$ rpki-client -vvf rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft File: 1m4Cgid2-1UUPQyeVJAyhlal4I0.mft (raw, json) Hash identifier: vOa3mhr4ylqmx6COGss9TvfgVln/Bqgi/Cq37faO9bo= Subject key identifier: C4:B2:00:75:ED:B4:C8:D1:39:35:C3:F8:2D:B5:69:F3:1C:DB:41:D8 Authority key identifier: D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D Certificate issuer: /CN=A9123180/serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D Certificate serial: 0C2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft Manifest number: 0C24 Signing time: Thu 24 Apr 2025 18:29:08 +0000 Manifest this update: Thu 24 Apr 2025 18:29:08 +0000 Manifest next update: Thu 01 May 2025 18:29:08 +0000 Files and hashes: 1: 1m4Cgid2-1UUPQyeVJAyhlal4I0.crl (hash: 4OZUDmJwb36YjSzDjhrKVjp/KFEZY0oGs+2Jhbt1yHo=) 2: 0EE3438A07FC11EABAD90A47C4F9AE02.roa (hash: o6uzXxi45nuYDCicVYaDwUO/XE7Lp0WVGghWkgO8ZII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3116 (0xc2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123180, serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D Validity Not Before: Apr 24 18:29:08 2025 GMT Not After : May 1 18:29:08 2025 GMT Subject: CN=680a82f4-6be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:73:67:7e:7b:32:24:a5:a7:e3:7c:86:96:86: 16:1c:a6:dc:00:84:f8:03:13:73:ff:9c:b2:01:ce: 2e:61:b0:68:f2:9f:3f:0a:6b:22:ae:9f:09:9c:e2: 32:5e:36:00:31:6a:5a:46:ea:20:9b:b1:6a:17:ed: 63:f2:24:1f:8d:9b:5d:88:eb:f4:88:b3:19:85:0a: 1c:71:c4:c5:e4:30:68:15:38:9a:5d:af:73:ef:35: 42:70:38:56:ec:98:09:3c:c7:94:9f:ea:5b:26:06: 06:d8:d2:f9:7f:d2:ff:85:8e:24:2b:ee:d1:98:7b: eb:03:22:79:c5:a2:36:c9:71:30:20:eb:93:4e:4e: e5:9c:52:e6:d3:e0:a7:38:4a:4e:e8:b4:a5:6b:b4: ff:c6:be:1a:18:48:37:07:a2:02:9b:f3:e0:c4:72: 5a:c2:bd:52:c7:b2:7a:c2:02:28:2a:96:6e:95:0b: ea:c5:9c:4b:76:1f:95:a3:d3:fd:d5:86:cf:af:79: c5:db:fc:75:58:23:a4:e9:4c:e6:af:cd:f5:5a:db: 73:a4:9a:1d:ae:c4:ba:69:0d:d0:e6:15:75:ac:f6: da:dd:fc:8c:73:06:56:cb:d0:33:cf:97:df:42:2d: 78:96:3a:a0:67:92:f1:b5:c1:42:dc:cc:98:46:80: 9b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B2:00:75:ED:B4:C8:D1:39:35:C3:F8:2D:B5:69:F3:1C:DB:41:D8 X509v3 Authority Key Identifier: keyid:D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:ad:d6:93:8f:9a:e7:bc:80:90:13:f1:a0:31:7d:92:04:48: fd:f0:c1:26:86:29:69:c5:c7:6d:74:a5:a9:46:9f:14:6c:a7: 6d:29:2c:d6:a8:cc:56:37:85:bf:83:42:36:8b:3c:d6:6a:81: 0b:a9:e0:d4:17:81:91:69:cc:70:18:73:dd:b0:71:23:2c:d8: 5a:70:10:92:ca:98:5c:a5:0d:14:ab:46:8d:1a:9b:dd:cf:86: ae:e2:d5:c9:dc:07:88:ea:e2:c2:b7:c7:63:1d:03:42:99:ec: 35:53:6f:9c:73:c4:0e:8f:9f:3b:d4:06:73:9e:f1:d2:75:26: 75:b1:68:4b:44:6c:85:51:31:45:1c:d2:12:0b:ea:6d:73:ff: 19:55:3d:11:53:56:f9:0d:ab:70:b1:1d:68:70:00:5a:bf:26: 6c:c8:41:fc:3e:d8:4c:3b:19:55:7f:04:cc:cd:4a:6e:10:4e: e9:74:6f:c1:e8:91:40:6c:0b:42:e1:cf:08:a4:40:f2:b7:3d: c9:5d:f5:e2:00:84:60:5e:25:a5:e7:5f:e4:4b:4f:cd:e7:87: 7c:1f:30:67:3e:37:92:48:53:b6:48:cb:a8:69:7c:2d:1b:ba: a8:5b:6c:0b:31:1c:b5:19:0b:d9:fb:06:df:e5:75:e6:84:c2: 05:19:f7:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMxODAxMTAvBgNVBAUTKEQ2NkUwMjgyMjc3NkZCNTUxNDNEMEM5RTU0OTAzMjg2 NTZBNUUwOEQwHhcNMjUwNDI0MTgyOTA4WhcNMjUwNTAxMTgyOTA4WjAYMRYwFAYD VQQDEw02ODBhODJmNC02YmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13NnfnsyJKWn43yGloYWHKbcAIT4AxNz/5yyAc4uYbBo8p8/Cmsirp8JnOIy XjYAMWpaRuogm7FqF+1j8iQfjZtdiOv0iLMZhQocccTF5DBoFTiaXa9z7zVCcDhW 7JgJPMeUn+pbJgYG2NL5f9L/hY4kK+7RmHvrAyJ5xaI2yXEwIOuTTk7lnFLm0+Cn OEpO6LSla7T/xr4aGEg3B6ICm/PgxHJawr1Sx7J6wgIoKpZulQvqxZxLdh+Vo9P9 1YbPr3nF2/x1WCOk6Uzmr831WttzpJodrsS6aQ3Q5hV1rPba3fyMcwZWy9Azz5ff Qi14ljqgZ5LxtcFC3MyYRoCbDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSyAHXt tMjROTXD+C21afMc20HYMB8GA1UdIwQYMBaAFNZuAoIndvtVFD0MnlSQMoZWpeCN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzE4MC8zMDU2OURCMDA3 RkIxMUVBOUIzNENDNDVDNEY5QUUwMi8xbTRDZ2lkMi0xVVVQUXllVkpBeWhsYWw0 STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtNENnaWQyLTFVVVBReWVWSkF5aGxhbDRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzE4MC8zMDU2OURCMDA3RkIxMUVBOUIzNENDNDVDNEY5QUUwMi8xbTRDZ2lkMi0x VVVQUXllVkpBeWhsYWw0STAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACrdaTj5rnvICQE/GgMX2SBEj98MEmhilpxcdtdKWpRp8UbKdtKSzW qMxWN4W/g0I2izzWaoELqeDUF4GRacxwGHPdsHEjLNhacBCSyphcpQ0Uq0aNGpvd z4au4tXJ3AeI6uLCt8djHQNCmew1U2+cc8QOj5871AZznvHSdSZ1sWhLRGyFUTFF HNISC+ptc/8ZVT0RU1b5DatwsR1ocABavyZsyEH8PthMOxlVfwTMzUpuEE7pdG/B 6JFAbAtC4c8IpEDytz3JXfXiAIRgXiWl51/kS0/N54d8HzBnPjeSSFO2SMuoaXwt G7qoW2wLMRy1GQvZ+wbf5XXmhMIFGffA -----END CERTIFICATE-----Generated at Sat Apr 26 16:44:19 2025 by rpki-client