$ rpki-client -vvf rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft File: cDaiAHf_h_76NADX-QdrfhmDiy4.mft (raw, json) Hash identifier: Hq8JmP1HkKZ2fxvUFFZKSxcPyzhd0LANOazKJfgP25A= Subject key identifier: 20:EC:F1:9A:11:79:93:43:36:75:C7:DD:F1:64:BE:F2:72:C5:41:55 Authority key identifier: 70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E Certificate issuer: /CN=A913F124/serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft Manifest number: 01DE Signing time: Fri 25 Apr 2025 01:54:36 +0000 Manifest this update: Fri 25 Apr 2025 01:54:35 +0000 Manifest next update: Fri 02 May 2025 01:54:35 +0000 Files and hashes: 1: cDaiAHf_h_76NADX-QdrfhmDiy4.crl (hash: QwOMy7/yhuTS3HF9ozuXlb/9Ga9rtszmGK5zfG67rhQ=) 2: B13C376049EC11ED9EAEAC0CC4F9AE02.roa (hash: 3aaeEi1YrA3uSceTUOZGuJZHBHy8WbpEjF+B/7Isrys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F124, serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E Validity Not Before: Apr 25 01:54:35 2025 GMT Not After : May 2 01:54:35 2025 GMT Subject: CN=680aeb5b-704c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d5:68:cb:5b:cb:43:1a:69:64:2b:9c:8b:e8: 2d:49:9b:94:88:e5:a6:68:9e:2a:03:d1:2f:4d:d6: 12:39:a0:d3:b1:6f:a5:d8:54:10:0a:a4:17:74:ce: ec:61:1f:3e:54:72:80:5c:6e:da:fe:89:58:52:63: 0e:71:ba:b5:6c:8f:70:02:fa:b2:e5:f4:a1:95:35: c1:4d:9a:2f:43:87:50:59:91:69:52:a9:ae:7a:66: 35:55:1c:a1:3e:91:56:86:48:f9:d2:27:e6:41:c7: 5b:e6:29:95:02:7d:00:1a:4c:c5:85:46:a8:12:0e: 17:ad:35:1d:cc:24:85:d4:01:34:d8:d2:2f:06:71: 26:10:79:7f:30:4b:5b:23:39:c5:31:e4:53:d9:e5: 86:7d:0b:4e:7f:4a:91:37:b3:83:54:07:49:9a:fa: 99:db:d6:a8:89:3f:7d:60:14:99:8b:c5:29:4e:04: d3:03:cb:2e:e1:d5:ee:07:66:56:19:64:be:d6:e3: e9:4f:90:ae:15:a5:eb:35:21:9b:e6:43:c5:2f:4d: fc:db:37:5e:53:cf:4d:e8:84:6f:9b:e2:b2:99:98: 40:f1:f7:fb:43:fd:55:13:b7:e2:f2:3a:d5:f9:0c: 86:a9:f6:6c:bb:18:a2:01:e2:68:bf:8b:5d:2f:8a: d8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:EC:F1:9A:11:79:93:43:36:75:C7:DD:F1:64:BE:F2:72:C5:41:55 X509v3 Authority Key Identifier: keyid:70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:9d:2c:99:b5:81:db:7c:5f:6c:18:65:3b:f3:bf:83:ad:09: 01:28:bf:78:bc:32:96:ed:c6:04:ba:fb:e6:93:f2:ec:44:fe: 07:c0:f5:f9:b8:87:98:0a:c4:78:0c:a8:bf:e1:58:74:bb:f3: 9b:a6:31:85:80:11:2b:37:4d:eb:43:56:f1:de:c1:34:84:05: 92:8e:6a:91:2b:4c:f2:ad:7f:0c:b5:4c:99:b0:c4:d1:3e:bd: d1:5f:d5:e7:1f:fd:2b:ab:2d:3b:86:46:21:f1:5f:6f:1b:88: 8f:06:34:be:c7:89:96:3c:88:31:fe:26:f8:6e:af:4a:0e:95: 4a:df:c1:cb:94:b5:f5:6f:32:d2:16:d5:15:55:a8:e3:f1:38: d3:eb:ef:2d:c8:7e:b2:1d:14:11:70:63:32:1f:90:db:21:25: 4e:6b:6d:96:90:68:ff:9a:9f:02:f3:53:02:94:6c:03:2a:cc: f0:aa:45:c5:34:08:19:f0:77:3d:a8:de:ce:42:8f:15:a7:89: a9:1a:93:ba:48:b2:cc:d8:64:c2:b8:12:39:46:12:61:04:05: b2:14:9e:c6:3e:46:aa:54:15:02:dd:6b:f4:4e:c3:20:32:15: 1a:ec:27:8e:e6:60:e9:25:33:84:fb:2c:87:75:c2:e3:3a:d1: 53:7b:e1:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YxMjQxMTAvBgNVBAUTKDcwMzZBMjAwNzdGRjg3RkVGQTM0MDBEN0Y5MDc2QjdF MTk4MzhCMkUwHhcNMjUwNDI1MDE1NDM1WhcNMjUwNTAyMDE1NDM1WjAYMRYwFAYD VQQDEw02ODBhZWI1Yi03MDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNVoy1vLQxppZCuci+gtSZuUiOWmaJ4qA9EvTdYSOaDTsW+l2FQQCqQXdM7s YR8+VHKAXG7a/olYUmMOcbq1bI9wAvqy5fShlTXBTZovQ4dQWZFpUqmuemY1VRyh PpFWhkj50ifmQcdb5imVAn0AGkzFhUaoEg4XrTUdzCSF1AE02NIvBnEmEHl/MEtb IznFMeRT2eWGfQtOf0qRN7ODVAdJmvqZ29aoiT99YBSZi8UpTgTTA8su4dXuB2ZW GWS+1uPpT5CuFaXrNSGb5kPFL0382zdeU89N6IRvm+KymZhA8ff7Q/1VE7fi8jrV +QyGqfZsuxiiAeJov4tdL4rYAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDs8ZoR eZNDNnXH3fFkvvJyxUFVMB8GA1UdIwQYMBaAFHA2ogB3/4f++jQA1/kHa34Zg4su MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjEyNC81NjU1REE3NjQ5 RTgxMUVEOTQzQzQ5ODRDNEY5QUUwMi9jRGFpQUhmX2hfNzZOQURYLVFkcmZobURp eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NEYWlBSGZfaF83Nk5BRFgtUWRyZmhtRGl5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjEyNC81NjU1REE3NjQ5RTgxMUVEOTQzQzQ5ODRDNEY5QUUwMi9jRGFpQUhmX2hf NzZOQURYLVFkcmZobURpeTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHnSyZtYHbfF9sGGU787+DrQkBKL94vDKW7cYEuvvmk/LsRP4HwPX5 uIeYCsR4DKi/4Vh0u/ObpjGFgBErN03rQ1bx3sE0hAWSjmqRK0zyrX8MtUyZsMTR Pr3RX9XnH/0rqy07hkYh8V9vG4iPBjS+x4mWPIgx/ib4bq9KDpVK38HLlLX1bzLS FtUVVajj8TjT6+8tyH6yHRQRcGMyH5DbISVOa22WkGj/mp8C81MClGwDKszwqkXF NAgZ8Hc9qN7OQo8Vp4mpGpO6SLLM2GTCuBI5RhJhBAWyFJ7GPkaqVBUC3Wv0TsMg MhUa7CeO5mDpJTOE+yyHdcLjOtFTe+F1 -----END CERTIFICATE-----Generated at Sat Apr 26 03:31:50 2025 by rpki-client