$ rpki-client -vvf rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft File: mbcL8gJe3c35KkfQTLdWrLBz3EU.mft (raw, json) Hash identifier: gEvNff0qYuVVKCvhA8EMBjaQW9R5f9zN79clH9gDgFw= Subject key identifier: AA:CE:2B:DB:F8:77:8A:E8:AC:E5:EA:3B:9E:DE:17:67:46:F6:FC:F0 Authority key identifier: 99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 Certificate issuer: /CN=A912C7DC/serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft Manifest number: 3E Signing time: Fri 25 Apr 2025 06:27:35 +0000 Manifest this update: Fri 25 Apr 2025 06:27:34 +0000 Manifest next update: Fri 02 May 2025 06:27:34 +0000 Files and hashes: 1: mbcL8gJe3c35KkfQTLdWrLBz3EU.crl (hash: q/OK4+61nQhioTlzoOLwM9GPJYe5IiGy/s5g9L0QdZU=) 2: E310D7E2C58B11EFBA44DE34C4F9AE02.roa (hash: KRcguCIL3wMi3PwztLJpTVhTUzHmH2MqWyforuoA8o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C7DC, serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Validity Not Before: Apr 25 06:27:34 2025 GMT Not After : May 2 06:27:34 2025 GMT Subject: CN=680b2b57-3fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0d:a1:28:b8:b2:e7:e1:94:ca:25:50:79:a5: f4:88:a1:ea:10:60:6c:9c:73:ba:4b:10:76:9e:cb: 4e:6a:41:33:9b:7a:37:84:cc:67:db:96:f9:64:46: 82:f1:83:6d:11:55:50:9d:34:02:6d:95:04:2c:09: 5d:dc:54:0b:f0:75:12:48:b8:0b:2e:69:4c:c4:01: 5e:ec:51:fd:13:0b:b9:fa:ea:a6:64:d3:c0:cf:10: d7:12:5c:a2:f6:b5:b8:48:8d:01:a8:16:12:b5:a1: 07:59:16:02:a8:7b:5c:95:bb:18:94:f3:15:fc:34: 51:30:d6:07:f4:5b:97:59:f7:1a:c1:67:76:50:f0: 49:cc:38:77:fc:a0:7f:27:9d:4f:a4:44:65:eb:3d: b4:f9:5e:b4:29:2f:2d:b9:f9:09:5b:38:6e:3a:62: 80:0f:aa:36:ef:c9:ee:e0:b1:f5:0e:45:40:e4:c0: d7:cf:2f:36:c6:35:9d:c3:63:93:19:0d:4a:bd:07: ef:99:d7:7c:99:ce:31:ef:d9:d0:ee:5c:7c:cb:5d: f8:eb:ff:41:9f:94:8b:a4:98:a7:9c:12:55:63:9a: 69:b8:f9:20:39:f3:ba:1d:2c:43:60:0f:b2:ab:b8: 07:97:d6:07:91:eb:b1:dd:99:83:d5:f2:cc:f4:af: 8d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:CE:2B:DB:F8:77:8A:E8:AC:E5:EA:3B:9E:DE:17:67:46:F6:FC:F0 X509v3 Authority Key Identifier: keyid:99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:da:90:a3:fc:9c:60:7c:45:4b:b1:3e:26:d5:a6:a0:8b:05: 1c:44:14:3d:83:7f:35:96:e3:af:47:7e:fc:e1:28:68:ff:05: 06:5b:84:66:e5:0b:26:63:be:0c:83:f6:8e:27:eb:72:54:66: 54:09:28:82:d0:fe:4f:c7:2d:c7:e0:7f:2f:9f:11:ea:4c:05: d5:ee:4a:ae:c2:cb:18:a9:81:fb:f3:c1:a1:e3:75:b4:05:6c: a8:5d:cd:5f:39:65:d0:2b:f6:c5:bd:99:4d:5f:de:c3:9e:3d: 1f:9e:90:32:53:93:d5:f8:db:a6:8f:1c:47:77:79:bd:51:9c: 81:32:a8:ac:96:6f:37:c2:c5:91:96:af:e9:fb:b2:c3:f7:f2: 80:8b:5b:5f:7b:09:23:c5:d9:4e:20:5a:1b:79:30:72:09:82: 73:55:42:05:7f:2b:9e:84:48:e9:61:86:74:8b:7f:b3:00:5f: 0d:36:d4:c2:c6:8e:f9:0d:44:b9:02:bc:a2:9a:67:9f:47:22: 2e:fd:9c:98:fc:c9:22:7e:a1:5e:d3:d9:83:ae:ad:2b:60:29: 0e:22:8d:74:e9:03:af:4d:65:ff:bd:2b:0a:1c:84:79:46:b7: b8:55:bb:f0:31:48:f9:e3:5a:e7:f8:d2:30:c6:c2:85:8e:20: 03:dc:75:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzdEQzExMC8GA1UEBRMoOTlCNzBCRjIwMjVFRERDREY5MkE0N0QwNENCNzU2QUNC MDczREM0NTAeFw0yNTA0MjUwNjI3MzRaFw0yNTA1MDIwNjI3MzRaMBgxFjAUBgNV BAMTDTY4MGIyYjU3LTNmZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjDaEouLLn4ZTKJVB5pfSIoeoQYGycc7pLEHaey05qQTObejeEzGfblvlkRoLx g20RVVCdNAJtlQQsCV3cVAvwdRJIuAsuaUzEAV7sUf0TC7n66qZk08DPENcSXKL2 tbhIjQGoFhK1oQdZFgKoe1yVuxiU8xX8NFEw1gf0W5dZ9xrBZ3ZQ8EnMOHf8oH8n nU+kRGXrPbT5XrQpLy25+QlbOG46YoAPqjbvye7gsfUORUDkwNfPLzbGNZ3DY5MZ DUq9B++Z13yZzjHv2dDuXHzLXfjr/0GflIukmKecElVjmmm4+SA587odLENgD7Kr uAeX1geR67HdmYPV8sz0r405AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqs4r2/h3 iuis5eo7nt4XZ0b2/PAwHwYDVR0jBBgwFoAUmbcL8gJe3c35KkfQTLdWrLBz3EUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDN0RDLzZERUZEQjcwQzU4 QjExRUZCODdFNUYzM0M0RjlBRTAyL21iY0w4Z0plM2MzNUtrZlFUTGRXckxCejNF VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWJjTDhnSmUzYzM1S2tmUVRMZFdyTEJ6M0VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD N0RDLzZERUZEQjcwQzU4QjExRUZCODdFNUYzM0M0RjlBRTAyL21iY0w4Z0plM2Mz NUtrZlFUTGRXckxCejNFVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHfakKP8nGB8RUuxPibVpqCLBRxEFD2DfzWW469HfvzhKGj/BQZbhGbl CyZjvgyD9o4n63JUZlQJKILQ/k/HLcfgfy+fEepMBdXuSq7CyxipgfvzwaHjdbQF bKhdzV85ZdAr9sW9mU1f3sOePR+ekDJTk9X426aPHEd3eb1RnIEyqKyWbzfCxZGW r+n7ssP38oCLW197CSPF2U4gWht5MHIJgnNVQgV/K56ESOlhhnSLf7MAXw021MLG jvkNRLkCvKKaZ59HIi79nJj8ySJ+oV7T2YOurStgKQ4ijXTpA69NZf+9KwochHlG t7hVu/AxSPnjWuf40jDGwoWOIAPcda4= -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:53 2025 by rpki-client