$ rpki-client -vvf rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft File: 60SnxtcuZG2Eose20umnMhAbgTo.mft (raw, json) Hash identifier: 87b13nFgb0ol+n9/EMTPwn60UC9+wFqMaM7wbg0fKoM= Subject key identifier: 39:7E:3E:6F:A0:FA:B6:CE:5F:41:A6:F8:EB:C5:80:47:BF:04:DC:8B Authority key identifier: EB:44:A7:C6:D7:2E:64:6D:84:A2:C7:B6:D2:E9:A7:32:10:1B:81:3A Certificate issuer: /CN=A912A10A/serialNumber=EB44A7C6D72E646D84A2C7B6D2E9A732101B813A Certificate serial: 025E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60SnxtcuZG2Eose20umnMhAbgTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft Manifest number: 0259 Signing time: Fri 25 Apr 2025 01:34:41 +0000 Manifest this update: Fri 25 Apr 2025 01:34:40 +0000 Manifest next update: Fri 02 May 2025 01:34:40 +0000 Files and hashes: 1: 60SnxtcuZG2Eose20umnMhAbgTo.crl (hash: 6WCviRCWw4XdgkLG8J41e0zjECjBsBvKQ2PnefteedM=) 2: 8C286648818611ED8D1C5824C4F9AE02.roa (hash: xFXNX7ojWtYsPecQfS60CBpkcLKXmlqCPRZZdxkSgiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.crl rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60SnxtcuZG2Eose20umnMhAbgTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A10A, serialNumber=EB44A7C6D72E646D84A2C7B6D2E9A732101B813A Validity Not Before: Apr 25 01:34:40 2025 GMT Not After : May 2 01:34:40 2025 GMT Subject: CN=680ae6b1-dd5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a9:0c:3e:d6:80:c9:52:bc:98:5f:b4:6f:21: 39:f1:28:ca:ed:1d:c7:c7:60:b5:61:f6:01:ee:b7: 01:1f:e2:66:74:f0:09:95:af:5e:32:f9:6c:bd:ac: fd:9a:61:07:6c:05:f5:dd:d1:db:b2:5c:65:a1:ae: 3f:d8:cb:24:61:f8:4c:02:aa:ae:76:e9:f5:a1:9a: 59:54:ac:2b:4f:cb:13:47:83:91:a5:8a:2e:e0:21: 0c:33:c2:d4:30:60:9a:a2:6d:d2:db:63:93:e8:d9: 68:f6:34:de:d7:87:44:4e:98:20:52:cb:8b:c7:98: bc:76:81:64:27:04:68:76:7e:03:3c:d2:cf:0d:b0: 64:2c:b8:84:57:61:3e:f5:9e:3b:48:87:09:c0:c1: 80:b6:90:f2:c1:02:4c:eb:40:2b:2b:f0:a2:2b:a1: 96:ff:9f:08:2c:93:a9:6f:d6:25:87:5c:a8:a4:b2: 4b:82:fc:af:d7:75:d3:c6:47:d1:80:4f:cd:ab:27: f3:1f:ad:6d:85:24:fd:64:96:1f:31:8b:51:ea:d6: 95:47:f2:90:fb:b2:d2:81:69:9e:f9:d2:39:9e:90: 92:b3:e8:54:cd:e7:67:e7:77:57:45:f7:3e:55:12: 80:f7:ce:b8:ae:31:ca:b4:5c:d6:d6:16:f2:c3:c9: 1c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7E:3E:6F:A0:FA:B6:CE:5F:41:A6:F8:EB:C5:80:47:BF:04:DC:8B X509v3 Authority Key Identifier: keyid:EB:44:A7:C6:D7:2E:64:6D:84:A2:C7:B6:D2:E9:A7:32:10:1B:81:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60SnxtcuZG2Eose20umnMhAbgTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:01:44:51:cc:6e:25:34:f0:c0:13:df:c9:46:6b:79:6b:f1: 23:7f:9f:45:41:0d:4b:41:6c:89:9c:d2:48:72:8c:9a:79:32: 51:82:e2:b3:f8:73:af:92:37:77:ea:a5:4b:ea:ea:9c:e7:af: 1e:ed:8c:1c:66:c7:46:3c:1f:f3:23:7a:85:a7:b8:b1:36:06: 0c:be:c6:dc:0f:34:2d:2b:d6:0a:14:cd:99:60:ee:ed:27:60: b5:fd:93:82:24:e6:49:8d:20:db:9a:11:cd:cb:e5:c2:a8:e4: 4e:2c:08:d9:3c:0d:24:ea:82:2f:87:fe:2b:48:23:cf:a6:24: 3f:f3:a9:7f:5a:78:ad:61:27:6f:3b:95:81:9f:c4:4e:d8:e0: 7f:0b:d0:c2:9a:d1:f2:d3:c5:cf:7d:ca:89:61:57:d5:a4:7c: 1d:32:6a:1a:3e:f9:a7:ec:67:cc:2f:5a:e5:b6:e8:5b:b3:9c: da:42:4a:26:0e:cb:7a:db:19:4b:01:4d:d2:b0:f3:b0:68:87: 0d:27:36:37:88:a6:4b:7e:7d:3b:08:8e:e1:3a:1c:e5:65:a0: a6:a3:37:5c:41:d4:a2:1d:75:b7:46:9c:d6:5d:ed:b5:68:c9: 36:a3:43:03:a2:08:11:29:7d:14:f0:13:dd:b3:5f:0b:d7:ba: 0a:26:46:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExMEExMTAvBgNVBAUTKEVCNDRBN0M2RDcyRTY0NkQ4NEEyQzdCNkQyRTlBNzMy MTAxQjgxM0EwHhcNMjUwNDI1MDEzNDQwWhcNMjUwNTAyMDEzNDQwWjAYMRYwFAYD VQQDEw02ODBhZTZiMS1kZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6kMPtaAyVK8mF+0byE58SjK7R3Hx2C1YfYB7rcBH+JmdPAJla9eMvlsvaz9 mmEHbAX13dHbslxloa4/2MskYfhMAqqudun1oZpZVKwrT8sTR4ORpYou4CEMM8LU MGCaom3S22OT6Nlo9jTe14dETpggUsuLx5i8doFkJwRodn4DPNLPDbBkLLiEV2E+ 9Z47SIcJwMGAtpDywQJM60ArK/CiK6GW/58ILJOpb9Ylh1yopLJLgvyv13XTxkfR gE/NqyfzH61thST9ZJYfMYtR6taVR/KQ+7LSgWme+dI5npCSs+hUzedn53dXRfc+ VRKA9864rjHKtFzW1hbyw8kcHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDl+Pm+g +rbOX0Gm+OvFgEe/BNyLMB8GA1UdIwQYMBaAFOtEp8bXLmRthKLHttLppzIQG4E6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTEwQS9FNTE4QjA3NjEz OTIxMUVEQTA1MjAyMUZDNEY5QUUwMi82MFNueHRjdVpHMkVvc2UyMHVtbk1oQWJn VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYwU254dGN1WkcyRW9zZTIwdW1uTWhBYmdUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTEwQS9FNTE4QjA3NjEzOTIxMUVEQTA1MjAyMUZDNEY5QUUwMi82MFNueHRjdVpH MkVvc2UyMHVtbk1oQWJnVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdAURRzG4lNPDAE9/JRmt5a/Ejf59FQQ1LQWyJnNJIcoyaeTJRguKz +HOvkjd36qVL6uqc568e7YwcZsdGPB/zI3qFp7ixNgYMvsbcDzQtK9YKFM2ZYO7t J2C1/ZOCJOZJjSDbmhHNy+XCqOROLAjZPA0k6oIvh/4rSCPPpiQ/86l/WnitYSdv O5WBn8RO2OB/C9DCmtHy08XPfcqJYVfVpHwdMmoaPvmn7GfML1rltuhbs5zaQkom Dst62xlLAU3SsPOwaIcNJzY3iKZLfn07CI7hOhzlZaCmozdcQdSiHXW3RpzWXe21 aMk2o0MDoggRKX0U8BPds18L17oKJkbd -----END CERTIFICATE-----Generated at Sat Apr 26 05:20:55 2025 by rpki-client