$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft File: 4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft (raw, json) Hash identifier: +95GwYDdh6+OAI/8UYbVbKR4PhegTeikjkgVjKrzcVI= Subject key identifier: 73:82:06:39:69:8C:3A:EE:6A:B3:E2:D9:6F:AF:96:95:62:ED:C8:63 Authority key identifier: E0:E8:08:30:65:95:FE:68:D5:F2:81:A9:62:AF:6D:F5:1E:86:F9:32 Certificate issuer: /CN=A914D0E3/serialNumber=E0E808306595FE68D5F281A962AF6DF51E86F932 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft Manifest number: 64 Signing time: Fri 25 Apr 2025 06:01:11 +0000 Manifest this update: Fri 25 Apr 2025 06:01:11 +0000 Manifest next update: Fri 02 May 2025 06:01:11 +0000 Files and hashes: 1: 4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl (hash: DU+Fkk1nxeUuthsZsk82Y1sIpDu2AE3HWHk+fmAzJ5g=) 2: 793E79A68D1811EF92E90C51C4F9AE02.roa (hash: zVqTt6tzc+Il4GxP87PklggXFLaDGzjtaeUtoZhSM8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=E0E808306595FE68D5F281A962AF6DF51E86F932 Validity Not Before: Apr 25 06:01:11 2025 GMT Not After : May 2 06:01:11 2025 GMT Subject: CN=680b2527-a661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b0:43:a0:48:54:7c:5d:a3:46:83:d0:6d:74: 29:f7:bb:c8:a6:1c:11:3b:c6:69:92:25:02:7e:85: fc:29:6d:9d:36:71:ed:a2:28:0a:28:38:9f:92:21: 48:6f:e1:63:35:0d:41:3e:ec:5b:dd:87:d2:bf:f2: 9c:f8:1c:44:d5:a2:85:b5:0b:75:d6:9d:62:56:fb: 57:ad:a3:87:54:ac:52:d5:32:83:ff:6e:32:33:5b: ea:0d:94:db:ff:22:4e:13:1b:f0:9f:48:87:7a:75: 2c:db:fc:ed:4a:f4:50:6f:20:1a:fa:f2:74:a3:c1: 51:9d:c3:41:6a:e8:45:79:43:52:0c:53:b2:5f:c2: b8:35:6a:59:18:4d:42:df:70:6c:9e:ce:1e:77:73: 08:ca:6d:6e:24:5a:dd:97:82:1d:4d:62:88:e9:43: 74:cb:d7:06:85:c6:d2:fd:88:cc:5e:a1:f8:92:ae: b8:a7:aa:ac:ea:67:b6:fe:55:27:e3:e6:30:b4:fe: 9d:1c:2d:fd:ab:ea:fc:26:d7:b8:13:0a:a5:ec:bd: 5a:0f:ad:2d:7a:71:ad:c1:9e:4a:7f:8a:34:28:ca: a1:c4:38:ec:7b:0e:e4:23:fb:9a:f4:c2:fa:7c:22: 24:8e:f6:98:67:02:fa:02:89:e1:79:08:fe:c1:29: 3f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:82:06:39:69:8C:3A:EE:6A:B3:E2:D9:6F:AF:96:95:62:ED:C8:63 X509v3 Authority Key Identifier: keyid:E0:E8:08:30:65:95:FE:68:D5:F2:81:A9:62:AF:6D:F5:1E:86:F9:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:b9:4f:90:18:86:de:1f:0a:7a:e0:33:f8:59:7d:60:18:7b: 4b:50:db:5f:fd:9a:fe:0c:1a:46:31:41:82:bf:89:ae:b9:77: ab:b5:23:be:13:7b:64:bb:f9:b5:3f:8c:30:7c:ef:8a:bd:45: 57:25:a5:29:80:78:d8:cf:3c:63:1e:af:65:f7:21:1f:d5:f2: 33:7d:ed:ab:aa:db:77:b4:90:d3:1c:9c:ea:c6:5c:dd:5c:e3: 33:22:57:8c:ef:59:ad:43:d3:d4:f0:7b:54:aa:34:05:89:ed: af:45:4a:27:99:2c:02:d2:48:bc:7d:a9:69:93:c4:fc:df:32: ec:e7:48:2f:f6:4c:50:d9:cd:f5:b8:e6:ac:98:5e:c8:38:a2: 3f:d6:5b:bd:f3:e7:1e:36:22:a9:77:26:9d:1a:1e:e4:0e:aa: 4d:ad:a9:30:51:cc:8e:29:04:29:6b:71:d9:5d:28:12:1d:ae: 74:af:d3:41:e5:da:ce:45:ca:bb:be:f8:8e:be:c2:e5:19:b3: be:1e:f1:28:e4:1d:19:0d:95:55:39:19:ad:98:e4:18:55:b5: b4:f1:57:71:32:22:e5:2f:36:bb:91:63:58:ab:13:15:4e:12: dc:67:89:ae:06:f4:2b:bf:a6:d0:7f:7d:b4:1b:c7:93:77:c4: 02:4f:63:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDBFMzExMC8GA1UEBRMoRTBFODA4MzA2NTk1RkU2OEQ1RjI4MUE5NjJBRjZERjUx RTg2RjkzMjAeFw0yNTA0MjUwNjAxMTFaFw0yNTA1MDIwNjAxMTFaMBgxFjAUBgNV BAMTDTY4MGIyNTI3LWE2NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+sEOgSFR8XaNGg9BtdCn3u8imHBE7xmmSJQJ+hfwpbZ02ce2iKAooOJ+SIUhv 4WM1DUE+7Fvdh9K/8pz4HETVooW1C3XWnWJW+1eto4dUrFLVMoP/bjIzW+oNlNv/ Ik4TG/CfSId6dSzb/O1K9FBvIBr68nSjwVGdw0Fq6EV5Q1IMU7Jfwrg1alkYTULf cGyezh53cwjKbW4kWt2Xgh1NYojpQ3TL1waFxtL9iMxeofiSrrinqqzqZ7b+VSfj 5jC0/p0cLf2r6vwm17gTCqXsvVoPrS16ca3Bnkp/ijQoyqHEOOx7DuQj+5r0wvp8 IiSO9phnAvoCieF5CP7BKT8lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc4IGOWmM Ou5qs+LZb6+WlWLtyGMwHwYDVR0jBBgwFoAU4OgIMGWV/mjV8oGpYq9t9R6G+TIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREMEUzL0FBOTg1OUY4OEM3 RTExRUY4RTkyRTcxQkM0RjlBRTAyLzRPZ0lNR1dWX21qVjhvR3BZcTl0OVI2Ry1U SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNE9nSU1HV1ZfbWpWOG9HcFlxOXQ5UjZHLVRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE MEUzL0FBOTg1OUY4OEM3RTExRUY4RTkyRTcxQkM0RjlBRTAyLzRPZ0lNR1dWX21q VjhvR3BZcTl0OVI2Ry1USS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMi5T5AYht4fCnrgM/hZfWAYe0tQ21/9mv4MGkYxQYK/ia65d6u1I74T e2S7+bU/jDB874q9RVclpSmAeNjPPGMer2X3IR/V8jN97auq23e0kNMcnOrGXN1c 4zMiV4zvWa1D09Twe1SqNAWJ7a9FSieZLALSSLx9qWmTxPzfMuznSC/2TFDZzfW4 5qyYXsg4oj/WW73z5x42Iql3Jp0aHuQOqk2tqTBRzI4pBClrcdldKBIdrnSv00Hl 2s5Fyru++I6+wuUZs74e8SjkHRkNlVU5Ga2Y5BhVtbTxV3EyIuUvNruRY1irExVO Etxnia4G9Cu/ptB/fbQbx5N3xAJPYzs= -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:46 2025 by rpki-client