$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: FlUL/PuJEl1Yj/PcCr1EafpJliZjvi27HoZBJJWCnjw= Subject key identifier: 40:78:70:3E:CC:F7:88:4D:45:DF:14:D5:D6:70:3C:E9:40:42:8C:E5 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 01C7 Signing time: Thu 13 Mar 2025 01:50:53 +0000 Manifest this update: Thu 13 Mar 2025 01:50:53 +0000 Manifest next update: Thu 20 Mar 2025 01:50:53 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: 8xq9aMMr8iw9NPpTPblyJfXuC3y3vypkjTNmpFok5JY=) 2: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 88kWEiY/06EoXdAjoPmCFzf4ibe9Kqek376AzBNc9lE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 01:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E Validity Not Before: Mar 13 01:50:53 2025 GMT Not After : Mar 20 01:50:53 2025 GMT Subject: CN=67d239fd-ac72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f6:56:ec:0e:88:57:25:15:3e:f7:1e:1d:fe: 9c:37:b5:b5:59:43:02:de:ef:10:c3:c2:78:64:e7: 69:a7:1b:47:00:00:91:a1:a9:3f:ac:e7:03:32:fa: e6:e1:f9:9a:6e:b5:5a:2b:24:26:56:3c:9e:9a:84: e9:0a:e1:8a:37:c7:a5:e8:1f:ab:c9:a3:bd:24:45: 9b:e7:c3:0d:b6:bf:2b:f3:45:2a:bd:21:5b:4e:58: 55:3b:3c:b9:91:cc:57:00:06:05:d2:6d:7a:09:f7: ef:75:b7:9c:73:c8:50:a3:d5:4f:74:54:51:88:51: 06:50:ae:e7:3b:78:73:14:a7:aa:ea:e5:e0:81:55: 69:4e:e1:30:bb:3c:4c:55:45:7b:94:fa:b0:65:94: b3:8c:d4:14:24:c8:32:db:45:50:b8:da:8e:3f:31: 7d:5b:10:16:4d:0e:8b:ad:e4:48:3d:50:0a:6d:b5: 3b:9e:82:e3:bf:8c:e0:fa:b5:ed:c6:0b:79:3a:c5: 93:66:55:ff:ae:60:83:d7:67:89:c6:30:9d:49:21: 0e:94:32:86:8e:4a:44:1d:be:1e:f9:cf:2a:88:53: 42:dd:56:03:d6:11:2a:fa:c0:06:34:c9:04:54:16: b0:86:d0:76:fc:36:53:8a:c9:37:41:ba:a8:f5:52: 18:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:78:70:3E:CC:F7:88:4D:45:DF:14:D5:D6:70:3C:E9:40:42:8C:E5 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:64:76:e1:bb:6b:02:26:12:35:8d:de:94:ff:41:08:10:15: 5d:81:d4:5f:88:c3:e6:ee:9c:ce:e7:b6:3b:11:89:0a:34:03: 29:ef:8b:83:d6:73:40:3c:61:b0:47:00:1d:de:d7:fc:92:35: 06:f8:f2:c5:b0:c3:b4:23:8a:19:06:d3:ce:0f:73:7c:56:db: 55:54:1f:cd:a7:cf:fd:85:fd:08:46:07:56:b0:2f:7a:ac:8d: 0b:81:f5:c5:67:5c:0e:cc:70:60:a2:5f:6f:09:26:6f:cf:70: 99:9a:cf:b2:c1:e1:3e:29:e3:78:a1:fb:a7:c6:09:4e:05:ac: 30:53:05:15:2f:d8:77:cd:9f:5f:69:1e:21:67:aa:7e:2b:76: 75:26:c9:72:d6:e5:e8:3e:62:72:8f:b7:76:74:d8:9e:9b:dd: 86:c1:85:eb:e0:46:29:3c:19:e3:c7:25:40:2d:92:00:ab:cf: 27:62:f8:f8:a7:29:4f:af:0b:f2:aa:4a:da:16:24:52:12:b2: 71:6f:01:de:4f:5d:08:b0:5a:e7:1c:b2:f7:1e:6a:ce:37:88: 41:73:6e:bd:8d:5a:09:7c:dc:7c:7d:1c:c0:5d:43:bd:33:56: 01:1f:9b:b4:be:ad:f0:79:58:e1:1a:b7:44:b3:33:02:58:cb: 9d:2b:53:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUwMzEzMDE1MDUzWhcNMjUwMzIwMDE1MDUzWjAYMRYwFAYD VQQDEw02N2QyMzlmZC1hYzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvZW7A6IVyUVPvceHf6cN7W1WUMC3u8Qw8J4ZOdppxtHAACRoak/rOcDMvrm 4fmabrVaKyQmVjyemoTpCuGKN8el6B+ryaO9JEWb58MNtr8r80UqvSFbTlhVOzy5 kcxXAAYF0m16Cffvdbecc8hQo9VPdFRRiFEGUK7nO3hzFKeq6uXggVVpTuEwuzxM VUV7lPqwZZSzjNQUJMgy20VQuNqOPzF9WxAWTQ6LreRIPVAKbbU7noLjv4zg+rXt xgt5OsWTZlX/rmCD12eJxjCdSSEOlDKGjkpEHb4e+c8qiFNC3VYD1hEq+sAGNMkE VBawhtB2/DZTisk3Qbqo9VIYXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEB4cD7M 94hNRd8U1dZwPOlAQozlMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtZHbhu2sCJhI1jd6U/0EIEBVdgdRfiMPm7pzO57Y7EYkKNAMp74uD 1nNAPGGwRwAd3tf8kjUG+PLFsMO0I4oZBtPOD3N8VttVVB/Np8/9hf0IRgdWsC96 rI0LgfXFZ1wOzHBgol9vCSZvz3CZms+yweE+KeN4ofunxglOBawwUwUVL9h3zZ9f aR4hZ6p+K3Z1Jsly1uXoPmJyj7d2dNiem92GwYXr4EYpPBnjxyVALZIAq88nYvj4 pylPrwvyqkraFiRSErJxbwHeT10IsFrnHLL3HmrON4hBc269jVoJfNx8fRzAXUO9 M1YBH5u0vq3weVjhGrdEszMCWMudK1OV -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:56 2025 by rpki-client