$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: qmsxjkJ/LFINy/Aq77VIOp6dpGYdhoWMn6fd7eVZ0/A= Subject key identifier: 44:C9:74:81:3D:F9:57:85:DC:3D:0C:77:5E:81:BC:9C:BA:56:D6:CF Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 04AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 04A0 Signing time: Thu 24 Apr 2025 23:44:32 +0000 Manifest this update: Thu 24 Apr 2025 23:44:31 +0000 Manifest next update: Thu 01 May 2025 23:44:31 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: b4fB/a3Ixk6lF4XwM8gduJo12KyBDKiCC1C7z0ApCFw=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: qsT6gdrcrYiz10awZz/5+uahx1IUYSEl585Lltn+07o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:44:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Apr 24 23:44:31 2025 GMT Not After : May 1 23:44:31 2025 GMT Subject: CN=680accdf-ef8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:81:2c:a7:49:44:a0:eb:51:20:bd:df:5f:fa: 05:9c:4d:6f:fc:6e:7b:17:23:d1:d4:bc:92:12:fd: c7:bf:44:84:d6:a1:86:f7:e0:0b:da:ed:4c:90:5a: 9b:50:c6:0a:85:39:b5:e2:d1:3e:ef:83:af:0b:56: 92:35:43:29:96:b6:9a:f1:df:21:0a:8f:62:73:af: dc:a1:bd:05:30:70:5f:bd:f2:c9:c4:fc:a7:13:cb: c1:2b:a6:46:7c:83:9c:44:be:db:a4:b0:1a:bb:b3: cc:64:c0:9e:cb:bb:30:0f:77:43:07:6f:81:74:df: 1b:64:e1:d6:b7:ce:d1:8b:a1:9b:5d:76:71:48:79: 52:fa:e4:07:c9:0d:4e:e9:27:45:e7:8b:1f:78:40: 77:10:00:8a:f2:52:67:69:ab:c8:46:90:0f:c6:24: 90:d9:39:1f:dc:c1:ba:a8:e5:2b:fb:2a:67:c4:e8: e9:75:ca:8c:17:83:b0:0c:f1:f7:0a:7f:1a:e9:bc: 3e:c4:c0:40:a1:a7:5d:2b:a9:6c:5e:d4:2a:f1:54: ef:65:65:ee:09:27:54:66:6c:22:4c:a7:28:0a:40: ea:10:c5:33:16:e6:27:00:3f:6c:b8:38:7b:d6:7f: 7d:8b:b9:39:53:79:3c:9c:39:aa:cb:3d:c1:4f:5e: 3a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C9:74:81:3D:F9:57:85:DC:3D:0C:77:5E:81:BC:9C:BA:56:D6:CF X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:66:a6:75:83:a9:74:74:88:df:c6:a0:91:5a:73:47:ac:34: 5f:45:4f:87:ad:b9:a5:0b:b0:c2:45:2b:58:25:8f:36:ed:3a: 6c:d1:a6:c1:2f:a5:93:8f:1a:b6:57:66:a2:31:5a:6a:d8:cd: 57:12:69:5d:46:46:c9:dc:80:e9:4a:83:f5:90:89:fe:88:38: 69:19:85:71:e8:07:24:8b:f6:43:62:d1:f7:f9:1c:45:a1:7c: 15:23:04:27:68:ab:b2:eb:e1:a0:df:f9:47:93:ca:9e:2c:a6: 3e:58:e4:4f:fc:0b:33:7e:af:03:82:e5:20:3a:33:b5:0d:41: d5:3f:d1:d2:b2:92:90:71:73:d2:0b:f1:2a:94:d0:e4:d2:06: 2e:4c:2e:40:34:9b:6d:43:86:e1:4f:de:d9:8a:e7:73:60:19: ac:6e:39:c9:29:aa:e3:c5:52:1d:71:99:db:f4:3b:b8:97:8d: ec:6e:a7:6c:46:2d:04:8d:70:e8:24:46:3f:f6:a6:82:5f:aa: e3:87:63:80:1e:b1:3c:89:33:a9:70:15:87:92:20:6a:69:5b: 83:4d:bb:9d:9a:5f:7b:df:93:38:fe:0d:57:ea:31:f5:82:b9: 5c:c3:c9:06:c0:61:48:5c:60:9b:07:db:1e:21:37:a7:9c:9f: 27:e6:b2:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUwNDI0MjM0NDMxWhcNMjUwNTAxMjM0NDMxWjAYMRYwFAYD VQQDEw02ODBhY2NkZi1lZjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4Esp0lEoOtRIL3fX/oFnE1v/G57FyPR1LySEv3Hv0SE1qGG9+AL2u1MkFqb UMYKhTm14tE+74OvC1aSNUMplraa8d8hCo9ic6/cob0FMHBfvfLJxPynE8vBK6ZG fIOcRL7bpLAau7PMZMCey7swD3dDB2+BdN8bZOHWt87Ri6GbXXZxSHlS+uQHyQ1O 6SdF54sfeEB3EACK8lJnaavIRpAPxiSQ2Tkf3MG6qOUr+ypnxOjpdcqMF4OwDPH3 Cn8a6bw+xMBAoaddK6lsXtQq8VTvZWXuCSdUZmwiTKcoCkDqEMUzFuYnAD9suDh7 1n99i7k5U3k8nDmqyz3BT146VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETJdIE9 +VeF3D0Md16BvJy6VtbPMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgZqZ1g6l0dIjfxqCRWnNHrDRfRU+HrbmlC7DCRStYJY827Tps0abB L6WTjxq2V2aiMVpq2M1XEmldRkbJ3IDpSoP1kIn+iDhpGYVx6Acki/ZDYtH3+RxF oXwVIwQnaKuy6+Gg3/lHk8qeLKY+WORP/Aszfq8DguUgOjO1DUHVP9HSspKQcXPS C/EqlNDk0gYuTC5ANJttQ4bhT97ZiudzYBmsbjnJKarjxVIdcZnb9Du4l43sbqds Ri0EjXDoJEY/9qaCX6rjh2OAHrE8iTOpcBWHkiBqaVuDTbudml9735M4/g1X6jH1 grlcw8kGwGFIXGCbB9seITennJ8n5rKV -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:46 2025 by rpki-client