$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft File: vHDzdLcox7cRwkpoJ_dHekKyKk0.mft (raw, json) Hash identifier: bEM8Nm/utzbRltr5m1T3kCVzXfOs0cDXpzu6aIY7ne0= Subject key identifier: 63:9E:FA:E7:38:68:C4:FA:99:5A:0A:F9:13:C3:2B:93:45:70:BB:A8 Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft Manifest number: 20 Signing time: Fri 25 Apr 2025 06:50:44 +0000 Manifest this update: Fri 25 Apr 2025 06:50:44 +0000 Manifest next update: Fri 02 May 2025 06:50:44 +0000 Files and hashes: 1: vHDzdLcox7cRwkpoJ_dHekKyKk0.crl (hash: MTmWdjtudrixxKLg7tQ5+awyOs/0HxAAgVqTs0nHl08=) 2: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (hash: g53LMcn3iRdJAKtGtiImyfZixGirZg93i3IYIo94JAU=) 3: 6BD4BB16F83111EFBA64911FC4F9AE02.roa (hash: XvWuI1YoEga2y2ypcrjG1/r0tc+yszPXr1W996sUaXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Apr 25 06:50:44 2025 GMT Not After : May 2 06:50:44 2025 GMT Subject: CN=680b30c4-ddd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:74:c1:3d:d4:d5:0c:ec:a3:51:ea:8a:98:fa: 8f:75:a6:91:58:31:ac:99:4b:8d:b3:e7:de:7a:a1: f6:a6:04:1d:af:a0:15:f1:36:70:69:3d:41:06:ce: a7:ed:a7:9c:14:d8:68:86:e5:33:2b:33:88:d6:3c: ca:cd:47:73:8f:e7:60:7a:df:45:dc:50:86:ea:5e: 85:a6:55:e1:0c:47:bc:19:30:bf:2f:49:39:36:29: 11:d1:0c:9e:8c:7b:64:2b:0d:ad:b5:b8:4a:73:be: c7:9f:09:5c:9e:69:52:48:bb:c3:b1:b5:05:49:a7: d9:f6:22:20:6a:e4:13:a2:66:62:d8:8b:7e:0b:a1: ae:57:d8:e9:e5:16:60:6b:ba:30:ac:f3:ac:2e:42: 70:9a:4b:76:47:e7:32:86:0f:85:68:d8:24:9f:24: 7f:8d:22:5a:e8:cd:40:81:8e:5e:1f:d2:b2:0d:40: b9:6b:29:92:80:be:87:78:13:bc:8b:eb:77:50:86: 28:47:7e:cf:ab:88:ab:da:d9:39:d1:5f:1d:7c:c3: e4:28:33:ae:6d:94:7e:17:9a:84:aa:94:31:00:91: 78:ed:78:2a:dc:3c:8b:be:7b:f1:3e:06:fc:12:c1: 99:43:31:26:57:fb:0b:e0:98:a4:6c:57:71:64:08: 8f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9E:FA:E7:38:68:C4:FA:99:5A:0A:F9:13:C3:2B:93:45:70:BB:A8 X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:dd:67:cc:73:63:47:8c:9f:84:30:39:b5:82:4b:24:f2:94: 48:58:4f:b2:4c:73:46:cc:a0:6f:cc:18:77:f5:03:31:06:bd: 9b:33:3b:05:59:ac:f1:9e:8e:4d:23:ec:88:7a:c5:27:c0:f2: ae:16:ec:be:a6:63:71:1f:e4:17:2d:a3:ea:83:66:45:fc:0b: ff:02:12:0f:66:42:3b:87:20:df:d7:51:aa:1d:0f:65:9a:e5: 88:c2:8e:5c:9f:c9:fa:30:f3:fe:38:c9:60:7d:96:d9:fa:2b: de:bc:ef:9d:a2:e6:73:cd:77:77:ab:56:cc:8e:75:ed:ba:01: 62:77:9e:d0:f3:b6:35:be:c7:37:98:eb:37:e2:64:4c:f5:e5: 10:b6:70:a9:f1:24:d4:1d:0b:da:64:4e:35:cb:8a:59:e8:73: 85:27:57:7f:1b:38:3f:9d:20:f9:8d:59:7e:0f:12:38:ea:df: fb:d6:07:61:1e:ac:c9:53:20:04:be:e1:60:7f:e5:11:e0:3f: 7e:07:2b:34:2d:97:f3:aa:43:b1:b7:e0:7c:5e:40:46:24:13: 0b:c0:a5:01:e4:6b:d1:cf:1e:74:00:2d:7d:3d:3f:de:0b:86: 6b:65:7d:cb:3e:92:d6:be:ce:36:c5:79:b0:1e:94:29:13:1c: 78:9c:0d:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkE3NTExMC8GA1UEBRMoQkM3MEYzNzRCNzI4QzdCNzExQzI0QTY4MjdGNzQ3N0E0 MkIyMkE0RDAeFw0yNTA0MjUwNjUwNDRaFw0yNTA1MDIwNjUwNDRaMBgxFjAUBgNV BAMTDTY4MGIzMGM0LWRkZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrdME91NUM7KNR6oqY+o91ppFYMayZS42z5956ofamBB2voBXxNnBpPUEGzqft p5wU2GiG5TMrM4jWPMrNR3OP52B630XcUIbqXoWmVeEMR7wZML8vSTk2KRHRDJ6M e2QrDa21uEpzvsefCVyeaVJIu8OxtQVJp9n2IiBq5BOiZmLYi34Loa5X2OnlFmBr ujCs86wuQnCaS3ZH5zKGD4Vo2CSfJH+NIlrozUCBjl4f0rINQLlrKZKAvod4E7yL 63dQhihHfs+riKva2TnRXx18w+QoM65tlH4XmoSqlDEAkXjteCrcPIu+e/E+BvwS wZlDMSZX+wvgmKRsV3FkCI+tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY5765zho xPqZWgr5E8Mrk0Vwu6gwHwYDVR0jBBgwFoAUvHDzdLcox7cRwkpoJ/dHekKyKk0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyQTc1L0VGNUNENkRBRjUz OTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtr MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkhEemRMY294N2NSd2twb0pfZEhla0t5S2swLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy QTc1L0VGNUNENkRBRjUzOTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdj UndrcG9KX2RIZWtLeUtrMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABTdZ8xzY0eMn4QwObWCSyTylEhYT7JMc0bMoG/MGHf1AzEGvZszOwVZ rPGejk0j7Ih6xSfA8q4W7L6mY3Ef5Bcto+qDZkX8C/8CEg9mQjuHIN/XUaodD2Wa 5YjCjlyfyfow8/44yWB9ltn6K968752i5nPNd3erVsyOde26AWJ3ntDztjW+xzeY 6zfiZEz15RC2cKnxJNQdC9pkTjXLilnoc4UnV38bOD+dIPmNWX4PEjjq3/vWB2Ee rMlTIAS+4WB/5RHgP34HKzQtl/OqQ7G34HxeQEYkEwvApQHka9HPHnQALX09P94L hmtlfcs+kta+zjbFebAelCkTHHicDbU= -----END CERTIFICATE-----Generated at Sat Apr 26 14:05:58 2025 by rpki-client