$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json) Hash identifier: t6sXv+4EVRJe3zrXhFa5+hfH5AfrWdXP/A1NzKIbZhs= Subject key identifier: 61:83:46:DD:11:E5:72:81:B9:D3:46:91:43:87:67:1C:8F:01:CA:CD Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft Manifest number: F3 Signing time: Fri 25 Apr 2025 04:17:32 +0000 Manifest this update: Fri 25 Apr 2025 04:17:32 +0000 Manifest next update: Fri 02 May 2025 04:17:32 +0000 Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: Q1tVvz1UU2pjWOhRkxVFVph3a1Ur7+K1dqB14IwlvuA=) 2: 658B1AC8AE4711EE8C130419C4F9AE02.roa (hash: pBuyb8tUeoDi0BGNU1PyCW1Le78/gB9wiXHTRO2r0pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Apr 25 04:17:32 2025 GMT Not After : May 2 04:17:32 2025 GMT Subject: CN=680b0cdc-ecb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:57:62:f1:d7:e1:eb:33:42:3e:d3:7e:e8:3d: 09:aa:80:60:e8:e8:78:c6:1f:98:d6:af:8a:61:fa: 4f:9d:03:fe:b8:5d:3e:c4:b7:19:7a:a5:d1:d9:6d: 20:57:4b:06:f7:01:96:2f:38:e9:ba:ba:d8:17:4c: 6f:7d:2c:5f:31:f2:e0:22:2b:e5:33:66:fb:eb:50: b5:2e:a4:5e:c3:9e:a6:37:9a:93:c6:56:5e:db:63: f4:fb:81:a2:fb:96:56:1f:03:80:9f:f3:1e:7e:cf: 80:89:e2:2b:71:e9:f3:49:bb:5b:fc:e5:d2:b1:d1: 56:b6:78:38:c1:66:05:d5:78:30:c2:c4:39:51:a7: 35:02:3f:29:5c:d7:75:fb:99:cb:a0:d3:bf:68:87: 34:3e:92:3a:1d:ff:52:d1:eb:04:ef:f6:de:14:d4: 51:7f:9e:af:48:1f:7d:a3:9e:60:d3:76:fe:c3:84: db:de:a2:1a:a4:c2:3c:6d:1f:9f:29:85:b7:90:ff: fa:99:62:90:5b:1f:61:91:83:f3:1b:36:b1:45:26: c3:50:ad:0f:6d:48:1c:00:6b:b5:97:3a:bd:f2:49: 63:de:eb:43:4c:d3:2c:ec:71:de:44:db:e9:c4:5e: 37:e7:62:29:83:73:0d:53:70:81:40:f9:82:e0:b8: 78:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:83:46:DD:11:E5:72:81:B9:D3:46:91:43:87:67:1C:8F:01:CA:CD X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:25:e3:1c:65:fa:e0:f9:e7:3c:f3:ba:1a:cf:aa:e2:21:cd: e5:f6:d5:08:30:8b:1c:41:23:2f:c0:3d:7d:5d:10:c1:04:9b: f8:74:3b:2d:fc:81:1c:be:af:84:d3:5b:6d:ec:bd:d5:b8:7f: 71:74:52:c1:f4:5c:93:12:7f:4d:9e:b0:33:1d:20:67:20:f7: 9c:6e:22:5d:6b:fd:ac:86:5a:5f:0e:dd:b7:b1:f2:6e:13:f6: ba:81:b4:de:52:ac:67:aa:b2:25:0a:26:8d:20:75:b0:5b:df: 4d:01:0f:cb:25:98:24:91:bb:b5:13:fe:39:aa:b7:30:09:be: ba:c6:84:da:06:77:1f:87:3a:d8:97:58:3e:63:49:8c:bf:fc: b0:d8:8a:a4:f3:9b:d4:34:e8:61:6d:77:e0:c8:37:8d:fe:a0: 64:0b:ad:89:3e:36:f1:81:ac:eb:dc:9e:32:5b:33:c7:5d:b8: d7:e6:f8:df:94:11:f6:3a:0b:8b:98:a8:4e:d7:1b:04:a9:37: e2:d0:56:73:c4:7a:a1:51:7d:5b:2e:34:1e:20:c4:45:fc:4c: 32:70:94:60:ee:21:dc:c9:47:fb:4c:64:92:3b:37:05:b7:82: 38:6f:0c:74:cd:ad:2f:29:4d:e5:4e:e4:8b:18:56:49:b8:a2: 56:cd:d7:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKDRGODQxRTM4MzNFMEFDNkZFMUJFRUVCRDAwMTIzNUQx NTI4RUNFN0EwHhcNMjUwNDI1MDQxNzMyWhcNMjUwNTAyMDQxNzMyWjAYMRYwFAYD VQQDEw02ODBiMGNkYy1lY2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Vdi8dfh6zNCPtN+6D0JqoBg6Oh4xh+Y1q+KYfpPnQP+uF0+xLcZeqXR2W0g V0sG9wGWLzjpurrYF0xvfSxfMfLgIivlM2b761C1LqRew56mN5qTxlZe22P0+4Gi +5ZWHwOAn/Mefs+AieIrcenzSbtb/OXSsdFWtng4wWYF1XgwwsQ5Uac1Aj8pXNd1 +5nLoNO/aIc0PpI6Hf9S0esE7/beFNRRf56vSB99o55g03b+w4Tb3qIapMI8bR+f KYW3kP/6mWKQWx9hkYPzGzaxRSbDUK0PbUgcAGu1lzq98klj3utDTNMs7HHeRNvp xF4352Ipg3MNU3CBQPmC4Lh47wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGDRt0R 5XKBudNGkUOHZxyPAcrNMB8GA1UdIwQYMBaAFE+EHjgz4Kxv4b7uvQASNdFSjs56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84MzdDRDM0NkFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JHX2h2dTY5QUJJMTBWS096 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3puby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JH X2h2dTY5QUJJMTBWS096bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+JeMcZfrg+ec887oaz6riIc3l9tUIMIscQSMvwD19XRDBBJv4dDst /IEcvq+E01tt7L3VuH9xdFLB9FyTEn9NnrAzHSBnIPecbiJda/2shlpfDt23sfJu E/a6gbTeUqxnqrIlCiaNIHWwW99NAQ/LJZgkkbu1E/45qrcwCb66xoTaBncfhzrY l1g+Y0mMv/yw2Iqk85vUNOhhbXfgyDeN/qBkC62JPjbxgazr3J4yWzPHXbjX5vjf lBH2OguLmKhO1xsEqTfi0FZzxHqhUX1bLjQeIMRF/EwycJRg7iHcyUf7TGSSOzcF t4I4bwx0za0vKU3lTuSLGFZJuKJWzdcb -----END CERTIFICATE-----Generated at Sat Apr 26 14:05:25 2025 by rpki-client