$ rpki-client -vvf rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft File: ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft (raw, json) Hash identifier: /gBfu8sr4vIjRhh23jKbEuilmmTZ50qAf1fxODrGy8c= Subject key identifier: CD:93:95:3B:F1:98:6B:FC:5B:25:A7:45:EC:70:8D:5D:6A:B2:56:47 Authority key identifier: 22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 Certificate issuer: /CN=A911A828/serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft Manifest number: 019D Signing time: Fri 25 Apr 2025 02:30:15 +0000 Manifest this update: Fri 25 Apr 2025 02:30:15 +0000 Manifest next update: Fri 02 May 2025 02:30:15 +0000 Files and hashes: 1: ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl (hash: Y5UaC/7B0ETKmpvn63wkAftSy2o0Toy0Dr3PDwPQeyg=) 2: E816DFFAA90111ED867DA161C4F9AE02.roa (hash: J+hbcg1f000uZywitLiVEmVwojqXye5u/Ee0tXQliec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:30:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A828, serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Validity Not Before: Apr 25 02:30:15 2025 GMT Not After : May 2 02:30:15 2025 GMT Subject: CN=680af3b7-bc91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a7:0d:3f:b1:2d:4b:0f:0d:b9:2c:ab:1f:87: 37:0e:ec:8b:92:b2:45:d8:1e:9a:0a:63:9a:73:80: e2:b1:70:a2:35:9c:88:c2:19:d1:a1:7d:c2:84:4b: 17:1b:54:a0:57:53:15:0b:60:81:35:85:13:60:94: 19:5b:bd:24:f9:6f:a0:31:00:d7:f3:96:7b:a7:a8: ce:b4:2a:7e:08:a4:fe:ba:ea:a8:2e:85:ac:8f:bf: ce:da:89:72:a0:98:e1:5f:df:9d:f0:e4:26:95:b7: 22:1a:fa:4f:9b:73:8b:86:4b:a4:0b:32:40:bd:34: c2:2a:b6:f6:98:75:f3:e8:f1:e9:62:e7:58:df:97: dc:88:65:31:77:5c:3e:4e:c3:be:9f:23:db:ac:7e: fd:99:79:c3:59:6b:0f:15:49:5e:ec:15:22:dd:8e: 39:b2:5c:af:6a:95:ed:88:88:3f:49:9e:01:57:17: 2f:cf:05:cd:62:b7:90:2f:22:a4:52:96:ff:92:2e: 52:dd:72:52:e3:46:f6:d5:09:0e:fb:58:74:73:18: bb:f0:29:4b:a5:99:3b:1d:00:e7:72:b8:9d:0c:bb: fc:70:21:c4:b7:98:ed:8d:e6:e3:2c:d6:46:0d:c2: 45:d4:0a:ff:fb:0a:08:e1:14:71:43:20:b8:cd:e7: 49:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:93:95:3B:F1:98:6B:FC:5B:25:A7:45:EC:70:8D:5D:6A:B2:56:47 X509v3 Authority Key Identifier: keyid:22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:ed:1a:9d:d1:ea:14:8b:c8:a8:d7:35:53:0d:70:ed:d2:ca: 52:46:15:8a:bf:c5:0b:b0:a3:ba:eb:f9:15:e4:b9:87:d8:f8: d4:30:50:38:7b:5e:a5:47:ea:12:6f:08:7c:87:39:88:2f:81: 39:9a:48:8b:b5:16:3e:6a:7d:31:de:6a:16:81:c5:6a:a8:b0: ae:ea:ab:d8:32:98:32:58:8c:83:29:7b:3a:3e:61:4d:f4:af: 82:29:85:25:7c:e8:31:31:bd:9b:fa:47:5d:d8:60:d7:2e:c4: 6a:f1:aa:cf:60:df:a1:c2:5e:34:9a:4d:79:2c:47:e8:79:ca: d9:b7:61:8f:7c:8f:6a:c3:29:a0:1c:13:51:74:aa:af:73:fe: 78:61:ac:0f:7d:a2:5a:0f:64:2b:57:20:21:b2:71:b3:1b:e1: 2f:bd:e2:86:b0:8b:e0:68:df:ac:c6:a2:41:bc:15:1f:e9:1c: 0a:6c:ba:bd:c5:8e:62:ee:dc:c7:1a:a0:11:23:6e:d7:de:ec: bb:10:29:ed:f8:df:74:e7:3c:88:50:0d:a0:45:f7:3c:fc:15: e9:c4:63:20:bb:02:57:19:6a:11:ea:20:ad:ee:e0:84:0d:c2: 80:e2:11:f3:bc:82:13:be:7f:3b:c5:02:f4:aa:57:cc:71:2e: 31:b8:b2:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE4MjgxMTAvBgNVBAUTKDIyNjAzRDZBMzNGMDZFMEE5RDEwRkJCMUVEOUUxRDM3 NDkyNDcwMDEwHhcNMjUwNDI1MDIzMDE1WhcNMjUwNTAyMDIzMDE1WjAYMRYwFAYD VQQDEw02ODBhZjNiNy1iYzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqcNP7EtSw8NuSyrH4c3DuyLkrJF2B6aCmOac4DisXCiNZyIwhnRoX3ChEsX G1SgV1MVC2CBNYUTYJQZW70k+W+gMQDX85Z7p6jOtCp+CKT+uuqoLoWsj7/O2oly oJjhX9+d8OQmlbciGvpPm3OLhkukCzJAvTTCKrb2mHXz6PHpYudY35fciGUxd1w+ TsO+nyPbrH79mXnDWWsPFUle7BUi3Y45slyvapXtiIg/SZ4BVxcvzwXNYreQLyKk Upb/ki5S3XJS40b21QkO+1h0cxi78ClLpZk7HQDncridDLv8cCHEt5jtjebjLNZG DcJF1Ar/+woI4RRxQyC4zedJXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2TlTvx mGv8WyWnRexwjV1qslZHMB8GA1UdIwQYMBaAFCJgPWoz8G4KnRD7se2eHTdJJHAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTgyOC9EREY5MDA1QUE4 RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2JncWRFUHV4N1o0ZE4wa2tj QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ltQTlhalB3YmdxZEVQdXg3WjRkTjBra2NBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTgyOC9EREY5MDA1QUE4RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2Jn cWRFUHV4N1o0ZE4wa2tjQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA27Rqd0eoUi8io1zVTDXDt0spSRhWKv8ULsKO66/kV5LmH2PjUMFA4 e16lR+oSbwh8hzmIL4E5mkiLtRY+an0x3moWgcVqqLCu6qvYMpgyWIyDKXs6PmFN 9K+CKYUlfOgxMb2b+kdd2GDXLsRq8arPYN+hwl40mk15LEfoecrZt2GPfI9qwymg HBNRdKqvc/54YawPfaJaD2QrVyAhsnGzG+EvveKGsIvgaN+sxqJBvBUf6RwKbLq9 xY5i7tzHGqARI27X3uy7ECnt+N905zyIUA2gRfc8/BXpxGMguwJXGWoR6iCt7uCE DcKA4hHzvIITvn87xQL0qlfMcS4xuLIq -----END CERTIFICATE-----Generated at Sat Apr 26 16:45:57 2025 by rpki-client