$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: CoT+NYBlLT3NorpA7P1K3n72vEjEECi3rIY3APSnhN4= Subject key identifier: 05:BD:8F:C7:FC:58:39:F0:31:DE:A8:82:9E:39:2B:B3:45:22:03:A6 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 04 Signing time: Fri 25 Apr 2025 07:12:24 +0000 Manifest this update: Fri 25 Apr 2025 07:12:24 +0000 Manifest next update: Fri 02 May 2025 07:12:24 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: Q1OggGCVX418sTSMDJeGoP8kJ2NQFpfyyuELKIDzWYc=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 1rT5RRmmBu2dtW7r80awQ5qBk4VrGxHD3sFnkgNZ9lQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:12:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Apr 25 07:12:24 2025 GMT Not After : May 2 07:12:24 2025 GMT Subject: CN=680b35d8-9e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2e:fb:4d:70:03:ce:d1:d5:e4:91:63:8e:54: a2:d1:f7:03:de:6f:88:77:45:f5:4a:a4:58:71:74: f6:dd:af:d9:e4:ac:42:ff:fc:ec:ac:5f:e7:6c:94: 5f:59:83:b4:2c:b6:d1:0a:cf:50:ca:d5:6d:12:93: 17:3e:fe:26:5f:52:7b:7b:3e:6e:a2:58:41:bc:f6: 99:58:db:06:70:29:61:60:11:ec:4d:c6:1b:59:4f: 7f:0a:6c:42:cf:78:43:5b:5e:bf:de:62:db:61:87: 31:d3:cd:e4:64:ac:9c:9d:be:97:8c:fc:f7:89:2f: 6f:b8:42:b1:ce:80:5d:a8:f8:82:2c:5d:15:85:38: 20:58:84:73:da:3b:b6:0e:40:af:2f:30:a7:53:90: c7:f5:21:ae:2d:a7:8d:e6:19:99:c4:87:bb:a6:b4: cc:68:f1:6f:5e:9e:be:55:72:5b:c1:2a:07:16:31: 09:7b:af:3a:11:c5:e6:0e:d6:d2:22:26:c2:17:a0: 83:15:d0:28:1d:6e:6c:69:2f:1f:0e:dd:e4:b4:f6: 24:a3:38:c3:3f:b2:03:ce:ec:e7:b4:5e:e5:14:5f: e1:29:88:23:60:03:3c:0f:d5:06:59:2c:f5:cc:a2: 0c:8b:86:e4:cd:ba:a6:5b:86:f2:a6:d4:46:1d:27: 2b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BD:8F:C7:FC:58:39:F0:31:DE:A8:82:9E:39:2B:B3:45:22:03:A6 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:a8:84:3f:7c:c0:89:40:fc:48:19:69:66:0d:92:27:19:78: b9:d0:01:f1:a7:c1:3d:f9:5f:25:26:3d:21:7c:f1:b6:fd:3e: 63:06:5f:28:48:a4:86:f6:c6:a9:29:41:7a:33:2c:9a:ce:5f: 18:94:22:ec:17:c5:5d:b1:e3:f4:14:98:f6:1e:7e:5a:79:3c: 1a:cd:db:61:15:86:d1:16:7d:02:52:06:e3:19:3d:2c:2b:6f: e3:28:e2:63:ae:fa:67:eb:ce:68:a5:86:47:9b:6e:6d:26:1a: 22:16:11:d2:08:02:c5:15:64:54:84:73:f9:b0:fe:9e:52:45: c5:82:a3:fa:0b:54:e2:d4:1f:77:04:bd:4e:d2:50:b4:6f:91: a0:18:f2:8e:6c:9f:16:75:c7:9a:32:a5:fb:8d:8a:ad:c7:ae: 55:08:1e:5d:e5:28:d8:e0:7b:de:61:a4:da:d2:c2:e6:5e:45: 6b:05:7d:53:35:4c:d6:ab:1f:fd:8e:d3:24:f0:a8:a1:a1:4b: f6:83:09:2e:98:b5:c7:7f:25:3b:47:f4:2f:a5:cb:b4:2d:96: f3:3d:79:48:ac:8b:12:30:75:9d:29:59:49:14:fa:93:13:78: e0:a5:1d:c1:7e:f2:f8:2d:7b:03:af:99:4d:1a:0a:7a:45:c2: 61:82:f0:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTA0MjUwNzEyMjRaFw0yNTA1MDIwNzEyMjRaMBgxFjAUBgNV BAMTDTY4MGIzNWQ4LTllNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvLvtNcAPO0dXkkWOOVKLR9wPeb4h3RfVKpFhxdPbdr9nkrEL//OysX+dslF9Z g7QsttEKz1DK1W0Skxc+/iZfUnt7Pm6iWEG89plY2wZwKWFgEexNxhtZT38KbELP eENbXr/eYtthhzHTzeRkrJydvpeM/PeJL2+4QrHOgF2o+IIsXRWFOCBYhHPaO7YO QK8vMKdTkMf1Ia4tp43mGZnEh7umtMxo8W9enr5VclvBKgcWMQl7rzoRxeYO1tIi JsIXoIMV0CgdbmxpLx8O3eS09iSjOMM/sgPO7Oe0XuUUX+EpiCNgAzwP1QZZLPXM ogyLhuTNuqZbhvKm1EYdJyvRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBb2Px/xY OfAx3qiCnjkrs0UiA6YwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADWohD98wIlA/EgZaWYNkicZeLnQAfGnwT35XyUmPSF88bb9PmMGXyhI pIb2xqkpQXozLJrOXxiUIuwXxV2x4/QUmPYeflp5PBrN22EVhtEWfQJSBuMZPSwr b+Mo4mOu+mfrzmilhkebbm0mGiIWEdIIAsUVZFSEc/mw/p5SRcWCo/oLVOLUH3cE vU7SULRvkaAY8o5snxZ1x5oypfuNiq3HrlUIHl3lKNjge95hpNrSwuZeRWsFfVM1 TNarH/2O0yTwqKGhS/aDCS6Ytcd/JTtH9C+ly7QtlvM9eUisixIwdZ0pWUkU+pMT eOClHcF+8vgtewOvmU0aCnpFwmGC8G0= -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:31 2025 by rpki-client