$ rpki-client -vvf rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft File: 06m0znk41yolUFSgwIW_eI6wabA.mft (raw, json) Hash identifier: JsBDEZGE/cbVvxAgUk6ULMQy3qIIARxxTd5FhK8Q2mk= Subject key identifier: F6:AF:C3:AF:C6:2A:DD:37:95:DD:65:F8:8F:FD:F4:CB:E2:F7:70:44 Authority key identifier: D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 Certificate issuer: /CN=A914331D/serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Certificate serial: 08D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft Manifest number: 08D2 Signing time: Thu 24 Apr 2025 20:19:11 +0000 Manifest this update: Thu 24 Apr 2025 20:19:11 +0000 Manifest next update: Thu 01 May 2025 20:19:11 +0000 Files and hashes: 1: 06m0znk41yolUFSgwIW_eI6wabA.crl (hash: Q6N3znvQ/lypI/CalQ4fOoU/Tb0lm8Dj7MOPgoPf82o=) 2: 425602A0AD2111EA9510AC0DC4F9AE02.roa (hash: /7CSrLoWR8aR13lBtLre9qbhzd0pZBgpO/Lz0opKvSI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2265 (0x8d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914331D, serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Validity Not Before: Apr 24 20:19:11 2025 GMT Not After : May 1 20:19:11 2025 GMT Subject: CN=680a9cbf-0a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:11:70:b0:3b:65:08:87:38:ed:81:2b:3b:77: 6f:f5:5b:ad:f8:2a:76:5f:b0:92:59:1a:ff:30:9c: 31:93:ac:ac:bb:2e:d3:6d:99:1c:96:6f:d8:c1:de: e5:ee:66:d9:5a:26:25:fe:9f:22:d6:d3:f7:bd:bb: 24:54:5d:30:c0:f8:c1:74:2d:2b:3b:93:72:da:17: 51:ba:eb:f3:ac:70:5b:46:68:3a:39:cf:97:0b:c7: 08:c8:d1:ed:6f:01:54:83:5b:8c:58:74:26:70:80: 41:b7:8d:91:2a:05:f8:f5:5c:e4:87:59:c6:f9:bb: 30:29:eb:1a:69:54:05:da:b6:75:ef:1b:6c:f2:85: a9:30:6c:74:51:b8:08:a1:5a:4b:1f:71:86:7e:67: e4:1b:e9:ab:21:45:d7:87:80:06:a9:8a:ef:37:07: f4:bf:6e:12:12:c7:8c:6b:51:36:4a:5e:82:cc:88: db:af:0a:c7:08:0d:fd:e8:de:1b:53:86:74:44:c9: 58:9d:a7:8c:4c:90:f2:68:83:99:1d:50:09:69:c7: 72:45:65:e8:53:4c:0c:a3:82:0d:ef:a2:ba:f5:1b: 27:06:b3:2e:c1:dd:6d:ea:29:63:38:8d:b4:52:52: ec:e2:c5:57:ff:95:68:0b:4c:9b:64:34:63:56:05: 6d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AF:C3:AF:C6:2A:DD:37:95:DD:65:F8:8F:FD:F4:CB:E2:F7:70:44 X509v3 Authority Key Identifier: keyid:D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:42:7e:88:43:c7:d2:6a:ac:ec:4c:30:32:3e:43:d6:38:d0: 16:14:6f:7f:16:f0:7f:33:ae:cc:22:30:6d:22:cf:4f:4f:b8: 2e:d0:d1:3d:92:60:67:80:36:f1:12:28:86:98:f1:71:dc:e2: 9b:8b:75:32:95:ee:9c:79:29:67:a1:24:22:b1:f2:10:c7:71: e7:4d:b9:e3:c4:f7:74:2d:ba:f8:d8:2d:bb:67:90:1f:9f:96: fa:e0:d3:1c:bc:d1:8d:d9:f5:e4:48:e6:d9:1b:93:f6:11:93: 9a:f9:da:7c:b4:64:8f:43:b5:3d:27:f3:77:91:05:98:a9:54: ef:b0:31:83:f5:76:38:b9:61:66:aa:f4:f2:19:bd:6c:49:5a: 57:af:fc:04:92:4b:42:e5:76:c4:fb:3c:c6:b9:8e:49:a4:59: 5a:74:48:39:de:de:17:8f:51:bc:b0:5e:31:7e:75:57:ed:4b: 4d:2f:84:b7:fa:6b:22:5c:b1:c3:d7:d1:bc:6c:3e:2d:4a:a3: c3:b2:c0:b3:1b:92:58:9f:ed:bf:c6:19:3e:97:e1:9d:24:08: 9d:5c:74:a8:d6:53:dd:ef:b0:5f:e5:88:a6:b1:a0:06:7a:cb: 18:d4:d4:8d:31:57:e1:13:22:49:75:3d:24:a1:b0:8b:47:25: e8:46:00:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzMUQxMTAvBgNVBAUTKEQzQTlCNENFNzkzOEQ3MkEyNTUwNTRBMEMwODVCRjc4 OEVCMDY5QjAwHhcNMjUwNDI0MjAxOTExWhcNMjUwNTAxMjAxOTExWjAYMRYwFAYD VQQDEw02ODBhOWNiZi0wYTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hFwsDtlCIc47YErO3dv9Vut+Cp2X7CSWRr/MJwxk6ysuy7TbZkclm/Ywd7l 7mbZWiYl/p8i1tP3vbskVF0wwPjBdC0rO5Ny2hdRuuvzrHBbRmg6Oc+XC8cIyNHt bwFUg1uMWHQmcIBBt42RKgX49Vzkh1nG+bswKesaaVQF2rZ17xts8oWpMGx0UbgI oVpLH3GGfmfkG+mrIUXXh4AGqYrvNwf0v24SEseMa1E2Sl6CzIjbrwrHCA396N4b U4Z0RMlYnaeMTJDyaIOZHVAJacdyRWXoU0wMo4IN76K69RsnBrMuwd1t6iljOI20 UlLs4sVX/5VoC0ybZDRjVgVtGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPavw6/G Kt03ld1l+I/99Mvi93BEMB8GA1UdIwQYMBaAFNOptM55ONcqJVBUoMCFv3iOsGmw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzMxRC80QjQ1QkZFOEFE MUUxMUVBOTRDN0U1ODFDNEY5QUUwMi8wNm0wem5rNDF5b2xVRlNnd0lXX2VJNndh YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2bTB6bms0MXlvbFVGU2d3SVdfZUk2d2FiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzMxRC80QjQ1QkZFOEFEMUUxMUVBOTRDN0U1ODFDNEY5QUUwMi8wNm0wem5rNDF5 b2xVRlNnd0lXX2VJNndhYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Qn6IQ8fSaqzsTDAyPkPWONAWFG9/FvB/M67MIjBtIs9PT7gu0NE9 kmBngDbxEiiGmPFx3OKbi3Uyle6ceSlnoSQisfIQx3HnTbnjxPd0Lbr42C27Z5Af n5b64NMcvNGN2fXkSObZG5P2EZOa+dp8tGSPQ7U9J/N3kQWYqVTvsDGD9XY4uWFm qvTyGb1sSVpXr/wEkktC5XbE+zzGuY5JpFladEg53t4Xj1G8sF4xfnVX7UtNL4S3 +msiXLHD19G8bD4tSqPDssCzG5JYn+2/xhk+l+GdJAidXHSo1lPd77Bf5YimsaAG essY1NSNMVfhEyJJdT0kobCLRyXoRgDP -----END CERTIFICATE-----Generated at Sat Apr 26 12:31:53 2025 by rpki-client