$ rpki-client -vvf rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft File: SdD0BpcqgFseep_CD7OpzLdmKs4.mft (raw, json) Hash identifier: pneJuwmW7/HJb7b/dQwPFA1/sVgwPek4IWglz32aHSo= Subject key identifier: D4:DD:DB:74:0A:CD:65:7D:84:EC:4F:93:C7:5E:4F:8A:E9:A9:48:9C Authority key identifier: 49:D0:F4:06:97:2A:80:5B:1E:7A:9F:C2:0F:B3:A9:CC:B7:66:2A:CE Certificate issuer: /CN=A919D396/serialNumber=49D0F406972A805B1E7A9FC20FB3A9CCB7662ACE Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft Manifest number: 016E Signing time: Thu 17 Apr 2025 02:49:34 +0000 Manifest this update: Thu 17 Apr 2025 02:49:34 +0000 Manifest next update: Thu 24 Apr 2025 02:49:34 +0000 Files and hashes: 1: SdD0BpcqgFseep_CD7OpzLdmKs4.crl (hash: AfIQAtNJBsF+C4Xp7/zruYsRC5D/FJfFAW0u0xPNoL4=) 2: 110CB61EEFA211ED87AD1F0BC4F9AE02.roa (hash: ln6kjE1HduHHIWCF/si9qoxC6cm3GotB2vKTDwUMOYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.crl rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 02:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D396, serialNumber=49D0F406972A805B1E7A9FC20FB3A9CCB7662ACE Validity Not Before: Apr 17 02:49:34 2025 GMT Not After : Apr 24 02:49:34 2025 GMT Subject: CN=68006c3e-2c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e5:8c:66:32:9f:28:19:10:8a:93:36:9e:a8: e1:69:0f:3a:16:8c:30:f7:f6:0a:e0:f5:c5:6e:73: aa:ea:f2:3d:a7:77:51:57:9e:6b:00:93:d1:d5:33: 08:1b:cb:29:42:04:5e:48:36:76:8f:07:e5:b8:5a: 72:0c:29:28:16:51:0d:b7:ef:40:ba:67:af:cc:53: 8b:8b:6c:16:61:33:7a:35:77:c2:96:ba:3d:00:9e: 4a:5c:8c:0e:4a:fd:92:45:68:d9:63:1a:11:95:66: 5b:e7:26:c9:52:77:6f:43:0a:cf:c1:15:b0:95:72: 2b:2f:cc:f2:a4:3f:04:c7:02:c6:e1:19:c5:b2:6a: 2c:dd:93:53:2e:4b:25:9b:88:b4:be:08:1f:99:62: 55:70:27:d3:1d:77:d9:69:c3:0e:f9:31:c2:4a:cc: cf:13:f0:ad:3c:e7:03:30:3b:5d:12:93:a3:49:8e: 0b:90:42:04:20:b0:65:10:6d:e4:a8:a1:16:7b:2a: e7:2a:7e:6f:26:06:30:67:fc:ce:b4:5b:96:5f:4d: 50:12:89:ef:54:68:3f:d4:28:a1:70:26:20:10:3d: 69:41:31:8b:bb:eb:68:58:a2:33:f5:5d:e9:91:ba: ee:54:26:cd:6e:ff:d3:39:71:1a:ed:22:9b:c8:71: ef:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DD:DB:74:0A:CD:65:7D:84:EC:4F:93:C7:5E:4F:8A:E9:A9:48:9C X509v3 Authority Key Identifier: keyid:49:D0:F4:06:97:2A:80:5B:1E:7A:9F:C2:0F:B3:A9:CC:B7:66:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:3d:f6:43:d2:cd:08:42:47:7f:2a:df:bf:21:7d:3e:a1:38: 7b:a1:df:22:de:a4:53:08:db:e4:89:4e:73:cd:70:84:b2:0a: 54:79:83:db:01:c5:eb:3c:66:a4:18:25:16:04:a0:bb:25:e9: 8b:54:8c:49:7e:98:f3:a7:f2:71:68:19:a0:a0:c9:e5:96:88: 33:f8:5f:5c:03:b7:9a:15:99:7a:6f:87:db:1c:c8:64:58:e6: fb:af:68:85:af:ae:fa:10:91:29:50:b5:4c:a9:6b:3c:ed:d6: fc:18:e7:a4:db:72:49:04:22:ac:f8:45:16:63:23:bd:84:b1: 0e:69:52:03:c2:9c:fd:9c:22:0f:75:61:8b:51:c0:fd:b6:43: 38:2c:8e:8e:93:99:94:13:b2:0b:12:87:8d:67:b9:88:80:8a: 81:84:1f:0d:a6:f5:c2:3f:c1:ab:12:66:ce:7d:6c:cb:02:a8: b5:5e:37:d4:7c:92:2f:01:96:90:e2:d0:af:a2:2c:55:23:f9: 1e:26:35:73:cc:57:8f:e6:eb:03:81:71:b4:6e:fe:48:b6:72: 84:56:79:64:af:38:eb:8b:80:54:50:6e:87:aa:fe:b2:a3:6d: 6b:b8:1b:0e:7d:c0:e2:d9:a5:22:17:cd:01:ae:46:42:8f:6e: 42:ef:a5:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQzOTYxMTAvBgNVBAUTKDQ5RDBGNDA2OTcyQTgwNUIxRTdBOUZDMjBGQjNBOUND Qjc2NjJBQ0UwHhcNMjUwNDE3MDI0OTM0WhcNMjUwNDI0MDI0OTM0WjAYMRYwFAYD VQQDEw02ODAwNmMzZS0yYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuWMZjKfKBkQipM2nqjhaQ86Foww9/YK4PXFbnOq6vI9p3dRV55rAJPR1TMI G8spQgReSDZ2jwfluFpyDCkoFlENt+9AumevzFOLi2wWYTN6NXfClro9AJ5KXIwO Sv2SRWjZYxoRlWZb5ybJUndvQwrPwRWwlXIrL8zypD8ExwLG4RnFsmos3ZNTLksl m4i0vggfmWJVcCfTHXfZacMO+THCSszPE/CtPOcDMDtdEpOjSY4LkEIEILBlEG3k qKEWeyrnKn5vJgYwZ/zOtFuWX01QEonvVGg/1CihcCYgED1pQTGLu+toWKIz9V3p kbruVCbNbv/TOXEa7SKbyHHvQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTd23QK zWV9hOxPk8deT4rpqUicMB8GA1UdIwQYMBaAFEnQ9AaXKoBbHnqfwg+zqcy3ZirO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDM5Ni85NUQwREY3QUVG OUMxMUVEOUJGNjNCODZDNEY5QUUwMi9TZEQwQnBjcWdGc2VlcF9DRDdPcHpMZG1L czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NkRDBCcGNxZ0ZzZWVwX0NEN09wekxkbUtzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDM5Ni85NUQwREY3QUVGOUMxMUVEOUJGNjNCODZDNEY5QUUwMi9TZEQwQnBjcWdG c2VlcF9DRDdPcHpMZG1LczQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOPfZD0s0IQkd/Kt+/IX0+oTh7od8i3qRTCNvkiU5zzXCEsgpUeYPb AcXrPGakGCUWBKC7JemLVIxJfpjzp/JxaBmgoMnllogz+F9cA7eaFZl6b4fbHMhk WOb7r2iFr676EJEpULVMqWs87db8GOek23JJBCKs+EUWYyO9hLEOaVIDwpz9nCIP dWGLUcD9tkM4LI6Ok5mUE7ILEoeNZ7mIgIqBhB8NpvXCP8GrEmbOfWzLAqi1XjfU fJIvAZaQ4tCvoixVI/keJjVzzFeP5usDgXG0bv5ItnKEVnlkrzjri4BUUG6Hqv6y o21ruBsOfcDi2aUiF80BrkZCj25C76Vj -----END CERTIFICATE-----Generated at Fri Apr 18 20:23:52 2025 by rpki-client