$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: S2NgEFEIy86GocCKYks01p0jNDMA+LGVrIm/xendOxY= Subject key identifier: 62:68:DE:4D:EE:84:37:54:ED:EA:A4:E7:46:1B:3D:4F:7D:89:A2:DA Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 011A Signing time: Thu 24 Apr 2025 15:31:07 +0000 Manifest this update: Thu 24 Apr 2025 15:31:06 +0000 Manifest next update: Thu 01 May 2025 15:31:06 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: jsbSCAtzf2UwbDlsmPUHfm7oNikjf3ardpxj7buOuLE=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: 4RQI+EFj/mJJo3iDsYdl0ustKcpifsqTMWOHIgjxyFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:31:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Apr 24 15:31:06 2025 GMT Not After : May 1 15:31:06 2025 GMT Subject: CN=680a593b-e35d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:02:bf:1b:d1:d6:13:99:27:bb:bc:82:68:56: 82:51:2f:07:52:b8:01:d6:a8:fe:11:6c:94:7e:92: 5b:79:13:7c:3a:3f:c3:3b:f0:aa:96:70:7b:a3:b7: 68:95:29:0e:53:c1:82:8d:e1:84:fd:04:15:ea:41: cf:0f:57:38:e9:fd:30:2c:5e:31:8c:89:c5:3b:79: 6c:de:95:57:4c:c4:d1:3d:37:1c:38:81:b9:0d:e4: 34:e8:8e:b9:04:18:ed:3b:bd:11:30:73:98:11:7a: 6e:35:ad:1b:c4:73:b6:75:d6:62:96:5e:6b:0a:0f: a2:cc:86:86:2e:93:b4:51:57:44:3a:a8:ce:55:7b: 47:7f:bf:04:bb:fb:2d:88:5f:87:e4:87:f0:f5:6c: d4:ed:8e:9d:e2:54:71:a8:22:06:47:61:fb:17:81: 0e:38:06:e7:4e:92:f6:4e:c6:fe:5b:27:f1:eb:b3: 1b:ed:2d:e4:49:cc:1e:ce:52:f2:d5:c6:1d:5c:18: 74:30:91:11:06:23:d7:69:de:1f:08:66:4c:96:e1: 41:29:a5:15:16:5f:34:ec:e7:04:98:90:24:23:16: 40:7a:be:61:37:3c:48:e8:36:bc:42:fc:4d:14:d8: 3e:94:94:7d:c9:e9:7f:fe:e5:84:36:4f:16:e9:09: 02:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:68:DE:4D:EE:84:37:54:ED:EA:A4:E7:46:1B:3D:4F:7D:89:A2:DA X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f6:21:6e:9a:d5:43:f8:64:32:8b:24:28:6a:ce:ae:33:23: 7c:c9:56:ad:8f:d5:0f:16:04:d5:bb:f7:31:c9:2e:44:7e:14: d2:69:b4:6c:ac:e3:61:b2:58:fe:b3:62:12:5d:57:22:33:a3: a0:65:5e:05:85:cf:20:53:92:03:1d:bc:aa:60:5d:dd:9b:8d: d5:9f:48:34:10:7c:db:64:4d:9f:3d:46:ae:46:23:a5:ac:b6: b2:d6:76:06:e1:2c:9f:b2:0f:c8:2b:8e:ca:ef:fa:ee:76:3a: c5:2b:82:b6:d0:7f:9f:f0:a2:f1:91:7e:e3:e7:cf:81:cc:d3: d0:bc:c6:a0:84:16:2b:14:4c:0b:73:07:de:74:cc:c8:02:eb: 90:33:de:05:29:35:6e:1f:51:02:2e:f9:03:16:76:a6:4d:ab: 89:7e:12:d7:4b:7f:cb:5b:b7:20:cd:73:05:5e:3e:7c:14:8c: 53:8d:31:b4:5b:e5:ab:d9:f6:5f:24:20:84:56:03:de:bc:5b: 3b:3b:ae:f0:03:c6:1d:f7:7d:00:d3:7e:7f:ee:0a:5a:f4:99: 59:94:47:5f:3a:57:00:d2:ca:32:1a:78:f8:2c:9b:d5:d7:8f: 2c:ab:56:7d:6c:15:ab:73:3d:2b:24:ee:cd:7c:36:51:05:c4: fc:1e:9d:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUwNDI0MTUzMTA2WhcNMjUwNTAxMTUzMTA2WjAYMRYwFAYD VQQDEw02ODBhNTkzYi1lMzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgK/G9HWE5knu7yCaFaCUS8HUrgB1qj+EWyUfpJbeRN8Oj/DO/CqlnB7o7do lSkOU8GCjeGE/QQV6kHPD1c46f0wLF4xjInFO3ls3pVXTMTRPTccOIG5DeQ06I65 BBjtO70RMHOYEXpuNa0bxHO2ddZill5rCg+izIaGLpO0UVdEOqjOVXtHf78Eu/st iF+H5Ifw9WzU7Y6d4lRxqCIGR2H7F4EOOAbnTpL2Tsb+Wyfx67Mb7S3kScwezlLy 1cYdXBh0MJERBiPXad4fCGZMluFBKaUVFl807OcEmJAkIxZAer5hNzxI6Da8QvxN FNg+lJR9yel//uWENk8W6QkCfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJo3k3u hDdU7eqk50YbPU99iaLaMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs9iFumtVD+GQyiyQoas6uMyN8yVatj9UPFgTVu/cxyS5EfhTSabRs rONhslj+s2ISXVciM6OgZV4Fhc8gU5IDHbyqYF3dm43Vn0g0EHzbZE2fPUauRiOl rLay1nYG4Syfsg/IK47K7/rudjrFK4K20H+f8KLxkX7j58+BzNPQvMaghBYrFEwL cwfedMzIAuuQM94FKTVuH1ECLvkDFnamTauJfhLXS3/LW7cgzXMFXj58FIxTjTG0 W+Wr2fZfJCCEVgPevFs7O67wA8Yd930A035/7gpa9JlZlEdfOlcA0soyGnj4LJvV 148sq1Z9bBWrcz0rJO7NfDZRBcT8Hp2V -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:39 2025 by rpki-client