$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft File: -S21ujUS5Gp82_tLNRS9b_hcjz0.mft (raw, json) Hash identifier: jizz2rAel/EGuSVs2zfRCYd9hpJoMsSCKAcSjYRWOUw= Subject key identifier: 94:E2:74:7B:A9:D1:2C:89:BA:FE:60:EA:10:0F:08:D6:A8:44:AB:39 Authority key identifier: F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D Certificate issuer: /CN=A9131A30/serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft Manifest number: E4 Signing time: Fri 25 Apr 2025 04:32:38 +0000 Manifest this update: Fri 25 Apr 2025 04:32:38 +0000 Manifest next update: Fri 02 May 2025 04:32:38 +0000 Files and hashes: 1: -S21ujUS5Gp82_tLNRS9b_hcjz0.crl (hash: etqHaMWgkoLjEyP27sTjLjaJQRGRdPjnoMPp5rvzFNo=) 2: C3CCADD2CAF211EEBA58E81EC4F9AE02.roa (hash: 78U/w57PvT+FVEdRzkbgRL49bNVYISozUZOyQlDFcE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A30, serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Validity Not Before: Apr 25 04:32:38 2025 GMT Not After : May 2 04:32:38 2025 GMT Subject: CN=680b1066-5333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ad:72:bb:40:9f:2e:bb:84:e8:55:7f:bb:32: fe:03:53:73:98:90:0a:0b:3b:62:79:37:17:b5:31: 7b:d8:1a:48:60:58:8b:33:4d:da:c4:79:09:cb:4e: d7:a1:80:a7:fb:ed:e3:c7:b4:77:41:90:b1:16:53: 30:c9:af:27:eb:02:40:27:ae:b0:64:24:6c:39:a1: 20:ca:6d:f9:c1:c2:9e:62:ff:d7:98:10:50:9f:f2: c6:ae:2d:89:4b:7b:02:25:8f:d6:d6:74:4e:35:3c: 8f:23:ca:6d:e2:da:2e:77:f4:91:e9:a5:65:70:e3: 83:06:2b:72:fe:b6:89:2f:ad:55:88:0b:d1:c6:75: f2:aa:e4:e5:94:da:34:2a:b4:2f:d2:31:d8:a0:0c: a9:56:40:5b:a8:d3:87:03:4f:85:e3:00:79:85:10: 51:8a:85:75:b1:36:4e:12:94:84:be:f5:e2:2d:d5: 82:b5:2e:35:e2:39:19:9d:ed:29:cd:fc:ee:8a:e9: f6:1d:6d:f0:b2:d9:8f:b0:e2:7e:6f:2b:61:55:3f: 08:35:34:dd:6d:91:b2:6a:43:2e:af:67:79:ee:2b: 69:7f:2d:fc:11:ff:7d:f1:2a:2f:e7:98:6b:ad:4f: cc:cc:07:a6:b4:00:5c:29:66:b8:85:39:80:99:4d: f1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E2:74:7B:A9:D1:2C:89:BA:FE:60:EA:10:0F:08:D6:A8:44:AB:39 X509v3 Authority Key Identifier: keyid:F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f4:d0:86:f4:af:d5:8a:7f:df:0c:70:b8:ae:e7:e8:33:a2: f1:8b:6f:ac:f0:cc:62:6c:06:01:fb:dc:bd:dd:92:51:e6:18: 82:ed:96:a2:ef:5d:f6:d8:c3:22:72:58:87:55:5f:cd:de:10: a6:0e:fa:a5:64:bc:18:de:e2:c6:36:31:49:7e:ab:bd:1c:ca: 1a:c1:e2:c3:05:10:90:63:87:2f:10:01:b9:5a:c6:a5:fc:e5: af:c2:fd:28:9e:f0:0a:6b:c1:cc:4d:0c:59:4f:db:10:80:56: 40:03:2d:ad:f9:34:58:e0:2a:d0:36:07:92:4a:58:f1:63:7d: 91:e0:7d:35:39:fc:66:23:73:98:7b:0b:9e:58:ad:b2:73:6e: 6e:87:f0:06:48:00:67:cb:01:d6:6f:67:17:b0:8d:53:51:18: 10:bc:45:73:24:42:1b:ce:10:db:44:5d:46:36:17:e9:b3:5f: 62:90:76:33:59:39:69:34:0c:d6:8d:84:f7:45:c5:bf:02:c5: 02:19:b6:99:13:47:f4:89:7c:48:1a:b4:2a:4c:4c:39:87:13: b8:d2:fe:ce:12:56:3f:c2:bc:6b:d7:28:38:33:70:c4:ca:52: ee:b3:21:e1:c7:e3:b4:64:e8:a7:b2:80:71:34:1a:a6:95:37: 9f:86:90:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMzAxMTAvBgNVBAUTKEY5MkRCNUJBMzUxMkU0NkE3Q0RCRkI0QjM1MTRCRDZG Rjg1QzhGM0QwHhcNMjUwNDI1MDQzMjM4WhcNMjUwNTAyMDQzMjM4WjAYMRYwFAYD VQQDEw02ODBiMTA2Ni01MzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1q1yu0CfLruE6FV/uzL+A1NzmJAKCztieTcXtTF72BpIYFiLM03axHkJy07X oYCn++3jx7R3QZCxFlMwya8n6wJAJ66wZCRsOaEgym35wcKeYv/XmBBQn/LGri2J S3sCJY/W1nRONTyPI8pt4toud/SR6aVlcOODBity/raJL61ViAvRxnXyquTllNo0 KrQv0jHYoAypVkBbqNOHA0+F4wB5hRBRioV1sTZOEpSEvvXiLdWCtS414jkZne0p zfzuiun2HW3wstmPsOJ+bythVT8INTTdbZGyakMur2d57itpfy38Ef998Sov55hr rU/MzAemtABcKWa4hTmAmU3xMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTidHup 0SyJuv5g6hAPCNaoRKs5MB8GA1UdIwQYMBaAFPkttbo1EuRqfNv7SzUUvW/4XI89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEzMC80QjdBMTg2QUNB RjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVHcDgyX3RMTlJTOWJfaGNq ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1TMjF1alVTNUdwODJfdExOUlM5Yl9oY2p6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEzMC80QjdBMTg2QUNBRjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVH cDgyX3RMTlJTOWJfaGNqejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC9NCG9K/Vin/fDHC4rufoM6Lxi2+s8MxibAYB+9y93ZJR5hiC7Zai 71322MMicliHVV/N3hCmDvqlZLwY3uLGNjFJfqu9HMoaweLDBRCQY4cvEAG5Wsal /OWvwv0onvAKa8HMTQxZT9sQgFZAAy2t+TRY4CrQNgeSSljxY32R4H01OfxmI3OY ewueWK2yc25uh/AGSABnywHWb2cXsI1TURgQvEVzJEIbzhDbRF1GNhfps19ikHYz WTlpNAzWjYT3RcW/AsUCGbaZE0f0iXxIGrQqTEw5hxO40v7OElY/wrxr1yg4M3DE ylLusyHhx+O0ZOinsoBxNBqmlTefhpCY -----END CERTIFICATE-----Generated at Sat Apr 26 14:51:49 2025 by rpki-client