$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: xEKDonnqkuSF+q5yGLMEPPKQFuyZwDqVssKAPy5KOI0= Subject key identifier: B3:48:03:3F:62:AE:E5:41:E7:DE:51:99:A1:D5:ED:05:2C:B7:6F:26 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: A8 Signing time: Fri 25 Apr 2025 05:10:13 +0000 Manifest this update: Fri 25 Apr 2025 05:10:12 +0000 Manifest next update: Fri 02 May 2025 05:10:12 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: G14pwNgTR5A4vVwQJNqn+Pl1/ttZav15ezOEc0QIDoo=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Apr 25 05:10:12 2025 GMT Not After : May 2 05:10:12 2025 GMT Subject: CN=680b1935-d117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:46:fd:b1:ab:a2:07:87:13:57:e9:af:59:9b: ce:b7:7a:75:5e:0a:87:d1:bb:0f:78:b9:f9:8e:b5: c2:25:b7:00:a2:b3:7f:09:3b:be:e3:0c:e9:98:34: f8:3e:53:ca:27:49:d7:56:da:00:57:d8:ce:73:17: 43:e9:9b:e3:dd:2c:27:c3:34:e8:39:35:20:f9:b5: 7a:f2:16:3c:87:90:9a:8a:02:ea:72:87:4f:5c:26: 34:0a:fb:5a:cc:9b:0e:3a:14:90:31:0d:f4:91:f1: 0a:80:b7:5d:ba:b7:1c:ca:53:65:72:e3:5c:c7:f8: c2:2e:88:3b:bd:dd:b0:2f:5b:31:ee:d2:4b:38:10: 64:4f:f1:da:66:d5:e2:ff:a1:e6:2e:d6:76:ec:bb: 9c:0d:f8:22:ad:a8:b4:8c:1d:64:60:bb:06:15:c7: 3f:08:c1:a9:b8:77:5d:f0:ef:94:ea:3b:c4:96:4a: 38:b5:b2:a7:44:dd:18:09:18:b4:4b:12:0b:a2:4e: be:29:8f:9e:c0:9b:0e:99:d9:62:a3:70:39:6c:57: 53:2e:b3:9a:2a:c5:fe:af:46:23:1e:34:76:4c:f5: bf:9f:80:f8:ba:22:28:42:ba:62:a6:c2:67:6f:93: 3a:33:75:ec:83:c8:d9:a5:05:db:11:fd:28:1a:92: 07:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:48:03:3F:62:AE:E5:41:E7:DE:51:99:A1:D5:ED:05:2C:B7:6F:26 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:0f:6a:a6:d9:95:f0:61:dd:06:fa:80:ac:ac:3d:56:78:9e: dc:36:92:8e:0b:a9:4e:75:fe:00:5f:7f:d1:ff:82:4f:9c:20: 41:ae:a5:86:25:d8:02:68:47:66:33:df:8e:db:1d:16:10:ab: 18:9d:47:a6:a7:ce:40:72:8d:56:46:34:f6:94:ae:bf:17:26: f1:e4:e6:02:82:12:ed:3a:99:fa:87:5e:cb:fa:10:9c:b4:d5: 11:2e:cf:df:af:40:35:58:63:54:96:c8:ec:1a:bf:98:4b:21: fc:e2:f1:3d:f7:df:68:dd:4c:47:37:49:42:c0:df:1e:5e:aa: 36:51:ae:d0:08:a3:99:07:09:5a:22:1b:b4:06:1e:88:cd:a9: cd:93:b3:dd:4e:6a:63:38:00:1d:70:fe:05:bc:ca:b2:6a:19: c0:d3:3f:c0:f1:27:73:53:10:46:c2:72:d7:fa:8a:54:2c:10: a6:12:c4:7d:e3:51:2b:c9:72:d9:16:6f:75:7a:a8:96:62:a2: e2:42:43:3c:96:20:14:9f:eb:63:03:23:ec:a4:e2:d9:13:1d: f4:b9:16:9f:ce:f0:8a:59:c6:3d:0a:84:e8:58:6c:f7:99:c2: 97:61:6d:1a:a8:14:a5:30:9e:67:f3:3c:e6:e0:f4:05:e8:79: 76:c5:63:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwNDI1MDUxMDEyWhcNMjUwNTAyMDUxMDEyWjAYMRYwFAYD VQQDEw02ODBiMTkzNS1kMTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Eb9sauiB4cTV+mvWZvOt3p1XgqH0bsPeLn5jrXCJbcAorN/CTu+4wzpmDT4 PlPKJ0nXVtoAV9jOcxdD6Zvj3SwnwzToOTUg+bV68hY8h5CaigLqcodPXCY0Cvta zJsOOhSQMQ30kfEKgLddurccylNlcuNcx/jCLog7vd2wL1sx7tJLOBBkT/HaZtXi /6HmLtZ27LucDfgirai0jB1kYLsGFcc/CMGpuHdd8O+U6jvElko4tbKnRN0YCRi0 SxILok6+KY+ewJsOmdlio3A5bFdTLrOaKsX+r0YjHjR2TPW/n4D4uiIoQrpipsJn b5M6M3Xsg8jZpQXbEf0oGpIHIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNIAz9i ruVB595RmaHV7QUst28mMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlD2qm2ZXwYd0G+oCsrD1WeJ7cNpKOC6lOdf4AX3/R/4JPnCBBrqWG JdgCaEdmM9+O2x0WEKsYnUemp85Aco1WRjT2lK6/Fybx5OYCghLtOpn6h17L+hCc tNURLs/fr0A1WGNUlsjsGr+YSyH84vE9999o3UxHN0lCwN8eXqo2Ua7QCKOZBwla Ihu0Bh6IzanNk7PdTmpjOAAdcP4FvMqyahnA0z/A8SdzUxBGwnLX+opULBCmEsR9 41EryXLZFm91eqiWYqLiQkM8liAUn+tjAyPspOLZEx30uRafzvCKWcY9CoToWGz3 mcKXYW0aqBSlMJ5n8zzm4PQF6Hl2xWOA -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:36 2025 by rpki-client