$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft File: 6IdrUasrF3RAzUxM0uTwpZjgOBw.mft (raw, json) Hash identifier: ZHAyCtdQDcyR28EbVgayh2GpSUaffYFyc4eVgXYvv24= Subject key identifier: 65:1A:73:26:F0:55:E6:B4:17:65:F0:EC:9D:99:16:E0:42:55:38:E9 Authority key identifier: E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C Certificate issuer: /CN=A913AE23/serialNumber=E8876B51AB2B177440CD4C4CD2E4F0A598E0381C Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft Manifest number: AA Signing time: Fri 25 Apr 2025 05:12:28 +0000 Manifest this update: Fri 25 Apr 2025 05:12:27 +0000 Manifest next update: Fri 02 May 2025 05:12:27 +0000 Files and hashes: 1: 6IdrUasrF3RAzUxM0uTwpZjgOBw.crl (hash: sHjaE39U4ksQJ5A6G+3oorZ8YGlHpYCMM4p4gHORWsU=) 2: 20B02A7A2C6D11EF9E3D5230C4F9AE02.roa (hash: Rih/Wk+3SaEqReLV35PtgcGk6bxkA/LfVhv9nN+xmq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.crl rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=E8876B51AB2B177440CD4C4CD2E4F0A598E0381C Validity Not Before: Apr 25 05:12:27 2025 GMT Not After : May 2 05:12:27 2025 GMT Subject: CN=680b19bb-2ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:52:04:e5:96:d3:64:4b:9d:3d:42:f7:69:00: 0c:2c:f2:84:ef:3c:15:54:a1:6a:98:8b:da:8b:ec: b4:da:0a:0c:49:2b:5e:64:65:d6:98:77:6b:ca:0e: e8:99:7d:3b:eb:e4:c3:3f:c8:23:2a:ae:3a:79:18: 03:e8:62:ed:33:1d:2f:e3:ab:6c:9a:41:de:c0:86: 38:eb:da:0b:bf:e4:6b:4c:c5:c8:65:6b:bb:98:51: 59:45:12:1c:79:5a:9b:42:91:e3:e5:0e:3c:a1:8f: a6:ef:23:3d:60:a6:d5:74:67:c1:2b:37:b7:38:ea: d0:04:27:8d:8e:53:0e:97:88:2a:c3:14:ea:cf:cd: d4:4d:0a:74:df:9c:67:60:b1:c0:c2:37:6a:0b:18: 0f:be:73:59:ed:fd:3e:79:a6:09:92:19:9e:59:06: 01:00:66:b9:ec:a7:90:62:f3:6b:8b:8c:4d:6c:77: 9f:f1:8f:92:6d:e3:17:00:d3:a0:db:03:2c:bb:85: 9b:55:7c:ea:01:66:ed:ae:2b:fd:ee:18:f4:f2:1a: 9b:4c:ea:51:d1:2f:f8:7f:c1:12:58:f8:a9:d9:da: 57:a5:81:fd:7f:41:23:d9:5c:44:fc:39:e3:05:db: f6:84:90:54:ed:ab:d4:b6:1d:a3:d6:9d:8b:c0:79: ef:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:1A:73:26:F0:55:E6:B4:17:65:F0:EC:9D:99:16:E0:42:55:38:E9 X509v3 Authority Key Identifier: keyid:E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:7e:7f:8f:48:9c:f1:5b:e3:6c:21:77:11:e7:2f:57:54:8b: 6f:df:d5:f9:5a:ce:e4:1d:91:d5:b9:97:e9:12:f5:6e:1f:7c: 3a:0b:03:aa:25:02:1e:8c:f9:4d:27:bb:92:4c:2e:cc:e8:ef: 05:a0:bb:7d:99:ae:3d:b6:3c:ea:59:76:92:48:07:ad:5a:c4: 04:cb:49:53:78:66:54:ea:bb:8b:00:20:0b:6b:47:7a:b1:25: 2b:85:0f:91:ca:a7:ff:95:9e:30:15:95:c8:c1:2f:c2:eb:c0: a3:a1:14:7c:e6:67:83:08:1c:b1:a3:f0:46:0b:2b:e0:66:18: 49:54:19:82:4f:73:99:3e:6c:2a:05:7d:e8:b6:0e:97:0d:77: 75:68:f7:7f:2d:ab:c9:76:fa:27:87:87:20:40:d0:5c:c3:a4: de:54:21:04:60:93:9c:43:bf:10:e7:b1:2a:79:f7:74:49:6e: b0:83:64:a5:63:a9:87:e4:5b:a7:f5:eb:6d:ed:a2:e0:e5:81: 7c:91:89:bf:4a:7b:b3:21:3f:1f:22:4f:90:63:8e:0c:13:c7: 3c:b8:94:02:09:cc:78:d7:17:a0:a4:1c:ed:0e:6e:f9:de:a8: 82:c4:67:f2:e7:c6:54:73:11:42:a7:da:c2:2f:1c:2d:d9:c0: 8c:de:e1:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKEU4ODc2QjUxQUIyQjE3NzQ0MENENEM0Q0QyRTRGMEE1 OThFMDM4MUMwHhcNMjUwNDI1MDUxMjI3WhcNMjUwNTAyMDUxMjI3WjAYMRYwFAYD VQQDEw02ODBiMTliYi0yZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFIE5ZbTZEudPUL3aQAMLPKE7zwVVKFqmIvai+y02goMSSteZGXWmHdryg7o mX076+TDP8gjKq46eRgD6GLtMx0v46tsmkHewIY469oLv+RrTMXIZWu7mFFZRRIc eVqbQpHj5Q48oY+m7yM9YKbVdGfBKze3OOrQBCeNjlMOl4gqwxTqz83UTQp035xn YLHAwjdqCxgPvnNZ7f0+eaYJkhmeWQYBAGa57KeQYvNri4xNbHef8Y+SbeMXANOg 2wMsu4WbVXzqAWbtriv97hj08hqbTOpR0S/4f8ESWPip2dpXpYH9f0Ej2VxE/Dnj Bdv2hJBU7avUth2j1p2LwHnvCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUacybw Vea0F2Xw7J2ZFuBCVTjpMB8GA1UdIwQYMBaAFOiHa1GrKxd0QM1MTNLk8KWY4Dgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zQTcyQUJGQTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi82SWRyVWFzckYzUkF6VXhNMHVUd3BaamdP QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZJZHJVYXNyRjNSQXpVeE0wdVR3cFpqZ09Cdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zQTcyQUJGQTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi82SWRyVWFzckYz UkF6VXhNMHVUd3BaamdPQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyfn+PSJzxW+NsIXcR5y9XVItv39X5Ws7kHZHVuZfpEvVuH3w6CwOq JQIejPlNJ7uSTC7M6O8FoLt9ma49tjzqWXaSSAetWsQEy0lTeGZU6ruLACALa0d6 sSUrhQ+Ryqf/lZ4wFZXIwS/C68CjoRR85meDCByxo/BGCyvgZhhJVBmCT3OZPmwq BX3otg6XDXd1aPd/LavJdvonh4cgQNBcw6TeVCEEYJOcQ78Q57Eqefd0SW6wg2Sl Y6mH5Fun9ett7aLg5YF8kYm/SnuzIT8fIk+QY44ME8c8uJQCCcx41xegpBztDm75 3qiCxGfy58ZUcxFCp9rCLxwt2cCM3uGK -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:51 2025 by rpki-client