$ rpki-client -vvf rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft File: k8C6F5rKocB50zxmk_RGcBBPzZg.mft (raw, json) Hash identifier: pZiyc9Ll2o3GVVm+kN26JRRg/9NsHDI1hvAGEZ1F9Co= Subject key identifier: 2B:9A:10:01:76:53:F8:0F:7B:A2:73:8B:66:EB:F6:7E:E0:2A:F7:74 Authority key identifier: 93:C0:BA:17:9A:CA:A1:C0:79:D3:3C:66:93:F4:46:70:10:4F:CD:98 Certificate issuer: /CN=A9111788/serialNumber=93C0BA179ACAA1C079D33C6693F44670104FCD98 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8C6F5rKocB50zxmk_RGcBBPzZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft Manifest number: 01D3 Signing time: Fri 25 Apr 2025 02:00:44 +0000 Manifest this update: Fri 25 Apr 2025 02:00:44 +0000 Manifest next update: Fri 02 May 2025 02:00:44 +0000 Files and hashes: 1: k8C6F5rKocB50zxmk_RGcBBPzZg.crl (hash: nY3xMPaz7b6BT4sLpOOnQ7QSwFt8OkHwy8DoJXDVnIY=) 2: 6F57F77659AF11EDB5683587C4F9AE02.roa (hash: Hz4MNEz2iKlBVZUTwXmU+LHuAvQlzMxEja9uy8vjPy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.crl rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8C6F5rKocB50zxmk_RGcBBPzZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111788, serialNumber=93C0BA179ACAA1C079D33C6693F44670104FCD98 Validity Not Before: Apr 25 02:00:44 2025 GMT Not After : May 2 02:00:44 2025 GMT Subject: CN=680aeccc-9a50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:be:fb:21:99:e4:40:4d:0f:b4:f7:0b:9c:31: 11:79:61:5f:e4:44:be:de:0d:f2:91:d7:b4:c8:85: 2c:9c:17:0d:58:1e:2a:98:81:44:e4:30:8f:69:95: 86:c9:78:49:0d:be:05:36:b1:9d:04:85:cf:5c:88: 1b:55:c7:6d:20:fa:61:b4:ba:26:fb:78:60:20:db: ba:73:e8:d4:8c:bf:56:65:15:12:dc:a8:75:67:f0: 91:33:b4:43:94:1c:1a:ac:45:fd:4a:fd:71:11:d5: d2:87:fe:07:3b:fc:3a:e2:12:85:fc:de:cf:c3:d5: 24:c0:1b:58:a6:a8:b2:e3:02:fe:bb:76:da:d2:df: df:b3:22:f9:56:de:11:5d:39:98:3f:dc:de:69:21: 3d:46:9b:05:a2:4b:4a:ff:41:8e:2a:ba:21:69:3d: e9:a2:79:1b:26:43:62:ca:3a:50:c3:4e:1b:30:4c: bf:ee:82:ae:39:55:01:cd:87:c2:5c:ca:36:49:d2: 44:01:d8:71:12:40:99:04:79:4e:8e:96:21:ad:b8: 1b:c4:20:b7:9e:a7:b1:6d:9c:8b:92:7e:54:87:ae: 83:f2:7f:b5:0c:ad:a5:39:26:95:48:ff:f6:46:97: 6d:2b:4e:52:83:5d:37:e0:5b:0d:4b:74:d2:df:f3: f9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9A:10:01:76:53:F8:0F:7B:A2:73:8B:66:EB:F6:7E:E0:2A:F7:74 X509v3 Authority Key Identifier: keyid:93:C0:BA:17:9A:CA:A1:C0:79:D3:3C:66:93:F4:46:70:10:4F:CD:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8C6F5rKocB50zxmk_RGcBBPzZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:95:91:50:ea:85:ba:7b:a9:0f:70:44:59:4c:79:8a:94:69: a8:6e:0e:04:a5:57:93:ff:2f:39:0e:63:23:bc:de:c5:64:e9: c3:8b:c8:55:56:d3:f7:97:e1:6e:10:59:d8:bc:54:65:e3:96: 42:b9:8e:70:db:86:12:2a:5d:c8:fe:55:51:65:d7:5c:9c:72: 6a:33:58:31:7a:f3:b2:90:db:4e:9b:1d:d9:cb:2c:45:8e:dc: 6e:ff:4c:e9:8e:e0:cb:35:cf:6a:ca:2b:37:01:bd:21:41:f5: 37:f8:1c:9d:e1:e0:b5:bb:4b:76:04:cf:ae:ee:96:73:46:c1: df:74:51:62:6b:2a:04:55:24:af:a7:9a:c7:04:ab:a4:2b:d4: 30:8b:15:5b:1b:bf:66:b5:11:c7:6c:fd:c8:52:cf:b6:23:f0: 30:e7:bb:af:67:1c:7c:82:ee:ef:24:a8:e1:e7:fe:22:dd:65: 55:5c:4a:e7:5a:b6:3a:6a:ef:46:8a:20:67:20:0a:92:6e:0f: 99:73:d8:d2:25:a4:1e:3c:87:b1:06:84:cd:4a:c5:52:7c:df: 3f:c0:2b:7d:41:0b:ff:27:eb:83:d5:79:b1:20:91:1e:59:c4: 92:0f:bb:fb:29:83:3d:d6:f8:4e:56:29:4b:8d:5a:8a:e8:9d: 47:13:b9:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE3ODgxMTAvBgNVBAUTKDkzQzBCQTE3OUFDQUExQzA3OUQzM0M2NjkzRjQ0Njcw MTA0RkNEOTgwHhcNMjUwNDI1MDIwMDQ0WhcNMjUwNTAyMDIwMDQ0WjAYMRYwFAYD VQQDEw02ODBhZWNjYy05YTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur77IZnkQE0PtPcLnDEReWFf5ES+3g3ykde0yIUsnBcNWB4qmIFE5DCPaZWG yXhJDb4FNrGdBIXPXIgbVcdtIPphtLom+3hgINu6c+jUjL9WZRUS3Kh1Z/CRM7RD lBwarEX9Sv1xEdXSh/4HO/w64hKF/N7Pw9UkwBtYpqiy4wL+u3ba0t/fsyL5Vt4R XTmYP9zeaSE9RpsFoktK/0GOKrohaT3ponkbJkNiyjpQw04bMEy/7oKuOVUBzYfC XMo2SdJEAdhxEkCZBHlOjpYhrbgbxCC3nqexbZyLkn5Uh66D8n+1DK2lOSaVSP/2 RpdtK05Sg1034FsNS3TS3/P5ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuaEAF2 U/gPe6Jzi2br9n7gKvd0MB8GA1UdIwQYMBaAFJPAuheayqHAedM8ZpP0RnAQT82Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTc4OC8zRDA1MTVBMDU5 QUIxMUVEOEVFQkE0NTZDNEY5QUUwMi9rOEM2RjVyS29jQjUwenhta19SR2NCQlB6 WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4QzZGNXJLb2NCNTB6eG1rX1JHY0JCUHpaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTc4OC8zRDA1MTVBMDU5QUIxMUVEOEVFQkE0NTZDNEY5QUUwMi9rOEM2RjVyS29j QjUwenhta19SR2NCQlB6WmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAelZFQ6oW6e6kPcERZTHmKlGmobg4EpVeT/y85DmMjvN7FZOnDi8hV VtP3l+FuEFnYvFRl45ZCuY5w24YSKl3I/lVRZddcnHJqM1gxevOykNtOmx3ZyyxF jtxu/0zpjuDLNc9qyis3Ab0hQfU3+Byd4eC1u0t2BM+u7pZzRsHfdFFiayoEVSSv p5rHBKukK9QwixVbG79mtRHHbP3IUs+2I/Aw57uvZxx8gu7vJKjh5/4i3WVVXErn WrY6au9GiiBnIAqSbg+Zc9jSJaQePIexBoTNSsVSfN8/wCt9QQv/J+uD1XmxIJEe WcSSD7v7KYM91vhOVilLjVqK6J1HE7lX -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:28 2025 by rpki-client