$ rpki-client -vvf rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft File: dOHLgzYmhzR4kyyiEYioj98uneA.mft (raw, json) Hash identifier: 85CNz6+PYsnBgjhC1QpxaZcJ7+oB9rUOyGqLipThaN4= Subject key identifier: 4A:F8:94:BC:07:88:D0:2F:4F:EF:DB:8C:6B:A7:67:DF:B5:63:21:E5 Authority key identifier: 74:E1:CB:83:36:26:87:34:78:93:2C:A2:11:88:A8:8F:DF:2E:9D:E0 Certificate issuer: /CN=A9121E13/serialNumber=74E1CB833626873478932CA21188A88FDF2E9DE0 Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft Manifest number: 063C Signing time: Thu 24 Apr 2025 14:46:32 +0000 Manifest this update: Thu 24 Apr 2025 14:46:31 +0000 Manifest next update: Thu 01 May 2025 14:46:31 +0000 Files and hashes: 1: dOHLgzYmhzR4kyyiEYioj98uneA.crl (hash: E5zByET+/q8U35+1HNSlqIr87R8x9jpC1gvfduaNbj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.crl rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121E13, serialNumber=74E1CB833626873478932CA21188A88FDF2E9DE0 Validity Not Before: Apr 24 14:46:31 2025 GMT Not After : May 1 14:46:31 2025 GMT Subject: CN=680a4ec8-f2ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6b:ec:c8:a4:3a:cf:5f:66:7b:a7:1e:8c:e7: 5d:ca:a4:fe:96:a9:6b:80:9f:1b:c4:bb:df:6d:8a: 48:8c:b4:d3:55:5a:da:fc:b8:c6:d3:60:55:50:01: 7f:92:62:a8:4a:bf:a1:b0:e7:9c:9d:54:e3:a2:69: 73:07:5c:f8:2a:dc:83:e6:2a:d4:08:d5:9e:b2:a5: 70:81:c4:23:d6:d8:c4:ed:5d:8a:f7:03:46:4a:63: 02:65:ee:ba:0e:ae:2b:99:8f:85:fd:f0:e1:c1:ee: 95:89:d5:ed:d4:e1:0b:a4:23:a1:e3:37:36:fd:19: bf:1a:13:20:1a:5e:e9:60:35:05:a0:48:45:38:9d: 74:85:87:b5:d4:10:74:64:72:c3:c4:c9:5c:7e:0d: 1f:bd:12:a1:e6:cd:8b:5d:f0:7c:64:ec:36:f2:a5: 00:15:a1:21:76:ac:be:6c:4c:5a:06:26:b8:11:bb: 10:45:55:29:80:8d:19:2e:02:c8:db:99:77:0b:53: c9:9e:e5:65:1b:ac:97:9d:20:b2:d2:0a:bf:6a:a2: b3:d6:27:f2:45:c6:de:a7:eb:ea:57:56:e3:d6:3d: bf:76:f1:a4:a1:b0:46:46:7c:05:20:5b:52:f3:03: 00:65:15:57:12:fc:a0:77:d3:39:07:7c:61:6a:92: 25:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F8:94:BC:07:88:D0:2F:4F:EF:DB:8C:6B:A7:67:DF:B5:63:21:E5 X509v3 Authority Key Identifier: keyid:74:E1:CB:83:36:26:87:34:78:93:2C:A2:11:88:A8:8F:DF:2E:9D:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:39:86:9b:3f:fc:ac:94:35:f7:c1:91:4a:0b:b4:d8:76:6d: 44:6f:5f:52:3f:e4:2b:fe:0f:a7:20:41:de:02:6d:e5:ce:92: 6c:5d:ce:df:05:17:fa:80:70:b5:6a:10:51:13:50:e2:a0:e6: 7b:66:71:9c:f1:4d:57:c3:ef:14:0b:a8:f4:14:be:05:bb:a2: 59:22:77:c9:b9:61:1c:d1:ec:c5:0d:85:ea:5d:6c:19:47:ee: 35:35:fd:30:a9:a6:d9:8a:9f:02:6d:0d:d2:e6:58:57:e2:75: 92:8e:b3:62:a0:e4:5a:1d:15:2c:9f:64:55:95:3d:bf:27:e2: aa:b1:9d:27:59:d8:93:eb:e3:2a:34:53:90:f4:f3:06:79:37: 0e:c3:28:1c:fe:3c:9c:0b:2a:2a:25:e1:cf:4e:6d:c0:34:ea: a3:38:01:78:10:2a:f1:8b:8f:4a:41:e9:da:58:67:ca:9c:44: 1b:37:5f:5b:29:ce:de:24:26:3f:c7:bc:3d:6c:38:57:76:df: 04:91:92:2e:af:d0:9e:a7:2c:76:da:9f:0a:d6:10:8b:85:fc: da:1a:28:84:bd:fd:23:db:e7:98:94:20:81:f8:21:ef:9b:b9: 53:f7:b4:fe:55:e8:38:b7:c7:44:64:61:d0:00:2d:01:2e:70: 50:e8:c9:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFFMTMxMTAvBgNVBAUTKDc0RTFDQjgzMzYyNjg3MzQ3ODkzMkNBMjExODhBODhG REYyRTlERTAwHhcNMjUwNDI0MTQ0NjMxWhcNMjUwNTAxMTQ0NjMxWjAYMRYwFAYD VQQDEw02ODBhNGVjOC1mMmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2vsyKQ6z19me6cejOddyqT+lqlrgJ8bxLvfbYpIjLTTVVra/LjG02BVUAF/ kmKoSr+hsOecnVTjomlzB1z4KtyD5irUCNWesqVwgcQj1tjE7V2K9wNGSmMCZe66 Dq4rmY+F/fDhwe6VidXt1OELpCOh4zc2/Rm/GhMgGl7pYDUFoEhFOJ10hYe11BB0 ZHLDxMlcfg0fvRKh5s2LXfB8ZOw28qUAFaEhdqy+bExaBia4EbsQRVUpgI0ZLgLI 25l3C1PJnuVlG6yXnSCy0gq/aqKz1ifyRcbep+vqV1bj1j2/dvGkobBGRnwFIFtS 8wMAZRVXEvygd9M5B3xhapIltQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEr4lLwH iNAvT+/bjGunZ9+1YyHlMB8GA1UdIwQYMBaAFHThy4M2Joc0eJMsohGIqI/fLp3g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUUxMy8xODNGOTlGQThE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kT0hMZ3pZbWh6UjRreXlpRVlpb2o5OHVu ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RPSExnelltaHpSNGt5eWlFWWlvajk4dW5lQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUUxMy8xODNGOTlGQThEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kT0hMZ3pZbWh6 UjRreXlpRVlpb2o5OHVuZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrOYabP/yslDX3wZFKC7TYdm1Eb19SP+Qr/g+nIEHeAm3lzpJsXc7f BRf6gHC1ahBRE1DioOZ7ZnGc8U1Xw+8UC6j0FL4Fu6JZInfJuWEc0ezFDYXqXWwZ R+41Nf0wqabZip8CbQ3S5lhX4nWSjrNioORaHRUsn2RVlT2/J+KqsZ0nWdiT6+Mq NFOQ9PMGeTcOwygc/jycCyoqJeHPTm3ANOqjOAF4ECrxi49KQenaWGfKnEQbN19b Kc7eJCY/x7w9bDhXdt8EkZIur9Cepyx22p8K1hCLhfzaGiiEvf0j2+eYlCCB+CHv m7lT97T+Veg4t8dEZGHQAC0BLnBQ6Mno -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:12 2025 by rpki-client