$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: iDsEbbTNYpfB6oO1kpuE3IPbpDEuAddUsfD76SzLJAw= Subject key identifier: E3:05:D3:4E:87:FF:30:CF:18:20:E5:F5:E1:A1:94:20:76:F2:BD:8A Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 049C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 0491 Signing time: Sat 29 Mar 2025 00:16:10 +0000 Manifest this update: Sat 29 Mar 2025 00:16:10 +0000 Manifest next update: Sat 05 Apr 2025 00:16:10 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: HecAdhYiD6zd6wKbbYMJ5OGA5d/0JsKSiqNqjxc5wj0=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1180 (0x49c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1 Validity Not Before: Mar 29 00:16:10 2025 GMT Not After : Apr 5 00:16:10 2025 GMT Subject: CN=67e73bca-4620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5c:8e:3a:d2:cb:dc:84:44:60:b8:6a:1e:ac: 3d:3f:97:8b:d5:f4:5f:a4:ce:1b:07:55:4b:09:71: 36:e2:81:7f:d3:4c:e0:51:c0:85:be:84:5c:19:61: 7a:95:78:a4:21:92:6e:a5:ee:37:09:87:cd:06:5b: 60:55:12:95:1f:6c:57:f6:14:d9:3b:1a:fe:ac:69: 00:ae:08:91:db:0e:6b:3a:c1:96:f9:a3:b1:f9:f8: 61:22:27:24:76:7f:02:ce:a9:ba:a1:57:0d:34:cd: 4b:12:e3:cc:35:df:f7:57:58:e4:16:f9:11:2f:ee: 00:de:f8:d3:8c:81:19:89:10:d2:b4:61:3c:49:ee: 6c:f1:2b:52:6e:3a:a5:7d:88:57:36:ca:50:be:ee: 62:3d:c6:9f:33:53:e7:07:95:95:38:ce:c1:0e:61: eb:c4:ef:fd:e4:22:a6:67:29:47:21:2d:f9:dc:58: 33:ed:47:c1:54:0a:b9:da:88:32:7f:3f:6b:da:fd: 61:b5:c9:44:72:e7:82:0a:a7:79:d5:23:5d:2b:53: d0:6d:9f:5d:ce:e7:85:8b:62:6e:a6:ee:ae:52:31: d5:57:b8:40:fd:d5:60:d0:b7:0d:61:ed:8b:3d:03: ce:41:3d:3c:ef:f9:1a:99:83:fa:11:66:1f:c2:d3: b5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:05:D3:4E:87:FF:30:CF:18:20:E5:F5:E1:A1:94:20:76:F2:BD:8A X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:f3:7c:a8:fe:4d:50:a9:dd:04:86:7a:e8:58:cf:b6:31:b1: f6:09:f9:22:08:e9:82:66:40:92:6d:8d:b5:1e:5a:a9:48:ca: ec:5b:95:8e:55:76:0c:45:ae:dd:e7:69:bb:60:98:f2:a8:17: 15:b3:a9:13:34:e6:cd:89:16:f0:7f:04:eb:ba:20:5d:54:9d: 31:6f:ce:49:00:35:84:c8:00:2d:c3:69:6b:5c:ff:29:46:6d: a4:9a:c4:9f:7e:1a:be:4c:5f:94:98:cd:57:b5:c2:7d:06:12: 04:df:20:58:7f:d3:70:4a:60:78:c8:af:54:39:9a:b7:0c:74: a6:07:d3:8c:94:d2:32:04:0e:ee:8d:a5:f3:dd:9e:fe:10:98: 2a:81:44:c5:dc:d5:bd:97:06:1f:8d:58:4f:f2:a7:05:5f:a6: 4e:74:7c:fe:fc:b1:3a:fb:3a:20:81:6c:0d:69:a0:a2:19:fa: 9b:53:a2:91:6d:3e:f5:2b:eb:49:cf:51:f8:06:bf:71:bc:7f: 6a:18:3a:47:a5:2d:fc:4a:70:95:50:e4:e8:7d:77:a4:5b:3f: d5:11:4b:b0:b5:40:94:62:72:1f:b2:74:b0:0e:b7:a1:d2:15: 2a:12:cf:7d:9d:0c:94:48:ed:56:ff:9c:9e:9d:e8:6b:a2:73: a5:60:25:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUwMzI5MDAxNjEwWhcNMjUwNDA1MDAxNjEwWjAYMRYwFAYD VQQDEw02N2U3M2JjYS00NjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VyOOtLL3IREYLhqHqw9P5eL1fRfpM4bB1VLCXE24oF/00zgUcCFvoRcGWF6 lXikIZJupe43CYfNBltgVRKVH2xX9hTZOxr+rGkArgiR2w5rOsGW+aOx+fhhIick dn8Czqm6oVcNNM1LEuPMNd/3V1jkFvkRL+4A3vjTjIEZiRDStGE8Se5s8StSbjql fYhXNspQvu5iPcafM1PnB5WVOM7BDmHrxO/95CKmZylHIS353Fgz7UfBVAq52ogy fz9r2v1htclEcueCCqd51SNdK1PQbZ9dzueFi2Jupu6uUjHVV7hA/dVg0LcNYe2L PQPOQT087/kamYP6EWYfwtO1WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMF006H /zDPGCDl9eGhlCB28r2KMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB783yo/k1Qqd0EhnroWM+2MbH2CfkiCOmCZkCSbY21HlqpSMrsW5WO VXYMRa7d52m7YJjyqBcVs6kTNObNiRbwfwTruiBdVJ0xb85JADWEyAAtw2lrXP8p Rm2kmsSffhq+TF+UmM1XtcJ9BhIE3yBYf9NwSmB4yK9UOZq3DHSmB9OMlNIyBA7u jaXz3Z7+EJgqgUTF3NW9lwYfjVhP8qcFX6ZOdHz+/LE6+zoggWwNaaCiGfqbU6KR bT71K+tJz1H4Br9xvH9qGDpHpS38SnCVUOTofXekWz/VEUuwtUCUYnIfsnSwDreh 0hUqEs99nQyUSO1W/5yenehronOlYCXc -----END CERTIFICATE-----Generated at Sat Apr 5 00:00:39 2025 by rpki-client