$ rpki-client -vvf rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft File: 1cNfp3myIZlgnD6gpTHFoNMyrQE.mft (raw, json) Hash identifier: FaW6IelBgfSNSWsq9lBEstlHmtrm7kZHr9+z7EHt6uw= Subject key identifier: BE:35:62:0B:56:62:B2:4A:0C:9C:B3:CB:CC:32:2F:78:A4:B3:32:38 Authority key identifier: D5:C3:5F:A7:79:B2:21:99:60:9C:3E:A0:A5:31:C5:A0:D3:32:AD:01 Certificate issuer: /CN=A912A8BC/serialNumber=D5C35FA779B22199609C3EA0A531C5A0D332AD01 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft Manifest number: 0178 Signing time: Fri 25 Apr 2025 02:54:23 +0000 Manifest this update: Fri 25 Apr 2025 02:54:23 +0000 Manifest next update: Fri 02 May 2025 02:54:23 +0000 Files and hashes: 1: 1cNfp3myIZlgnD6gpTHFoNMyrQE.crl (hash: ZkheIHlbNJUTte2fG3BljZ1K/CWs5li6WC8ScQCozec=) 2: 4D962E8AE65111ED90E5833EC4F9AE02.roa (hash: 3SQV1F9slNIO5M7UqEAQZkXcxMO9bvgWNAs/r+smThc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.crl rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A8BC, serialNumber=D5C35FA779B22199609C3EA0A531C5A0D332AD01 Validity Not Before: Apr 25 02:54:23 2025 GMT Not After : May 2 02:54:23 2025 GMT Subject: CN=680af95f-37f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:71:44:ef:f0:82:23:94:aa:fb:fa:dd:ad:0b: a5:f9:ba:96:2a:05:3b:08:14:72:a3:64:46:59:96: 09:a1:b5:14:81:31:4e:b8:45:e5:d9:ed:7b:52:e2: a4:f0:ce:eb:06:fb:f3:c8:49:83:54:ea:8d:f7:d3: 04:57:18:5c:a3:1a:58:d7:e0:ae:8f:35:89:c9:88: 82:61:42:0f:94:dd:48:9a:91:a1:62:ec:00:cc:24: 2c:6b:7f:6c:a2:8d:95:90:af:34:ac:13:7a:03:07: bf:20:2f:b6:9d:42:bb:37:42:1c:24:be:2b:31:05: 30:71:0e:08:f1:e0:30:14:47:27:75:bf:2a:70:82: b8:f8:1c:c5:fd:26:23:ad:18:af:94:4b:b9:19:3e: 66:2e:02:ec:f6:3b:4c:fc:62:ea:0c:24:71:0b:88: c2:95:fe:34:05:04:91:94:29:a5:6f:4a:06:47:9e: 8e:b5:b3:d8:d6:66:3a:c4:f6:49:ae:ce:3a:de:6d: 2c:8e:30:2c:a3:51:b4:16:05:a2:47:cd:4b:ea:bf: b9:94:36:65:d1:05:bd:e9:65:3b:56:19:e6:fd:d7: 03:67:ae:05:df:4a:b6:bf:54:16:79:bc:31:40:53: 10:d5:cb:fe:1f:02:e1:21:11:8d:0d:8e:a0:cd:cd: 00:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:35:62:0B:56:62:B2:4A:0C:9C:B3:CB:CC:32:2F:78:A4:B3:32:38 X509v3 Authority Key Identifier: keyid:D5:C3:5F:A7:79:B2:21:99:60:9C:3E:A0:A5:31:C5:A0:D3:32:AD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:d5:0f:25:c8:12:21:20:f5:36:43:7d:b5:53:64:ba:f6:25: 3f:52:21:2c:74:3a:b0:e4:d5:a5:2f:3c:cb:f9:40:2c:ae:22: a6:36:37:06:7f:53:c3:ab:88:2b:08:19:04:0b:e9:38:57:d9: a7:9e:0e:fe:f0:52:8e:51:7a:7d:76:b7:a6:da:28:13:fd:13: b6:87:c8:d0:bd:89:3a:96:83:79:38:ea:3b:d7:db:52:d3:ae: bd:67:57:2e:05:62:ad:ea:68:48:25:31:aa:a3:2a:54:62:29: 82:ca:2a:37:ac:a6:c4:ad:1e:ec:dc:cf:44:3c:03:d9:2b:46: 39:c7:58:e6:70:21:4d:29:bc:84:5e:f4:5c:9f:3f:54:e1:4f: f4:78:02:35:7b:97:e8:06:59:2a:92:26:09:ee:61:7f:ef:75: 52:1c:7b:f1:4c:b1:96:28:8b:9b:31:61:5a:1e:e5:f2:3a:e4: d8:6a:61:9c:85:11:ef:28:98:58:b6:f8:7a:65:7d:8f:8b:ac: 03:d8:a7:01:b4:f7:cc:66:d9:c5:f9:8a:f6:ce:33:94:84:66: 6c:c7:18:d8:9f:d5:26:1a:61:2d:fb:68:47:d4:dc:12:27:3d: 59:11:e8:28:c8:c9:fc:1f:2c:35:06:69:1a:65:4c:9e:20:8b: 1d:47:20:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE4QkMxMTAvBgNVBAUTKEQ1QzM1RkE3NzlCMjIxOTk2MDlDM0VBMEE1MzFDNUEw RDMzMkFEMDEwHhcNMjUwNDI1MDI1NDIzWhcNMjUwNTAyMDI1NDIzWjAYMRYwFAYD VQQDEw02ODBhZjk1Zi0zN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3FE7/CCI5Sq+/rdrQul+bqWKgU7CBRyo2RGWZYJobUUgTFOuEXl2e17UuKk 8M7rBvvzyEmDVOqN99MEVxhcoxpY1+CujzWJyYiCYUIPlN1ImpGhYuwAzCQsa39s oo2VkK80rBN6Awe/IC+2nUK7N0IcJL4rMQUwcQ4I8eAwFEcndb8qcIK4+BzF/SYj rRivlEu5GT5mLgLs9jtM/GLqDCRxC4jClf40BQSRlCmlb0oGR56OtbPY1mY6xPZJ rs463m0sjjAso1G0FgWiR81L6r+5lDZl0QW96WU7Vhnm/dcDZ64F30q2v1QWebwx QFMQ1cv+HwLhIRGNDY6gzc0AXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL41YgtW YrJKDJyzy8wyL3ikszI4MB8GA1UdIwQYMBaAFNXDX6d5siGZYJw+oKUxxaDTMq0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQThCQy8wNTRBNEM1MEU2 NEQxMUVEQjNGODE3MzdDNEY5QUUwMi8xY05mcDNteUlabGduRDZncFRIRm9OTXly UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFjTmZwM215SVpsZ25ENmdwVEhGb05NeXJRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QThCQy8wNTRBNEM1MEU2NEQxMUVEQjNGODE3MzdDNEY5QUUwMi8xY05mcDNteUla bGduRDZncFRIRm9OTXlyUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL1Q8lyBIhIPU2Q321U2S69iU/UiEsdDqw5NWlLzzL+UAsriKmNjcG f1PDq4grCBkEC+k4V9mnng7+8FKOUXp9drem2igT/RO2h8jQvYk6loN5OOo719tS 0669Z1cuBWKt6mhIJTGqoypUYimCyio3rKbErR7s3M9EPAPZK0Y5x1jmcCFNKbyE XvRcnz9U4U/0eAI1e5foBlkqkiYJ7mF/73VSHHvxTLGWKIubMWFaHuXyOuTYamGc hRHvKJhYtvh6ZX2Pi6wD2KcBtPfMZtnF+Yr2zjOUhGZsxxjYn9UmGmEt+2hH1NwS Jz1ZEegoyMn8Hyw1BmkaZUyeIIsdRyBR -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:42 2025 by rpki-client