$ rpki-client -vvf rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft File: DEft4wSONabm6MsM5E_IQ3Jx6z0.mft (raw, json) Hash identifier: 8cXHIA2vpWKg2PQhfHobZN5CV0h6+gpZhv7ArTMe/4E= Subject key identifier: 25:99:3F:B3:DA:50:F4:82:CA:E0:FC:ED:C4:37:E4:B6:6F:A3:63:0B Authority key identifier: 0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D Certificate issuer: /CN=A917B51E/serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft Manifest number: 0776 Signing time: Fri 18 Apr 2025 21:31:58 +0000 Manifest this update: Fri 18 Apr 2025 21:31:57 +0000 Manifest next update: Fri 25 Apr 2025 21:31:57 +0000 Files and hashes: 1: DEft4wSONabm6MsM5E_IQ3Jx6z0.crl (hash: m+IpLOtlEJsRSOROHKi1nwxLRTSFl26d6sILCBAlJZQ=) 2: EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa (hash: jLCgtQuVltt3/VZJ3eAvwdfbtQsE4HY8zDX+9B0R7hY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 18:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B51E, serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Validity Not Before: Apr 18 21:31:57 2025 GMT Not After : Apr 25 21:31:57 2025 GMT Subject: CN=6802c4ce-d523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:07:f1:cd:b0:13:c2:af:af:01:57:df:f0:05: bc:fd:e3:3c:26:25:b4:b2:1c:fc:cd:d1:ed:67:2d: 82:a3:2b:13:ef:d7:01:93:35:dc:78:a8:08:e7:c8: 51:f3:b5:80:f9:b1:74:9d:91:4c:87:43:57:14:ed: 19:b4:d2:50:d5:d4:77:ea:14:40:ab:a2:96:f8:bf: 37:f0:04:a6:2b:76:1a:f0:4a:e5:b2:ea:21:39:5f: e7:c9:75:fc:76:9d:84:9f:0c:2b:09:3f:55:ed:3d: 85:cf:2e:5a:65:a7:21:62:b9:55:8d:ba:83:98:28: c0:ae:b0:70:cd:40:91:3f:d9:51:2f:27:34:66:25: a3:3c:e8:e8:cd:db:58:6a:ae:fe:c1:dd:42:7e:ec: 3c:a9:04:e8:99:a9:6e:ef:c8:4d:f7:2a:d1:7d:33: 3c:ae:d2:57:a7:e3:4a:f8:f6:d1:33:24:f9:b1:a6: b3:7c:72:9c:14:d0:e1:ea:cc:1e:d0:c1:5e:99:0c: d6:11:05:07:c7:5e:68:ee:7c:a2:ac:21:a9:58:09: 12:2d:7c:50:2a:43:0f:ed:9f:59:75:cc:18:68:b4: eb:73:d5:67:0d:4b:3e:a8:b1:27:ae:93:3d:57:3c: 7f:c3:a4:91:22:e4:81:8c:2c:eb:8d:05:6d:0d:28: 2e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:99:3F:B3:DA:50:F4:82:CA:E0:FC:ED:C4:37:E4:B6:6F:A3:63:0B X509v3 Authority Key Identifier: keyid:0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:19:63:83:6c:9f:ec:97:2c:a9:04:dd:aa:4c:d0:e8:82:57: 97:23:ad:94:8c:ee:98:18:eb:61:0d:26:78:90:c3:32:ea:ae: 0e:63:6d:59:20:6d:8a:47:20:91:fb:3c:4e:66:06:af:5d:cd: 0d:e3:3c:f4:b6:7f:aa:03:5e:21:8d:f7:bb:39:cb:52:57:28: cc:2f:a0:d0:e0:a9:43:38:b6:ef:10:1c:2a:07:60:32:f9:81: 9e:96:6c:db:fc:92:4f:53:09:73:3e:3b:a7:ff:60:29:7a:b7: 7e:51:e0:a6:e4:61:6c:96:21:05:f5:39:e4:63:89:ec:94:16: 53:f7:1a:d2:67:6b:15:df:a4:92:5b:ae:06:57:b8:2a:0f:55: 71:47:46:47:ae:e2:a2:3b:61:10:9e:ee:22:1d:24:40:b4:3a: b1:bd:6f:ec:68:c1:30:cf:27:ae:85:1e:8a:d7:b5:f0:f1:74: c9:7c:1e:5a:ff:fa:6c:c2:50:c2:af:6e:bf:df:71:e0:ae:7c: f8:5b:67:23:8e:97:d3:50:46:00:da:c7:ee:0a:ff:23:a2:1f: 7b:6b:7b:38:76:f5:37:aa:51:64:78:c8:0c:59:88:a5:aa:d1: b9:9b:a1:92:f7:83:0c:38:ff:7d:cd:8e:5a:2f:2f:82:db:ad: 4f:d0:5e:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MUUxMTAvBgNVBAUTKDBDNDdFREUzMDQ4RTM1QTZFNkU4Q0IwQ0U0NEZDODQz NzI3MUVCM0QwHhcNMjUwNDE4MjEzMTU3WhcNMjUwNDI1MjEzMTU3WjAYMRYwFAYD VQQDEw02ODAyYzRjZS1kNTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQfxzbATwq+vAVff8AW8/eM8JiW0shz8zdHtZy2CoysT79cBkzXceKgI58hR 87WA+bF0nZFMh0NXFO0ZtNJQ1dR36hRAq6KW+L838ASmK3Ya8ErlsuohOV/nyXX8 dp2EnwwrCT9V7T2Fzy5aZachYrlVjbqDmCjArrBwzUCRP9lRLyc0ZiWjPOjozdtY aq7+wd1Cfuw8qQTomalu78hN9yrRfTM8rtJXp+NK+PbRMyT5saazfHKcFNDh6swe 0MFemQzWEQUHx15o7nyirCGpWAkSLXxQKkMP7Z9ZdcwYaLTrc9VnDUs+qLEnrpM9 Vzx/w6SRIuSBjCzrjQVtDSguUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWZP7Pa UPSCyuD87cQ35LZvo2MLMB8GA1UdIwQYMBaAFAxH7eMEjjWm5ujLDORPyENyces9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUxRS81OUNERDU0QTBG RTkxMUVCOUYzMEM3MjVDNEY5QUUwMi9ERWZ0NHdTT05hYm02TXNNNUVfSVEzSng2 ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFZnQ0d1NPTmFibTZNc001RV9JUTNKeDZ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUxRS81OUNERDU0QTBGRTkxMUVCOUYzMEM3MjVDNEY5QUUwMi9ERWZ0NHdTT05h Ym02TXNNNUVfSVEzSng2ejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5GWODbJ/slyypBN2qTNDogleXI62UjO6YGOthDSZ4kMMy6q4OY21Z IG2KRyCR+zxOZgavXc0N4zz0tn+qA14hjfe7OctSVyjML6DQ4KlDOLbvEBwqB2Ay +YGelmzb/JJPUwlzPjun/2Aperd+UeCm5GFsliEF9TnkY4nslBZT9xrSZ2sV36SS W64GV7gqD1VxR0ZHruKiO2EQnu4iHSRAtDqxvW/saMEwzyeuhR6K17Xw8XTJfB5a //pswlDCr26/33Hgrnz4W2cjjpfTUEYA2sfuCv8joh97a3s4dvU3qlFkeMgMWYil qtG5m6GS94MMOP99zY5aLy+C261P0F4r -----END CERTIFICATE-----Generated at Sat Apr 19 00:46:12 2025 by rpki-client