$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: kcQp+wt9lkOgWe50fISZLLvRCk7P1ApA3y5JULrgL+I= Subject key identifier: CF:98:55:2E:FC:39:E8:35:A8:E8:7E:EB:28:69:D4:C8:7E:B2:A5:07 Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 0650 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 0644 Signing time: Thu 24 Apr 2025 22:22:38 +0000 Manifest this update: Thu 24 Apr 2025 22:22:37 +0000 Manifest next update: Thu 01 May 2025 22:22:37 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: h6CYWWH35KSF73MkwUJ1BfZGUERiwprbA8/4oXukMY8=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: H4rCHNTwrLDXBPWNh+1x9w51oi/Ty9c8TNS+dkVYHKE=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: OAOhBdws2Og/Ca7gVwngPo7rjcHZWaqTFgTJSHrV1uM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Apr 24 22:22:37 2025 GMT Not After : May 1 22:22:37 2025 GMT Subject: CN=680ab9ad-029c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:98:30:2a:68:78:9e:1e:4c:21:a5:ff:96:6c: e5:ed:59:21:d8:03:d9:82:a8:bd:e3:21:c2:c5:16: f1:17:f0:0c:e2:fa:4c:ed:d6:47:eb:de:80:57:cf: df:a2:3a:aa:79:52:29:a7:62:21:6e:d6:59:d6:3d: 69:19:dd:de:5d:6b:a2:81:44:2c:ac:91:12:bc:f2: db:81:92:c4:b6:94:9a:97:46:a9:48:ab:f2:5b:57: e4:03:40:fe:7f:e1:1b:96:32:6f:3e:e0:13:55:8c: 45:80:19:1f:d7:c1:50:2e:85:04:a3:d0:0f:8d:9d: 9c:57:1d:48:2f:12:53:57:f7:79:25:8f:ea:4c:00: 5e:3c:bb:f8:1c:0f:92:d5:b1:b9:bb:80:fe:68:9e: b1:e1:dd:ef:6d:c9:26:35:e2:06:99:f7:58:c8:31: be:92:c3:65:4c:be:76:06:de:26:01:06:bf:88:f4: 00:4a:03:82:fa:c9:ea:ba:83:b6:26:1e:92:dd:74: 87:57:f9:cc:91:39:3e:f1:ef:06:eb:e0:39:39:40: 9d:6b:22:c3:7c:31:6c:06:8e:7d:03:75:75:9a:91: 47:19:0b:16:e0:e7:ae:04:f4:27:63:3c:9f:66:c4: 58:66:e1:ab:ca:87:66:42:7a:88:0a:6c:77:c7:5d: e8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:98:55:2E:FC:39:E8:35:A8:E8:7E:EB:28:69:D4:C8:7E:B2:A5:07 X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:0a:24:d7:51:5f:dd:d8:b4:41:10:3c:90:34:79:81:8f:a3: 41:45:00:1b:90:c1:de:b2:c8:04:79:a5:a7:1d:34:39:72:9f: f1:4b:7e:a9:0e:f6:ee:5c:43:a9:59:93:82:5f:5f:27:46:aa: 5d:07:d8:01:9a:56:9e:8c:3d:44:68:c9:e0:20:b3:07:3b:59: c8:2c:2f:f3:3c:88:51:32:56:07:8c:fd:ce:26:45:5d:e2:bf: 31:8d:f7:cc:cb:a9:77:c1:fd:f8:3e:29:58:bf:30:74:2a:90: 2e:08:15:53:30:14:c0:fd:74:d1:67:63:0a:d0:88:c0:6e:63: 75:69:3c:f2:0f:1b:17:71:eb:0a:8d:e4:e0:2d:97:83:ff:66: fc:86:30:91:6f:10:4e:33:53:fd:58:f1:4f:9d:d4:29:49:d0: c6:7f:cd:01:c5:f0:90:c7:6d:90:c7:be:73:c1:a8:d3:a8:ea: b9:2a:71:5b:a2:0e:9f:99:dc:66:c2:4e:a5:81:12:74:b6:d7: e0:2b:47:80:23:87:47:e9:6a:19:e5:9d:fc:3e:24:35:01:f4: 82:d0:c0:b3:b7:19:01:40:23:13:47:d9:ef:51:35:a9:f8:e1: 6c:4a:da:3b:23:a7:e2:91:78:a4:43:d4:1a:2d:13:56:5d:36: 1d:64:29:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUwNDI0MjIyMjM3WhcNMjUwNTAxMjIyMjM3WjAYMRYwFAYD VQQDEw02ODBhYjlhZC0wMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JgwKmh4nh5MIaX/lmzl7Vkh2APZgqi94yHCxRbxF/AM4vpM7dZH696AV8/f ojqqeVIpp2IhbtZZ1j1pGd3eXWuigUQsrJESvPLbgZLEtpSal0apSKvyW1fkA0D+ f+EbljJvPuATVYxFgBkf18FQLoUEo9APjZ2cVx1ILxJTV/d5JY/qTABePLv4HA+S 1bG5u4D+aJ6x4d3vbckmNeIGmfdYyDG+ksNlTL52Bt4mAQa/iPQASgOC+snquoO2 Jh6S3XSHV/nMkTk+8e8G6+A5OUCdayLDfDFsBo59A3V1mpFHGQsW4OeuBPQnYzyf ZsRYZuGryodmQnqICmx3x13oyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+YVS78 Oeg1qOh+6yhp1Mh+sqUHMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYCiTXUV/d2LRBEDyQNHmBj6NBRQAbkMHessgEeaWnHTQ5cp/xS36p DvbuXEOpWZOCX18nRqpdB9gBmlaejD1EaMngILMHO1nILC/zPIhRMlYHjP3OJkVd 4r8xjffMy6l3wf34PilYvzB0KpAuCBVTMBTA/XTRZ2MK0IjAbmN1aTzyDxsXcesK jeTgLZeD/2b8hjCRbxBOM1P9WPFPndQpSdDGf80BxfCQx22Qx75zwajTqOq5KnFb og6fmdxmwk6lgRJ0ttfgK0eAI4dH6WoZ5Z38PiQ1AfSC0MCztxkBQCMTR9nvUTWp +OFsSto7I6fikXikQ9QaLRNWXTYdZCkk -----END CERTIFICATE-----Generated at Sat Apr 26 04:53:06 2025 by rpki-client