$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: VRUsAC+nkYTkW9L5GtxEwmp8o6DYOUcQvMGJ7gH6Prw= Subject key identifier: DA:E8:21:B8:2C:41:30:93:D5:47:87:10:12:7A:D9:4E:21:37:ED:D9 Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 0483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 0476 Signing time: Sun 20 Apr 2025 23:44:12 +0000 Manifest this update: Sun 20 Apr 2025 23:44:11 +0000 Manifest next update: Sun 27 Apr 2025 23:44:11 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: WOm8m2syU4peYLdk1ScjaIu8WHmkqFnN5gNgUAWICfw=) 2: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: Hw9cMJ5qnwE3ro35aioTBxjmKMgII3wJZDwK2UawEFY=) 3: 2E971452411311EC88F4A813C4F9AE02.roa (hash: IHzWbo+P0xMAUj8Y7qcnkYwJZ7MRPNKo7bVzwYfeGIo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 23:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1155 (0x483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Apr 20 23:44:11 2025 GMT Not After : Apr 27 23:44:11 2025 GMT Subject: CN=680586cc-73ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4b:f2:e7:0b:db:11:b4:2f:9b:91:b9:7c:c8: 96:6e:34:3d:95:d9:f6:52:50:7d:fb:f6:8e:3c:61: 4f:3d:08:d8:00:f4:51:e3:5e:2f:ee:b6:19:a2:e6: e8:55:1b:5e:50:4e:b3:4b:92:ce:4a:75:df:48:94: 4c:c4:b5:c0:2b:57:c7:f4:a9:d1:12:3b:fe:c3:9f: 37:d4:a5:76:e2:c7:ee:78:35:1d:f6:dd:31:c6:9a: a7:fa:f0:ad:f8:da:79:f3:b3:42:4c:f2:1b:69:91: d3:12:36:e8:8a:9a:a7:d2:36:80:b5:55:5b:ad:36: 54:ef:71:2b:22:de:7d:55:34:04:22:2e:0c:b0:3b: b3:4f:7c:a7:60:8c:ff:a9:ef:d9:18:fa:df:72:1c: 5d:f2:22:90:ee:df:a5:b6:69:b2:76:8e:6e:bd:7d: 1c:86:fb:65:99:70:7e:a1:e1:6a:d8:a0:d2:0d:72: c3:8c:07:93:62:7f:bb:a4:e9:68:bc:d9:00:e7:f8: aa:51:49:a0:10:a2:c1:99:37:9f:3a:98:44:e4:24: 7d:d6:2c:dd:df:9c:18:c0:37:c2:85:68:22:2f:48: 6e:78:77:08:d3:18:e1:97:96:83:8d:38:3f:65:df: d3:ac:1e:64:fc:1c:16:34:a5:4e:25:53:7e:2b:b9: f2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:E8:21:B8:2C:41:30:93:D5:47:87:10:12:7A:D9:4E:21:37:ED:D9 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:c8:a4:f6:75:b2:de:a1:a4:a2:18:aa:08:4c:23:15:b4:b9: fa:31:f0:f6:1e:bf:a3:73:ca:42:47:12:55:64:71:f3:0d:49: 3c:a7:78:7d:4b:67:c3:08:2f:5a:be:91:da:b8:99:a6:10:00: 2b:7c:eb:20:d4:fd:ed:3a:5f:8c:cb:c5:4b:38:f5:c2:80:8b: d9:d2:37:27:6d:6a:29:1a:b1:41:27:a0:02:f2:20:20:77:13: 8e:07:af:08:39:df:e0:4f:1f:9a:55:42:2e:b3:02:c7:83:f2: 1a:26:79:66:43:43:1f:0f:6a:07:2d:c7:fd:be:82:d3:0d:00: be:20:22:dd:4d:a2:c8:be:8d:e5:b9:09:df:30:10:74:73:62: d1:ca:ea:28:b4:f4:bd:3d:a8:d0:99:22:d1:4e:24:5d:61:a3: a6:fe:af:0f:8f:f6:c4:cc:e0:8b:2f:c4:75:7d:db:77:b9:c0: f7:ce:e0:ba:36:9f:be:39:b6:e6:c6:96:3a:e7:65:af:8f:aa: f0:95:4e:06:72:c8:84:5f:cf:74:8f:73:67:cc:26:3b:d9:1c: 3f:09:e4:f2:07:ba:63:dc:96:37:05:df:53:84:54:fa:5a:40: 27:1a:ab:e0:81:a4:2e:8f:e6:8c:67:3d:51:67:82:33:a4:f5: ec:bf:df:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUwNDIwMjM0NDExWhcNMjUwNDI3MjM0NDExWjAYMRYwFAYD VQQDEw02ODA1ODZjYy03M2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkvy5wvbEbQvm5G5fMiWbjQ9ldn2UlB9+/aOPGFPPQjYAPRR414v7rYZoubo VRteUE6zS5LOSnXfSJRMxLXAK1fH9KnREjv+w5831KV24sfueDUd9t0xxpqn+vCt +Np587NCTPIbaZHTEjboipqn0jaAtVVbrTZU73ErIt59VTQEIi4MsDuzT3ynYIz/ qe/ZGPrfchxd8iKQ7t+ltmmydo5uvX0chvtlmXB+oeFq2KDSDXLDjAeTYn+7pOlo vNkA5/iqUUmgEKLBmTefOphE5CR91izd35wYwDfChWgiL0hueHcI0xjhl5aDjTg/ Zd/TrB5k/BwWNKVOJVN+K7nymQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNroIbgs QTCT1UeHEBJ62U4hN+3ZMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLyKT2dbLeoaSiGKoITCMVtLn6MfD2Hr+jc8pCRxJVZHHzDUk8p3h9 S2fDCC9avpHauJmmEAArfOsg1P3tOl+My8VLOPXCgIvZ0jcnbWopGrFBJ6AC8iAg dxOOB68IOd/gTx+aVUIuswLHg/IaJnlmQ0MfD2oHLcf9voLTDQC+ICLdTaLIvo3l uQnfMBB0c2LRyuootPS9PajQmSLRTiRdYaOm/q8Pj/bEzOCLL8R1fdt3ucD3zuC6 Np++ObbmxpY652Wvj6rwlU4GcsiEX890j3NnzCY72Rw/CeTyB7pj3JY3Bd9ThFT6 WkAnGqvggaQuj+aMZz1RZ4IzpPXsv9/H -----END CERTIFICATE-----Generated at Tue Apr 22 06:13:12 2025 by rpki-client