$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: la7L5h/kBykSN2fO2e6ShSNKOQN0mPrgnDMH2Dqf51U= Subject key identifier: F9:38:2A:CC:44:85:C0:69:4B:7C:68:BC:30:0B:4C:82:D3:E5:7A:58 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 2379 Signing time: Sun 06 Apr 2025 15:46:36 +0000 Manifest this update: Sun 06 Apr 2025 15:46:35 +0000 Manifest next update: Sun 13 Apr 2025 15:46:35 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: lVe9CWCjrf9TNeXraNFg7GAjENeInwwvItsIu3gUbMI=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: vb5cHcm55U7pljjzoO4g9FNB1flb1KgvWDDtM0SHGvU=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: SI+LLofCjizJ4ADDiYbKrAg1//cncoxs2Ga5Zj0MMu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9126 (0x23a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6 Validity Not Before: Apr 6 15:46:35 2025 GMT Not After : Apr 13 15:46:35 2025 GMT Subject: CN=67f2a1dc-1911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:69:f2:c4:d6:b2:3e:90:a4:5a:93:cb:1a:af: eb:30:85:dd:30:cf:01:ca:4e:b0:a0:ab:e6:ae:4f: 1c:bc:e6:bc:89:3f:8b:bd:bc:d8:a0:b0:a7:c0:c2: e4:51:95:85:b2:12:af:d9:4b:04:fc:d5:88:28:49: 74:6c:c5:f3:32:09:fd:6d:b0:af:67:01:63:58:58: 30:f4:20:99:3c:96:0b:49:94:78:9f:ae:12:59:41: 14:32:6a:2d:b2:7e:ec:c5:95:96:7f:24:de:af:a8: 15:4e:da:b2:e3:9e:d6:25:ec:d6:00:9b:72:03:db: f8:8e:43:22:de:0c:fb:9c:1a:ce:7e:d5:75:86:88: f5:4f:fc:e7:c3:2b:44:af:d4:86:6e:63:4a:e1:49: 26:e4:63:d2:98:50:16:38:e7:81:46:0b:f3:83:c0: d2:2f:3e:34:8e:a7:3c:eb:e3:b9:82:10:b0:06:57: 56:77:6f:7c:2e:92:de:de:eb:08:3f:e9:a1:db:8c: c9:ff:7a:2d:55:f2:6f:c7:e5:f5:a3:69:fb:a0:4c: 5d:73:b4:43:9f:88:7e:6d:f8:69:fa:49:5a:62:ab: 6f:b0:0e:0d:de:82:cb:36:ec:bb:e6:b6:18:b3:0e: e8:35:d8:76:71:3f:1d:8e:19:c2:c2:c5:9a:ce:78: 28:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:38:2A:CC:44:85:C0:69:4B:7C:68:BC:30:0B:4C:82:D3:E5:7A:58 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b5:27:66:ef:10:d5:f4:4d:24:ac:7f:24:19:05:83:4f:0f: 5d:ca:78:b2:a9:54:e6:3b:6a:ae:ba:67:39:7e:88:bc:13:16: 8d:7c:d3:17:0d:d6:04:ec:10:7e:ab:bd:60:58:ff:37:5c:c3: 8f:3a:f8:fe:4a:68:1a:a4:b7:ec:b2:07:ed:00:f5:2f:a0:b8: 0c:77:3e:69:98:56:0c:34:17:b9:48:0e:2d:24:1e:56:a9:80: d1:82:a3:82:41:e7:ba:af:ab:bc:f9:57:dc:9e:a2:47:6a:4f: 2a:e6:3c:cc:c1:35:e1:27:28:1f:1b:bc:00:ab:87:28:4c:5e: 87:26:80:5b:ba:cd:70:6b:78:e7:b4:3a:c2:c8:53:bb:c0:43: be:7a:f2:77:a2:2c:9d:3e:8f:31:84:6e:cf:90:e6:80:b8:09: 17:6b:fd:cf:f0:84:0f:0b:8b:73:7b:8c:79:7a:31:6a:f4:cf: 09:02:d1:b3:aa:4c:52:fc:1b:6a:bf:08:0b:64:d4:39:3c:6d: 74:6a:1f:42:3a:fe:25:a9:15:b4:72:97:f8:11:ef:df:70:24: 98:c2:3b:e0:8a:7c:06:5c:a8:57:02:35:48:da:07:d1:60:66: 1e:4f:94:80:e5:8c:19:17:c0:c4:a8:9b:6a:ee:21:9f:91:2b: c1:a9:3e:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwNDA2MTU0NjM1WhcNMjUwNDEzMTU0NjM1WjAYMRYwFAYD VQQDEw02N2YyYTFkYy0xOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl2nyxNayPpCkWpPLGq/rMIXdMM8Byk6woKvmrk8cvOa8iT+LvbzYoLCnwMLk UZWFshKv2UsE/NWIKEl0bMXzMgn9bbCvZwFjWFgw9CCZPJYLSZR4n64SWUEUMmot sn7sxZWWfyTer6gVTtqy457WJezWAJtyA9v4jkMi3gz7nBrOftV1hoj1T/znwytE r9SGbmNK4Ukm5GPSmFAWOOeBRgvzg8DSLz40jqc86+O5ghCwBldWd298LpLe3usI P+mh24zJ/3otVfJvx+X1o2n7oExdc7RDn4h+bfhp+klaYqtvsA4N3oLLNuy75rYY sw7oNdh2cT8djhnCwsWazngo1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPk4KsxE hcBpS3xovDALTILT5XpYMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVtSdm7xDV9E0krH8kGQWDTw9dyniyqVTmO2quumc5foi8ExaNfNMX DdYE7BB+q71gWP83XMOPOvj+SmgapLfssgftAPUvoLgMdz5pmFYMNBe5SA4tJB5W qYDRgqOCQee6r6u8+VfcnqJHak8q5jzMwTXhJygfG7wAq4coTF6HJoBbus1wa3jn tDrCyFO7wEO+evJ3oiydPo8xhG7PkOaAuAkXa/3P8IQPC4tze4x5ejFq9M8JAtGz qkxS/BtqvwgLZNQ5PG10ah9COv4lqRW0cpf4Ee/fcCSYwjvginwGXKhXAjVI2gfR YGYeT5SA5YwZF8DEqJtq7iGfkSvBqT4k -----END CERTIFICATE-----Generated at Mon Apr 7 10:27:30 2025 by rpki-client