$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: VjsYK5rNqqEGdMbD5/dpxJyA16iHgU5M9AyCGh9pmbQ= Subject key identifier: EF:16:41:49:8D:E1:F1:08:CA:B8:3C:C6:35:83:7E:7A:B7:F1:92:F4 Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0BD9 Signing time: Thu 24 Apr 2025 18:44:57 +0000 Manifest this update: Thu 24 Apr 2025 18:44:57 +0000 Manifest next update: Thu 01 May 2025 18:44:57 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: IjdRom3IaoNe0uJdDGKqmwe/dpeZcLS1YHEV4A4Cqdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Apr 24 18:44:57 2025 GMT Not After : May 1 18:44:57 2025 GMT Subject: CN=680a86a9-67cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8a:05:18:4d:93:df:35:3b:8c:30:10:30:62: 35:26:93:55:c2:90:24:dd:b0:b9:b3:0c:02:71:ef: 5d:c6:71:27:8d:64:ee:63:6c:61:9c:41:78:86:25: 09:ad:69:cf:92:cc:8e:bf:c4:47:f6:b5:a8:69:11: d4:4b:20:fc:e2:d3:25:0e:0f:f8:a2:ae:4f:26:48: a8:cd:a7:1b:bc:95:ea:53:3d:b0:17:21:a1:e3:28: 2f:c4:45:94:23:79:d6:2c:30:94:fe:95:c7:c1:49: 75:f6:25:50:84:75:ff:01:56:04:13:3c:c2:c8:b8: 10:02:03:b4:c3:9e:60:69:b4:a0:1f:7e:ae:1a:17: f6:80:ad:3a:66:a6:60:aa:b7:f1:a1:00:61:9b:10: 7b:d5:dc:31:a9:58:b1:f5:f7:dd:21:36:b2:99:e9: cf:c2:c3:b1:d0:25:4f:68:cf:4e:aa:ea:2c:80:fe: 92:b2:7d:02:15:39:61:68:2a:1f:01:da:a0:ca:e8: 15:ed:ec:18:a5:3e:e4:60:ae:24:d4:a8:46:35:47: f8:ac:09:fc:7a:7b:c7:e1:c4:94:27:82:c1:b1:61: c9:ba:d2:4b:f4:ce:11:b4:40:99:32:0a:c7:80:dd: 4f:9c:7a:85:45:fe:01:ce:79:f6:e7:b8:7e:90:80: 90:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:16:41:49:8D:E1:F1:08:CA:B8:3C:C6:35:83:7E:7A:B7:F1:92:F4 X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c8:c1:83:1a:89:91:92:ae:ef:58:fe:32:09:23:3a:f1:22: 1e:b0:0c:54:f5:bc:21:5f:fa:88:83:e7:5c:c0:a6:9c:a8:54: 20:c3:00:cd:74:5c:3e:17:93:69:72:8c:dc:c9:07:7f:a1:ca: 5f:8d:e1:94:fc:f4:7e:07:40:30:0a:71:ac:74:5e:1d:e3:0d: 7c:33:a5:fe:9a:34:6e:4e:3e:98:fb:50:86:c3:4d:97:b5:35: 29:48:2c:35:bb:c8:d7:9c:f3:38:eb:1b:7a:04:93:57:f2:3f: a0:d1:e6:dd:b5:8a:42:9c:b8:ea:b8:ab:74:a9:6c:38:22:ab: 48:0c:c0:c6:ba:1d:c8:c7:f7:4a:26:04:5a:06:b2:5c:a8:29: 1d:5d:d5:05:b9:38:e7:82:c1:03:9d:cc:15:32:bb:eb:3e:d7: c5:a1:c8:78:24:0f:8e:31:7e:1f:37:91:ca:19:82:40:d5:d0: 2a:dd:34:40:a7:33:91:27:b0:42:0e:35:0b:f8:f3:91:76:d2: 44:19:9f:b2:f8:95:2b:d1:a2:1d:17:22:1a:52:3d:48:b8:59: 79:6d:13:5d:69:34:3d:06:aa:24:4a:f2:1c:ed:ca:a0:76:43: 12:41:f9:b8:6e:91:56:88:4d:f8:2c:d2:0f:5a:db:82:60:34: 42:b2:15:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjUwNDI0MTg0NDU3WhcNMjUwNTAxMTg0NDU3WjAYMRYwFAYD VQQDEw02ODBhODZhOS02N2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzooFGE2T3zU7jDAQMGI1JpNVwpAk3bC5swwCce9dxnEnjWTuY2xhnEF4hiUJ rWnPksyOv8RH9rWoaRHUSyD84tMlDg/4oq5PJkiozacbvJXqUz2wFyGh4ygvxEWU I3nWLDCU/pXHwUl19iVQhHX/AVYEEzzCyLgQAgO0w55gabSgH36uGhf2gK06ZqZg qrfxoQBhmxB71dwxqVix9ffdITaymenPwsOx0CVPaM9OquosgP6Ssn0CFTlhaCof AdqgyugV7ewYpT7kYK4k1KhGNUf4rAn8envH4cSUJ4LBsWHJutJL9M4RtECZMgrH gN1PnHqFRf4Bznn257h+kICQ6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8WQUmN 4fEIyrg8xjWDfnq38ZL0MB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALyMGDGomRkq7vWP4yCSM68SIesAxU9bwhX/qIg+dcwKacqFQgwwDN dFw+F5NpcozcyQd/ocpfjeGU/PR+B0AwCnGsdF4d4w18M6X+mjRuTj6Y+1CGw02X tTUpSCw1u8jXnPM46xt6BJNX8j+g0ebdtYpCnLjquKt0qWw4IqtIDMDGuh3Ix/dK JgRaBrJcqCkdXdUFuTjngsEDncwVMrvrPtfFoch4JA+OMX4fN5HKGYJA1dAq3TRA pzORJ7BCDjUL+PORdtJEGZ+y+JUr0aIdFyIaUj1IuFl5bRNdaTQ9BqokSvIc7cqg dkMSQfm4bpFWiE34LNIPWtuCYDRCshUa -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:17 2025 by rpki-client