$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft File: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft (raw, json) Hash identifier: Xo3lYo6TRslTNvnTh9FYOuEZxZpXH7uvbeT6I9NBEnw= Subject key identifier: 4B:11:41:F5:F5:4C:F5:BF:ED:09:DA:18:32:52:FB:AC:F5:8C:86:1B Authority key identifier: EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 Certificate issuer: /CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Certificate serial: 07C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft Manifest number: 07BD Signing time: Thu 24 Apr 2025 20:58:33 +0000 Manifest this update: Thu 24 Apr 2025 20:58:33 +0000 Manifest next update: Thu 01 May 2025 20:58:33 +0000 Files and hashes: 1: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl (hash: cuuhQUg2jvW6BAETvUkDBO08b/iL2/gbinuy51jRNfM=) 2: D3EE2024F42211EA8FE7AE53C4F9AE02.roa (hash: GW9s3WIygsKZLnHwRZ6mSkc9+Me0q/KYVWFIK75BZGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1988 (0x7c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D8B, serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Validity Not Before: Apr 24 20:58:33 2025 GMT Not After : May 1 20:58:33 2025 GMT Subject: CN=680aa5f9-8d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9a:03:8d:4c:b4:66:4b:09:73:2d:4f:4e:74: 48:db:e6:6e:09:2f:75:1f:43:95:ad:a2:fa:41:e6: d9:e7:f0:97:fd:5e:6c:4a:90:f3:56:18:58:ae:db: 3c:6e:8e:19:f7:9c:e5:32:80:d3:f9:5b:3b:3b:da: 05:d6:2a:70:fd:77:98:33:bc:87:bf:e1:39:e9:76: 81:04:0a:f7:85:02:98:5c:fe:27:8e:64:3f:2c:d9: 61:b8:f0:4a:ab:a1:82:37:61:49:5b:c3:21:a3:b1: 53:89:d5:30:1b:2c:69:06:f1:52:57:dd:f2:10:f9: e0:b0:42:07:49:74:35:af:a3:00:1c:02:fb:3d:6e: 1c:ed:b8:79:e5:01:3b:95:12:aa:f5:4f:f5:de:9f: c8:85:b5:0c:66:9c:f2:ed:45:c1:04:fe:2f:ae:cc: 36:56:72:0a:1f:d3:2d:6f:c8:20:8e:b8:17:7c:cf: 02:94:d7:4b:77:7e:06:0a:f1:94:f6:5d:9a:30:47: c5:f9:de:38:19:c9:8f:98:50:32:39:e6:97:08:0a: 07:18:6a:fa:86:96:44:af:d0:4c:23:67:01:3b:ed: c1:d7:8f:76:83:d6:fe:6b:bb:8a:fc:db:73:0c:6f: 61:df:a3:a6:de:41:74:6b:5b:42:34:0f:c6:6b:dd: 9c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:11:41:F5:F5:4C:F5:BF:ED:09:DA:18:32:52:FB:AC:F5:8C:86:1B X509v3 Authority Key Identifier: keyid:EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:e8:b9:ea:79:e4:c9:4e:ac:ee:b6:3a:7b:23:79:5b:7c:df: 8d:0c:89:97:e4:76:36:d7:4c:e9:a6:ec:11:06:34:aa:42:bf: 5d:36:3a:0d:e7:7b:58:d9:a4:3f:88:04:f6:09:48:57:84:a1: 51:75:05:59:c9:54:38:04:9b:e8:6f:dc:8b:f7:b1:93:91:fd: 21:02:59:85:40:44:f8:25:c9:7e:5e:98:18:41:01:52:cb:c4: 32:65:c2:bc:a8:87:36:15:d0:e0:22:55:d8:09:a7:81:76:75: ce:8f:d1:d0:55:c3:c1:f2:42:ae:c4:9f:2f:2b:b6:10:ed:91: 41:5d:d5:87:9d:27:ba:c4:f5:e8:c6:7f:c9:35:f0:01:93:3b: b6:58:5d:b1:0a:c8:b4:a5:50:c3:f5:7b:de:28:26:f6:61:f6: 44:66:56:c0:db:cb:ab:63:c0:62:fe:87:b1:33:73:db:02:e9: 6b:99:c6:33:cb:fd:35:46:00:76:77:77:61:33:b4:4c:4d:db: 93:db:0c:14:81:46:ec:4e:ee:d4:2d:ef:05:c6:12:85:86:49: 9e:17:71:4f:93:80:ef:66:1d:0b:5a:a0:58:f0:9a:22:38:bc: 9a:73:e8:3d:06:1d:eb:cb:ea:2b:15:72:8c:8c:15:54:7e:d7: 5e:54:6c:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEOEIxMTAvBgNVBAUTKEVGMUE5NkQxMTJERTE2MjJCMTFDOEM3RTk0QUVCMDQw RURENkFCMDAwHhcNMjUwNDI0MjA1ODMzWhcNMjUwNTAxMjA1ODMzWjAYMRYwFAYD VQQDEw02ODBhYTVmOS04ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpoDjUy0ZksJcy1PTnRI2+ZuCS91H0OVraL6QebZ5/CX/V5sSpDzVhhYrts8 bo4Z95zlMoDT+Vs7O9oF1ipw/XeYM7yHv+E56XaBBAr3hQKYXP4njmQ/LNlhuPBK q6GCN2FJW8Mho7FTidUwGyxpBvFSV93yEPngsEIHSXQ1r6MAHAL7PW4c7bh55QE7 lRKq9U/13p/IhbUMZpzy7UXBBP4vrsw2VnIKH9Mtb8ggjrgXfM8ClNdLd34GCvGU 9l2aMEfF+d44GcmPmFAyOeaXCAoHGGr6hpZEr9BMI2cBO+3B1492g9b+a7uK/Ntz DG9h36Om3kF0a1tCNA/Ga92cKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsRQfX1 TPW/7QnaGDJS+6z1jIYbMB8GA1UdIwQYMBaAFO8altES3hYisRyMfpSusEDt1qsA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ4Qi9EMDBBQTg1Q0Y0 MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZpS3hISXgtbEs2d1FPM1dx d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd4cVcwUkxlRmlLeEhJeC1sSzZ3UU8zV3F3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ4Qi9EMDBBQTg1Q0Y0MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZp S3hISXgtbEs2d1FPM1dxd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX6LnqeeTJTqzutjp7I3lbfN+NDImX5HY210zppuwRBjSqQr9dNjoN 53tY2aQ/iAT2CUhXhKFRdQVZyVQ4BJvob9yL97GTkf0hAlmFQET4Jcl+XpgYQQFS y8QyZcK8qIc2FdDgIlXYCaeBdnXOj9HQVcPB8kKuxJ8vK7YQ7ZFBXdWHnSe6xPXo xn/JNfABkzu2WF2xCsi0pVDD9XveKCb2YfZEZlbA28urY8Bi/oexM3PbAulrmcYz y/01RgB2d3dhM7RMTduT2wwUgUbsTu7ULe8FxhKFhkmeF3FPk4DvZh0LWqBY8Joi OLyac+g9Bh3ry+orFXKMjBVUftdeVGxf -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:49 2025 by rpki-client