$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: C2TthYREUkIvd91618rcdsKUwmuNrOYsEAAXEIEqdrk= Subject key identifier: 85:65:4E:32:73:C7:58:37:F0:52:CA:EC:CD:E1:3C:F0:8C:2E:E2:11 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2D7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D14 Signing time: Thu 24 Apr 2025 15:31:50 +0000 Manifest this update: Thu 24 Apr 2025 15:31:50 +0000 Manifest next update: Thu 01 May 2025 15:31:50 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: Ny2w+ncOSFg+UZYa65BjeFaQQeYs6EaGqvkrV4WwU2I=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: arjppb8o0dAo/PmRzQByMlM088vFXvA0RnVconCK+zU=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: fUhNa2zvGR6tljYmicsoP8kxi9R8oyVSsotkZ+dJbwI=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11647 (0x2d7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Apr 24 15:31:50 2025 GMT Not After : May 1 15:31:50 2025 GMT Subject: CN=680a5966-70b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f1:6b:ba:87:79:bc:38:fc:35:9a:d8:3a:55: ab:fb:b1:4d:fc:9e:15:84:81:4d:88:22:99:3e:e8: b3:5e:ea:73:cc:90:bf:d2:a6:a4:10:89:a8:06:5c: 06:fe:e8:69:3c:a6:57:61:61:26:2a:af:81:7b:08: 6b:5f:eb:84:91:62:51:58:aa:3d:da:8c:a0:86:3a: 4b:1c:08:b5:f3:0e:0e:19:21:7b:62:76:4f:7e:fc: 02:b9:c7:e6:27:bf:c5:1f:cd:75:f4:57:b3:ae:06: 98:0d:66:e2:ec:1d:5e:7e:c0:f9:63:87:58:9d:3c: 17:ae:af:71:34:a3:8b:27:b0:31:9b:da:8d:d0:5c: 64:99:a7:b3:a4:27:cc:e4:b4:84:71:a7:6c:8b:fe: f8:21:87:94:c0:05:8e:99:22:d6:c3:70:88:bf:05: 5c:dd:cd:ae:01:e1:4b:7b:d6:05:a6:3d:0d:93:58: b0:b4:ba:a5:6f:ad:29:19:39:d2:90:d3:9f:2b:90: 4b:dc:b9:22:27:f3:68:c4:90:86:20:5c:15:00:ba: 53:18:6b:9e:b9:46:91:fa:21:50:a3:57:31:89:33: 37:1b:5b:94:a3:7a:16:5c:9b:36:9c:34:98:d4:8c: 8f:b1:9a:49:33:b3:a6:bd:f2:c6:7b:85:bf:34:b9: 02:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:65:4E:32:73:C7:58:37:F0:52:CA:EC:CD:E1:3C:F0:8C:2E:E2:11 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:36:44:d4:c3:97:03:e2:ba:52:6a:68:5d:9a:1c:e3:30:2e: ae:0d:3c:e2:52:4c:6a:b9:4f:b6:ee:01:ee:20:8b:c9:99:43: 80:aa:9e:f9:b7:55:f8:f2:50:7b:48:ee:71:e4:92:a6:aa:37: 96:3f:ef:14:13:d8:08:04:26:a8:74:25:0e:81:ea:05:70:0c: c1:28:20:d0:f5:95:3b:f6:62:a6:06:d9:85:7b:4d:b7:da:eb: 71:63:6d:3c:f2:22:10:71:a7:05:98:10:7a:ca:4c:e6:74:10: ab:60:a4:ff:79:72:38:b5:b8:3b:46:39:da:34:bd:e1:49:fc: d4:6a:25:cd:f0:9d:b2:ed:09:c8:f2:a9:e0:c9:8d:e6:2e:51: 75:4e:9f:95:aa:88:f4:e6:89:ff:2b:a0:e6:67:f6:dd:2b:cd: 65:bb:0e:03:6f:23:93:fe:48:91:a2:58:6a:b7:cf:57:6e:5d: 4e:d0:26:e0:20:31:ae:3e:07:d7:65:0f:a8:ce:87:ab:3d:79: d4:2b:e7:71:ee:5c:6e:77:02:30:d2:ab:09:98:92:88:f5:ac: 14:68:e5:53:c7:25:b6:74:93:ab:10:62:38:a1:e6:d8:dc:48: f6:75:4e:85:d9:be:da:5f:2d:16:01:51:4a:e0:aa:6e:07:b5: 60:a6:5e:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUwNDI0MTUzMTUwWhcNMjUwNTAxMTUzMTUwWjAYMRYwFAYD VQQDEw02ODBhNTk2Ni03MGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PFruod5vDj8NZrYOlWr+7FN/J4VhIFNiCKZPuizXupzzJC/0qakEImoBlwG /uhpPKZXYWEmKq+BewhrX+uEkWJRWKo92oyghjpLHAi18w4OGSF7YnZPfvwCucfm J7/FH8119FezrgaYDWbi7B1efsD5Y4dYnTwXrq9xNKOLJ7Axm9qN0FxkmaezpCfM 5LSEcadsi/74IYeUwAWOmSLWw3CIvwVc3c2uAeFLe9YFpj0Nk1iwtLqlb60pGTnS kNOfK5BL3LkiJ/NoxJCGIFwVALpTGGueuUaR+iFQo1cxiTM3G1uUo3oWXJs2nDSY 1IyPsZpJM7OmvfLGe4W/NLkCdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVlTjJz x1g38FLK7M3hPPCMLuIRMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBENkTUw5cD4rpSamhdmhzjMC6uDTziUkxquU+27gHuIIvJmUOAqp75 t1X48lB7SO5x5JKmqjeWP+8UE9gIBCaodCUOgeoFcAzBKCDQ9ZU79mKmBtmFe023 2utxY2088iIQcacFmBB6ykzmdBCrYKT/eXI4tbg7RjnaNL3hSfzUaiXN8J2y7QnI 8qngyY3mLlF1Tp+Vqoj05on/K6DmZ/bdK81luw4DbyOT/kiRolhqt89Xbl1O0Cbg IDGuPgfXZQ+ozoerPXnUK+dx7lxudwIw0qsJmJKI9awUaOVTxyW2dJOrEGI4oebY 3Ej2dU6F2b7aXy0WAVFK4KpuB7Vgpl7Q -----END CERTIFICATE-----Generated at Sat Apr 26 04:37:01 2025 by rpki-client