$ rpki-client -vvf rpki.apnic.net/member_repository/A911424D/751109AA805F11E98A205B0BC4F9AE02/rtuffjhfpkQ204S8t7kuCUaVVDM.mft File: rtuffjhfpkQ204S8t7kuCUaVVDM.mft (raw, json) Hash identifier: LTbuzL48qiZwv5i/9DCdlNzhECqdkz/HUNcgf0c3yH8= Subject key identifier: AF:DB:7E:70:88:6A:F5:8F:C7:BE:56:7E:1D:5B:45:78:FA:97:A8:4B Authority key identifier: AE:DB:9F:7E:38:5F:A6:44:36:D3:84:BC:B7:B9:2E:09:46:95:54:33 Certificate issuer: /CN=A911424D/serialNumber=AEDB9F7E385FA64436D384BCB7B92E0946955433 Certificate serial: 0ED9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rtuffjhfpkQ204S8t7kuCUaVVDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911424D/751109AA805F11E98A205B0BC4F9AE02/rtuffjhfpkQ204S8t7kuCUaVVDM.mft Manifest number: 0ED1 Signing time: Thu 24 Apr 2025 17:39:05 +0000 Manifest this update: Thu 24 Apr 2025 17:39:04 +0000 Manifest next update: Thu 01 May 2025 17:39:04 +0000 Files and hashes: 1: rtuffjhfpkQ204S8t7kuCUaVVDM.crl (hash: fdyYkqg7VXb1GLb4W8rgKAEFSCGLafBoQYfz2TG2aB8=) 2: 87625FC0812011E9890A4533C4F9AE02.roa (hash: +5h350Entxop10VDTkTCS9JuaJOuqYNRDCA3VkMIaEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911424D/751109AA805F11E98A205B0BC4F9AE02/rtuffjhfpkQ204S8t7kuCUaVVDM.crl rsync://rpki.apnic.net/member_repository/A911424D/751109AA805F11E98A205B0BC4F9AE02/rtuffjhfpkQ204S8t7kuCUaVVDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rtuffjhfpkQ204S8t7kuCUaVVDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:39:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3801 (0xed9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911424D, serialNumber=AEDB9F7E385FA64436D384BCB7B92E0946955433 Validity Not Before: Apr 24 17:39:04 2025 GMT Not After : May 1 17:39:04 2025 GMT Subject: CN=680a7739-e2c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:88:a8:fb:3c:79:e2:cc:bf:07:e0:32:7e:42: d7:54:0c:84:df:02:09:20:c2:5e:ca:2a:92:bb:09: 65:84:65:cb:43:99:65:49:61:f0:dc:94:8a:01:63: b0:b6:04:b7:70:0e:4e:f1:07:06:9e:81:ad:2f:5f: 83:8f:9c:0f:00:d1:f2:c9:b8:0e:56:a8:e2:04:f9: 4e:d0:45:22:bd:3d:8f:8e:4b:ad:7a:b6:9e:5f:52: 2a:4d:fb:e1:ee:47:4f:e6:cf:e5:a6:e1:a4:09:9c: 25:ae:7a:2c:c7:a1:d5:3f:a2:45:1e:cd:b8:db:73: 56:9a:b2:18:4a:c2:1e:70:ac:48:5c:fa:f1:58:f6: 9f:72:86:59:05:40:32:a1:d2:4f:a5:45:a3:8b:cb: eb:2a:11:57:f2:88:43:e2:70:50:01:b0:49:6f:99: ff:8b:5f:ff:ef:f3:67:84:45:7d:c7:fa:f0:56:0d: 39:ed:7d:27:e0:24:f4:e5:43:58:85:97:a7:6d:8a: d2:16:5a:3b:14:b1:63:30:bd:92:c3:1e:41:7e:81: 52:9d:f5:fb:48:e9:d4:cc:9e:03:6d:8a:7d:1c:f7: 5a:7e:e8:ad:e5:2f:10:88:50:0c:bd:a2:d8:9d:a2: 4f:9a:32:8e:3a:90:e0:55:1a:fb:ec:83:c0:29:ec: 57:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DB:7E:70:88:6A:F5:8F:C7:BE:56:7E:1D:5B:45:78:FA:97:A8:4B X509v3 Authority Key Identifier: keyid:AE:DB:9F:7E:38:5F:A6:44:36:D3:84:BC:B7:B9:2E:09:46:95:54:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911424D/751109AA805F11E98A205B0BC4F9AE02/rtuffjhfpkQ204S8t7kuCUaVVDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rtuffjhfpkQ204S8t7kuCUaVVDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911424D/751109AA805F11E98A205B0BC4F9AE02/rtuffjhfpkQ204S8t7kuCUaVVDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:4d:86:80:e0:99:a3:73:dc:14:b9:e7:b0:3f:7a:e8:62:05: 76:a6:94:aa:96:94:aa:80:9e:82:3a:ad:27:5a:30:66:f2:9e: 0d:ef:df:dd:bc:09:49:01:58:15:7a:ec:1c:7b:b0:b8:4d:77: 15:11:f6:44:e7:cf:51:69:fb:ed:4d:e7:e3:28:4d:b8:82:a6: 3d:2f:fb:b0:00:97:d5:89:10:f7:a3:69:1b:87:7b:84:f8:91: 91:15:56:1f:e9:1c:5d:3a:2d:ba:5d:45:c4:a8:a9:05:8d:3e: 6f:d6:fc:49:8f:a6:a8:fa:1f:2a:d3:c8:b9:6f:f3:f6:98:5c: 47:73:25:9b:67:06:7f:fd:c8:38:37:9f:46:95:96:3c:bb:c5: 52:85:23:e5:b6:d9:76:3a:66:a8:1c:c7:cd:e5:5f:2d:24:ec: 5b:92:ff:69:69:4b:d6:5a:45:7c:1a:4b:92:80:f0:29:94:6d: 75:6c:cd:01:e9:23:1c:4f:59:6d:03:1d:c8:f5:da:36:8f:0f: b5:f3:18:9a:80:44:51:ca:ff:fd:29:fc:82:6b:8a:c8:d6:63: 1e:9a:14:4c:9d:0a:d5:a3:b6:a2:50:32:a1:08:9e:6b:1d:4d: 40:5d:03:35:45:e6:3f:05:7c:40:f3:7f:8a:8a:7d:9b:e2:72: 1c:50:33:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyNEQxMTAvBgNVBAUTKEFFREI5RjdFMzg1RkE2NDQzNkQzODRCQ0I3QjkyRTA5 NDY5NTU0MzMwHhcNMjUwNDI0MTczOTA0WhcNMjUwNTAxMTczOTA0WjAYMRYwFAYD VQQDEw02ODBhNzczOS1lMmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44io+zx54sy/B+AyfkLXVAyE3wIJIMJeyiqSuwllhGXLQ5llSWHw3JSKAWOw tgS3cA5O8QcGnoGtL1+Dj5wPANHyybgOVqjiBPlO0EUivT2PjkuteraeX1IqTfvh 7kdP5s/lpuGkCZwlrnosx6HVP6JFHs2423NWmrIYSsIecKxIXPrxWPafcoZZBUAy odJPpUWji8vrKhFX8ohD4nBQAbBJb5n/i1//7/NnhEV9x/rwVg057X0n4CT05UNY hZenbYrSFlo7FLFjML2Swx5BfoFSnfX7SOnUzJ4DbYp9HPdafuit5S8QiFAMvaLY naJPmjKOOpDgVRr77IPAKexXyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/bfnCI avWPx75Wfh1bRXj6l6hLMB8GA1UdIwQYMBaAFK7bn344X6ZENtOEvLe5LglGlVQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDI0RC83NTExMDlBQTgw NUYxMUU5OEEyMDVCMEJDNEY5QUUwMi9ydHVmZmpoZnBrUTIwNFM4dDdrdUNVYVZW RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J0dWZmamhmcGtRMjA0Uzh0N2t1Q1VhVlZETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDI0RC83NTExMDlBQTgwNUYxMUU5OEEyMDVCMEJDNEY5QUUwMi9ydHVmZmpoZnBr UTIwNFM4dDdrdUNVYVZWRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5TYaA4Jmjc9wUueewP3roYgV2ppSqlpSqgJ6COq0nWjBm8p4N79/d vAlJAVgVeuwce7C4TXcVEfZE589RafvtTefjKE24gqY9L/uwAJfViRD3o2kbh3uE +JGRFVYf6RxdOi26XUXEqKkFjT5v1vxJj6ao+h8q08i5b/P2mFxHcyWbZwZ//cg4 N59GlZY8u8VShSPlttl2OmaoHMfN5V8tJOxbkv9paUvWWkV8GkuSgPAplG11bM0B 6SMcT1ltAx3I9do2jw+18xiagERRyv/9KfyCa4rI1mMemhRMnQrVo7aiUDKhCJ5r HU1AXQM1ReY/BXxA83+Kin2b4nIcUDPq -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:42 2025 by rpki-client