$ rpki-client -vvf rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft File: MkK64Aup8N9Ontpv5cCPEp-RaIE.mft (raw, json) Hash identifier: ezkEkov7lR6nOSnEaKhcXjV5J3pUdpGh/TY6yzLl4bY= Subject key identifier: 80:80:95:13:32:23:D8:EB:79:E5:9F:E4:86:58:8A:D3:0A:3B:08:A9 Authority key identifier: 32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 Certificate issuer: /CN=A912B0A3/serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Certificate serial: 07B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft Manifest number: 07AA Signing time: Thu 24 Apr 2025 21:07:56 +0000 Manifest this update: Thu 24 Apr 2025 21:07:55 +0000 Manifest next update: Thu 01 May 2025 21:07:55 +0000 Files and hashes: 1: MkK64Aup8N9Ontpv5cCPEp-RaIE.crl (hash: iFc9mMnjiEzH8Ow/oK50EbH9BtQi4O367oNqeiki5ek=) 2: F0B154E6085A11EBA6864D71C4F9AE02.roa (hash: lS99nYEJf47mH+uz3vQLejaGLFETexj9dK3L1OTP7SM=) 3: 73DDDA0206FF11ED8C6B565FC4F9AE02.roa (hash: +9tCipDB0aaHUVuA7yo8ZYQuS8o9q/CaWZgtKqaXci0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B0A3, serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Validity Not Before: Apr 24 21:07:55 2025 GMT Not After : May 1 21:07:55 2025 GMT Subject: CN=680aa82b-2822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:9d:2e:8f:48:e4:ee:f7:d6:59:b5:1a:c5:c6: f4:c5:ab:4e:ab:4a:86:90:e2:5f:25:84:b2:4f:23: 7b:2d:94:b1:2f:e5:ae:88:03:50:33:66:f1:63:ad: 95:c2:b9:07:88:b3:4b:99:66:e3:45:60:dd:2e:c0: e6:15:09:1b:f6:70:0a:f6:56:ec:ad:4b:b5:87:fa: 42:52:04:6a:10:21:64:52:49:48:da:d5:43:af:be: f0:39:de:71:04:be:86:b2:63:54:0e:e5:80:8c:23: 8a:57:95:b0:23:0a:99:e6:23:82:34:2c:12:e4:24: 37:76:38:f7:9c:f3:ee:99:83:7b:8d:1f:8c:77:b0: 0d:c8:f5:bc:22:9c:d9:da:30:5d:a8:49:e8:54:1a: 81:d0:25:46:bf:db:5e:c6:0a:db:eb:ab:79:40:20: 71:f4:6a:a9:bf:5f:7f:21:6d:16:49:df:9c:33:5d: 2b:5f:54:23:37:c9:b1:3d:0b:6b:56:fb:00:aa:ce: 43:30:b1:4f:6d:a2:fe:52:9b:19:2b:ea:1a:93:74: 3a:1e:b2:50:89:db:b9:e0:99:22:8b:f5:52:1f:4d: e2:53:1e:68:90:1c:4f:b9:8e:45:14:06:d2:26:d5: 4f:25:24:7f:8c:d5:9b:64:3d:3c:e1:24:ac:7b:af: 95:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:80:95:13:32:23:D8:EB:79:E5:9F:E4:86:58:8A:D3:0A:3B:08:A9 X509v3 Authority Key Identifier: keyid:32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:e9:f7:00:69:ea:54:4a:62:4f:d3:34:02:ff:90:a9:55:60: 63:40:73:5b:cf:9f:84:aa:4a:63:6c:d1:61:d3:1b:fe:67:f2: f9:5d:fe:bc:20:1c:5f:e6:44:7b:5a:95:3d:16:91:5b:42:ba: de:24:a2:84:9a:a5:eb:24:1d:fa:b2:d8:73:74:ec:63:72:cb: 7b:cf:dc:07:96:a7:59:88:b5:46:2c:9c:f0:6f:9e:1d:6a:a8: 8b:c6:3c:78:ae:c2:11:e5:c4:85:67:a8:08:e8:60:e8:e7:c2: 52:b9:75:1c:29:b1:30:58:66:1f:d9:5e:0c:f3:62:d5:e6:48: bf:04:fe:e9:93:f8:f9:5d:ac:b1:6d:c0:22:3c:93:75:f7:07: a3:30:3d:33:a9:33:30:1e:b5:d2:32:bf:3e:1a:ae:bd:06:ab: 0c:4d:a6:8a:b9:aa:57:b1:a9:09:75:a7:a1:11:aa:ac:6a:6e: 7d:64:39:a0:ab:bd:25:9c:fb:6a:65:76:a9:b1:3d:bd:ae:2e: 0e:83:10:5c:3e:2e:ab:1c:cb:fe:2c:18:66:6f:fe:6e:41:93: 84:a1:5d:3e:7b:0c:6c:4c:8f:76:b2:f7:17:25:cb:bd:14:52: 92:29:bc:06:f7:b4:92:a1:1c:83:53:92:bc:2d:95:49:53:fa: 07:e5:c8:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIwQTMxMTAvBgNVBAUTKDMyNDJCQUUwMEJBOUYwREY0RTlFREE2RkU1QzA4RjEy OUY5MTY4ODEwHhcNMjUwNDI0MjEwNzU1WhcNMjUwNTAxMjEwNzU1WjAYMRYwFAYD VQQDEw02ODBhYTgyYi0yODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5J0uj0jk7vfWWbUaxcb0xatOq0qGkOJfJYSyTyN7LZSxL+WuiANQM2bxY62V wrkHiLNLmWbjRWDdLsDmFQkb9nAK9lbsrUu1h/pCUgRqECFkUklI2tVDr77wOd5x BL6GsmNUDuWAjCOKV5WwIwqZ5iOCNCwS5CQ3djj3nPPumYN7jR+Md7ANyPW8IpzZ 2jBdqEnoVBqB0CVGv9texgrb66t5QCBx9Gqpv19/IW0WSd+cM10rX1QjN8mxPQtr VvsAqs5DMLFPbaL+UpsZK+oak3Q6HrJQidu54Jkii/VSH03iUx5okBxPuY5FFAbS JtVPJSR/jNWbZD084SSse6+VZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICAlRMy I9jreeWf5IZYitMKOwipMB8GA1UdIwQYMBaAFDJCuuALqfDfTp7ab+XAjxKfkWiB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjBBMy83NTQ1NDVCQzAz QjcxMUVCOTdGQkU1NjhDNEY5QUUwMi9Na0s2NEF1cDhOOU9udHB2NWNDUEVwLVJh SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rSzY0QXVwOE45T250cHY1Y0NQRXAtUmFJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjBBMy83NTQ1NDVCQzAzQjcxMUVCOTdGQkU1NjhDNEY5QUUwMi9Na0s2NEF1cDhO OU9udHB2NWNDUEVwLVJhSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW6fcAaepUSmJP0zQC/5CpVWBjQHNbz5+EqkpjbNFh0xv+Z/L5Xf68 IBxf5kR7WpU9FpFbQrreJKKEmqXrJB36sthzdOxjcst7z9wHlqdZiLVGLJzwb54d aqiLxjx4rsIR5cSFZ6gI6GDo58JSuXUcKbEwWGYf2V4M82LV5ki/BP7pk/j5Xayx bcAiPJN19wejMD0zqTMwHrXSMr8+Gq69BqsMTaaKuapXsakJdaehEaqsam59ZDmg q70lnPtqZXapsT29ri4OgxBcPi6rHMv+LBhmb/5uQZOEoV0+ewxsTI92svcXJcu9 FFKSKbwG97SSoRyDU5K8LZVJU/oH5chU -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:06 2025 by rpki-client