$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft File: Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft (raw, json) Hash identifier: ca939X+HZO2QFT0Ys3ahm/0SPo2fxw6JmTMw99Vpc80= Subject key identifier: B8:BC:9C:EE:E9:C0:33:A9:3A:71:50:73:7C:5D:E7:3A:E9:D1:29:90 Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Certificate serial: 0FC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft Manifest number: 0FA6 Signing time: Thu 24 Apr 2025 17:32:44 +0000 Manifest this update: Thu 24 Apr 2025 17:32:43 +0000 Manifest next update: Thu 01 May 2025 17:32:43 +0000 Files and hashes: 1: Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl (hash: M/e5vZFAVbXo9Yvg22rR551W1l+GfrZpzf45Jo6/iSc=) 2: 3F711060480611EE85A1BA0AC4F9AE02.roa (hash: lYO2r5iWYbPTGOu5MIGcMgAx1AviAoJ2otKYHZWrBDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4039 (0xfc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Validity Not Before: Apr 24 17:32:43 2025 GMT Not After : May 1 17:32:43 2025 GMT Subject: CN=680a75bc-85ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:d8:67:f8:cb:62:e4:40:01:c7:fa:f8:f7: fe:af:f5:be:14:bc:26:8e:a8:f5:28:cc:2b:13:bb: 6c:75:aa:f7:fb:82:c6:8a:a2:99:e5:41:5e:fc:17: b4:14:f7:2b:ea:f8:1a:fc:3b:2c:b7:35:11:28:c6: d5:22:74:2b:b7:fd:1e:b2:e6:0a:02:df:2b:ad:74: 0d:a7:1b:79:d9:97:0f:27:fb:56:ff:83:c8:3b:36: bc:d6:a8:04:e3:fb:44:10:64:28:ed:af:4d:2f:1b: b0:5e:37:3d:01:79:24:c0:0a:1c:78:a7:2f:a8:f1: 5a:38:8a:a5:54:95:86:35:31:42:2f:b4:cd:ec:d1: ea:be:f1:af:6c:1d:16:47:17:49:a6:0a:61:17:fe: d2:cb:d3:68:5f:32:6d:87:9b:38:2a:96:d3:1b:3e: be:22:72:76:73:af:cb:02:80:5d:0c:7a:a9:a0:7b: 83:56:e6:65:fb:e1:d1:e1:a4:71:19:02:fa:4c:e4: e7:f9:77:a4:cd:4a:ff:1f:b8:44:a6:ae:57:3b:57: 35:22:cb:ab:09:ce:45:f4:a8:58:f0:1e:c3:fa:52: 92:13:45:13:57:ce:eb:c2:36:5f:6d:cf:d2:ea:a4: 4c:c9:03:ea:27:9c:ac:fd:af:f5:57:0b:2b:83:08: 26:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:BC:9C:EE:E9:C0:33:A9:3A:71:50:73:7C:5D:E7:3A:E9:D1:29:90 X509v3 Authority Key Identifier: keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:31:ac:4c:a1:99:a9:c4:2c:a4:62:d1:0a:72:99:17:12:69: e0:98:06:40:d7:70:77:46:20:de:96:25:f5:8c:91:ae:ac:e2: 99:c4:ed:49:df:0a:6b:cf:17:35:0e:c7:67:5b:ca:1e:96:dd: 6b:9b:a4:bd:4b:44:2f:a0:c7:fa:e0:79:55:cc:74:bb:4c:a4: 67:4a:2b:ab:a1:12:7f:28:78:90:4c:29:5e:34:60:2d:f9:b7: 10:3e:b6:2e:be:ff:a2:89:5b:7f:98:6b:61:26:ac:98:10:38: 98:74:d3:d7:66:eb:c8:55:58:3a:79:50:f2:42:86:db:c4:f7: 41:af:c1:fc:ae:0b:8a:52:f8:88:f3:f6:5e:d1:92:a8:f5:5c: c1:0a:07:98:5e:25:f5:83:57:f5:48:b6:3c:38:05:23:61:a0: 13:43:41:28:a3:aa:e1:f4:b8:5c:8d:e0:3f:4f:f1:3f:e9:1c: 9e:cd:15:00:65:01:6f:8d:60:11:39:78:4a:f4:15:39:b8:c2: c5:2b:2e:ac:a6:2b:92:30:01:0f:19:fa:87:96:4a:ad:93:ea: 0b:e7:e7:55:bd:be:b8:99:5b:14:2b:c0:8b:97:d3:d8:70:9a: 4e:cb:66:76:6d:17:e6:f7:ee:22:a1:d0:c6:ff:99:16:e5:66: 2a:f9:20:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzIxMTAvBgNVBAUTKDMyOURBMDNEQjk5NDQ3NTE0OThBNUZDQTUzQzg1REFB NjBDQjlBMzIwHhcNMjUwNDI0MTczMjQzWhcNMjUwNTAxMTczMjQzWjAYMRYwFAYD VQQDEw02ODBhNzViYy04NWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy53YZ/jLYuRAAcf6+Pf+r/W+FLwmjqj1KMwrE7tsdar3+4LGiqKZ5UFe/Be0 FPcr6vga/DsstzURKMbVInQrt/0esuYKAt8rrXQNpxt52ZcPJ/tW/4PIOza81qgE 4/tEEGQo7a9NLxuwXjc9AXkkwAoceKcvqPFaOIqlVJWGNTFCL7TN7NHqvvGvbB0W RxdJpgphF/7Sy9NoXzJth5s4KpbTGz6+InJ2c6/LAoBdDHqpoHuDVuZl++HR4aRx GQL6TOTn+XekzUr/H7hEpq5XO1c1IsurCc5F9KhY8B7D+lKSE0UTV87rwjZfbc/S 6qRMyQPqJ5ys/a/1VwsrgwgmzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLi8nO7p wDOpOnFQc3xd5zrp0SmQMB8GA1UdIwQYMBaAFDKdoD25lEdRSYpfylPIXapgy5oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzMi8yRENBQkE2ODVD RjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIxRkppbF9LVThoZHFtRExt akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wMmdQYm1VUjFGSmlsX0tVOGhkcW1ETG1qSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzQzMi8yRENBQkE2ODVDRjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIx RkppbF9LVThoZHFtRExtakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkMaxMoZmpxCykYtEKcpkXEmngmAZA13B3RiDeliX1jJGurOKZxO1J 3wprzxc1DsdnW8oelt1rm6S9S0QvoMf64HlVzHS7TKRnSiuroRJ/KHiQTCleNGAt +bcQPrYuvv+iiVt/mGthJqyYEDiYdNPXZuvIVVg6eVDyQobbxPdBr8H8rguKUviI 8/Ze0ZKo9VzBCgeYXiX1g1f1SLY8OAUjYaATQ0Eoo6rh9LhcjeA/T/E/6RyezRUA ZQFvjWAROXhK9BU5uMLFKy6spiuSMAEPGfqHlkqtk+oL5+dVvb64mVsUK8CLl9PY cJpOy2Z2bRfm9+4iodDG/5kW5WYq+SB8 -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:43 2025 by rpki-client