$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: 8cwKuxU0eKwrYNPoWom5sUZo11Tfw4iJQwQy65QJ3G0= Subject key identifier: D2:2D:2F:90:56:D6:10:31:22:78:FA:25:51:8A:55:10:F5:53:E7:76 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 019F Signing time: Fri 25 Apr 2025 02:31:49 +0000 Manifest this update: Fri 25 Apr 2025 02:31:49 +0000 Manifest next update: Fri 02 May 2025 02:31:49 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: 6fo18xOm3G0dD0HdYlZPSVv5Bbz8VWapqbAe4VZmy5o=) 2: B1335F1AC56A11ED9C305A33C4F9AE02.roa (hash: xgbES0ex3GdKtSSPoPs5HQUTvXl7g1+/YUUyrUA3DJY=) 3: F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa (hash: +RO07JHGmdi0Lx5cV1Zx6lUdug7RiXfOSxrsmEM5WK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Apr 25 02:31:49 2025 GMT Not After : May 2 02:31:49 2025 GMT Subject: CN=680af415-0e99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a7:63:76:a3:06:70:fb:c6:36:26:c9:fa:68: db:b1:67:38:7e:b6:7a:9e:d5:4d:4a:b5:13:f5:7b: c2:e9:01:59:25:ad:da:fd:ac:8a:49:b5:5d:eb:7d: b2:c8:8e:6d:1d:85:5b:82:4d:21:e4:bb:4d:ce:14: 6b:9a:76:41:cb:50:85:a8:05:02:72:03:4d:76:d2: 0b:6f:9e:a9:c3:21:35:bd:4a:b1:06:16:11:22:1b: d3:33:31:a5:b7:1f:da:46:11:3d:f5:9e:06:fb:c4: dc:cf:12:0b:62:7b:b9:8c:27:c0:86:d8:8f:55:5c: 51:16:65:f2:cc:72:d7:64:65:10:9a:cf:72:03:86: 76:20:9a:79:e1:b5:59:95:fb:ef:13:42:d3:58:40: d3:a0:4e:68:16:4c:16:f4:c2:c7:62:72:da:22:dc: 1d:4b:4e:24:4f:80:b5:c3:53:e4:96:d1:d7:48:52: 20:d6:17:75:a4:90:6b:a8:b7:d3:17:53:4b:b5:c9: 29:45:f4:35:20:8b:01:49:b9:2e:1e:1e:e5:21:f8: 6e:f3:9c:65:f0:3b:7d:f6:45:a6:76:9b:12:57:14: 56:f5:7d:1f:f1:c0:bf:7a:2a:64:07:08:f6:3d:d2: 57:44:dd:ab:06:08:6a:82:7a:d4:74:e4:39:d4:7e: c3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2D:2F:90:56:D6:10:31:22:78:FA:25:51:8A:55:10:F5:53:E7:76 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ba:b7:39:0a:f0:c8:09:5a:da:a4:e1:81:b2:db:b1:ff:65: 1b:f0:73:56:a6:2c:53:9c:4d:4f:a7:f0:43:30:62:97:e6:71: fe:e3:3c:d7:15:17:11:5f:ee:b1:89:2a:e1:5f:a3:ac:0d:08: e1:27:b6:35:48:de:10:2d:1e:69:c8:45:27:4a:06:6d:e0:f9: 11:22:63:44:4c:ab:e4:61:80:09:71:7d:41:00:7d:13:04:b3: 8f:60:7e:e9:db:31:4a:56:a0:db:0f:17:0a:16:fe:1a:47:cf: 99:85:53:62:b8:98:70:a8:2e:63:89:b7:f5:5d:58:1a:ae:68: ca:b5:6d:71:b4:c1:c6:6d:ab:6f:32:17:2a:36:ba:86:9d:23: 81:f6:2f:b9:61:ec:bc:d4:11:55:88:c4:73:0f:d2:4e:2f:8d: b9:68:43:bb:76:39:50:d3:59:f6:ef:ca:da:0b:54:32:6d:5d: e6:cf:04:d0:53:19:85:c7:15:8a:5d:b2:ab:d0:9f:7a:b7:c7: 20:13:01:dd:27:88:2d:65:37:b0:48:e6:52:98:cc:f9:fc:be: 63:53:b5:8d:34:53:f8:2a:b4:7d:4a:5c:be:ac:9a:66:ac:ee: e7:b2:f5:69:5c:45:ee:ab:f9:b1:ef:06:86:a8:c8:e6:b4:66: ab:1a:bf:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUwNDI1MDIzMTQ5WhcNMjUwNTAyMDIzMTQ5WjAYMRYwFAYD VQQDEw02ODBhZjQxNS0wZTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6djdqMGcPvGNibJ+mjbsWc4frZ6ntVNSrUT9XvC6QFZJa3a/ayKSbVd632y yI5tHYVbgk0h5LtNzhRrmnZBy1CFqAUCcgNNdtILb56pwyE1vUqxBhYRIhvTMzGl tx/aRhE99Z4G+8TczxILYnu5jCfAhtiPVVxRFmXyzHLXZGUQms9yA4Z2IJp54bVZ lfvvE0LTWEDToE5oFkwW9MLHYnLaItwdS04kT4C1w1PkltHXSFIg1hd1pJBrqLfT F1NLtckpRfQ1IIsBSbkuHh7lIfhu85xl8Dt99kWmdpsSVxRW9X0f8cC/eipkBwj2 PdJXRN2rBghqgnrUdOQ51H7D2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNItL5BW 1hAxInj6JVGKVRD1U+d2MB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6urc5CvDICVrapOGBstux/2Ub8HNWpixTnE1Pp/BDMGKX5nH+4zzX FRcRX+6xiSrhX6OsDQjhJ7Y1SN4QLR5pyEUnSgZt4PkRImNETKvkYYAJcX1BAH0T BLOPYH7p2zFKVqDbDxcKFv4aR8+ZhVNiuJhwqC5jibf1XVgarmjKtW1xtMHGbatv MhcqNrqGnSOB9i+5Yey81BFViMRzD9JOL425aEO7djlQ01n278raC1QybV3mzwTQ UxmFxxWKXbKr0J96t8cgEwHdJ4gtZTewSOZSmMz5/L5jU7WNNFP4KrR9Sly+rJpm rO7nsvVpXEXuq/mx7waGqMjmtGarGr86 -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:52 2025 by rpki-client