$ rpki-client -vvf rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft File: rBnGa8SzHOuTC6auDW63R7EKtgY.mft (raw, json) Hash identifier: eHOaeER9j/7zJwNBeT1i6c7hrn4es8K5uHZ9nuprK5s= Subject key identifier: 33:65:10:21:5F:1D:50:43:DE:55:1C:14:6D:EB:06:08:30:EF:C3:DF Authority key identifier: AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 Certificate issuer: /CN=A9141E28/serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Certificate serial: 3479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft Manifest number: 3479 Signing time: Thu 24 Apr 2025 14:39:42 +0000 Manifest this update: Thu 24 Apr 2025 14:39:41 +0000 Manifest next update: Thu 01 May 2025 14:39:41 +0000 Files and hashes: 1: rBnGa8SzHOuTC6auDW63R7EKtgY.crl (hash: nY0W+o55pJXi5uFpJwLOsoHjtOBgduVr93jx/40pOHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13433 (0x3479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141E28, serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Validity Not Before: Apr 24 14:39:41 2025 GMT Not After : May 1 14:39:41 2025 GMT Subject: CN=680a4d2e-02d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c4:2f:65:37:55:6a:94:1e:18:17:3d:cd:b8: 53:a7:67:97:ec:7b:a6:b9:e1:54:47:76:35:b2:a0: 8c:23:89:f3:c4:df:4c:7f:2c:a3:af:98:a9:5a:48: ad:1b:47:c0:f3:6f:67:46:a1:07:82:00:12:e8:f2: a5:b9:b0:17:a7:7b:90:b3:5c:eb:ce:d4:ef:24:c0: 30:d5:58:1a:19:0d:4c:4a:6d:d5:6d:38:6a:50:7a: 63:a2:c5:a1:58:d1:c0:3b:6b:3e:c3:c2:4f:30:9b: 6a:1b:f2:17:6f:44:77:eb:eb:b0:8d:09:4b:a2:08: eb:51:0a:cc:bb:7c:ce:32:28:cc:7b:c0:aa:8d:49: 69:78:2b:06:1f:e8:55:7f:7f:30:d1:8b:0c:00:ec: f9:3d:73:bc:e3:c8:1a:73:b1:ec:b9:c6:ae:43:31: ca:85:d5:57:d4:49:96:10:d3:36:8d:2d:17:fa:ac: f1:cc:2b:b2:e2:52:43:d0:b5:bc:62:45:aa:c8:9e: 54:ff:e5:cb:cb:2c:a2:47:2b:9c:88:cf:44:fd:41: f9:7d:0f:c4:fe:60:d8:f7:e7:a5:cd:05:b4:1a:0b: 62:50:11:73:b7:66:c4:e9:af:2d:f1:e9:20:e6:a0: cb:e2:87:44:71:ad:c8:e7:84:d3:e6:b9:c1:6e:aa: 42:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:65:10:21:5F:1D:50:43:DE:55:1C:14:6D:EB:06:08:30:EF:C3:DF X509v3 Authority Key Identifier: keyid:AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:ac:90:8f:19:52:67:0c:88:9e:10:42:4f:b5:0b:6d:d7:06: 73:d8:55:e2:4f:46:8c:6f:83:d2:6d:29:b6:16:ae:95:78:c1: d1:6b:77:6b:dd:2f:1f:bc:06:08:67:1d:85:72:a5:a3:e3:08: 98:bf:ff:d8:9a:e6:22:99:47:73:b3:20:79:64:80:cd:0d:a1: c5:9d:ad:25:11:df:1c:25:37:fc:5f:d4:af:43:08:49:dd:a8: 11:27:4d:a9:d7:1b:12:0b:c6:8e:67:ed:15:fe:32:c3:f6:8a: 9c:9e:0b:6d:3e:ab:3a:d2:4e:7b:28:a9:33:75:a5:20:e2:52: b9:57:4f:b4:d2:eb:81:7b:e6:c5:31:d8:1e:2a:c9:a8:99:42: 53:03:b8:17:eb:76:cf:d3:a6:44:df:6e:d1:1f:e5:4f:95:6e: f6:bc:de:b9:4b:53:d9:0c:5d:ce:55:dd:6d:7b:69:ec:8a:43: f0:64:7e:b0:c1:19:f9:0a:43:b7:99:70:3d:97:d6:cf:cf:7d: ad:a7:75:20:af:7b:a1:f2:b2:7d:72:c1:f7:2f:44:3d:52:22: 2d:cd:ae:76:08:06:5b:3d:08:7e:16:45:8b:8d:a2:24:ec:5b: 6a:37:e1:67:ca:6d:5f:a5:1e:2c:90:26:1b:77:99:ab:43:cf: f1:84:a2:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFFMjgxMTAvBgNVBAUTKEFDMTlDNjZCQzRCMzFDRUI5MzBCQTZBRTBENkVCNzQ3 QjEwQUI2MDYwHhcNMjUwNDI0MTQzOTQxWhcNMjUwNTAxMTQzOTQxWjAYMRYwFAYD VQQDEw02ODBhNGQyZS0wMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6MQvZTdVapQeGBc9zbhTp2eX7HumueFUR3Y1sqCMI4nzxN9Mfyyjr5ipWkit G0fA829nRqEHggAS6PKlubAXp3uQs1zrztTvJMAw1VgaGQ1MSm3VbThqUHpjosWh WNHAO2s+w8JPMJtqG/IXb0R36+uwjQlLogjrUQrMu3zOMijMe8CqjUlpeCsGH+hV f38w0YsMAOz5PXO848gac7HsucauQzHKhdVX1EmWENM2jS0X+qzxzCuy4lJD0LW8 YkWqyJ5U/+XLyyyiRyuciM9E/UH5fQ/E/mDY9+elzQW0GgtiUBFzt2bE6a8t8ekg 5qDL4odEca3I54TT5rnBbqpC2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNlECFf HVBD3lUcFG3rBggw78PfMB8GA1UdIwQYMBaAFKwZxmvEsxzrkwumrg1ut0exCrYG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUUyOC84NDU4QjkxMDFE OEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhPdVRDNmF1RFc2M1I3RUt0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JCbkdhOFN6SE91VEM2YXVEVzYzUjdFS3RnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUUyOC84NDU4QjkxMDFEOEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhP dVRDNmF1RFc2M1I3RUt0Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7rJCPGVJnDIieEEJPtQtt1wZz2FXiT0aMb4PSbSm2Fq6VeMHRa3dr 3S8fvAYIZx2FcqWj4wiYv//YmuYimUdzsyB5ZIDNDaHFna0lEd8cJTf8X9SvQwhJ 3agRJ02p1xsSC8aOZ+0V/jLD9oqcngttPqs60k57KKkzdaUg4lK5V0+00uuBe+bF MdgeKsmomUJTA7gX63bP06ZE327RH+VPlW72vN65S1PZDF3OVd1te2nsikPwZH6w wRn5CkO3mXA9l9bPz32tp3Ugr3uh8rJ9csH3L0Q9UiItza52CAZbPQh+FkWLjaIk 7FtqN+Fnym1fpR4skCYbd5mrQ8/xhKK2 -----END CERTIFICATE-----Generated at Sat Apr 26 03:45:27 2025 by rpki-client