$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft File: o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json) Hash identifier: pDUoiKHzNtSDjyLVx/VtAq95M7uJWWpArdqjIx5AVO4= Subject key identifier: 3E:AC:5C:BB:6C:8D:10:1D:51:2A:E1:1C:D8:C7:65:44:DC:36:99:8F Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 05E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft Manifest number: 05BF Signing time: Thu 24 Apr 2025 23:01:34 +0000 Manifest this update: Thu 24 Apr 2025 23:01:33 +0000 Manifest next update: Thu 01 May 2025 23:01:33 +0000 Files and hashes: 1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: PhwyRGgBYXPCgvYX/hahhXr8GSza77yT10G/tOZUplk=) 2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: tzTNsTyay71DnZ6Tdbo+sDlbNh8WzoY7t1vlYqQ5Tec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: Apr 24 23:01:33 2025 GMT Not After : May 1 23:01:33 2025 GMT Subject: CN=680ac2cd-3048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:24:1b:56:63:3b:d7:c3:ef:6f:3a:ae:52: 5b:0f:28:40:07:00:1f:cc:2e:d3:2f:86:0e:04:e6: bf:1a:6b:be:16:93:21:ea:c8:61:d7:e3:52:11:c8: 24:d2:c6:1d:54:89:72:f7:96:3a:e7:6e:28:5f:f2: fb:65:f1:0b:2a:6d:1a:9c:77:18:05:35:49:dc:56: bb:9e:66:6b:81:4b:2e:e4:21:50:1d:5f:be:18:6c: d9:fc:ca:ce:10:11:d8:8b:53:86:60:a3:bc:1f:13: 43:3d:55:3c:54:16:96:d9:78:f3:5e:92:2a:31:ff: aa:9a:53:27:1c:09:8f:fd:d2:91:fd:f7:47:93:9e: ed:7d:9b:e0:1c:9d:ff:05:8e:47:f5:54:51:47:ad: ff:5f:67:42:33:77:c0:f5:6a:30:12:99:7b:e1:e8: 5b:5c:11:af:3b:fd:3e:cb:f6:67:a1:3b:c5:b8:ae: f8:50:06:61:97:75:83:80:2c:7f:eb:c4:40:96:ad: e3:56:54:c1:53:32:0e:7b:a8:6c:28:b8:4f:6c:62: cb:6e:eb:d2:6f:2b:92:7a:b0:f7:4b:36:f9:f3:d0: 91:89:e6:f9:1f:3d:84:3e:a1:17:3c:71:85:d6:35: 7f:39:94:6d:f7:89:66:07:69:4b:ca:22:4c:3c:3b: 5d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:AC:5C:BB:6C:8D:10:1D:51:2A:E1:1C:D8:C7:65:44:DC:36:99:8F X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:0a:5f:52:09:3a:a5:88:37:00:29:9c:e6:00:b1:0b:da:ff: e7:d1:12:f4:27:e0:d9:b9:c6:fc:21:59:a7:2a:1d:49:f4:ac: 5c:0f:e9:1f:b4:f1:a0:02:84:7a:e4:b2:71:f1:e8:45:dd:7d: 68:1d:05:60:9b:a2:fb:f2:31:20:d4:db:2f:95:21:6b:78:c9: 0b:0f:42:be:11:b1:88:9b:7f:5e:18:a4:81:50:60:04:fd:b4: ef:03:4e:6d:cc:36:0f:78:56:47:a3:31:3b:48:0f:2e:74:73: 78:e4:89:3d:7f:e3:65:30:03:11:25:44:96:b2:ad:ec:a3:8a: a7:20:2a:c5:d3:c9:4c:ec:5e:b1:11:1c:48:25:d6:46:5b:2f: a6:b5:14:b0:0c:c3:f9:73:e9:b9:b0:3d:d1:ac:62:85:ce:49: 50:52:cd:d4:3e:91:0d:4f:b2:fe:76:80:a0:12:f7:b9:74:b0: e4:95:ea:e4:20:f3:78:12:57:ac:55:ef:18:74:72:70:48:70: 50:17:a1:b5:98:ff:17:2b:97:29:06:ad:18:e4:4d:e5:f3:f0: 80:a0:af:40:4e:dd:7f:3f:3d:f2:7f:8a:48:99:13:cb:aa:fe: 15:53:21:c9:df:e2:2d:92:c8:1f:fd:14:eb:20:29:f7:7f:de: 75:98:2e:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjUwNDI0MjMwMTMzWhcNMjUwNTAxMjMwMTMzWjAYMRYwFAYD VQQDEw02ODBhYzJjZC0zMDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6skG1ZjO9fD7286rlJbDyhABwAfzC7TL4YOBOa/Gmu+FpMh6shh1+NSEcgk 0sYdVIly95Y6524oX/L7ZfELKm0anHcYBTVJ3Fa7nmZrgUsu5CFQHV++GGzZ/MrO EBHYi1OGYKO8HxNDPVU8VBaW2XjzXpIqMf+qmlMnHAmP/dKR/fdHk57tfZvgHJ3/ BY5H9VRRR63/X2dCM3fA9WowEpl74ehbXBGvO/0+y/ZnoTvFuK74UAZhl3WDgCx/ 68RAlq3jVlTBUzIOe6hsKLhPbGLLbuvSbyuSerD3Szb589CRieb5Hz2EPqEXPHGF 1jV/OZRt94lmB2lLyiJMPDtdZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6sXLts jRAdUSrhHNjHZUTcNpmPMB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NEMS9BRDdGNDVBNENEQzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZ dWNORDdVU2NGcERyNDBGdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3Cl9SCTqliDcAKZzmALEL2v/n0RL0J+DZucb8IVmnKh1J9KxcD+kf tPGgAoR65LJx8ehF3X1oHQVgm6L78jEg1NsvlSFreMkLD0K+EbGIm39eGKSBUGAE /bTvA05tzDYPeFZHozE7SA8udHN45Ik9f+NlMAMRJUSWsq3so4qnICrF08lM7F6x ERxIJdZGWy+mtRSwDMP5c+m5sD3RrGKFzklQUs3UPpENT7L+doCgEve5dLDklerk IPN4ElesVe8YdHJwSHBQF6G1mP8XK5cpBq0Y5E3l8/CAoK9ATt1/Pz3yf4pImRPL qv4VUyHJ3+Itksgf/RTrICn3f951mC6A -----END CERTIFICATE-----Generated at Sat Apr 26 14:11:04 2025 by rpki-client