$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft File: sdV2wMeOXPWNSDeibJJjxj8TFd0.mft (raw, json) Hash identifier: JADzdoomzza1XCdp18Wld9HtCG8+051oYr/Y/tM8420= Subject key identifier: 72:80:6F:1E:FE:EE:F5:6B:8A:2C:57:32:FB:51:D8:DB:11:E4:71:70 Authority key identifier: B1:D5:76:C0:C7:8E:5C:F5:8D:48:37:A2:6C:92:63:C6:3F:13:15:DD Certificate issuer: /CN=A914EB5A/serialNumber=B1D576C0C78E5CF58D4837A26C9263C63F1315DD Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft Manifest number: FB Signing time: Fri 25 Apr 2025 04:14:29 +0000 Manifest this update: Fri 25 Apr 2025 04:14:29 +0000 Manifest next update: Fri 02 May 2025 04:14:28 +0000 Files and hashes: 1: sdV2wMeOXPWNSDeibJJjxj8TFd0.crl (hash: 17TODVFQpKDTA8ZvxTrO6Z04fvmYyVSZosYOOgqPiPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.crl rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB5A, serialNumber=B1D576C0C78E5CF58D4837A26C9263C63F1315DD Validity Not Before: Apr 25 04:14:29 2025 GMT Not After : May 2 04:14:28 2025 GMT Subject: CN=680b0c25-b5e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d9:a1:26:aa:a6:54:88:a9:69:f9:98:b7:eb: 25:6b:10:3c:e8:78:b0:8f:c6:e4:d6:7f:55:0c:6d: 6b:4a:0f:68:b5:78:d6:51:aa:cd:88:0f:89:61:22: 9c:bf:a2:36:b5:3d:8d:1e:5a:43:47:34:20:02:3a: 82:cb:30:47:ad:73:52:1b:51:48:0f:61:62:43:9a: 13:61:3f:cb:98:7c:eb:75:5a:93:b7:f0:ff:d1:8a: 92:ea:61:59:ba:b3:ed:02:5c:ca:80:ce:8a:d1:8d: 38:e8:33:ae:3f:96:a0:37:5d:ee:26:27:1e:1e:97: 33:33:b9:ca:db:6b:3b:39:37:b8:69:e1:69:b6:ce: 9c:4c:af:05:48:0c:13:c4:d2:24:32:58:87:d9:dc: cd:ac:22:2c:c9:34:17:70:a1:2a:00:77:62:ba:65: 65:ba:ff:98:22:5e:5f:7a:ac:e5:28:a9:6f:2d:85: 1e:7f:07:51:4d:82:fb:14:4f:b3:8d:0a:77:97:ca: 5b:e1:e2:74:0b:97:df:f1:8c:be:ac:ea:1a:d3:98: c6:a6:a0:78:2a:d3:9f:0a:22:7d:5c:78:a6:ab:63: 09:b5:b0:b0:b5:ab:7f:e8:e4:77:58:cb:6d:90:4e: 32:91:ed:b3:2f:c0:06:fb:89:35:de:44:0f:91:0d: e8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:80:6F:1E:FE:EE:F5:6B:8A:2C:57:32:FB:51:D8:DB:11:E4:71:70 X509v3 Authority Key Identifier: keyid:B1:D5:76:C0:C7:8E:5C:F5:8D:48:37:A2:6C:92:63:C6:3F:13:15:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:a0:b0:53:e5:8d:e1:c2:2a:7c:a1:8b:e8:79:e7:84:c4:f2: 35:e2:5b:c2:2b:8c:d2:8a:18:f8:a6:64:09:85:ab:c4:9f:9c: 31:90:f3:a4:ed:0d:2c:8a:6e:e4:66:81:da:38:1b:68:b2:d8: d0:76:cf:9a:bd:61:7a:c3:4b:a9:ac:01:af:3b:76:e6:bf:a0: 64:c4:be:8a:8c:f1:ae:60:0a:c5:38:10:85:84:1f:b9:e9:00: 55:ec:e2:9a:09:d7:3a:b0:51:a3:93:7b:e9:25:12:2f:af:71: 8b:93:f7:36:fd:e1:4a:da:9c:25:9d:6c:cb:26:a4:7f:91:b4: 7c:23:af:61:c1:9a:5a:7b:9b:59:48:35:8e:0a:c6:dd:cd:fd: eb:b4:6a:b3:85:4b:8f:e7:c2:e8:bf:9b:92:cf:18:44:29:e0: 90:09:c6:f3:ba:de:78:fd:13:02:5b:f4:8e:26:56:63:5d:e1: 4b:e8:d4:70:6a:2e:40:af:f3:93:90:bd:97:bc:61:5c:d6:b1: 0f:df:29:7c:6e:67:66:e5:ca:e5:87:72:bb:53:e7:d4:b4:4f: 8e:b7:d7:cd:58:25:53:24:f0:48:be:e9:3e:78:06:35:16:ef: a6:11:03:b1:35:3c:7e:8e:82:37:cc:17:d5:f9:1f:1b:e0:64: 8c:0f:2b:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCNUExMTAvBgNVBAUTKEIxRDU3NkMwQzc4RTVDRjU4RDQ4MzdBMjZDOTI2M0M2 M0YxMzE1REQwHhcNMjUwNDI1MDQxNDI5WhcNMjUwNTAyMDQxNDI4WjAYMRYwFAYD VQQDEw02ODBiMGMyNS1iNWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNmhJqqmVIipafmYt+slaxA86Hiwj8bk1n9VDG1rSg9otXjWUarNiA+JYSKc v6I2tT2NHlpDRzQgAjqCyzBHrXNSG1FID2FiQ5oTYT/LmHzrdVqTt/D/0YqS6mFZ urPtAlzKgM6K0Y046DOuP5agN13uJiceHpczM7nK22s7OTe4aeFpts6cTK8FSAwT xNIkMliH2dzNrCIsyTQXcKEqAHdiumVluv+YIl5feqzlKKlvLYUefwdRTYL7FE+z jQp3l8pb4eJ0C5ff8Yy+rOoa05jGpqB4KtOfCiJ9XHimq2MJtbCwtat/6OR3WMtt kE4yke2zL8AG+4k13kQPkQ3oLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKAbx7+ 7vVriixXMvtR2NsR5HFwMB8GA1UdIwQYMBaAFLHVdsDHjlz1jUg3omySY8Y/ExXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUI1QS83QzA3NUUxOEEz QjMxMUVFQUQ2NjI5MTlDNEY5QUUwMi9zZFYyd01lT1hQV05TRGVpYkpKanhqOFRG ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NkVjJ3TWVPWFBXTlNEZWliSkpqeGo4VEZkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUI1QS83QzA3NUUxOEEzQjMxMUVFQUQ2NjI5MTlDNEY5QUUwMi9zZFYyd01lT1hQ V05TRGVpYkpKanhqOFRGZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJoLBT5Y3hwip8oYvoeeeExPI14lvCK4zSihj4pmQJhavEn5wxkPOk 7Q0sim7kZoHaOBtostjQds+avWF6w0uprAGvO3bmv6BkxL6KjPGuYArFOBCFhB+5 6QBV7OKaCdc6sFGjk3vpJRIvr3GLk/c2/eFK2pwlnWzLJqR/kbR8I69hwZpae5tZ SDWOCsbdzf3rtGqzhUuP58Lov5uSzxhEKeCQCcbzut54/RMCW/SOJlZjXeFL6NRw ai5Ar/OTkL2XvGFc1rEP3yl8bmdm5crlh3K7U+fUtE+Ot9fNWCVTJPBIvuk+eAY1 Fu+mEQOxNTx+joI3zBfV+R8b4GSMDyt/ -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:41 2025 by rpki-client