$ rpki-client -vvf rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft File: jGz7q86HuhmiCnuH8oZS21tKfVI.mft (raw, json) Hash identifier: YZXIyZvANNV1NmOWawnu4v8/pU6MK05tCCvNSvbkyV8= Subject key identifier: 7D:72:A2:F8:CA:14:FA:F7:81:59:6C:0D:AE:E0:07:49:88:BC:6E:DE Authority key identifier: 8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 Certificate issuer: /CN=A912A39C/serialNumber=8C6CFBABCE87BA19A20A7B87F28652DB5B4A7D52 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft Manifest number: BB Signing time: Thu 13 Mar 2025 04:02:18 +0000 Manifest this update: Thu 13 Mar 2025 04:02:18 +0000 Manifest next update: Thu 20 Mar 2025 04:02:18 +0000 Files and hashes: 1: jGz7q86HuhmiCnuH8oZS21tKfVI.crl (hash: jacOq5fXv0/AcAR47GQJROH68moJazogdc8pBS3LXVw=) 2: F2F9933AE1FF11EE9A5D8C25C4F9AE02.roa (hash: IvfSA4bOvy2iuPTe72seLf8xFLPqNdLRBTEvJc1ziq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A39C Validity Not Before: Mar 13 04:02:18 2025 GMT Not After : Mar 20 04:02:18 2025 GMT Subject: CN=67d258ca-3e42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8a:32:b1:8b:67:b8:4c:60:da:0a:14:b1:0b: 52:2c:85:fe:f0:1a:fd:dd:da:52:25:a3:91:5f:e9: 21:92:69:75:9f:1f:73:a7:7e:a0:f8:f7:f6:c8:38: 68:35:98:25:0a:52:d7:53:f6:6a:2c:f5:31:0d:c4: f8:5e:7e:74:a3:f0:4c:b1:f6:d1:c7:5d:ef:c0:46: 52:77:db:d4:67:bc:9c:26:44:46:32:d6:57:ad:23: 17:1d:b5:af:41:22:cb:57:30:a6:2f:83:eb:2e:89: a0:e3:a1:56:aa:84:6c:3c:ba:8d:7b:a0:67:bf:4d: 88:3e:13:50:89:0d:51:81:63:9c:27:9b:c2:fb:d4: dd:01:5a:4d:83:e5:5e:26:41:e1:b2:64:d3:0d:ba: 79:b9:8c:8e:f1:99:55:9d:04:23:b1:55:26:91:75: 9f:6c:43:50:98:3c:1c:29:73:b5:7a:47:6d:29:ce: 8d:1a:68:27:9b:c8:73:e5:56:59:7d:be:26:82:f4: 4b:3f:6b:86:e4:d1:d8:a7:fd:61:ca:ae:92:04:bf: fc:57:ce:5a:e0:7a:b2:c8:df:78:5d:39:42:08:a5: ca:e2:76:38:43:35:ca:1d:78:8a:b7:5b:f9:dc:35: 34:b2:df:ac:09:d2:63:4b:73:8f:17:76:1b:40:6e: 15:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:72:A2:F8:CA:14:FA:F7:81:59:6C:0D:AE:E0:07:49:88:BC:6E:DE X509v3 Authority Key Identifier: keyid:8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:4d:0a:81:75:9d:5c:d4:d6:ef:5c:35:bc:76:11:7e:d7:46: 5c:d1:16:2c:4c:e5:c0:84:ea:5a:9d:4d:99:44:31:78:f9:47: b9:6d:3a:be:1f:75:31:2d:b0:90:79:21:fa:50:98:dc:4d:e9: 5e:d5:f1:2c:22:f5:5d:f1:e9:71:6b:2d:8e:bc:15:d1:72:ce: 13:03:8e:c2:10:89:06:b9:6f:a7:a2:ab:75:b6:77:ea:5e:23: eb:a8:f3:65:3f:93:f2:5a:ce:ab:b0:8d:e4:d3:55:26:3e:38: 5b:46:24:7e:ba:58:ac:2e:99:eb:b4:c4:84:bb:5f:28:7d:cc: 4c:3f:f6:bf:f2:a8:7f:ab:e6:96:ff:6c:3d:13:a8:bb:d6:56: 1a:11:85:6c:ef:37:0f:02:88:b2:42:9a:54:1c:43:d0:77:0c: 3e:ff:7e:f6:fd:1e:14:cb:a8:2b:91:82:25:cc:6f:ca:c3:35: 2a:0b:e0:15:4a:c0:65:65:b0:c6:28:ca:97:fd:6f:cf:4e:3f: 38:84:e0:e5:46:26:07:28:25:f2:af:9b:ad:fd:f3:d3:c9:e4: 87:e1:f4:87:f6:ac:a6:ba:5a:2e:d2:0a:b9:4c:57:63:ba:1d: ce:88:4f:4a:7d:c7:a6:38:a2:f1:b7:e1:88:d1:aa:37:37:49: 7c:9d:f9:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzOUMxMTAvBgNVBAUTKDhDNkNGQkFCQ0U4N0JBMTlBMjBBN0I4N0YyODY1MkRC NUI0QTdENTIwHhcNMjUwMzEzMDQwMjE4WhcNMjUwMzIwMDQwMjE4WjAYMRYwFAYD VQQDEw02N2QyNThjYS0zZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4oysYtnuExg2goUsQtSLIX+8Br93dpSJaORX+khkml1nx9zp36g+Pf2yDho NZglClLXU/ZqLPUxDcT4Xn50o/BMsfbRx13vwEZSd9vUZ7ycJkRGMtZXrSMXHbWv QSLLVzCmL4PrLomg46FWqoRsPLqNe6Bnv02IPhNQiQ1RgWOcJ5vC+9TdAVpNg+Ve JkHhsmTTDbp5uYyO8ZlVnQQjsVUmkXWfbENQmDwcKXO1ekdtKc6NGmgnm8hz5VZZ fb4mgvRLP2uG5NHYp/1hyq6SBL/8V85a4HqyyN94XTlCCKXK4nY4QzXKHXiKt1v5 3DU0st+sCdJjS3OPF3YbQG4VGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1yovjK FPr3gVlsDa7gB0mIvG7eMB8GA1UdIwQYMBaAFIxs+6vOh7oZogp7h/KGUttbSn1S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTM5Qy85RDU4NEQ2OEUx RkYxMUVFQjJBMUNFMjRDNEY5QUUwMi9qR3o3cTg2SHVobWlDbnVIOG9aUzIxdEtm VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHejdxODZIdWhtaUNudUg4b1pTMjF0S2ZWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTM5Qy85RDU4NEQ2OEUxRkYxMUVFQjJBMUNFMjRDNEY5QUUwMi9qR3o3cTg2SHVo bWlDbnVIOG9aUzIxdEtmVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0TQqBdZ1c1NbvXDW8dhF+10Zc0RYsTOXAhOpanU2ZRDF4+Ue5bTq+ H3UxLbCQeSH6UJjcTele1fEsIvVd8elxay2OvBXRcs4TA47CEIkGuW+noqt1tnfq XiPrqPNlP5PyWs6rsI3k01UmPjhbRiR+ulisLpnrtMSEu18ofcxMP/a/8qh/q+aW /2w9E6i71lYaEYVs7zcPAoiyQppUHEPQdww+/372/R4Uy6grkYIlzG/KwzUqC+AV SsBlZbDGKMqX/W/PTj84hODlRiYHKCXyr5ut/fPTyeSH4fSH9qymulou0gq5TFdj uh3OiE9KfcemOKLxt+GI0ao3N0l8nfn5 -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:54 2025 by rpki-client