$ rpki-client -vvf rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.mft File: -0toP7pNtqwaWsUIgH_H6klsXsU.mft (raw, json) Hash identifier: byAQkg44slT5fYOlKoL9hEZHN9um2S1E0lbBjq7jKtw= Subject key identifier: 34:9C:56:24:61:94:0C:04:FF:B6:AF:7D:54:60:36:4C:A5:95:4C:6B Authority key identifier: FB:4B:68:3F:BA:4D:B6:AC:1A:5A:C5:08:80:7F:C7:EA:49:6C:5E:C5 Certificate issuer: /CN=A918B759/serialNumber=FB4B683FBA4DB6AC1A5AC508807FC7EA496C5EC5 Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0toP7pNtqwaWsUIgH_H6klsXsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.mft Manifest number: 18 Signing time: Sat 29 Mar 2025 07:17:34 +0000 Manifest this update: Sat 29 Mar 2025 07:17:34 +0000 Manifest next update: Sat 05 Apr 2025 07:17:33 +0000 Files and hashes: 1: -0toP7pNtqwaWsUIgH_H6klsXsU.crl (hash: +5SYviMZHDZNXHoBjBp1JC47hHMdffSelCc+1m3afCg=) 2: 44DE35D0EBE011EFB534ED7AC4F9AE02.roa (hash: 0+vRm59ex9NMyreeXhWeUcmkTmPtMjioToFn5xjtXJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.crl rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0toP7pNtqwaWsUIgH_H6klsXsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B759 Validity Not Before: Mar 29 07:17:34 2025 GMT Not After : Apr 5 07:17:33 2025 GMT Subject: CN=67e79e8e-f8cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cf:3a:72:2c:13:45:7c:f7:0a:4d:e7:cf:ed: b2:25:38:65:a5:46:72:97:81:49:14:8c:d1:49:5f: bb:83:bd:40:a4:6f:e8:6b:31:69:c1:86:f0:52:18: 34:d5:fb:10:0a:39:9e:1e:6a:bd:c8:5a:d0:40:cb: d2:20:91:4c:a7:9e:d6:af:ee:39:58:64:92:6f:63: 8f:07:0e:0e:a2:a8:be:09:6e:40:c5:60:81:ae:7f: 75:6a:9c:72:fa:ff:1d:16:a3:76:cc:57:d6:a0:99: 88:1c:0e:4c:82:e6:a4:a4:1a:ea:e2:3e:ca:67:91: 97:1f:81:b9:01:7f:c4:24:fb:1a:bb:c4:95:cb:e1: bb:5f:78:0f:c5:60:52:76:84:fe:ef:3e:35:8e:93: 0c:51:c9:1a:22:42:90:d7:f5:47:71:a6:33:c0:65: 7e:75:05:ce:a6:45:b7:d5:06:8d:a1:8e:af:23:32: 18:32:71:d7:26:1f:ff:62:96:9c:4a:4b:de:aa:26: 7f:91:a2:d1:ef:a7:b8:71:17:ac:a6:2b:b6:d3:53: 4b:37:b9:54:6b:55:56:db:02:eb:09:45:e6:bc:86: 3c:de:cf:cb:89:ab:82:d7:73:fb:fb:42:ab:ad:84: 8d:b8:23:ea:94:90:52:81:a6:a5:cc:94:df:92:29: 2a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9C:56:24:61:94:0C:04:FF:B6:AF:7D:54:60:36:4C:A5:95:4C:6B X509v3 Authority Key Identifier: keyid:FB:4B:68:3F:BA:4D:B6:AC:1A:5A:C5:08:80:7F:C7:EA:49:6C:5E:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0toP7pNtqwaWsUIgH_H6klsXsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c0:b3:ab:f7:0a:68:d8:2c:c1:c3:5f:9f:1f:be:4c:83:9c: a1:4e:06:9a:f1:a7:08:5c:fa:e4:ef:a6:01:2a:78:5f:72:85: 05:f2:81:52:dd:1b:8c:3f:b6:5e:c0:07:52:e1:b8:07:53:44: e4:56:f1:4e:b8:11:ee:3a:63:ee:c2:e3:6c:a4:1e:e5:5c:d9: 9e:4a:a4:8c:53:73:ff:a9:ab:64:2f:0d:ec:af:c3:4b:19:23: 98:74:e1:9d:5b:fc:49:d0:10:f4:15:23:5a:a6:9a:b6:f1:41: 88:2d:60:6f:02:6b:d7:94:09:57:28:8c:99:6e:39:4e:c2:78: a7:ec:41:a5:ad:af:c3:fc:37:0c:47:47:14:24:41:61:be:00: 85:bc:8a:80:43:1d:c4:ae:30:04:b1:77:a2:15:b6:79:d6:06: 32:e5:49:ee:cf:5b:d8:a6:e2:c9:13:3e:6a:de:07:8e:a3:0f: b9:4c:0f:d8:e9:d0:c5:88:5e:de:d2:08:66:6e:f1:83:0c:05: cf:f6:d4:65:4f:00:6b:0c:72:fb:59:31:32:04:16:d4:02:6d: a1:69:ab:c2:fa:f9:1e:03:e5:89:d8:17:2b:9e:bf:83:95:9e: 8a:6b:b0:bd:24:00:f5:7b:4c:90:8c:5d:16:02:8f:19:fa:8f: 83:6b:39:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Qjc1OTExMC8GA1UEBRMoRkI0QjY4M0ZCQTREQjZBQzFBNUFDNTA4ODA3RkM3RUE0 OTZDNUVDNTAeFw0yNTAzMjkwNzE3MzRaFw0yNTA0MDUwNzE3MzNaMBgxFjAUBgNV BAMTDTY3ZTc5ZThlLWY4Y2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKzzpyLBNFfPcKTefP7bIlOGWlRnKXgUkUjNFJX7uDvUCkb+hrMWnBhvBSGDTV +xAKOZ4ear3IWtBAy9IgkUynntav7jlYZJJvY48HDg6iqL4JbkDFYIGuf3VqnHL6 /x0Wo3bMV9agmYgcDkyC5qSkGuriPspnkZcfgbkBf8Qk+xq7xJXL4btfeA/FYFJ2 hP7vPjWOkwxRyRoiQpDX9UdxpjPAZX51Bc6mRbfVBo2hjq8jMhgycdcmH/9ilpxK S96qJn+RotHvp7hxF6ymK7bTU0s3uVRrVVbbAusJRea8hjzez8uJq4LXc/v7Qqut hI24I+qUkFKBpqXMlN+SKSoTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNJxWJGGU DAT/tq99VGA2TKWVTGswHwYDVR0jBBgwFoAU+0toP7pNtqwaWsUIgH/H6klsXsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThCNzU5LzY5QzNCRUU2RUI2 NDExRUZBOUEyQzI2MUM0RjlBRTAyLy0wdG9QN3BOdHF3YVdzVUlnSF9INmtsc1hz VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTB0b1A3cE50cXdhV3NVSWdIX0g2a2xzWHNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThC NzU5LzY5QzNCRUU2RUI2NDExRUZBOUEyQzI2MUM0RjlBRTAyLy0wdG9QN3BOdHF3 YVdzVUlnSF9INmtsc1hzVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHzAs6v3CmjYLMHDX58fvkyDnKFOBprxpwhc+uTvpgEqeF9yhQXygVLd G4w/tl7AB1LhuAdTRORW8U64Ee46Y+7C42ykHuVc2Z5KpIxTc/+pq2QvDeyvw0sZ I5h04Z1b/EnQEPQVI1qmmrbxQYgtYG8Ca9eUCVcojJluOU7CeKfsQaWtr8P8NwxH RxQkQWG+AIW8ioBDHcSuMASxd6IVtnnWBjLlSe7PW9im4skTPmreB46jD7lMD9jp 0MWIXt7SCGZu8YMMBc/21GVPAGsMcvtZMTIEFtQCbaFpq8L6+R4D5YnYFyuev4OV noprsL0kAPV7TJCMXRYCjxn6j4NrOfQ= -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:55 2025 by rpki-client