$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: P1eK684qZ57oNk5W6Ht1AkIwC0/LSEZKZyRU5t4npEk= Subject key identifier: 52:81:8C:5D:BA:51:0E:C7:15:F4:BA:D2:12:D8:CF:58:06:5C:2A:2E Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 3496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 3486 Signing time: Thu 24 Apr 2025 15:06:09 +0000 Manifest this update: Thu 24 Apr 2025 15:06:08 +0000 Manifest next update: Thu 01 May 2025 15:06:08 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: 4GaUwJ6ZEuZgEbEezLFo78KvmimjrjNQZNpD9kfIHGg=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: i+oLVOiTvF13PBUoOa9UfIxFEQhcYfTJRD1Exsj8GIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Apr 24 15:06:08 2025 GMT Not After : May 1 15:06:08 2025 GMT Subject: CN=680a5360-bf1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:58:f7:73:a5:a6:01:a9:ab:b1:8e:31:76:d7: 55:4a:d8:ff:f6:93:69:14:4f:af:85:e1:4f:90:43: e2:0a:71:ba:3e:6b:b9:bc:74:94:81:25:fd:d6:6e: 9e:f4:e1:57:9b:2e:9a:54:8c:81:5e:7f:51:a1:54: ba:32:1e:be:d5:f3:2f:36:d9:17:ea:c1:39:1e:bc: 1e:9d:f4:7d:1b:7c:15:d5:0c:60:8a:ab:af:1b:b6: ac:b6:18:e0:a0:5e:72:43:a0:c6:ed:40:33:26:42: 46:5a:b3:1c:9b:99:4e:e3:5b:74:f8:e9:b9:48:88: 56:77:7a:a5:94:e7:45:99:73:78:f2:10:f1:56:03: df:87:7f:5a:4e:f2:8b:c6:2e:4b:96:d3:d6:7f:d5: bb:89:d4:75:d3:3d:2b:e2:c3:d4:e4:28:50:61:49: 6b:f6:71:ff:7e:2e:44:d3:cb:e4:21:be:ee:b7:4b: a3:d2:e6:60:1e:8d:22:1a:3d:29:dd:2b:16:45:93: 83:c5:07:75:71:35:26:62:0e:9d:17:f4:51:0b:51: f9:2c:de:b0:33:46:03:06:00:2e:6d:bf:9c:f2:51: 73:82:2c:fe:0e:85:92:a9:f5:db:66:61:d7:60:46: fd:33:d7:dd:ba:59:c2:f6:fd:80:d8:98:4e:47:81: 08:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:81:8C:5D:BA:51:0E:C7:15:F4:BA:D2:12:D8:CF:58:06:5C:2A:2E X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:8f:9a:d2:1c:be:54:f4:d8:60:68:e9:63:a2:ad:c6:36:ed: 22:31:d0:70:a8:ac:b4:46:08:d9:3d:54:36:4e:98:c3:d2:41: 3f:17:70:78:63:54:75:7e:d3:d4:e1:e9:8b:fe:30:26:65:80: 0e:b2:43:44:d2:c5:69:29:8a:5d:6b:9f:57:52:29:27:31:3e: ef:24:e7:b3:6a:f4:d6:28:05:09:5b:89:d3:0b:fe:9c:60:91: 5b:5f:10:29:3f:da:e7:7d:c9:09:e9:77:f5:c2:15:7b:fc:c6: 24:12:72:b7:30:13:3b:41:52:27:17:f7:1f:55:79:7e:20:34: 64:e1:12:6a:a9:29:52:fc:a3:1d:b0:dd:fe:db:cd:c6:1e:a6: 1c:3d:6e:f2:80:fd:f8:f5:2e:7e:77:21:ab:00:7e:ad:db:f2: 17:69:cf:da:b3:ae:30:ae:25:9e:c6:ef:85:f6:c1:10:38:0a: 99:79:a2:d8:f4:fd:7e:39:da:64:3f:0b:4e:b8:61:3f:80:91: 16:bf:23:68:2e:ff:f2:44:be:41:d2:18:7a:71:6f:b1:a5:26: 56:5c:f9:9c:bd:93:63:cf:67:2f:c9:e3:67:0b:89:8d:bf:af: e3:0e:bb:75:27:82:8b:4c:9b:3a:5f:7d:29:33:db:25:7c:7c: eb:d0:f7:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUwNDI0MTUwNjA4WhcNMjUwNTAxMTUwNjA4WjAYMRYwFAYD VQQDEw02ODBhNTM2MC1iZjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlj3c6WmAamrsY4xdtdVStj/9pNpFE+vheFPkEPiCnG6Pmu5vHSUgSX91m6e 9OFXmy6aVIyBXn9RoVS6Mh6+1fMvNtkX6sE5HrwenfR9G3wV1QxgiquvG7asthjg oF5yQ6DG7UAzJkJGWrMcm5lO41t0+Om5SIhWd3qllOdFmXN48hDxVgPfh39aTvKL xi5LltPWf9W7idR10z0r4sPU5ChQYUlr9nH/fi5E08vkIb7ut0uj0uZgHo0iGj0p 3SsWRZODxQd1cTUmYg6dF/RRC1H5LN6wM0YDBgAubb+c8lFzgiz+DoWSqfXbZmHX YEb9M9fdulnC9v2A2JhOR4EIKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKBjF26 UQ7HFfS60hLYz1gGXCouMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwj5rSHL5U9NhgaOljoq3GNu0iMdBwqKy0RgjZPVQ2TpjD0kE/F3B4 Y1R1ftPU4emL/jAmZYAOskNE0sVpKYpda59XUiknMT7vJOezavTWKAUJW4nTC/6c YJFbXxApP9rnfckJ6Xf1whV7/MYkEnK3MBM7QVInF/cfVXl+IDRk4RJqqSlS/KMd sN3+283GHqYcPW7ygP349S5+dyGrAH6t2/IXac/as64wriWexu+F9sEQOAqZeaLY 9P1+OdpkPwtOuGE/gJEWvyNoLv/yRL5B0hh6cW+xpSZWXPmcvZNjz2cvyeNnC4mN v6/jDrt1J4KLTJs6X30pM9slfHzr0Pd+ -----END CERTIFICATE-----Generated at Sat Apr 26 03:42:17 2025 by rpki-client