$ rpki-client -vvf rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft File: CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft (raw, json) Hash identifier: V75L1uBsj1qxdG2CsjyrBHwufoJFiWXNluykIv4Bx44= Subject key identifier: 2E:72:F3:D1:E0:54:83:D5:EF:50:3B:4C:CB:2F:61:33:CD:AC:30:98 Authority key identifier: 08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 Certificate issuer: /CN=A9137627/serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft Manifest number: 51 Signing time: Fri 25 Apr 2025 06:15:32 +0000 Manifest this update: Fri 25 Apr 2025 06:15:32 +0000 Manifest next update: Fri 02 May 2025 06:15:32 +0000 Files and hashes: 1: CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl (hash: 4kIdhaQv47k1Fmpw23KV9yZaGNZehEw3hiwxUSXVQ4k=) 2: 4F148EC8A89211EFBE18B52EC4F9AE02.roa (hash: Ac/uc/BnLL5OC5L/oElWDyPEyaU4HTEnF9nDubVxykg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137627, serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Validity Not Before: Apr 25 06:15:32 2025 GMT Not After : May 2 06:15:32 2025 GMT Subject: CN=680b2884-e53e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:49:3d:d4:18:34:03:b7:3b:ff:d9:5f:b6:2a: ae:f6:6a:c6:01:12:93:07:a1:50:ab:22:c0:d4:a6: 13:12:52:4a:ac:59:8c:2e:5a:01:bc:45:b9:35:13: 95:cf:b6:b5:91:de:b5:58:99:9b:d9:1f:e6:f3:bb: 8a:11:70:8d:6d:be:d8:7e:00:32:3f:17:f6:0d:5a: b2:df:cc:f6:d2:96:d6:6e:11:84:67:f4:75:ba:b3: 13:03:ea:90:40:92:81:b7:ea:9e:2f:60:af:b7:9b: 73:b8:81:27:0e:d5:4b:dd:c5:65:2e:78:0f:c0:f2: ee:21:a2:c0:81:62:35:e1:a6:75:09:1e:99:62:33: ce:66:a4:ab:27:c4:8e:fd:55:00:67:be:de:b1:d6: 5d:8d:8c:f4:cf:77:bc:86:03:7d:bd:18:03:ca:01: db:0c:dd:eb:e3:4e:d8:d6:6d:75:77:1a:6d:48:39: 64:93:24:36:46:a6:da:f9:4b:e6:0d:3b:c6:d6:62: 92:12:66:d9:af:8e:e4:d0:65:15:c0:0a:9e:19:7a: b2:d7:ba:a6:8f:2f:f6:10:4e:2d:d1:e1:ef:6c:ec: 14:0f:20:4a:86:c3:ff:2f:8a:d7:62:f9:2a:9a:d2: 0c:8b:d0:1f:86:0f:8a:89:f7:79:54:af:6e:89:ee: ec:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:72:F3:D1:E0:54:83:D5:EF:50:3B:4C:CB:2F:61:33:CD:AC:30:98 X509v3 Authority Key Identifier: keyid:08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ba:d3:38:6b:de:b7:14:6d:3a:e4:06:5a:01:35:3f:94:28: 1f:40:c1:9b:ea:31:7e:55:5a:4a:94:32:cc:d5:38:47:be:1e: 65:aa:d8:0e:0e:c8:51:8e:3b:6c:4b:f3:87:74:3b:d2:03:92: 99:44:40:49:6c:b4:7f:7b:7a:31:6d:3d:21:e3:10:c6:aa:9e: 9d:1b:bb:40:44:8c:92:aa:6d:0b:de:61:80:3e:d8:f4:fc:50: 2d:a1:68:cc:73:b2:7a:53:e6:c9:13:a0:68:3d:30:98:e1:2c: cc:45:47:f2:45:c0:9e:2f:f2:ed:01:8e:3d:30:2a:7a:e2:a8: bf:50:91:b6:85:17:21:4c:40:4f:60:1b:00:1e:9b:d9:75:61: 45:8b:a4:8c:e9:88:2a:b9:ed:8c:e2:65:85:09:c2:50:16:fd: cb:52:3b:f7:d2:3c:24:03:1e:c2:62:02:bb:98:ee:8e:8e:64: fe:45:ed:6d:af:c3:ed:4a:af:98:d5:12:ef:12:f6:3f:5c:95: 6e:9b:5c:b3:4e:ca:42:9f:15:cc:fd:05:02:97:7a:8a:c5:6d: c5:0e:ad:07:ae:96:1a:8f:c5:97:04:89:9e:b9:8d:92:1c:42: b0:47:79:ea:f3:a2:13:37:c6:39:f4:bb:3a:04:28:1d:52:02: e2:ba:20:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NzYyNzExMC8GA1UEBRMoMDgwRUMxNEEwMDEyNUQ5MTRDN0U2Mjg1REU5QzU2Njg5 QzU4NzJBNDAeFw0yNTA0MjUwNjE1MzJaFw0yNTA1MDIwNjE1MzJaMBgxFjAUBgNV BAMTDTY4MGIyODg0LWU1M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwST3UGDQDtzv/2V+2Kq72asYBEpMHoVCrIsDUphMSUkqsWYwuWgG8Rbk1E5XP trWR3rVYmZvZH+bzu4oRcI1tvth+ADI/F/YNWrLfzPbSltZuEYRn9HW6sxMD6pBA koG36p4vYK+3m3O4gScO1UvdxWUueA/A8u4hosCBYjXhpnUJHpliM85mpKsnxI79 VQBnvt6x1l2NjPTPd7yGA329GAPKAdsM3evjTtjWbXV3Gm1IOWSTJDZGptr5S+YN O8bWYpISZtmvjuTQZRXACp4ZerLXuqaPL/YQTi3R4e9s7BQPIEqGw/8vitdi+Sqa 0gyL0B+GD4qJ93lUr26J7uyPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULnLz0eBU g9XvUDtMyy9hM82sMJgwHwYDVR0jBBgwFoAUCA7BSgASXZFMfmKF3pxWaJxYcqQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3NjI3L0U3RDI1Nzg2QTg5 MTExRUY5MjY4OEIyQkM0RjlBRTAyL0NBN0JTZ0FTWFpGTWZtS0YzcHhXYUp4WWNx US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ0E3QlNnQVNYWkZNZm1LRjNweFdhSnhZY3FRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3 NjI3L0U3RDI1Nzg2QTg5MTExRUY5MjY4OEIyQkM0RjlBRTAyL0NBN0JTZ0FTWFpG TWZtS0YzcHhXYUp4WWNxUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADS60zhr3rcUbTrkBloBNT+UKB9AwZvqMX5VWkqUMszVOEe+HmWq2A4O yFGOO2xL84d0O9IDkplEQElstH97ejFtPSHjEMaqnp0bu0BEjJKqbQveYYA+2PT8 UC2haMxzsnpT5skToGg9MJjhLMxFR/JFwJ4v8u0Bjj0wKnriqL9QkbaFFyFMQE9g GwAem9l1YUWLpIzpiCq57YziZYUJwlAW/ctSO/fSPCQDHsJiAruY7o6OZP5F7W2v w+1Kr5jVEu8S9j9clW6bXLNOykKfFcz9BQKXeorFbcUOrQeulhqPxZcEiZ65jZIc QrBHeerzohM3xjn0uzoEKB1SAuK6IEo= -----END CERTIFICATE-----Generated at Sat Apr 26 14:12:50 2025 by rpki-client