$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft File: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json) Hash identifier: WQlxGJ0cGmJe8x1Xt05YVJ+h8fXznu++oaJJFJ6+Ifo= Subject key identifier: B7:E5:98:C4:D0:32:21:2F:48:41:7D:84:E5:4A:3A:08:E0:AA:3E:16 Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft Manifest number: 40 Signing time: Fri 25 Apr 2025 06:27:54 +0000 Manifest this update: Fri 25 Apr 2025 06:27:53 +0000 Manifest next update: Fri 02 May 2025 06:27:53 +0000 Files and hashes: 1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: OW87a4JHWwNE2oVBBI7u5VZizrlrxsjUG2jo4GcpTYg=) 2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: NFkplWmsMA3dKF672WmukIl9RpnNjHUYN1V/j7l+GN0=) 3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: FPrJ8rYYz3zXm+ulxONvcKZWR1V8127XQSJ/4rwqktA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C, serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Validity Not Before: Apr 25 06:27:53 2025 GMT Not After : May 2 06:27:53 2025 GMT Subject: CN=680b2b6a-2d43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ec:1e:a3:39:c0:10:7e:74:60:3c:a6:6a:b7: 80:d9:74:56:07:b6:59:e5:4c:57:6d:19:bf:d0:7d: 62:94:58:e8:c7:4e:55:65:a5:e8:8c:4a:cb:de:ef: 88:e2:8d:c5:29:4a:14:36:31:4d:c5:f7:c3:ee:62: 15:ea:07:63:15:a4:6e:c5:2b:8f:59:40:d7:67:bf: 1b:e8:82:b4:00:16:1f:0e:28:41:5c:18:05:b8:6b: 7d:79:5e:e3:4e:d9:46:46:d9:08:0d:d7:3f:cb:a6: c7:3a:e1:e2:84:e8:5e:4f:db:59:57:33:2f:be:83: 76:52:44:78:0f:4a:73:ed:43:92:6c:d5:d2:d5:5f: 9d:4c:88:d2:52:15:4e:28:ac:40:10:b9:d1:3e:a1: 5a:4e:86:b7:9b:aa:bd:92:b6:80:56:07:5c:50:2d: 5c:fe:77:68:51:d5:c4:a7:d6:58:c1:d9:37:55:fa: 0f:05:44:33:aa:38:a5:c3:02:43:30:59:14:87:57: 34:22:1f:f3:d3:22:d3:9f:13:87:13:2a:b2:62:7a: 77:eb:7a:6c:6d:cf:cc:5e:37:db:0a:0a:34:75:73: 0e:64:f0:b2:85:12:2f:23:f2:14:d9:73:aa:d5:5e: df:8f:b6:a8:1a:2f:ef:45:9f:ff:b5:d1:de:80:28: 0a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E5:98:C4:D0:32:21:2F:48:41:7D:84:E5:4A:3A:08:E0:AA:3E:16 X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e2:2f:fe:b3:bf:0b:16:06:99:03:0a:37:2c:c0:bb:0a:f4: 14:bc:96:ab:ad:1e:c9:5f:96:3d:2a:90:b3:8c:85:bb:a4:ea: 66:76:0b:65:19:4a:6a:a0:0d:b1:52:5e:2b:7e:25:0f:95:fc: 48:94:1c:7d:66:5b:80:f6:c2:38:72:04:81:da:d6:00:8b:33: 0f:4f:bc:d4:ab:44:05:32:9a:85:a8:50:46:6f:84:2b:8f:7d: 6b:a1:60:e8:5f:3c:55:71:f4:c9:23:7b:b4:35:75:38:d2:f0: 6d:6c:6f:7e:8f:b2:9d:98:6f:48:45:c4:49:62:c9:5b:7e:58: 4b:8b:18:ec:0d:6b:ef:bf:0e:90:74:52:1b:44:93:32:2d:cc: 92:c6:e4:23:e2:3a:fd:44:f9:97:32:1b:89:d2:1d:e9:eb:56: 7b:da:1b:3b:61:fd:97:59:03:14:c3:72:1e:ac:70:85:cf:3c: 33:d4:7d:a8:88:25:6e:13:0f:ee:63:ab:ea:fa:39:5b:7d:cd: da:dc:88:ce:48:9a:eb:0e:95:d1:35:68:d0:c0:3b:7f:de:d3: a6:fa:eb:c3:0b:3b:1b:50:a3:d1:49:0c:28:58:d2:27:85:12: ab:a3:36:2d:53:11:79:95:3c:0b:31:41:91:3c:55:3b:8d:03: 21:50:f7:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NkEzQzExMC8GA1UEBRMoRUU4MTlBNDlCOEM4QTg0NDEzRUU4RkU4MzI2RUYxMzdG NTE4NUM2NjAeFw0yNTA0MjUwNjI3NTNaFw0yNTA1MDIwNjI3NTNaMBgxFjAUBgNV BAMTDTY4MGIyYjZhLTJkNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf7B6jOcAQfnRgPKZqt4DZdFYHtlnlTFdtGb/QfWKUWOjHTlVlpeiMSsve74ji jcUpShQ2MU3F98PuYhXqB2MVpG7FK49ZQNdnvxvogrQAFh8OKEFcGAW4a315XuNO 2UZG2QgN1z/Lpsc64eKE6F5P21lXMy++g3ZSRHgPSnPtQ5Js1dLVX51MiNJSFU4o rEAQudE+oVpOhrebqr2StoBWB1xQLVz+d2hR1cSn1ljB2TdV+g8FRDOqOKXDAkMw WRSHVzQiH/PTItOfE4cTKrJienfremxtz8xeN9sKCjR1cw5k8LKFEi8j8hTZc6rV Xt+PtqgaL+9Fn/+10d6AKAr3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt+WYxNAy IS9IQX2E5Uo6COCqPhYwHwYDVR0jBBgwFoAU7oGaSbjIqEQT7o/oMm7xN/UYXGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2QTNDLzdCRkI0Q0FDQzZB MDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN29HYVNiaklxRVFUN29fb01tN3hOX1VZWEdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2 QTNDLzdCRkI0Q0FDQzZBMDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVR VDdvX29NbTd4Tl9VWVhHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFLiL/6zvwsWBpkDCjcswLsK9BS8lqutHslflj0qkLOMhbuk6mZ2C2UZ SmqgDbFSXit+JQ+V/EiUHH1mW4D2wjhyBIHa1gCLMw9PvNSrRAUymoWoUEZvhCuP fWuhYOhfPFVx9Mkje7Q1dTjS8G1sb36Psp2Yb0hFxEliyVt+WEuLGOwNa++/DpB0 UhtEkzItzJLG5CPiOv1E+ZcyG4nSHenrVnvaGzth/ZdZAxTDch6scIXPPDPUfaiI JW4TD+5jq+r6OVt9zdrciM5ImusOldE1aNDAO3/e06b668MLOxtQo9FJDChY0ieF EqujNi1TEXmVPAsxQZE8VTuNAyFQ97E= -----END CERTIFICATE-----Generated at Sat Apr 26 15:18:26 2025 by rpki-client