$ rpki-client -vvf rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft File: 84XzeRdwIPCIv3TaLANG2HnCKh0.mft (raw, json) Hash identifier: 6+qb5QZS1UXjY1KYvh38ob2oqOl58ou4vJBaAwpdBP0= Subject key identifier: DE:0A:6C:7D:72:51:CC:28:8A:4F:97:47:E7:55:78:CA:C6:47:06:DA Authority key identifier: F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D Certificate issuer: /CN=A9112AD5/serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Certificate serial: 041A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft Manifest number: 0416 Signing time: Fri 25 Apr 2025 00:12:33 +0000 Manifest this update: Fri 25 Apr 2025 00:12:32 +0000 Manifest next update: Fri 02 May 2025 00:12:32 +0000 Files and hashes: 1: 84XzeRdwIPCIv3TaLANG2HnCKh0.crl (hash: 52bhmJ6h1Ab5uUOmOBRn1l+8Zu4TfT5zWFZuUKAJzqk=) 2: 3C09B1A2640F11ECBC536111C4F9AE02.roa (hash: x1o/7SXGT/4CedCgS5u41onm9GYNi5PSdU5ws280Sfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1050 (0x41a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112AD5, serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Validity Not Before: Apr 25 00:12:32 2025 GMT Not After : May 2 00:12:32 2025 GMT Subject: CN=680ad370-7d20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9c:af:2f:c4:87:fc:81:1f:b6:c9:fa:bf:82: 4c:04:54:75:4b:76:83:e5:dc:bf:a4:59:d2:57:14: 45:29:b2:8a:bc:e6:a0:f6:5e:6a:94:e9:af:ed:bf: 99:d8:47:5c:84:c8:95:56:58:f2:76:5f:08:d9:c8: 19:74:b2:44:e7:7d:34:7d:65:1e:6e:96:89:f8:92: 5f:de:78:9d:4d:37:20:46:d9:df:fe:37:9a:50:85: 76:9a:c0:0f:9a:a8:d5:7d:63:7b:f7:e1:c5:9b:84: 04:6f:2f:d0:62:bd:0a:4a:20:82:b5:b2:b7:46:b5: 3f:e9:26:95:2f:1c:21:70:e4:fb:b1:36:69:89:cd: 76:e6:29:a7:18:37:24:d6:20:27:0c:d1:b2:cf:f8: 67:a2:35:28:d8:d3:1d:f9:fb:98:4b:49:ed:2e:ef: 52:03:c5:0d:a7:fd:a3:91:1c:ed:81:02:75:45:70: fc:0b:62:70:26:78:3a:48:d6:fc:0b:e6:8a:34:fe: 75:b9:05:22:95:74:47:c1:8d:40:93:e6:11:ad:ab: 12:43:7f:1b:8e:3d:8c:e2:a9:41:86:28:dd:5a:e8: 6b:a1:e4:ef:d9:d4:70:79:53:15:b2:b6:f9:4c:7a: 3e:92:0a:ba:d5:ab:50:b7:41:e1:63:b6:96:af:58: ff:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0A:6C:7D:72:51:CC:28:8A:4F:97:47:E7:55:78:CA:C6:47:06:DA X509v3 Authority Key Identifier: keyid:F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ac:c3:3f:ca:af:b2:b8:d9:8e:a5:74:9e:3a:b5:af:67:32: b6:16:b8:c9:04:02:e5:5d:43:41:53:3c:f6:ee:2d:21:b9:ce: 12:20:6b:11:a2:ad:fe:2b:10:31:f8:73:39:40:f0:38:ac:d9: 93:3a:22:69:ca:e0:d5:ea:f1:0f:77:c2:61:35:62:8e:93:95: 0d:04:5c:ee:72:88:b0:03:c6:7a:10:51:85:02:14:6e:ec:53: 5b:0a:25:ae:e6:db:7b:f2:b5:75:48:8b:a8:1f:2c:8e:7b:8b: 88:b7:3e:93:82:3e:e5:e7:a3:27:36:a9:1e:b1:a9:b7:76:84: ac:42:d1:dd:99:4c:23:76:d3:09:a3:53:1b:68:4a:8d:e1:43: cd:3e:88:e9:13:ad:2e:a7:fc:86:c9:40:59:7b:df:d5:bb:5e: 38:10:7c:e3:29:b9:b5:bc:fe:8a:e3:f1:97:57:45:7c:c9:58: d2:76:86:03:0f:97:3a:b7:29:58:92:d8:38:5b:89:33:58:a4: c8:8e:6d:00:b2:88:8d:e4:b7:50:c2:0c:8d:32:b7:7a:8c:9a: 6f:c7:05:cb:8e:44:94:7b:54:dc:2f:40:aa:92:4b:a0:77:32: 78:a2:bd:13:59:73:36:36:74:08:fb:71:3e:a7:74:5b:3a:bc: af:ea:fe:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBRDUxMTAvBgNVBAUTKEYzODVGMzc5MTc3MDIwRjA4OEJGNzREQTJDMDM0NkQ4 NzlDMjJBMUQwHhcNMjUwNDI1MDAxMjMyWhcNMjUwNTAyMDAxMjMyWjAYMRYwFAYD VQQDEw02ODBhZDM3MC03ZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZyvL8SH/IEftsn6v4JMBFR1S3aD5dy/pFnSVxRFKbKKvOag9l5qlOmv7b+Z 2EdchMiVVljydl8I2cgZdLJE5300fWUebpaJ+JJf3nidTTcgRtnf/jeaUIV2msAP mqjVfWN79+HFm4QEby/QYr0KSiCCtbK3RrU/6SaVLxwhcOT7sTZpic125imnGDck 1iAnDNGyz/hnojUo2NMd+fuYS0ntLu9SA8UNp/2jkRztgQJ1RXD8C2JwJng6SNb8 C+aKNP51uQUilXRHwY1Ak+YRrasSQ38bjj2M4qlBhijdWuhroeTv2dRweVMVsrb5 THo+kgq61atQt0HhY7aWr1j/OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4KbH1y Ucwoik+XR+dVeMrGRwbaMB8GA1UdIwQYMBaAFPOF83kXcCDwiL902iwDRth5wiod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkFENS9GNDc5NTgwRTY0 MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQQ0l2M1RhTEFORzJIbkNL aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0WHplUmR3SVBDSXYzVGFMQU5HMkhuQ0toMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkFENS9GNDc5NTgwRTY0MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQ Q0l2M1RhTEFORzJIbkNLaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsrMM/yq+yuNmOpXSeOrWvZzK2FrjJBALlXUNBUzz27i0huc4SIGsR oq3+KxAx+HM5QPA4rNmTOiJpyuDV6vEPd8JhNWKOk5UNBFzucoiwA8Z6EFGFAhRu 7FNbCiWu5tt78rV1SIuoHyyOe4uItz6Tgj7l56MnNqkesam3doSsQtHdmUwjdtMJ o1MbaEqN4UPNPojpE60up/yGyUBZe9/Vu144EHzjKbm1vP6K4/GXV0V8yVjSdoYD D5c6tylYktg4W4kzWKTIjm0AsoiN5LdQwgyNMrd6jJpvxwXLjkSUe1TcL0Cqkkug dzJ4or0TWXM2NnQI+3E+p3RbOryv6v7f -----END CERTIFICATE-----Generated at Sat Apr 26 16:40:11 2025 by rpki-client