$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: dUj7c1u5HGS4naqvigwrdaPW+Ez2Vl7lIXBqt7ht4t4= Subject key identifier: D9:F7:DB:E9:CA:08:A6:13:E1:93:8C:81:C7:61:51:93:97:A1:E0:5C Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 12ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 12DD Signing time: Fri 04 Apr 2025 17:09:30 +0000 Manifest this update: Fri 04 Apr 2025 17:09:30 +0000 Manifest next update: Fri 11 Apr 2025 17:09:29 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: mBMt3KX9tu1WpzZ2us7vAyhwUkoPKntZjcckPM0wTYU=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: QCjfIjSatqEkani4vFyMBR81W4WM4U5LTw8JrcC/R5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4845 (0x12ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978 Validity Not Before: Apr 4 17:09:30 2025 GMT Not After : Apr 11 17:09:29 2025 GMT Subject: CN=67f0124a-8262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f4:2d:a0:7b:a4:18:66:aa:9c:32:9e:85:27: 71:5e:d2:3b:36:62:4b:3b:12:3d:5f:38:cd:2c:7c: 8c:e3:29:9c:3b:6c:32:96:25:a1:07:f0:1d:0b:dd: 1b:76:e8:a5:37:3e:d5:67:bb:48:75:35:2f:3a:82: 7a:d4:1c:59:cb:67:b1:50:bc:3b:56:a4:00:8c:71: 05:89:c4:73:84:8d:6c:c5:6d:f9:2f:e6:89:d3:22: 5a:41:27:93:3f:b7:5c:05:72:81:f0:41:a9:a9:41: 01:bc:9a:f1:33:bb:89:c7:41:86:c8:65:d6:26:18: f0:c5:67:a7:84:4f:07:62:88:db:84:84:44:83:2e: 11:0a:0f:97:39:51:8b:13:cc:d8:cc:e6:b3:f0:48: 5b:35:10:e2:73:ca:4d:bc:08:82:c2:7d:97:b7:dc: ae:5f:e9:44:53:cd:dc:a8:eb:bf:1a:e4:2c:ab:b1: fd:93:b7:6c:82:70:09:40:6b:47:aa:59:9e:1b:44: 61:0a:62:49:fc:85:89:06:2d:fa:3a:b0:fd:e5:3e: bd:e9:da:56:8f:dd:eb:80:06:a9:c8:2e:96:c9:40: 02:8b:72:79:91:4b:03:59:07:b9:17:cf:9f:a5:35: 96:6f:06:e2:dc:b7:18:2b:ba:df:25:be:0f:a4:51: e3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F7:DB:E9:CA:08:A6:13:E1:93:8C:81:C7:61:51:93:97:A1:E0:5C X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f2:76:76:8b:c1:0f:b4:44:79:c4:18:cc:41:0a:7a:1b:77: 49:b6:e1:8c:c5:91:70:64:d5:5b:3d:fa:21:53:18:c6:92:25: a2:ec:ee:6d:fb:81:9c:d6:c0:b9:a4:22:36:09:c9:8d:7d:1e: df:ad:82:92:73:53:cf:d6:1b:8c:d4:98:27:6c:25:b4:88:12: 09:bf:e0:cb:25:06:87:bc:9a:fd:ce:95:87:76:ef:d5:e2:18: 01:cd:f0:4e:7e:39:c5:dc:08:c0:c8:95:f0:a2:2e:e4:80:ae: 4c:e5:ed:4d:53:7c:e6:e2:50:16:9c:e9:89:5d:c1:24:78:96: b8:6e:94:77:81:88:c2:3b:13:bd:7d:7d:dd:80:d1:57:e5:20: 34:58:f6:e8:31:cd:c1:6c:d6:71:9a:39:99:23:b1:8a:4b:55: d5:39:bb:e1:34:85:db:db:be:0e:be:8e:52:e2:69:59:5c:4f: 93:8d:01:48:a1:a1:e6:2f:b1:2a:b5:b5:c2:1a:b6:2a:bb:1d: 5a:b3:67:83:e5:a6:e7:af:17:bb:76:d0:f6:7b:be:0d:3a:5a: 73:2b:06:44:22:b2:d0:05:2a:e3:72:7c:49:ee:88:80:86:d5: 4d:db:9e:38:05:59:3a:ba:f6:10:82:ac:f5:66:8b:87:13:35: 0c:a0:80:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUwNDA0MTcwOTMwWhcNMjUwNDExMTcwOTI5WjAYMRYwFAYD VQQDEw02N2YwMTI0YS04MjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PQtoHukGGaqnDKehSdxXtI7NmJLOxI9XzjNLHyM4ymcO2wyliWhB/AdC90b duilNz7VZ7tIdTUvOoJ61BxZy2exULw7VqQAjHEFicRzhI1sxW35L+aJ0yJaQSeT P7dcBXKB8EGpqUEBvJrxM7uJx0GGyGXWJhjwxWenhE8HYojbhIREgy4RCg+XOVGL E8zYzOaz8EhbNRDic8pNvAiCwn2Xt9yuX+lEU83cqOu/GuQsq7H9k7dsgnAJQGtH qlmeG0RhCmJJ/IWJBi36OrD95T696dpWj93rgAapyC6WyUACi3J5kUsDWQe5F8+f pTWWbwbi3LcYK7rfJb4PpFHj0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNn32+nK CKYT4ZOMgcdhUZOXoeBcMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB28nZ2i8EPtER5xBjMQQp6G3dJtuGMxZFwZNVbPfohUxjGkiWi7O5t +4Gc1sC5pCI2CcmNfR7frYKSc1PP1huM1JgnbCW0iBIJv+DLJQaHvJr9zpWHdu/V 4hgBzfBOfjnF3AjAyJXwoi7kgK5M5e1NU3zm4lAWnOmJXcEkeJa4bpR3gYjCOxO9 fX3dgNFX5SA0WPboMc3BbNZxmjmZI7GKS1XVObvhNIXb274Ovo5S4mlZXE+TjQFI oaHmL7EqtbXCGrYqux1as2eD5abnrxe7dtD2e74NOlpzKwZEIrLQBSrjcnxJ7oiA htVN2544BVk6uvYQgqz1ZouHEzUMoIBR -----END CERTIFICATE-----Generated at Sun Apr 6 06:29:48 2025 by rpki-client