fri 04 Apr 2025 15:20:58 +0000 Manifest next update: Fri 11 Apr 2025 15:20:58 +0000 Files and hashes: 1: 34UAobIJAKu39Z62mwcBjfgEXF4.crl (hash: DTZOdgEI/nd8xw9FQu/wAw7mYkySd2gEAEcZ4syZz9A=) 2: B92D2816064311EAAFD3B416C4F9AE02.roa (hash: snskZTPzgdK1oFEckPC5HgyDQRzXftf0PJQ8L4j0QcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13427 (0x3473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB73 Validity Not Before: Apr 4 15:20:58 2025 GMT Not After : Apr 11 15:20:58 2025 GMT Subject: CN=67eff8da-2992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:99:2f:c3:ec:d8:0d:9a:b2:7b:ba:5d:ab:15: 30:f8:93:73:9e:cd:0c:19:b6:de:45:f1:dc:f6:28: cb:02:99:93:09:db:50:d9:9c:14:a0:a6:16:d5:25: e6:ff:5b:20:4f:a4:f7:a7:9b:83:12:78:84:f0:10: d3:e9:3b:df:a2:1f:96:76:e5:10:11:ae:18:de:02: 8f:9c:b5:41:64:41:11:d0:e2:1c:e3:bf:40:1b:e5: 4c:50:d3:b0:40:1c:89:79:12:e7:af:c4:c7:da:23: 69:23:64:51:7d:12:33:30:19:42:35:d4:e2:d7:4e: 9a:f7:2f:30:8a:bc:f9:62:10:f2:24:73:b6:fd:bb: 3b:eb:75:83:6b:c6:90:54:cb:2f:c7:5f:12:79:58: 30:75:90:ef:a8:15:fa:64:43:70:8b:75:70:b6:ab: e0:d9:a4:f4:60:ba:b0:e2:9e:96:89:56:43:f5:28: 2a:52:ae:8c:9c:16:47:e1:b5:57:5d:7f:30:56:e2: 4e:c1:55:6f:68:90:d6:fd:96:eb:ad:9c:c9:a3:69: 38:ca:e6:c4:88:fd:7c:27:48:db:5a:1b:8c:c2:02: 6a:ca:de:45:bc:58:2c:86:41:39:59:f4:cb:63:a0: 46:7a:2d:50:da:be:7a:cd:b5:01:58:bf:7e:22:07: 15:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:8C:54:54:E7:B8:87:A6:2C:D2:7C:05:0C:F4:A1:67:39:13:F7:63 X509v3 Authority Key Identifier: keyid:DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:8b:38:66:f4:bd:be:54:ef:bb:ab:d0:b7:44:e9:9c:ce:5b: 8a:2d:cd:83:a1:6c:ba:a6:24:4a:c7:4d:25:83:6b:fe:6b:d2: 84:e3:2f:97:3f:39:fb:52:07:22:92:00:97:38:c8:53:f1:87: ac:b0:15:40:9f:30:9a:bd:2e:a1:f7:aa:66:4b:48:23:2a:27: fa:ec:1e:77:28:f1:cd:76:a0:f6:12:04:bd:12:68:bb:78:57: e4:d1:a7:9d:4d:1e:21:3a:1c:61:2d:a6:5a:96:b6:99:3e:8b: 7f:2c:55:2e:db:04:c6:30:17:4c:49:6d:de:0d:2f:cc:0a:9f: 53:a0:bb:20:95:29:7e:71:b4:6e:58:fe:7c:fb:c9:9c:91:62: c9:22:68:24:2a:ce:d3:dc:8d:36:bc:7a:8b:1d:78:09:60:85: 51:5d:d8:f7:31:8d:de:e4:0d:ac:2a:ee:e2:c2:6c:d5:84:20: b2:b3:0b:90:f2:7c:c7:e3:3d:c0:9b:47:5e:5e:76:ad:23:61: 61:c9:08:93:dc:e1:18:e7:05:d1:3e:a1:98:4c:9b:be:19:c0: ce:d7:09:2d:cb:df:5d:b3:3f:9e:7b:ab:4e:58:ac:cc:57:1b: d8:2f:cf:6e:8e:29:1f:b6:cb:d7:19:3c:35:53:50:4f:a7:32: 1b:1d:88:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCNzMxMTAvBgNVBAUTKERGODUwMEExQjIwOTAwQUJCN0Y1OUVCNjlCMDcwMThE RjgwNDVDNUUwHhcNMjUwNDA0MTUyMDU4WhcNMjUwNDExMTUyMDU4WjAYMRYwFAYD VQQDEw02N2VmZjhkYS0yOTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5kvw+zYDZqye7pdqxUw+JNzns0MGbbeRfHc9ijLApmTCdtQ2ZwUoKYW1SXm /1sgT6T3p5uDEniE8BDT6Tvfoh+WduUQEa4Y3gKPnLVBZEER0OIc479AG+VMUNOw QByJeRLnr8TH2iNpI2RRfRIzMBlCNdTi106a9y8wirz5YhDyJHO2/bs763WDa8aQ VMsvx18SeVgwdZDvqBX6ZENwi3Vwtqvg2aT0YLqw4p6WiVZD9SgqUq6MnBZH4bVX XX8wVuJOwVVvaJDW/ZbrrZzJo2k4yubEiP18J0jbWhuMwgJqyt5FvFgshkE5WfTL Y6BGei1Q2r56zbUBWL9+IgcVdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGMVFTn uIemLNJ8BQz0oWc5E/djMB8GA1UdIwQYMBaAFN+FAKGyCQCrt/WetpsHAY34BFxe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI3My9CODhGREU4QzFE QUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFLdTM5WjYybXdjQmpmZ0VY RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0VUFvYklKQUt1MzlaNjJtd2NCamZnRVhGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI3My9CODhGREU4QzFEQUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFL dTM5WjYybXdjQmpmZ0VYRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdizhm9L2+VO+7q9C3ROmczluKLc2DoWy6piRKx00lg2v+a9KE4y+X Pzn7UgcikgCXOMhT8YessBVAnzCavS6h96pmS0gjKif67B53KPHNdqD2EgS9Emi7 eFfk0aedTR4hOhxhLaZalraZPot/LFUu2wTGMBdMSW3eDS/MCp9ToLsglSl+cbRu WP58+8mckWLJImgkKs7T3I02vHqLHXgJYIVRXdj3MY3e5A2sKu7iwmzVhCCyswuQ 8nzH4z3Am0deXnatI2FhyQiT3OEY5wXRPqGYTJu+GcDO1wkty99dsz+ee6tOWKzM VxvYL89ujikftsvXGTw1U1BPpzIbHYid -----END CERTIFICATE-----Generated at Sat Apr 5 11:44:32 2025 by rpki-client