$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F6E/06358606588311ECBDBB4E6BC4F9AE02/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.mft File: 33UmqI6ncJSmLxQ5_7Qgj1AvT-w.mft (raw, json) Hash identifier: 7whoz1qRFCulRl36c2NocUeCVAM871QWtnoaKIXpgNY= Subject key identifier: 0C:11:F0:60:60:96:08:85:E0:CC:8D:5F:CA:76:59:BE:5C:9C:05:61 Authority key identifier: DF:75:26:A8:8E:A7:70:94:A6:2F:14:39:FF:B4:20:8F:50:2F:4F:EC Certificate issuer: /CN=A9179F6E/serialNumber=DF7526A88EA77094A62F1439FFB4208F502F4FEC Certificate serial: 042A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F6E/06358606588311ECBDBB4E6BC4F9AE02/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.mft Manifest number: 0426 Signing time: Sat 29 Mar 2025 00:36:55 +0000 Manifest this update: Sat 29 Mar 2025 00:36:54 +0000 Manifest next update: Sat 05 Apr 2025 00:36:54 +0000 Files and hashes: 1: 33UmqI6ncJSmLxQ5_7Qgj1AvT-w.crl (hash: YcZHOLd3JV80IOqahqxpNGoOMfs5bCG0qVqcPVjUtZ4=) 2: F5DED02A588511ECAC342433C4F9AE02.roa (hash: xHb5qsT7d30Z0+OLvEr0YMnNlt030IAKtfEq/tu+nEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F6E/06358606588311ECBDBB4E6BC4F9AE02/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.crl rsync://rpki.apnic.net/member_repository/A9179F6E/06358606588311ECBDBB4E6BC4F9AE02/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F6E Validity Not Before: Mar 29 00:36:54 2025 GMT Not After : Apr 5 00:36:54 2025 GMT Subject: CN=67e740a7-1171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dd:d7:a6:14:6b:ec:98:c8:d2:94:4d:30:f1: a3:92:42:4b:d4:4e:4c:5f:84:e7:01:bb:25:07:f5: 79:cd:f1:c0:b4:af:51:1c:93:55:11:b5:84:f5:e6: 09:9b:a8:39:82:26:2e:8f:0a:01:0c:52:fa:ef:2d: 45:37:ca:44:62:f5:28:ee:c7:a6:c2:d9:13:d5:da: 8e:97:a5:fa:62:ad:63:07:ca:f5:d8:c9:e3:a6:b0: 57:64:5a:8c:e2:d5:36:98:c9:8f:dc:aa:65:49:1e: dd:ff:74:07:94:48:f9:f3:8a:c5:3f:63:51:01:0b: f4:b7:7d:34:31:ae:c5:7a:59:e6:d5:a1:ca:75:a9: 2f:85:17:89:45:0e:86:c3:d5:74:56:12:46:79:15: ea:c4:17:49:1b:4e:81:ee:6e:d3:c8:a4:49:cf:ed: d4:aa:26:92:b0:0c:ea:10:aa:cf:19:05:59:0e:3b: 9b:61:96:7e:9f:52:4c:2f:78:41:6c:4b:1d:12:13: cc:cb:52:a0:a6:d4:63:fb:df:6e:a6:d4:c9:43:0f: f3:c6:19:60:61:c5:35:a3:f7:49:46:37:ff:23:9b: dc:9e:d9:e9:be:40:c2:a2:a3:fb:65:e9:d7:12:6c: 12:15:64:45:f8:d0:bf:96:8d:8f:53:4b:99:92:7b: 69:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:11:F0:60:60:96:08:85:E0:CC:8D:5F:CA:76:59:BE:5C:9C:05:61 X509v3 Authority Key Identifier: keyid:DF:75:26:A8:8E:A7:70:94:A6:2F:14:39:FF:B4:20:8F:50:2F:4F:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F6E/06358606588311ECBDBB4E6BC4F9AE02/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F6E/06358606588311ECBDBB4E6BC4F9AE02/33UmqI6ncJSmLxQ5_7Qgj1AvT-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:2d:51:62:05:a2:08:ad:6f:b3:8c:38:8f:3e:de:f5:97:b7: 4e:26:01:c7:c3:b1:ee:ee:59:96:c1:f0:ee:16:c0:f8:9c:22: e6:72:a7:6c:f6:d2:06:4e:41:54:e7:de:a8:32:e4:08:ca:5d: a2:08:8f:f4:e3:c5:17:a1:b8:97:41:7b:fe:14:0d:96:78:cf: f1:fe:a2:73:26:ff:7f:f5:cc:79:ec:44:5b:27:76:cf:8d:71: 4e:22:f8:94:27:0a:19:b7:65:34:c1:d8:b8:8e:98:32:62:14: 88:7b:2e:e1:51:6b:e7:86:50:0a:4e:32:ce:35:3f:0f:57:be: d6:a4:1b:2f:e7:79:fe:88:cd:da:ee:8d:2f:46:1b:63:83:b7: ab:dd:c9:8b:db:b6:de:ce:35:a9:bd:35:9c:c0:86:77:3e:7b: 6e:03:8e:0f:a9:f9:be:de:f5:21:60:a5:26:76:f5:b3:c0:d4: 81:1d:b2:b7:07:fd:ba:48:f2:91:27:1c:52:7e:17:43:eb:98: 4e:9b:56:a6:56:5c:49:28:9f:0e:5a:d0:6a:51:b3:0c:4c:a6: a2:d5:d6:8b:5f:da:0c:04:fd:de:3b:77:34:66:ff:68:a5:d9: 0e:bf:cd:fb:7d:1c:87:2b:c2:dc:9e:0f:62:f3:7a:54:f3:c7: 29:33:35:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNkUxMTAvBgNVBAUTKERGNzUyNkE4OEVBNzcwOTRBNjJGMTQzOUZGQjQyMDhG NTAyRjRGRUMwHhcNMjUwMzI5MDAzNjU0WhcNMjUwNDA1MDAzNjU0WjAYMRYwFAYD VQQDEw02N2U3NDBhNy0xMTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqN3XphRr7JjI0pRNMPGjkkJL1E5MX4TnAbslB/V5zfHAtK9RHJNVEbWE9eYJ m6g5giYujwoBDFL67y1FN8pEYvUo7semwtkT1dqOl6X6Yq1jB8r12MnjprBXZFqM 4tU2mMmP3KplSR7d/3QHlEj584rFP2NRAQv0t300Ma7Felnm1aHKdakvhReJRQ6G w9V0VhJGeRXqxBdJG06B7m7TyKRJz+3UqiaSsAzqEKrPGQVZDjubYZZ+n1JML3hB bEsdEhPMy1KgptRj+99uptTJQw/zxhlgYcU1o/dJRjf/I5vcntnpvkDCoqP7ZenX EmwSFWRF+NC/lo2PU0uZkntpdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwR8GBg lgiF4MyNX8p2Wb5cnAVhMB8GA1UdIwQYMBaAFN91JqiOp3CUpi8UOf+0II9QL0/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2RS8wNjM1ODYwNjU4 ODMxMUVDQkRCQjRFNkJDNEY5QUUwMi8zM1VtcUk2bmNKU21MeFE1XzdRZ2oxQXZU LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzVW1xSTZuY0pTbUx4UTVfN1FnajFBdlQtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2RS8wNjM1ODYwNjU4ODMxMUVDQkRCQjRFNkJDNEY5QUUwMi8zM1VtcUk2bmNK U21MeFE1XzdRZ2oxQXZULXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgLVFiBaIIrW+zjDiPPt71l7dOJgHHw7Hu7lmWwfDuFsD4nCLmcqds 9tIGTkFU596oMuQIyl2iCI/048UXobiXQXv+FA2WeM/x/qJzJv9/9cx57ERbJ3bP jXFOIviUJwoZt2U0wdi4jpgyYhSIey7hUWvnhlAKTjLONT8PV77WpBsv53n+iM3a 7o0vRhtjg7er3cmL27bezjWpvTWcwIZ3PntuA44Pqfm+3vUhYKUmdvWzwNSBHbK3 B/26SPKRJxxSfhdD65hOm1amVlxJKJ8OWtBqUbMMTKai1daLX9oMBP3eO3c0Zv9o pdkOv837fRyHK8Lcng9i83pU88cpMzVl -----END CERTIFICATE-----Generated at Fri Apr 4 22:27:06 2025 by rpki-client