$ rpki-client -vvf rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft File: aAYK77v8wH1z211yeLyPJJxX9RU.mft (raw, json) Hash identifier: 8Sv2dNfK13LNWy/aXbKezftLY7j87grbiWXt0ZI+g7E= Subject key identifier: 29:23:2B:11:53:35:25:77:EC:F8:7D:C8:34:55:D3:43:EF:B8:9A:15 Authority key identifier: 68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 Certificate issuer: /CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Certificate serial: 0377 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft Manifest number: 036E Signing time: Thu 13 Mar 2025 00:30:10 +0000 Manifest this update: Thu 13 Mar 2025 00:30:09 +0000 Manifest next update: Thu 20 Mar 2025 00:30:09 +0000 Files and hashes: 1: aAYK77v8wH1z211yeLyPJJxX9RU.crl (hash: ExE/a1bCkNZR5j4PP8lHZg0eU7iXOsVLB+umyw5voVM=) 2: 5B639C667CEB11EDA3D10364C4F9AE02.roa (hash: 2RRu5OL1BYLyINn4BdcdcRIHzJRCaxx/gJ62D9F6Yd8=) 3: ADBB651E043411ED9F02B325C4F9AE02.roa (hash: eYJUagTOOw+v7d2iEQQPf9qJlyeSg1wLPwHS4oqdafg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 887 (0x377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912859A Validity Not Before: Mar 13 00:30:09 2025 GMT Not After : Mar 20 00:30:09 2025 GMT Subject: CN=67d22711-0c26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:db:f2:fe:d2:03:35:d8:51:e5:90:11:a4:46: fb:3f:65:39:cf:f3:68:83:49:e8:bc:05:05:33:2d: 7f:e3:43:bc:51:fa:af:84:68:40:d8:7b:39:73:1c: b6:9e:a2:1a:75:dd:d4:73:46:13:94:18:2c:4b:a1: 46:76:bc:84:da:0d:ba:76:1b:c9:76:8b:05:8d:01: 94:d4:df:bb:7f:5f:68:74:c0:40:48:87:9a:1d:e7: 35:e3:79:62:f0:4d:12:bb:02:6c:f1:07:47:ef:b1: 5e:91:12:05:09:b8:ec:9a:37:0f:b5:7f:56:f9:2e: 84:6c:41:5b:06:bd:d2:67:3f:df:0f:ca:29:ee:ec: ca:94:00:ee:a0:a0:6e:94:f1:40:fc:35:2d:5f:81: da:9b:7e:1c:20:1c:10:5e:81:39:7e:6f:10:62:12: 85:82:b3:68:10:8c:57:13:33:13:30:34:64:d6:c1: f6:84:1e:9e:4d:68:19:bf:31:fb:0c:54:9d:cb:7f: 18:4b:35:d7:dc:29:38:82:85:45:bc:4e:70:0e:aa: 8e:3e:bd:e6:23:a3:e6:fe:df:31:ca:ef:1b:1f:dc: e1:83:0c:f8:e2:97:33:0e:0f:76:6a:41:5c:49:ad: 21:94:e2:67:07:f7:0a:6e:12:f1:00:5b:d1:74:91: 32:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:23:2B:11:53:35:25:77:EC:F8:7D:C8:34:55:D3:43:EF:B8:9A:15 X509v3 Authority Key Identifier: keyid:68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:94:b7:d7:4a:4f:2f:17:78:10:73:8b:8f:91:64:e2:d2:0b: 8e:ce:a2:b4:77:8b:1c:bf:69:7b:b0:b6:ce:8d:fd:47:1b:29: 1b:e4:fc:a3:87:d0:57:c3:51:41:00:94:b2:cc:f7:5f:ad:99: 9f:f8:5c:f5:ad:5c:b8:54:b5:6a:25:a5:b3:89:9c:48:1d:82: 83:58:b5:be:6e:ca:a6:84:7e:23:b3:5d:cc:9b:2e:8d:47:04: cc:45:b1:40:7e:44:36:b9:8a:20:f2:ba:1f:17:66:85:91:2f: f7:4e:2a:1f:b8:40:06:42:c7:59:4d:54:e7:12:f1:de:94:a4: a0:d3:bc:5c:1e:a6:20:25:d3:75:f9:91:d6:e7:93:6b:c9:b1: be:c7:2b:12:55:31:a7:9f:76:68:e3:a2:a5:a2:27:a6:80:a6: 58:6d:e4:46:ce:81:00:3a:d0:6e:c8:b7:3e:93:07:8a:9f:e3: 17:88:70:18:8d:a2:6a:a4:e2:38:64:4d:e4:9a:81:74:a2:01: bd:5b:40:40:af:80:65:7d:e0:dc:1b:9e:b9:f4:19:c6:7a:e8: 2f:61:6a:44:9b:56:7f:fd:01:97:ee:b5:d3:67:e4:5b:c8:2d: b5:07:54:ac:ea:ac:e6:9b:b7:09:28:ec:da:06:ea:52:7f:e2: cb:c9:29:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1OUExMTAvBgNVBAUTKDY4MDYwQUVGQkJGQ0MwN0Q3M0RCNUQ3Mjc4QkM4RjI0 OUM1N0Y1MTUwHhcNMjUwMzEzMDAzMDA5WhcNMjUwMzIwMDAzMDA5WjAYMRYwFAYD VQQDEw02N2QyMjcxMS0wYzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNvy/tIDNdhR5ZARpEb7P2U5z/Nog0novAUFMy1/40O8UfqvhGhA2Hs5cxy2 nqIadd3Uc0YTlBgsS6FGdryE2g26dhvJdosFjQGU1N+7f19odMBASIeaHec143li 8E0SuwJs8QdH77FekRIFCbjsmjcPtX9W+S6EbEFbBr3SZz/fD8op7uzKlADuoKBu lPFA/DUtX4Ham34cIBwQXoE5fm8QYhKFgrNoEIxXEzMTMDRk1sH2hB6eTWgZvzH7 DFSdy38YSzXX3Ck4goVFvE5wDqqOPr3mI6Pm/t8xyu8bH9zhgwz44pczDg92akFc Sa0hlOJnB/cKbhLxAFvRdJEyqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkjKxFT NSV37Ph9yDRV00PvuJoVMB8GA1UdIwQYMBaAFGgGCu+7/MB9c9tdcni8jyScV/UV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU5QS9CQUNBQjdFQzlE RkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdIMXoyMTF5ZUx5UEpKeFg5 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FBWUs3N3Y4d0gxejIxMXllTHlQSkp4WDlSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU5QS9CQUNBQjdFQzlERkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdI MXoyMTF5ZUx5UEpKeFg5UlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqlLfXSk8vF3gQc4uPkWTi0guOzqK0d4scv2l7sLbOjf1HGykb5Pyj h9BXw1FBAJSyzPdfrZmf+Fz1rVy4VLVqJaWziZxIHYKDWLW+bsqmhH4js13Mmy6N RwTMRbFAfkQ2uYog8rofF2aFkS/3TiofuEAGQsdZTVTnEvHelKSg07xcHqYgJdN1 +ZHW55NrybG+xysSVTGnn3Zo46KloiemgKZYbeRGzoEAOtBuyLc+kweKn+MXiHAY jaJqpOI4ZE3kmoF0ogG9W0BAr4BlfeDcG5659BnGeugvYWpEm1Z//QGX7rXTZ+Rb yC21B1Ss6qzmm7cJKOzaBupSf+LLySmZ -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:55 2025 by rpki-client