$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: L5dSuLHJG5vEjqe35siOOGQmEhbRix3OGA0vRzutw5w= Subject key identifier: B7:0D:1D:AE:92:43:4D:53:B4:52:58:64:D5:29:65:9C:48:C5:3C:16 Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0AAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0AA6 Signing time: Tue 08 Apr 2025 19:23:59 +0000 Manifest this update: Tue 08 Apr 2025 19:23:59 +0000 Manifest next update: Tue 15 Apr 2025 19:23:59 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: ZHyM9s+mhcrUGHHoo9ONvoeL777/dqbyIOhH4KUwefs=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: 41cjFQ4140Z5h4e8/b+EfKqx6IFO/VtjT/VMpvwFsdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2732 (0xaac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832 Validity Not Before: Apr 8 19:23:59 2025 GMT Not After : Apr 15 19:23:59 2025 GMT Subject: CN=67f577cf-2b83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c2:70:c6:eb:89:55:a4:7c:13:3d:84:76:91: 73:fc:4a:a7:96:6f:b3:34:42:8d:9c:c8:75:86:a2: b9:a4:cb:75:37:7c:c7:55:f4:40:ba:75:95:53:e1: 59:7f:43:2c:03:9a:fe:80:ad:2e:c7:56:49:47:42: 20:96:7e:43:26:24:6d:8e:31:1d:f0:cd:69:d3:9c: de:41:aa:85:b2:82:0a:e2:b4:d7:49:98:5a:8d:61: fd:f1:ca:4c:58:b1:cb:60:fb:6d:fe:c0:51:ae:7e: 9d:a5:f3:de:f2:62:53:4c:2f:5e:b6:34:6b:b0:76: bd:ce:80:43:04:06:4a:cc:5a:8e:78:56:16:99:d8: 80:7d:d8:3d:ea:96:dc:25:71:e1:9b:2e:a1:6a:72: 08:91:21:70:75:f0:5a:f1:8c:71:48:8a:88:1b:4a: 45:8d:90:02:6d:5b:70:69:27:07:ef:b9:75:18:26: 58:4a:ce:48:0d:63:6e:05:10:29:5c:62:4a:3a:93: ff:1b:2b:6a:ee:41:64:49:2f:6b:30:4a:10:2d:20: b4:51:3a:22:a4:71:e4:78:d4:a6:f6:4c:41:94:72: bf:87:49:f3:fe:86:4b:9e:a3:14:41:ce:a7:e4:0f: 99:79:b7:1a:05:25:3d:ac:f5:f2:82:82:ea:53:1c: d7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:0D:1D:AE:92:43:4D:53:B4:52:58:64:D5:29:65:9C:48:C5:3C:16 X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:95:8b:0b:2d:6f:a1:08:3a:23:2a:ee:27:ba:e4:45:d6:f1: 9a:b3:85:b4:05:94:73:4a:5d:28:22:0b:66:71:32:d6:ca:16: 37:2d:30:bf:2e:26:eb:bb:fd:d7:21:37:8c:cc:7d:b2:e7:5c: 67:80:cd:62:d5:55:79:b0:11:a7:bb:7a:f4:9c:39:01:46:16: cd:64:ed:57:e3:6e:59:82:b7:50:e4:36:a4:c5:2d:97:26:5d: 5d:c5:31:b2:a8:5f:03:55:32:89:c4:71:e4:2e:96:63:2f:02: 1f:88:6c:3f:0a:7a:aa:61:a9:71:c0:7a:2e:5b:be:f7:60:52: bd:f4:52:c2:50:e2:7d:de:4b:3f:a2:05:91:10:1b:1e:6c:71: db:1e:58:02:fb:ab:f9:d2:b7:dc:d5:62:2a:ea:8a:20:5a:80: 14:89:42:05:cc:5c:a0:4a:bf:1b:f8:bc:da:c7:85:e7:59:b5: 1e:55:4c:9c:e9:76:7a:50:eb:1c:e9:b3:30:15:f5:11:6d:8d: 19:f5:87:62:dd:4a:d0:44:fb:76:db:90:35:50:98:fa:a7:3d: 9f:fc:84:89:50:79:a5:0c:22:de:dd:9f:3d:d5:79:e3:c0:d9: b6:6a:f1:47:78:69:55:07:2f:b8:30:bf:18:da:1f:40:d5:75: 53:86:bb:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUwNDA4MTkyMzU5WhcNMjUwNDE1MTkyMzU5WjAYMRYwFAYD VQQDEw02N2Y1NzdjZi0yYjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmsJwxuuJVaR8Ez2EdpFz/Eqnlm+zNEKNnMh1hqK5pMt1N3zHVfRAunWVU+FZ f0MsA5r+gK0ux1ZJR0Igln5DJiRtjjEd8M1p05zeQaqFsoIK4rTXSZhajWH98cpM WLHLYPtt/sBRrn6dpfPe8mJTTC9etjRrsHa9zoBDBAZKzFqOeFYWmdiAfdg96pbc JXHhmy6hanIIkSFwdfBa8YxxSIqIG0pFjZACbVtwaScH77l1GCZYSs5IDWNuBRAp XGJKOpP/Gytq7kFkSS9rMEoQLSC0UToipHHkeNSm9kxBlHK/h0nz/oZLnqMUQc6n 5A+ZebcaBSU9rPXygoLqUxzXEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcNHa6S Q01TtFJYZNUpZZxIxTwWMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARlYsLLW+hCDojKu4nuuRF1vGas4W0BZRzSl0oIgtmcTLWyhY3LTC/ Libru/3XITeMzH2y51xngM1i1VV5sBGnu3r0nDkBRhbNZO1X425ZgrdQ5DakxS2X Jl1dxTGyqF8DVTKJxHHkLpZjLwIfiGw/CnqqYalxwHouW773YFK99FLCUOJ93ks/ ogWREBsebHHbHlgC+6v50rfc1WIq6oogWoAUiUIFzFygSr8b+Lzax4XnWbUeVUyc 6XZ6UOsc6bMwFfURbY0Z9Ydi3UrQRPt225A1UJj6pz2f/ISJUHmlDCLe3Z891Xnj wNm2avFHeGlVBy+4ML8Y2h9A1XVThruq -----END CERTIFICATE-----Generated at Fri Apr 11 03:21:42 2025 by rpki-client