$ rpki-client -vvf rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft File: doh0adZBC-RoB3WHhH7qoIC0InI.mft (raw, json) Hash identifier: 4YXtX16x7txqM3XvtCVydj3wDwTKxduR2oRT9s8QUyc= Subject key identifier: 5B:56:57:D1:BC:DE:7F:8D:15:97:F1:32:B5:FB:DB:8D:32:3D:4B:01 Authority key identifier: 76:88:74:69:D6:41:0B:E4:68:07:75:87:84:7E:EA:A0:80:B4:22:72 Certificate issuer: /CN=A9114382/serialNumber=76887469D6410BE468077587847EEAA080B42272 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft Manifest number: 11 Signing time: Fri 25 Apr 2025 07:03:19 +0000 Manifest this update: Fri 25 Apr 2025 07:03:19 +0000 Manifest next update: Fri 02 May 2025 07:03:19 +0000 Files and hashes: 1: doh0adZBC-RoB3WHhH7qoIC0InI.crl (hash: Em+HIZlVdiQZ4zv01ev4ZpAGZWQ+2pMhSt3NL9IPQlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.crl rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114382, serialNumber=76887469D6410BE468077587847EEAA080B42272 Validity Not Before: Apr 25 07:03:19 2025 GMT Not After : May 2 07:03:19 2025 GMT Subject: CN=680b33b7-34c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:08:96:25:72:c9:09:57:a2:de:cd:4b:db:a2: ac:40:cd:92:47:73:1e:6a:e6:87:fd:9d:4d:1f:d5: 7c:3a:0c:84:89:83:67:6b:23:06:dc:6b:35:3f:18: 0a:9b:70:7b:be:f3:51:13:68:8a:5a:95:ce:73:5c: ff:f3:84:c5:9d:83:01:e6:14:d8:8e:e1:79:79:f6: 43:83:5a:e0:60:1c:43:fd:2b:5e:f0:d3:ef:6a:3c: 79:be:f2:bc:b3:09:60:14:d9:b2:86:08:20:34:05: 8c:3e:61:a2:e7:49:ad:b8:00:8c:e8:96:8e:3d:00: 3f:cf:05:95:66:ac:6a:d4:ac:55:84:0c:64:d3:74: 18:64:97:ba:b6:34:cc:c9:4e:8d:0c:f3:26:43:fc: b0:36:bd:96:8e:74:ff:47:a0:73:36:a5:5f:c3:e0: 27:fc:05:32:d3:50:7a:aa:2c:22:49:73:37:1d:37: 2f:50:c5:8c:34:c6:42:c1:91:29:d7:19:32:8c:6f: 57:a5:b1:65:6a:53:1c:7d:87:9f:08:1b:dd:b8:15: 4e:ba:be:ba:71:39:57:ef:bc:93:f1:ae:38:6f:d5: 5f:4f:19:d4:aa:5e:89:9c:8d:fa:e0:5d:48:b6:fd: ed:bf:11:49:be:f9:00:5b:55:27:57:2a:df:f5:15: 0e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:56:57:D1:BC:DE:7F:8D:15:97:F1:32:B5:FB:DB:8D:32:3D:4B:01 X509v3 Authority Key Identifier: keyid:76:88:74:69:D6:41:0B:E4:68:07:75:87:84:7E:EA:A0:80:B4:22:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:9f:7e:d5:99:36:a7:2a:7e:9f:16:87:25:bc:4d:86:6e:bf: 79:52:de:95:cd:73:f5:0b:73:2b:ba:61:02:6f:39:3f:35:48: c2:e0:c8:f5:c2:40:08:12:76:3a:55:89:24:1e:ae:d1:03:77: 01:12:7c:5e:54:9d:56:b1:b6:31:4d:50:ca:d4:72:5a:d1:f5: 01:e1:7b:3c:32:59:a2:0d:e0:f9:db:29:90:6a:67:d6:90:57: 23:4d:f3:72:1b:f2:37:24:33:98:48:23:72:eb:87:72:99:82: cd:f9:f1:a2:9c:21:8a:6b:92:b8:3f:5f:48:f0:84:e1:99:4f: 73:93:b9:ae:32:ad:a2:7b:db:71:2a:b9:09:5f:95:1f:ad:f2: 79:81:6a:f7:93:71:0e:9e:2d:76:33:a9:d0:07:34:30:a5:a5: 2a:dc:f7:67:ab:73:62:1a:ea:eb:65:7c:8a:e4:01:ef:8e:73: 3d:f8:f3:e5:d6:1c:25:9b:64:92:55:de:b8:0c:9c:2b:55:e1: e1:2b:0d:53:a3:54:69:26:fb:a1:8a:35:21:4d:ea:a8:61:20: bb:af:2a:25:94:d6:e1:9e:d9:28:34:d3:82:f1:cd:5d:0d:c2: 6b:e9:37:4c:32:2f:3d:6c:c4:12:f9:d3:19:94:03:f1:38:2e: ba:f2:d2:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDM4MjExMC8GA1UEBRMoNzY4ODc0NjlENjQxMEJFNDY4MDc3NTg3ODQ3RUVBQTA4 MEI0MjI3MjAeFw0yNTA0MjUwNzAzMTlaFw0yNTA1MDIwNzAzMTlaMBgxFjAUBgNV BAMTDTY4MGIzM2I3LTM0YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHCJYlcskJV6LezUvboqxAzZJHcx5q5of9nU0f1Xw6DISJg2drIwbcazU/GAqb cHu+81ETaIpalc5zXP/zhMWdgwHmFNiO4Xl59kODWuBgHEP9K17w0+9qPHm+8ryz CWAU2bKGCCA0BYw+YaLnSa24AIzolo49AD/PBZVmrGrUrFWEDGTTdBhkl7q2NMzJ To0M8yZD/LA2vZaOdP9HoHM2pV/D4Cf8BTLTUHqqLCJJczcdNy9QxYw0xkLBkSnX GTKMb1elsWVqUxx9h58IG924FU66vrpxOVfvvJPxrjhv1V9PGdSqXomcjfrgXUi2 /e2/EUm++QBbVSdXKt/1FQ5ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUW1ZX0bze f40Vl/EytfvbjTI9SwEwHwYDVR0jBBgwFoAUdoh0adZBC+RoB3WHhH7qoIC0InIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0MzgyLzQ0QjVGQTFDMEFD MDExRjBCNThGODI0N0M0RjlBRTAyL2RvaDBhZFpCQy1Sb0IzV0hoSDdxb0lDMElu SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZG9oMGFkWkJDLVJvQjNXSGhIN3FvSUMwSW5JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 MzgyLzQ0QjVGQTFDMEFDMDExRjBCNThGODI0N0M0RjlBRTAyL2RvaDBhZFpCQy1S b0IzV0hoSDdxb0lDMEluSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADqfftWZNqcqfp8WhyW8TYZuv3lS3pXNc/ULcyu6YQJvOT81SMLgyPXC QAgSdjpViSQertEDdwESfF5UnVaxtjFNUMrUclrR9QHhezwyWaIN4PnbKZBqZ9aQ VyNN83Ib8jckM5hII3Lrh3KZgs358aKcIYprkrg/X0jwhOGZT3OTua4yraJ723Eq uQlflR+t8nmBaveTcQ6eLXYzqdAHNDClpSrc92erc2Ia6utlfIrkAe+Ocz348+XW HCWbZJJV3rgMnCtV4eErDVOjVGkm+6GKNSFN6qhhILuvKiWU1uGe2Sg004LxzV0N wmvpN0wyLz1sxBL50xmUA/E4Lrry0nY= -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:51 2025 by rpki-client