$ rpki-client -vvf rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft File: 7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft (raw, json) Hash identifier: B/I7ioxJzYqR5Ul6vQGESwpCHVr3R7/JiXeuBhTeHY0= Subject key identifier: 22:BA:B0:88:60:F1:4F:1E:01:35:06:1E:39:8A:6C:66:AE:A7:0E:94 Authority key identifier: ED:17:D1:BE:3D:57:11:C6:C9:8C:8C:CC:59:AA:F7:37:E8:65:C3:84 Certificate issuer: /CN=A914C725/serialNumber=ED17D1BE3D5711C6C98C8CCC59AAF737E865C384 Certificate serial: 1928 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft Manifest number: 1913 Signing time: Thu 24 Apr 2025 16:26:49 +0000 Manifest this update: Thu 24 Apr 2025 16:26:49 +0000 Manifest next update: Thu 01 May 2025 16:26:49 +0000 Files and hashes: 1: 7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl (hash: AIfYtkuSiINt8PyWzDfsPNOawDdbjf33emauFsO8Je4=) 2: B4DF66BA809F11E7B741FD2EC4F9AE02.roa (hash: WkaE0CXeXaRttmyFDWWMPFZDaH+bNjuHUToZw9FrDRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6440 (0x1928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C725, serialNumber=ED17D1BE3D5711C6C98C8CCC59AAF737E865C384 Validity Not Before: Apr 24 16:26:49 2025 GMT Not After : May 1 16:26:49 2025 GMT Subject: CN=680a6649-1603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1f:ca:22:38:36:3e:55:25:93:bc:41:7f:9c: 61:6c:d5:d4:de:d0:62:9e:5f:1b:1f:d8:9c:a8:35: 57:1f:8d:e2:63:78:5d:94:ea:76:b9:fb:a8:c5:11: 49:6e:5f:af:7e:ab:60:f1:ac:c1:48:18:03:e0:b1: 39:83:dd:06:d1:26:07:25:7c:3f:cd:b3:11:e9:00: d2:ec:2e:1c:ac:38:10:7d:be:b1:1b:11:c0:f4:45: 91:0f:71:f4:eb:22:a1:8e:dd:51:1a:97:a5:f4:0b: 81:c2:e6:0b:88:eb:6e:39:c4:41:ff:51:eb:8d:f7: f8:a0:0c:e5:f3:2f:ef:80:2e:dd:a0:c2:39:e8:c1: ad:8f:e0:86:ba:e3:e0:40:f0:a1:50:57:80:5e:c4: 3c:e4:dd:f2:75:b5:4d:b3:bc:69:95:e7:c5:80:8f: f3:1e:ae:d9:db:94:e1:69:e0:07:48:83:86:de:eb: 4e:23:ce:51:4f:ef:1a:4e:2f:03:3c:81:ba:d0:f5: 98:cc:7c:30:49:0d:52:d2:60:0a:57:c6:c5:0a:29: fd:0d:47:2f:23:11:88:a5:a2:92:5c:f6:67:59:da: a8:20:8c:48:dc:de:e0:85:47:77:8f:a7:c8:81:29: 58:8e:4c:ac:15:c4:a0:fa:96:90:54:69:ce:f9:b1: 90:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:BA:B0:88:60:F1:4F:1E:01:35:06:1E:39:8A:6C:66:AE:A7:0E:94 X509v3 Authority Key Identifier: keyid:ED:17:D1:BE:3D:57:11:C6:C9:8C:8C:CC:59:AA:F7:37:E8:65:C3:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:ff:95:19:ef:2c:ed:0e:36:da:8d:b9:9f:5e:f6:08:3c:34: 2f:b8:60:55:ba:ac:ae:a1:b3:8d:e4:30:3d:28:c2:49:e3:7e: 0f:90:67:e2:24:80:0e:8b:2e:84:0b:7c:a7:09:dc:67:c9:66: d3:7a:0b:82:88:30:b4:6e:49:ed:86:4f:4b:b7:1f:a8:aa:de: ec:80:fa:db:be:77:42:0c:a5:67:02:37:e5:4d:6d:65:b6:6d: 48:80:a1:92:98:4d:0a:15:03:c4:25:ba:b2:8c:df:10:39:cc: 6e:f5:ea:93:a8:f2:4d:a9:a0:4d:b8:67:73:bf:73:2c:3d:51: b8:ea:38:75:5f:50:12:29:6d:16:8f:bc:f1:67:0d:b2:d5:fa: 1e:bc:95:71:3c:06:74:59:91:12:9c:6a:c1:44:c6:82:61:0c: 3f:a1:91:60:af:eb:3b:8c:12:1a:f0:d3:fb:41:41:ec:7a:1e: 1b:2f:36:85:bd:d9:7e:af:ea:ae:d8:65:d6:4d:f7:89:d2:f2: 6f:dc:28:85:4f:09:73:e0:5c:9f:fb:ae:5d:8d:29:c9:a6:d7: b9:7a:ad:9e:68:b0:55:89:0a:24:a5:cc:f4:c3:4c:a5:eb:6e: 3e:51:e7:4a:45:36:b1:a0:bc:b7:b6:73:0c:a3:06:12:9e:47: 6a:45:48:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM3MjUxMTAvBgNVBAUTKEVEMTdEMUJFM0Q1NzExQzZDOThDOENDQzU5QUFGNzM3 RTg2NUMzODQwHhcNMjUwNDI0MTYyNjQ5WhcNMjUwNTAxMTYyNjQ5WjAYMRYwFAYD VQQDEw02ODBhNjY0OS0xNjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux/KIjg2PlUlk7xBf5xhbNXU3tBinl8bH9icqDVXH43iY3hdlOp2ufuoxRFJ bl+vfqtg8azBSBgD4LE5g90G0SYHJXw/zbMR6QDS7C4crDgQfb6xGxHA9EWRD3H0 6yKhjt1RGpel9AuBwuYLiOtuOcRB/1Hrjff4oAzl8y/vgC7doMI56MGtj+CGuuPg QPChUFeAXsQ85N3ydbVNs7xplefFgI/zHq7Z25ThaeAHSIOG3utOI85RT+8aTi8D PIG60PWYzHwwSQ1S0mAKV8bFCin9DUcvIxGIpaKSXPZnWdqoIIxI3N7ghUd3j6fI gSlYjkysFcSg+paQVGnO+bGQAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCK6sIhg 8U8eATUGHjmKbGaupw6UMB8GA1UdIwQYMBaAFO0X0b49VxHGyYyMzFmq9zfoZcOE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzcyNS8zMTg0NEMzNjgw OUYxMUU3QkQ2QTZCMkVDNEY5QUUwMi83UmZSdmoxWEVjYkpqSXpNV2FyM04taGx3 NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdSZlJ2ajFYRWNiSmpJek1XYXIzTi1obHc0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzcyNS8zMTg0NEMzNjgwOUYxMUU3QkQ2QTZCMkVDNEY5QUUwMi83UmZSdmoxWEVj YkpqSXpNV2FyM04taGx3NFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDF/5UZ7yztDjbajbmfXvYIPDQvuGBVuqyuobON5DA9KMJJ434PkGfi JIAOiy6EC3ynCdxnyWbTeguCiDC0bknthk9Ltx+oqt7sgPrbvndCDKVnAjflTW1l tm1IgKGSmE0KFQPEJbqyjN8QOcxu9eqTqPJNqaBNuGdzv3MsPVG46jh1X1ASKW0W j7zxZw2y1foevJVxPAZ0WZESnGrBRMaCYQw/oZFgr+s7jBIa8NP7QUHseh4bLzaF vdl+r+qu2GXWTfeJ0vJv3CiFTwlz4Fyf+65djSnJpte5eq2eaLBViQokpcz0w0yl 624+UedKRTaxoLy3tnMMowYSnkdqRUh7 -----END CERTIFICATE-----Generated at Sat Apr 26 17:19:20 2025 by rpki-client