$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft File: s9da4ezu9vkr0X0MSzZRjVvndvE.mft (raw, json) Hash identifier: Fbha0eTy7jALSBmiYwKmY6XLPpEptzRsduftyuKX4t4= Subject key identifier: C8:8D:96:F6:54:7C:B6:33:2F:D9:7D:C7:9A:38:9D:78:7B:2E:48:82 Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft Manifest number: BE Signing time: Fri 25 Apr 2025 04:55:45 +0000 Manifest this update: Fri 25 Apr 2025 04:55:44 +0000 Manifest next update: Fri 02 May 2025 04:55:44 +0000 Files and hashes: 1: s9da4ezu9vkr0X0MSzZRjVvndvE.crl (hash: Veiw2whSV8W0mgbc7dbkl/Di2nLjZQZojMBxePh5cuY=) 2: 7E15FE0C27B711EF8867AA49C4F9AE02.roa (hash: xJBS1rE4hyaBoQRSLDqWi8kJZTi9bOV+WLs5Y+jjSRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Validity Not Before: Apr 25 04:55:44 2025 GMT Not After : May 2 04:55:44 2025 GMT Subject: CN=680b15d0-8c2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3b:07:ad:9d:20:01:73:b8:bf:22:8d:30:f5: ac:36:9e:8c:d5:4a:62:76:e1:28:21:20:60:0d:8f: 2a:59:27:21:91:6a:bd:e6:0f:e7:75:a5:29:85:93: 18:94:58:ee:53:71:ee:f2:c9:39:9f:31:bc:f8:65: 3b:cb:d2:bf:13:06:4d:60:85:5a:46:8d:37:f5:9e: d8:65:b9:ce:53:31:d3:15:55:bb:55:5c:e3:d3:df: a0:b0:05:93:c3:5e:71:d0:72:63:45:d9:b1:ed:1c: 92:d5:23:ad:a0:50:11:f9:42:7e:49:df:9a:6e:8c: 16:da:1e:f2:39:71:a9:a6:30:10:d8:28:45:53:d3: 85:fa:5e:d2:62:ce:bc:f6:bd:60:5a:8f:f4:ac:b5: 17:be:02:ca:c0:00:db:07:eb:cd:c0:72:a0:39:d2: 38:74:4f:7d:aa:b1:78:5a:a7:ce:74:fc:58:0b:28: f5:5e:ef:7e:71:d0:ff:79:50:09:87:63:4a:4a:fd: 93:1b:13:04:a9:ee:e7:37:9d:bb:5a:31:5d:c7:e1: d9:25:8d:f6:7e:b3:97:d0:19:bd:01:9a:9b:a7:28: f2:aa:81:05:b6:a7:60:ef:36:59:22:f7:e0:b2:01: 7e:ea:ff:d8:5f:e0:39:f7:f7:16:68:e2:65:9e:72: 7e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8D:96:F6:54:7C:B6:33:2F:D9:7D:C7:9A:38:9D:78:7B:2E:48:82 X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:c2:fc:b1:ae:65:fa:55:47:72:be:ba:d0:18:54:43:a7:ec: 2f:7d:27:0e:26:49:f0:18:37:b1:50:39:6b:1e:f2:a4:16:d2: 6c:e3:db:63:04:27:d0:c6:c8:d5:4c:10:fa:93:f0:02:1f:05: 25:73:7b:88:86:f1:e8:f1:1b:af:55:3f:c6:c2:eb:e5:77:e9: d7:28:65:d1:7f:8d:56:47:ee:4f:13:17:79:4d:c8:04:4e:6c: 1d:91:5b:32:16:24:89:11:a9:a5:a8:78:b7:29:d6:6e:67:23: 6b:e0:b2:e5:3c:ca:68:71:d6:ce:d2:f4:df:a5:34:d8:95:54: 6b:6a:b3:89:a1:af:95:41:e1:2b:91:7d:8c:ec:0a:e2:d2:2e: 8c:91:68:b9:ed:39:45:ea:3b:1b:94:2f:28:46:1d:1e:9e:38: e1:03:f7:fe:4e:fe:34:87:e1:3f:64:a8:a6:72:5d:55:55:70: a0:d6:1c:83:5c:7f:a4:b3:4a:3c:bb:ce:84:42:92:cf:11:46: 74:3c:99:4f:e4:81:2f:29:1d:20:11:de:cc:04:ef:06:16:6d: e2:07:4a:a1:98:6f:ba:9e:31:df:0f:6c:c6:8b:77:68:f8:af: 7a:de:03:6b:77:72:47:b4:d2:17:fe:16:ee:57:82:c9:b1:f9: f6:05:59:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKEIzRDc1QUUxRUNFRUY2RjkyQkQxN0QwQzRCMzY1MThE NUJFNzc2RjEwHhcNMjUwNDI1MDQ1NTQ0WhcNMjUwNTAyMDQ1NTQ0WjAYMRYwFAYD VQQDEw02ODBiMTVkMC04YzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TsHrZ0gAXO4vyKNMPWsNp6M1UpiduEoISBgDY8qWSchkWq95g/ndaUphZMY lFjuU3Hu8sk5nzG8+GU7y9K/EwZNYIVaRo039Z7YZbnOUzHTFVW7VVzj09+gsAWT w15x0HJjRdmx7RyS1SOtoFAR+UJ+Sd+abowW2h7yOXGppjAQ2ChFU9OF+l7SYs68 9r1gWo/0rLUXvgLKwADbB+vNwHKgOdI4dE99qrF4WqfOdPxYCyj1Xu9+cdD/eVAJ h2NKSv2TGxMEqe7nN527WjFdx+HZJY32frOX0Bm9AZqbpyjyqoEFtqdg7zZZIvfg sgF+6v/YX+A59/cWaOJlnnJ+hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiNlvZU fLYzL9l9x5o4nXh7LkiCMB8GA1UdIwQYMBaAFLPXWuHs7vb5K9F9DEs2UY1b53bx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS85RTdDMkNFRTAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2a3IwWDBNU3paUmpWdm5k dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVDQS85RTdDMkNFRTAyNEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2 a3IwWDBNU3paUmpWdm5kdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwwvyxrmX6VUdyvrrQGFRDp+wvfScOJknwGDexUDlrHvKkFtJs49tj BCfQxsjVTBD6k/ACHwUlc3uIhvHo8RuvVT/Gwuvld+nXKGXRf41WR+5PExd5TcgE TmwdkVsyFiSJEamlqHi3KdZuZyNr4LLlPMpocdbO0vTfpTTYlVRrarOJoa+VQeEr kX2M7Ari0i6MkWi57TlF6jsblC8oRh0enjjhA/f+Tv40h+E/ZKimcl1VVXCg1hyD XH+ks0o8u86EQpLPEUZ0PJlP5IEvKR0gEd7MBO8GFm3iB0qhmG+6njHfD2zGi3do +K963gNrd3JHtNIX/hbuV4LJsfn2BVkR -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:13 2025 by rpki-client