$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: fM174YiF4cH1btgdZ+8Mizbr47dfDUcAdg6CcTN5hIE= Subject key identifier: CD:85:E0:9F:73:B5:9F:FD:02:46:A3:64:C9:D4:63:4F:03:0E:E4:ED Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1D72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1D6A Signing time: Thu 24 Apr 2025 16:08:35 +0000 Manifest this update: Thu 24 Apr 2025 16:08:34 +0000 Manifest next update: Thu 01 May 2025 16:08:34 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: eOsKM2GMOFEMWEtPGi5x5mOU3hlLgnrmrqqswSJ4pMs=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: X5h8vQiP6tB103ZWi1RDruZWJP5MBROBXJX+od9NULg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7538 (0x1d72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95, serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: Apr 24 16:08:34 2025 GMT Not After : May 1 16:08:34 2025 GMT Subject: CN=680a6203-68f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:09:db:1e:07:2c:cc:d0:bd:2f:d9:53:c2:d7: 7a:9d:e7:52:ef:43:8b:a8:dc:3a:9b:97:bf:00:bf: 44:29:d6:5d:87:62:e1:f9:f1:94:be:83:0d:43:22: 55:f4:0e:8d:c9:69:65:a2:b6:fc:0f:47:c7:2b:53: 50:24:a6:9d:db:bd:38:e5:25:d7:aa:e7:9d:b2:a6: 4c:58:07:c0:c8:0f:50:b0:9c:81:b8:b7:73:f3:f6: 6d:4c:54:1a:e1:a0:23:d6:89:ed:5c:59:5f:fc:03: 16:89:2b:6a:59:93:af:a9:63:db:6a:d0:2f:45:19: ab:e6:f1:56:f1:a9:5f:1a:2f:6f:62:b7:a3:eb:ab: 8e:c8:03:a1:d5:67:a9:14:ea:22:56:d5:39:0a:3a: 5d:93:37:dc:bd:f1:00:c4:13:90:2f:2a:28:76:ae: 86:3d:23:1f:42:df:c3:65:ef:fa:bc:40:53:31:5f: b9:54:63:b8:f2:b8:89:70:b5:bd:60:3d:0d:47:54: 1d:11:81:e9:32:25:19:db:ac:7a:44:7f:0a:03:c5: 8e:36:6f:ab:de:f5:63:7e:06:c2:49:1d:c1:3d:3c: 74:02:73:17:55:7b:fe:d6:75:87:4d:d4:6a:d0:4a: 73:98:62:00:83:86:4a:66:09:28:72:c9:93:a8:e1: 5c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:85:E0:9F:73:B5:9F:FD:02:46:A3:64:C9:D4:63:4F:03:0E:E4:ED X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c1:05:99:d1:3b:b2:16:ce:de:2d:8c:83:02:5d:41:b7:09: bc:22:11:fc:17:67:95:ca:a4:36:51:8f:ea:77:ac:17:61:d4: cf:81:04:bc:0c:c5:00:2e:e6:8e:90:ff:dc:7f:ee:2e:33:01: 54:4b:bf:13:1e:2d:92:21:a0:47:df:a2:92:55:d6:48:d4:71: 79:3a:27:4d:a0:33:b8:ef:8d:61:6d:57:8d:b8:22:eb:b0:d6: b9:a3:e6:ee:76:1a:0e:a1:a3:cc:3d:2d:c1:3a:67:37:83:61: 52:1c:63:78:9e:60:14:c5:6f:eb:cd:5c:6f:38:01:0b:8a:34: be:ff:ee:b3:ea:b0:2b:26:29:8a:0a:33:db:39:97:be:d8:27: 2e:2c:8c:c2:23:f8:84:84:45:8a:c8:2d:d5:a9:fa:5a:c0:ca: a5:44:eb:2b:6c:ba:ed:6b:b1:71:38:6c:3d:2a:90:ef:08:ce: ef:5a:18:6b:67:9f:b0:b1:77:f2:8d:bb:80:c7:d8:d5:55:1f: 31:d3:87:65:4c:b5:da:9a:25:e8:f1:a9:a2:f0:31:42:3a:79: cc:82:6a:f5:19:a4:e0:ff:85:15:11:0d:8d:8c:86:f0:d9:70: 34:a0:13:b8:e0:aa:36:63:7a:b9:0e:ce:6d:46:21:7c:d8:a5: 99:ef:5f:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjUwNDI0MTYwODM0WhcNMjUwNTAxMTYwODM0WjAYMRYwFAYD VQQDEw02ODBhNjIwMy02OGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwnbHgcszNC9L9lTwtd6nedS70OLqNw6m5e/AL9EKdZdh2Lh+fGUvoMNQyJV 9A6NyWllorb8D0fHK1NQJKad27045SXXquedsqZMWAfAyA9QsJyBuLdz8/ZtTFQa 4aAj1ontXFlf/AMWiStqWZOvqWPbatAvRRmr5vFW8alfGi9vYrej66uOyAOh1Wep FOoiVtU5CjpdkzfcvfEAxBOQLyoodq6GPSMfQt/DZe/6vEBTMV+5VGO48riJcLW9 YD0NR1QdEYHpMiUZ26x6RH8KA8WONm+r3vVjfgbCSR3BPTx0AnMXVXv+1nWHTdRq 0EpzmGIAg4ZKZgkocsmTqOFcowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2F4J9z tZ/9AkajZMnUY08DDuTtMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhwQWZ0TuyFs7eLYyDAl1Btwm8IhH8F2eVyqQ2UY/qd6wXYdTPgQS8 DMUALuaOkP/cf+4uMwFUS78THi2SIaBH36KSVdZI1HF5OidNoDO4741hbVeNuCLr sNa5o+budhoOoaPMPS3BOmc3g2FSHGN4nmAUxW/rzVxvOAELijS+/+6z6rArJimK CjPbOZe+2CcuLIzCI/iEhEWKyC3VqfpawMqlROsrbLrta7FxOGw9KpDvCM7vWhhr Z5+wsXfyjbuAx9jVVR8x04dlTLXamiXo8ami8DFCOnnMgmr1GaTg/4UVEQ2NjIbw 2XA0oBO44Ko2Y3q5Ds5tRiF82KWZ719L -----END CERTIFICATE-----Generated at Sat Apr 26 05:26:17 2025 by rpki-client