$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json) Hash identifier: JRcFrjllc4DDizfK0ABUYlmedG9oozgVKni18zQ61bI= Subject key identifier: FE:41:C9:4F:81:69:84:09:A3:61:48:9A:A9:E7:9B:D1:A9:B1:B1:3D Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 221F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft Manifest number: 21DF Signing time: Thu 24 Apr 2025 15:54:48 +0000 Manifest this update: Thu 24 Apr 2025 15:54:47 +0000 Manifest next update: Thu 01 May 2025 15:54:47 +0000 Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: h1mNOwov3otnpfUFPYCtnEwXZ35qkGjTv6gdw5FB8CY=) 2: 3EEE50E6A36B11EF9E46987EC4F9AE02.roa (hash: f7G+JecOso1tq/2DrQIIrvlSbJcZUWeFUA+OwYgWNPo=) 3: B937CBBA6DD411EF977CA52AC4F9AE02.roa (hash: DNPEZoiqquqZXGfdK28t7zQLFNY8ea/+gAa4O/ZRs1s=) 4: E6EA5626B3A311EF9D9F7429C4F9AE02.roa (hash: 5MZ9veHGyaXeOyXtrCjxvwY/A+cD12Cktg7B3S+6l+A=) 5: 235019148A3911EF864D8512C4F9AE02.roa (hash: hnfY3HHIXsd6wmd3BY/eNxymbtFAwmDiWZ9khlttIH8=) 6: FD2941A0BBC311EEBE58430EC4F9AE02.roa (hash: X2aoTMKWDO3O+NQTnXw87sQERWlGRf5FlK95mjGB8r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8735 (0x221f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Apr 24 15:54:47 2025 GMT Not After : May 1 15:54:47 2025 GMT Subject: CN=680a5ec8-6a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d4:d9:18:87:ef:00:54:6a:ab:c5:03:7b:98: 63:57:25:9d:bc:4e:3a:cb:9f:91:5f:e7:25:7f:f9: a7:df:93:cf:75:0d:4f:9d:e5:d7:39:e2:a5:4d:03: 9b:7c:5e:d8:8c:a0:d0:03:09:78:e3:d6:c2:60:ab: 26:d3:fa:a3:04:d6:cd:f6:07:79:7f:79:e7:2a:10: 87:ad:42:22:35:3f:d3:81:28:9d:8a:0c:59:a0:d3: 27:7e:1f:a1:3d:9c:27:3d:bb:0f:11:ed:2f:7f:4e: 1a:3a:b4:ab:8d:13:2b:7d:09:56:56:d3:18:56:18: 66:23:41:b1:ab:ea:73:23:e2:d8:b1:6b:17:96:d4: 05:13:f9:9d:be:18:02:75:35:1c:81:fc:49:f4:67: 45:26:fc:35:65:92:88:b7:c7:8b:23:a7:ef:f6:51: da:77:8e:de:92:91:30:4b:1e:68:b6:6b:1c:c8:d7: 7d:04:4a:7c:4a:b3:01:23:b3:82:83:56:e6:ab:19: 38:5f:df:57:46:69:fc:1b:af:bc:fb:3d:91:9f:41: 0d:d0:b0:22:71:34:d6:ea:63:83:ea:c7:9c:38:57: f5:fe:e7:6e:ce:99:36:b8:ce:a3:1f:92:b0:b6:7e: 64:c3:bf:28:cf:46:bf:8c:00:e2:c6:06:f0:98:84: f0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:41:C9:4F:81:69:84:09:A3:61:48:9A:A9:E7:9B:D1:A9:B1:B1:3D X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:4c:dc:16:ae:01:8f:b7:3f:ba:90:db:35:06:44:3f:c7:79: 06:f3:e3:6c:57:c9:60:f3:95:7e:fb:29:c3:33:c6:b5:76:6e: 32:b1:5a:79:7d:e8:14:1c:a1:72:09:c6:e8:51:52:f7:32:3a: 3b:b9:17:db:e4:e7:29:4a:9d:7a:7c:4a:f3:22:bc:fc:2c:40: b2:ec:9d:38:a7:9e:da:f6:53:99:83:3a:85:c7:23:72:b8:99: ce:82:59:53:59:64:4e:33:82:89:18:92:57:e6:79:50:d4:c8: 59:d6:df:9c:13:19:ea:ef:c0:79:e7:f0:3e:ec:d9:97:5c:e8: ba:31:b2:91:38:1d:df:94:4f:3f:00:69:7c:48:3c:3f:b1:56: d5:14:cb:c5:e5:9c:08:78:84:c6:c9:ca:4a:64:d5:ee:7f:1a: 8a:27:c8:5f:4c:b7:60:d3:82:c8:f5:c1:89:e5:18:37:6a:15: 30:5a:d0:7b:f9:a1:ee:62:b1:3c:1a:a2:67:20:29:c2:71:73: dc:c4:be:83:c8:7f:de:94:cc:fb:07:64:df:0f:07:e5:95:ba: 01:cc:ea:12:2d:ed:4c:2f:de:0b:1c:be:84:1b:da:47:f6:2e: 82:10:10:8f:d5:ec:3c:45:e3:61:d0:39:74:a5:4e:2a:2c:9f: 29:2f:fc:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUwNDI0MTU1NDQ3WhcNMjUwNTAxMTU1NDQ3WjAYMRYwFAYD VQQDEw02ODBhNWVjOC02YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNTZGIfvAFRqq8UDe5hjVyWdvE46y5+RX+clf/mn35PPdQ1PneXXOeKlTQOb fF7YjKDQAwl449bCYKsm0/qjBNbN9gd5f3nnKhCHrUIiNT/TgSidigxZoNMnfh+h PZwnPbsPEe0vf04aOrSrjRMrfQlWVtMYVhhmI0Gxq+pzI+LYsWsXltQFE/mdvhgC dTUcgfxJ9GdFJvw1ZZKIt8eLI6fv9lHad47ekpEwSx5otmscyNd9BEp8SrMBI7OC g1bmqxk4X99XRmn8G6+8+z2Rn0EN0LAicTTW6mOD6secOFf1/uduzpk2uM6jH5Kw tn5kw78oz0a/jADixgbwmITwWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5ByU+B aYQJo2FImqnnm9GpsbE9MB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0 N09GTlFFV2JxNXhvOXBoVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxTNwWrgGPtz+6kNs1BkQ/x3kG8+NsV8lg85V++ynDM8a1dm4ysVp5 fegUHKFyCcboUVL3Mjo7uRfb5OcpSp16fErzIrz8LECy7J04p57a9lOZgzqFxyNy uJnOgllTWWROM4KJGJJX5nlQ1MhZ1t+cExnq78B55/A+7NmXXOi6MbKROB3flE8/ AGl8SDw/sVbVFMvF5ZwIeITGycpKZNXufxqKJ8hfTLdg04LI9cGJ5Rg3ahUwWtB7 +aHuYrE8GqJnICnCcXPcxL6DyH/elMz7B2TfDwfllboBzOoSLe1ML94LHL6EG9pH 9i6CEBCP1ew8ReNh0Dl0pU4qLJ8pL/xf -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:21 2025 by rpki-client