$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft File: rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft (raw, json) Hash identifier: VIjortEjtWLKYzLgeqI+dFXsuSRfYccasfX+JMEDFPE= Subject key identifier: 8C:AC:82:30:EF:29:D4:33:CE:BE:8D:D6:14:B4:7B:8F:51:DD:68:F1 Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 1045 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft Manifest number: 1041 Signing time: Thu 24 Apr 2025 17:24:24 +0000 Manifest this update: Thu 24 Apr 2025 17:24:23 +0000 Manifest next update: Thu 01 May 2025 17:24:23 +0000 Files and hashes: 1: rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl (hash: P/HBwj8Bdp8pUU5sFVZNAzSLrxY+ZJsjDmkHhTryiZs=) 2: CBAED530FE6A11ECAB640344C4F9AE02.roa (hash: ICClcvVBKcFuPdfdFfNgviyTAzomOOoPWyOYhtZ5b7Q=) 3: 6B1B75BC756311EFB6C7E64CC4F9AE02.roa (hash: H1dTpSfdD/QgGNFcXeYoqv9nvsCcB8MXgkClUdfFMB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4165 (0x1045) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974, serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: Apr 24 17:24:23 2025 GMT Not After : May 1 17:24:23 2025 GMT Subject: CN=680a73c8-75ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:34:5f:a5:aa:c0:b0:b9:6a:65:ce:fb:f6:e5: 17:20:00:c4:20:8b:05:91:64:47:e1:21:2a:eb:ce: af:e5:55:83:77:47:e6:93:f4:d2:0e:4e:18:9e:8a: e7:24:13:f2:31:74:e7:43:12:b8:a0:c8:22:4d:18: da:6c:94:b5:75:b0:9a:41:f2:98:cd:42:d3:ff:cb: b3:2c:a9:35:e7:db:8e:1e:29:da:ba:4d:c9:bc:0d: 89:d3:dc:85:ee:05:38:d1:8f:da:71:f3:5e:0a:f3: b1:91:68:7e:33:3d:f5:5d:a4:64:23:2d:bf:28:60: 8e:2d:dc:1a:fd:80:bf:9d:b8:7b:30:a6:9e:a5:12: 18:ce:01:2b:24:78:dc:f0:91:f4:aa:0d:67:36:6e: 50:3c:e6:4d:01:58:f3:d8:ef:5f:78:38:77:2e:bb: 05:10:59:d9:c1:41:a2:ea:ea:ac:23:f1:00:9a:84: fa:8f:d0:f4:dd:86:c7:4c:c9:f6:c0:42:c9:28:e9: 18:d5:32:c5:01:5f:77:e0:2c:fd:ac:bd:1b:90:bf: 0f:06:da:4a:78:29:0b:4d:e0:72:c6:83:0a:f5:cc: 80:30:72:c6:f4:77:14:b5:bc:f5:eb:94:e0:c2:d0: 88:f9:bd:36:80:33:b7:3e:35:de:1e:13:a6:06:ac: e0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AC:82:30:EF:29:D4:33:CE:BE:8D:D6:14:B4:7B:8F:51:DD:68:F1 X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:bf:08:11:44:f3:07:9e:31:12:86:27:db:d6:a9:f5:78:d5: 37:54:f2:22:b4:5b:89:58:25:bb:80:ec:ed:79:bb:53:95:6a: 35:cb:ce:b7:fe:eb:83:64:4e:53:8f:1f:fd:93:76:a9:4d:48: 0c:5d:26:e7:c7:61:f2:50:93:cd:09:7b:55:dd:a5:a0:1f:0d: fd:82:87:e6:3d:19:2c:c0:12:c5:f1:14:9f:96:a1:c8:94:66: 88:71:a2:a3:d3:84:71:b6:68:ac:db:c0:26:0a:4b:ed:24:f8: dd:bd:b1:88:00:96:94:56:52:91:f8:85:ce:e2:0e:10:00:e8: eb:9d:b8:c3:8d:44:3a:51:4f:8f:5f:a1:13:d3:d6:b0:10:da: f8:d6:bd:ad:1a:6e:31:c5:ec:c6:ea:3b:c7:e7:ea:5f:99:be: 5b:3f:c3:b2:99:f2:6d:83:d6:d2:31:f9:d6:8f:c4:ff:73:e6: 7f:ef:49:39:72:22:92:8e:49:36:46:fd:7b:e8:73:8c:fe:7a: 67:d1:02:11:86:76:4b:17:64:86:04:46:3e:16:a0:11:7c:f4: d3:ab:10:9b:9e:41:ac:c8:92:4b:2b:bb:fa:ca:72:fd:72:ab: 67:13:0b:c8:9f:0f:e9:87:4f:ce:e6:e3:9a:a0:34:9b:aa:e0: 0f:f1:7c:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjUwNDI0MTcyNDIzWhcNMjUwNTAxMTcyNDIzWjAYMRYwFAYD VQQDEw02ODBhNzNjOC03NWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujRfparAsLlqZc779uUXIADEIIsFkWRH4SEq686v5VWDd0fmk/TSDk4Ynorn JBPyMXTnQxK4oMgiTRjabJS1dbCaQfKYzULT/8uzLKk159uOHinauk3JvA2J09yF 7gU40Y/acfNeCvOxkWh+Mz31XaRkIy2/KGCOLdwa/YC/nbh7MKaepRIYzgErJHjc 8JH0qg1nNm5QPOZNAVjz2O9feDh3LrsFEFnZwUGi6uqsI/EAmoT6j9D03YbHTMn2 wELJKOkY1TLFAV934Cz9rL0bkL8PBtpKeCkLTeByxoMK9cyAMHLG9HcUtbz165Tg wtCI+b02gDO3PjXeHhOmBqzgJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIysgjDv KdQzzr6N1hS0e49R3WjxMB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk3NC9FMTA1QjNCQTNBNDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdl TmxXNWwwTGZzNTZJTzdrVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0vwgRRPMHnjEShifb1qn1eNU3VPIitFuJWCW7gOztebtTlWo1y863 /uuDZE5Tjx/9k3apTUgMXSbnx2HyUJPNCXtV3aWgHw39gofmPRkswBLF8RSflqHI lGaIcaKj04Rxtmis28AmCkvtJPjdvbGIAJaUVlKR+IXO4g4QAOjrnbjDjUQ6UU+P X6ET09awENr41r2tGm4xxezG6jvH5+pfmb5bP8OymfJtg9bSMfnWj8T/c+Z/70k5 ciKSjkk2Rv176HOM/npn0QIRhnZLF2SGBEY+FqARfPTTqxCbnkGsyJJLK7v6ynL9 cqtnEwvInw/ph0/O5uOaoDSbquAP8XzT -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:13 2025 by rpki-client