$ rpki-client -vvf rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft File: rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft (raw, json) Hash identifier: oARK3kXiSBp3vecPuR5qqcypQeDqkjk95sxduuql8lU= Subject key identifier: 49:5F:B7:36:20:F8:CB:90:84:67:B1:74:B3:85:C4:C8:CD:3A:3B:2F Authority key identifier: AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 Certificate issuer: /CN=A917138D/serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft Manifest number: 07BE Signing time: Sun 06 Apr 2025 20:50:37 +0000 Manifest this update: Sun 06 Apr 2025 20:50:36 +0000 Manifest next update: Sun 13 Apr 2025 20:50:36 +0000 Files and hashes: 1: rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl (hash: I8w9/oqysCupcWq5hjDIrI1oG/6mKc2HEC9mCXb/9DA=) 2: 7D0F62FAF3EF11EA82F3C251C4F9AE02.roa (hash: qjMMlEqEvaBO7XAFYzvleISXKC2IIZdSXJalJOe7pw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917138D Validity Not Before: Apr 6 20:50:36 2025 GMT Not After : Apr 13 20:50:36 2025 GMT Subject: CN=67f2e91c-ed3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a8:e7:e3:ae:0f:1e:4b:25:96:f9:00:18:22: c2:7e:cd:ea:25:19:a9:4d:55:57:a8:f2:25:43:b2: 38:ce:e1:b4:31:e2:20:09:13:d9:12:f1:e0:7e:b2: 3f:72:8d:9a:30:83:3b:e9:a0:07:ea:81:93:67:69: 1d:3f:d3:d0:be:60:db:89:a5:63:32:1d:53:8c:68: a8:b9:c1:b2:86:73:71:6f:4b:13:77:fa:26:b6:67: 9d:15:7e:8f:0d:d3:30:ef:30:78:f3:e2:ca:e8:b1: d3:1f:c9:1a:d8:91:6b:0c:aa:11:49:9f:39:3d:d8: 1e:8b:1d:2a:95:f5:76:f1:df:46:4e:c5:a8:b6:0d: d1:00:7c:78:ef:e8:de:0c:eb:ee:45:e2:93:6d:a0: ac:e6:de:49:e1:94:12:5e:b0:eb:25:3c:23:c5:7c: a3:ed:b5:b4:5e:d0:25:6d:25:c9:4e:bd:1e:b0:e8: 52:c8:d9:71:f4:7a:cf:59:37:36:fe:9c:27:f2:b0: 2f:d9:da:46:02:7f:70:3c:f4:5a:ef:4e:9b:eb:6e: 67:f6:21:a8:3b:bf:b6:26:f5:34:ad:a0:a0:63:fd: 52:eb:09:70:1a:a2:5e:92:93:e0:06:f9:b3:d6:97: d6:13:55:70:d1:57:c8:1c:a0:23:6b:91:00:8d:33: 80:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5F:B7:36:20:F8:CB:90:84:67:B1:74:B3:85:C4:C8:CD:3A:3B:2F X509v3 Authority Key Identifier: keyid:AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:19:eb:f8:37:da:66:be:19:e2:7d:1f:f1:95:31:53:45:a2: 57:1b:00:29:1e:20:99:da:40:bd:cc:15:39:73:f5:b1:6b:9a: 1d:e9:1b:93:40:21:ca:14:e2:ca:13:e4:23:6b:e3:0d:96:24: c2:3b:4a:c7:49:22:60:20:00:6e:d0:84:60:7a:f8:aa:33:90: 3f:05:aa:cd:8d:14:3f:21:d7:7f:b5:19:ae:98:ea:e5:66:70: d4:ac:a2:ca:5a:82:39:7c:c7:fc:d4:1c:2c:53:90:30:5e:cd: 4b:38:85:7a:17:ed:03:ce:5b:43:ff:d1:ec:9f:27:d7:04:bd: bf:ec:de:b5:19:96:a8:b0:ad:ff:8d:29:27:f1:2b:ad:1c:37: 0c:6d:8c:60:54:19:9d:25:19:77:43:1d:d9:09:4f:58:61:1d: 27:d9:ad:ef:7c:72:f4:06:89:90:af:a5:f8:b2:31:69:ae:39: 52:b6:7b:f4:22:89:a4:d7:52:d1:83:99:34:9e:b8:ab:90:c6: cd:a4:b8:fa:c9:87:3b:ff:04:9f:04:37:3c:96:a3:5b:01:3b: 24:16:aa:81:db:e8:03:7e:20:aa:32:8b:06:66:59:f2:24:76: b7:46:cd:e8:99:e9:2a:e5:a3:cf:b8:ac:32:3d:be:8f:9e:c0: c3:e4:6b:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEzOEQxMTAvBgNVBAUTKEFFMEYwRTlFRDRBNjcwNkU5MkUxMEI3ODlCQUMyQzYy NUE1NjUxNTYwHhcNMjUwNDA2MjA1MDM2WhcNMjUwNDEzMjA1MDM2WjAYMRYwFAYD VQQDEw02N2YyZTkxYy1lZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvajn464PHksllvkAGCLCfs3qJRmpTVVXqPIlQ7I4zuG0MeIgCRPZEvHgfrI/ co2aMIM76aAH6oGTZ2kdP9PQvmDbiaVjMh1TjGioucGyhnNxb0sTd/omtmedFX6P DdMw7zB48+LK6LHTH8ka2JFrDKoRSZ85Pdgeix0qlfV28d9GTsWotg3RAHx47+je DOvuReKTbaCs5t5J4ZQSXrDrJTwjxXyj7bW0XtAlbSXJTr0esOhSyNlx9HrPWTc2 /pwn8rAv2dpGAn9wPPRa706b625n9iGoO7+2JvU0raCgY/1S6wlwGqJekpPgBvmz 1pfWE1Vw0VfIHKAja5EAjTOApwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElftzYg +MuQhGexdLOFxMjNOjsvMB8GA1UdIwQYMBaAFK4PDp7UpnBukuELeJusLGJaVlFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTM4RC80RjZFOTMxOEYz RUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNHNlM0UXQ0bTZ3c1lscFdV VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JnOE9udFNtY0c2UzRRdDRtNndzWWxwV1VWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTM4RC80RjZFOTMxOEYzRUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNH NlM0UXQ0bTZ3c1lscFdVVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEGev4N9pmvhnifR/xlTFTRaJXGwApHiCZ2kC9zBU5c/Wxa5od6RuT QCHKFOLKE+Qja+MNliTCO0rHSSJgIABu0IRgeviqM5A/BarNjRQ/Idd/tRmumOrl ZnDUrKLKWoI5fMf81BwsU5AwXs1LOIV6F+0DzltD/9HsnyfXBL2/7N61GZaosK3/ jSkn8SutHDcMbYxgVBmdJRl3Qx3ZCU9YYR0n2a3vfHL0BomQr6X4sjFprjlStnv0 Iomk11LRg5k0nrirkMbNpLj6yYc7/wSfBDc8lqNbATskFqqB2+gDfiCqMosGZlny JHa3Rs3omekq5aPPuKwyPb6PnsDD5GvL -----END CERTIFICATE-----Generated at Mon Apr 7 01:25:44 2025 by rpki-client