$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: +OGNx7yFggj3EaI3DTLYhQbQZPjsGTIYUph5yDcxkkQ= Subject key identifier: 19:A4:30:7F:A3:29:6A:CE:2E:AB:5A:07:F9:79:F9:3B:8A:B4:A6:29 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 015E Signing time: Fri 25 Apr 2025 03:09:27 +0000 Manifest this update: Fri 25 Apr 2025 03:09:26 +0000 Manifest next update: Fri 02 May 2025 03:09:26 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: jORq3f1+6nsXTCGqZ+luKzvCT+V6Kbi3K0d3PTKHwWc=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: WMsnJeKRDE/E3eYU+nh3vcngfITTgAj3NVw90NWzGkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Apr 25 03:09:26 2025 GMT Not After : May 2 03:09:26 2025 GMT Subject: CN=680afce6-92fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:18:28:91:5a:c1:c9:ee:00:b9:83:fd:82:40: d8:85:fb:9c:b5:8e:f6:ed:1b:89:10:b4:76:d9:55: 6a:01:1c:10:2c:e5:66:87:3a:3e:39:75:54:c3:dd: ee:03:f3:7c:91:70:da:d9:2a:50:d3:9e:ef:b1:12: 1b:90:23:0a:fe:1d:8b:cb:a4:22:12:22:0b:74:8a: 41:53:d6:9f:93:1a:cc:0a:2b:2c:10:02:42:63:b8: 9f:78:af:75:b6:43:74:15:09:b9:0a:59:27:4f:0b: ec:98:51:b6:b8:6d:6a:09:81:4c:a3:2d:7b:45:ff: 1c:5c:e8:da:69:f7:dc:9c:a2:77:7c:4c:0a:f5:fb: 30:65:db:43:51:9b:59:14:d3:07:05:8b:55:4f:5b: cd:b9:5d:4d:91:27:e3:19:06:03:83:bf:33:61:f8: 3d:71:12:f0:3a:fa:bc:0f:83:8d:a5:66:0b:fc:b6: f4:b0:81:0c:e0:d4:85:72:4d:3e:6b:15:e2:c9:fe: 1f:75:92:c4:f0:bb:f8:80:76:b1:93:3d:34:77:08: 16:9b:06:36:f8:69:97:06:b8:f3:2f:33:b8:aa:f2: 17:84:dd:87:90:b2:7d:77:7d:72:95:6e:84:24:cc: 2f:82:04:cb:d3:c5:69:b9:4e:b7:d0:fd:91:14:36: e8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A4:30:7F:A3:29:6A:CE:2E:AB:5A:07:F9:79:F9:3B:8A:B4:A6:29 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:52:e5:22:da:24:e7:42:57:17:5c:db:3b:f7:b3:41:7e:8a: c7:22:bb:05:65:41:cc:a5:7c:f9:57:98:5e:52:99:e2:77:ea: 78:d5:4b:bd:14:1a:e1:40:a6:18:8a:04:c9:57:92:40:2c:ff: 01:1c:96:b1:86:ae:9f:e7:f6:a3:0c:8f:57:bb:b4:f1:bc:d9: 53:9d:cf:20:e7:7e:b4:61:cb:81:c7:49:8b:ad:b1:3f:fa:ba: 9a:a5:7f:34:6b:c7:88:a0:1a:44:78:50:bf:3f:08:06:4b:e8: f8:78:0c:12:c5:cb:76:4c:ce:af:2c:a8:86:f4:8a:ee:5a:d0: 17:61:86:0f:70:69:5d:fe:01:87:26:ea:e0:fa:06:6b:42:34: bc:dc:4a:a3:d6:2a:6a:19:a1:c2:f6:23:30:96:d0:b2:34:b1: 5f:c9:43:de:82:5b:ad:f0:bf:af:49:84:13:7a:53:c9:16:11: b1:23:2c:55:9d:42:83:c5:3c:ec:49:18:a5:c7:71:a2:13:a2: 37:28:dd:ee:59:fc:71:8f:39:dc:b3:b0:28:25:f7:83:93:87: 4c:08:c8:e2:fd:eb:aa:c8:41:d2:55:a3:58:03:6b:73:df:c4: 5b:4c:12:1a:fc:72:02:89:f9:60:1a:e4:2a:c1:32:74:bc:d1: 95:e2:57:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjUwNDI1MDMwOTI2WhcNMjUwNTAyMDMwOTI2WjAYMRYwFAYD VQQDEw02ODBhZmNlNi05MmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhgokVrBye4AuYP9gkDYhfuctY727RuJELR22VVqARwQLOVmhzo+OXVUw93u A/N8kXDa2SpQ057vsRIbkCMK/h2Ly6QiEiILdIpBU9afkxrMCissEAJCY7ifeK91 tkN0FQm5ClknTwvsmFG2uG1qCYFMoy17Rf8cXOjaaffcnKJ3fEwK9fswZdtDUZtZ FNMHBYtVT1vNuV1NkSfjGQYDg78zYfg9cRLwOvq8D4ONpWYL/Lb0sIEM4NSFck0+ axXiyf4fdZLE8Lv4gHaxkz00dwgWmwY2+GmXBrjzLzO4qvIXhN2HkLJ9d31ylW6E JMwvggTL08VpuU630P2RFDboJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmkMH+j KWrOLqtaB/l5+TuKtKYpMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVUuUi2iTnQlcXXNs797NBforHIrsFZUHMpXz5V5heUpnid+p41Uu9 FBrhQKYYigTJV5JALP8BHJaxhq6f5/ajDI9Xu7TxvNlTnc8g5360YcuBx0mLrbE/ +rqapX80a8eIoBpEeFC/PwgGS+j4eAwSxct2TM6vLKiG9IruWtAXYYYPcGld/gGH Jurg+gZrQjS83Eqj1ipqGaHC9iMwltCyNLFfyUPeglut8L+vSYQTelPJFhGxIyxV nUKDxTzsSRilx3GiE6I3KN3uWfxxjzncs7AoJfeDk4dMCMji/euqyEHSVaNYA2tz 38RbTBIa/HICiflgGuQqwTJ0vNGV4lcm -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:03 2025 by rpki-client