$ rpki-client -vvf rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft File: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft (raw, json) Hash identifier: j2aZX8B3KsQryJdYuM4GWMXERgFsMC0dYb79W27Amr4= Subject key identifier: 73:CE:0D:41:5C:BA:63:81:15:E3:E0:2D:72:92:71:8D:89:37:A2:66 Authority key identifier: 06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5 Certificate issuer: /CN=A9178D35/serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5 Certificate serial: 3471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft Manifest number: 3471 Signing time: Fri 18 Apr 2025 14:36:47 +0000 Manifest this update: Fri 18 Apr 2025 14:36:46 +0000 Manifest next update: Fri 25 Apr 2025 14:36:46 +0000 Files and hashes: 1: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl (hash: x7FuYQvsF835jn9hkD69L42B/jId6y2GnpSa+P5l9Jc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 14:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13425 (0x3471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178D35, serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5 Validity Not Before: Apr 18 14:36:46 2025 GMT Not After : Apr 25 14:36:46 2025 GMT Subject: CN=6802637e-b4c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e4:53:3b:10:9a:8c:86:6c:6d:87:7b:5f:f4: d9:a4:61:64:29:1d:05:ad:ed:78:bf:6c:58:81:e4: 96:9a:1b:6a:9a:3c:b7:cd:db:de:2a:20:94:90:5c: 7f:3c:89:12:ce:aa:8f:5e:1d:a1:07:5e:e6:bd:53: a9:81:d0:79:58:b6:47:67:97:c5:3e:50:5b:70:a5: af:e3:4a:b5:40:10:69:0a:af:59:62:bc:40:91:75: fd:bd:b3:12:5b:19:51:28:72:fa:10:63:4e:92:b2: 43:da:89:44:1f:0d:8d:18:6e:3f:69:72:75:85:22: 18:b4:ca:9a:0d:7d:fd:05:b4:6e:17:3a:86:63:f2: 76:1f:db:15:f8:7a:4b:5e:1f:a0:80:b9:64:51:32: d2:74:b0:07:70:6e:c4:a3:40:5e:bd:21:24:28:3b: 07:fe:4b:70:90:3f:ef:a8:7f:27:ec:b4:23:4e:76: b9:7b:72:c8:a1:a5:60:2e:f7:62:19:73:4e:2c:21: 4d:91:7f:77:67:2f:6d:1e:bf:90:db:9d:79:f8:b9: 77:6a:31:a0:93:ef:7c:43:48:ea:28:43:db:71:ce: 0f:c6:19:34:9b:7c:a5:a1:c3:d5:28:f8:2f:ad:11: 31:53:aa:20:fc:51:51:77:d1:4b:24:b4:20:f1:43: 1a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:CE:0D:41:5C:BA:63:81:15:E3:E0:2D:72:92:71:8D:89:37:A2:66 X509v3 Authority Key Identifier: keyid:06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:71:3c:e0:ef:92:36:98:e4:fa:46:21:0e:27:75:d4:78:35: 36:d3:b9:61:f6:39:13:2f:f9:ae:d6:f3:99:33:ef:bd:f1:c6: e4:e3:43:a0:1f:4f:9e:1f:6d:ba:13:29:36:35:82:cf:7f:60: 3f:bc:9c:1a:64:85:d5:75:48:58:2d:c2:cb:41:95:9a:9b:37: e9:f3:d6:8b:4c:db:b4:6c:b8:df:1d:1f:47:d7:15:53:68:a2: b6:d9:bb:91:a9:d4:25:c6:0c:ec:79:74:20:a3:a9:dc:8c:78: b2:70:0a:15:ce:ca:c7:96:a9:f3:d2:e9:b8:78:a7:ad:cb:4a: 9b:89:a6:4e:a6:83:67:ad:10:39:17:e3:8e:31:38:fe:dc:ae: 8a:95:4e:f2:73:a8:45:b4:27:5f:db:27:34:4f:89:80:8f:48: 55:fa:5d:f1:86:24:26:c2:62:62:22:6b:39:85:c5:78:2f:0a: 90:d3:bf:d7:86:78:64:eb:02:51:bf:d6:18:76:eb:c7:4c:f1: 6f:35:9b:60:f2:5f:65:9c:31:33:e9:68:42:80:4d:fa:c9:a6: 79:e6:c7:41:b1:5e:af:21:da:2f:39:26:62:50:af:9f:6e:9e: 48:89:4a:6f:17:13:99:1f:de:de:87:5e:74:3a:55:3b:57:bf: 7e:ee:bd:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhEMzUxMTAvBgNVBAUTKDA2NTVFMjkxNUNBREU5MTY3N0FBQjQ4QzIzQzFFMjI0 QjQzREJBQTUwHhcNMjUwNDE4MTQzNjQ2WhcNMjUwNDI1MTQzNjQ2WjAYMRYwFAYD VQQDEw02ODAyNjM3ZS1iNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuRTOxCajIZsbYd7X/TZpGFkKR0Fre14v2xYgeSWmhtqmjy3zdveKiCUkFx/ PIkSzqqPXh2hB17mvVOpgdB5WLZHZ5fFPlBbcKWv40q1QBBpCq9ZYrxAkXX9vbMS WxlRKHL6EGNOkrJD2olEHw2NGG4/aXJ1hSIYtMqaDX39BbRuFzqGY/J2H9sV+HpL Xh+ggLlkUTLSdLAHcG7Eo0BevSEkKDsH/ktwkD/vqH8n7LQjTna5e3LIoaVgLvdi GXNOLCFNkX93Zy9tHr+Q2515+Ll3ajGgk+98Q0jqKEPbcc4Pxhk0m3ylocPVKPgv rRExU6og/FFRd9FLJLQg8UMaTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPODUFc umOBFePgLXKScY2JN6JmMB8GA1UdIwQYMBaAFAZV4pFcrekWd6q0jCPB4iS0Pbql MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEQzNS9ENkY4ODVBNDFE OEMxMUUyOUZBNjIzRUEwOEIwMkNEMi9CbFhpa1Z5dDZSWjNxclNNSThIaUpMUTl1 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JsWGlrVnl0NlJaM3FyU01JOEhpSkxROXVxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEQzNS9ENkY4ODVBNDFEOEMxMUUyOUZBNjIzRUEwOEIwMkNEMi9CbFhpa1Z5dDZS WjNxclNNSThIaUpMUTl1cVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfcTzg75I2mOT6RiEOJ3XUeDU207lh9jkTL/mu1vOZM++98cbk40Og H0+eH226Eyk2NYLPf2A/vJwaZIXVdUhYLcLLQZWamzfp89aLTNu0bLjfHR9H1xVT aKK22buRqdQlxgzseXQgo6ncjHiycAoVzsrHlqnz0um4eKety0qbiaZOpoNnrRA5 F+OOMTj+3K6KlU7yc6hFtCdf2yc0T4mAj0hV+l3xhiQmwmJiIms5hcV4LwqQ07/X hnhk6wJRv9YYduvHTPFvNZtg8l9lnDEz6WhCgE36yaZ55sdBsV6vIdovOSZiUK+f bp5IiUpvFxOZH97eh150OlU7V79+7r3F -----END CERTIFICATE-----Generated at Sat Apr 19 01:01:49 2025 by rpki-client