$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft File: g--P6e5IafC5SpX3RvWJS6H7MPA.mft (raw, json) Hash identifier: 87PaEAUJBwmUMKgn9e7pnder6GcB0CUa/oAYdnJ8lHw= Subject key identifier: 70:D9:6B:CF:7B:7B:85:0B:DF:9C:43:16:59:A6:87:B2:E6:6B:CE:35 Authority key identifier: 83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 Certificate issuer: /CN=A914EB9A/serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft Manifest number: A8 Signing time: Fri 25 Apr 2025 05:09:28 +0000 Manifest this update: Fri 25 Apr 2025 05:09:27 +0000 Manifest next update: Fri 02 May 2025 05:09:27 +0000 Files and hashes: 1: g--P6e5IafC5SpX3RvWJS6H7MPA.crl (hash: SWRLdC8R4uzoy7uls2h9Apu52e5rbn2HFFvBiY/oIEE=) 2: A368B23623C411EFB7164123C4F9AE02.roa (hash: xksJk5Cwcy8+0Thge3EVjB2r6Pp+L19aLaysM6rp0MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB9A, serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Validity Not Before: Apr 25 05:09:27 2025 GMT Not After : May 2 05:09:27 2025 GMT Subject: CN=680b1907-972f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:88:0f:f7:1a:13:c3:30:e2:b5:23:16:ff:65: 04:4b:80:f4:5d:30:ad:ba:ac:2f:18:d5:6c:e7:6a: f6:b5:1b:dd:4e:48:14:41:ed:df:ed:0c:1c:07:51: 0a:e9:1e:33:c4:d0:c6:b3:29:a5:81:1d:08:8e:03: ca:4d:37:a8:2d:14:6d:24:87:d4:b2:2d:5f:c1:d4: a7:34:40:24:0a:d4:f8:17:56:03:60:92:9a:02:66: 1c:ce:18:1b:8c:6c:24:9b:97:d4:b2:fe:48:41:23: 4b:81:bb:c2:ca:f8:41:68:48:38:b3:8a:03:ac:d1: 9f:b8:38:d3:8a:83:c2:19:c9:89:ff:bd:4b:cf:29: ee:a3:e5:4e:07:87:35:5a:eb:2a:61:29:97:81:1c: 21:70:e8:d6:fb:a1:86:ff:0f:14:20:a3:99:b0:3e: 9e:b5:b9:3c:2c:33:3d:30:ff:8f:a3:12:ee:8a:4b: 16:05:af:68:4c:fa:9d:d0:81:2d:43:a3:73:d2:a1: 23:b3:58:61:95:56:23:75:d7:28:14:86:7e:25:3d: 00:1a:df:15:30:07:f0:68:a8:2d:45:3b:3d:38:56: cf:47:1d:2e:e1:b6:9b:c6:19:34:6f:2b:a7:83:f7: 81:25:7d:65:f5:16:e3:b9:45:89:2f:29:1d:a8:f7: 44:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D9:6B:CF:7B:7B:85:0B:DF:9C:43:16:59:A6:87:B2:E6:6B:CE:35 X509v3 Authority Key Identifier: keyid:83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:6c:d6:a4:e5:10:49:9d:6d:d3:52:72:ac:6b:09:3b:bc:ab: 21:3d:5e:f3:9b:81:55:54:09:83:0f:77:9b:20:1a:8a:68:c3: 4f:b1:fc:8c:e5:ff:06:94:11:5a:f1:83:1b:d2:cd:2c:c4:9e: a8:95:33:67:cf:a3:e5:d0:3e:51:a3:b7:2a:ed:3f:f3:06:3c: 36:e4:0a:b5:08:f0:c9:53:c5:cb:b1:e1:a0:c3:bc:49:be:c8: d2:e3:08:9e:4b:86:63:36:76:88:c7:b6:e0:9a:e9:9c:93:33: 56:7e:59:f3:ed:ed:d8:43:5d:f3:9f:c6:cd:5f:34:0e:b5:fa: a4:a9:79:8e:bb:6a:c3:5e:59:2f:e7:97:91:a2:25:4f:76:7a: 5a:2b:c7:19:59:ee:99:c3:24:ae:a1:dc:db:67:10:4b:05:da: af:bc:d8:42:00:1c:66:3f:37:93:a3:fb:ce:c0:e3:d7:49:f4: 02:e4:bc:b1:1b:8b:05:c9:87:b4:74:de:e0:e9:b9:77:ba:ac: 68:37:b5:95:79:4f:5a:7c:5c:55:fb:46:01:b9:ce:88:0d:3d: ac:52:a4:04:d9:84:16:c0:6c:28:d8:2a:32:9e:ad:dc:af:d4: d0:04:b1:2f:ee:3c:15:75:0f:5a:97:b2:e8:e2:62:eb:25:2b: 77:fe:91:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCOUExMTAvBgNVBAUTKDgzRUY4RkU5RUU0ODY5RjBCOTRBOTVGNzQ2RjU4OTRC QTFGQjMwRjAwHhcNMjUwNDI1MDUwOTI3WhcNMjUwNTAyMDUwOTI3WjAYMRYwFAYD VQQDEw02ODBiMTkwNy05NzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIgP9xoTwzDitSMW/2UES4D0XTCtuqwvGNVs52r2tRvdTkgUQe3f7QwcB1EK 6R4zxNDGsymlgR0IjgPKTTeoLRRtJIfUsi1fwdSnNEAkCtT4F1YDYJKaAmYczhgb jGwkm5fUsv5IQSNLgbvCyvhBaEg4s4oDrNGfuDjTioPCGcmJ/71Lzynuo+VOB4c1 WusqYSmXgRwhcOjW+6GG/w8UIKOZsD6etbk8LDM9MP+PoxLuiksWBa9oTPqd0IEt Q6Nz0qEjs1hhlVYjddcoFIZ+JT0AGt8VMAfwaKgtRTs9OFbPRx0u4babxhk0byun g/eBJX1l9RbjuUWJLykdqPdE9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDZa897 e4UL35xDFlmmh7Lma841MB8GA1UdIwQYMBaAFIPvj+nuSGnwuUqV90b1iUuh+zDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUI5QS9FNEE2NUVERTIz QzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFmQzVTcFgzUnZXSlM2SDdN UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ctLVA2ZTVJYWZDNVNwWDNSdldKUzZIN01QQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUI5QS9FNEE2NUVERTIzQzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFm QzVTcFgzUnZXSlM2SDdNUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGbNak5RBJnW3TUnKsawk7vKshPV7zm4FVVAmDD3ebIBqKaMNPsfyM 5f8GlBFa8YMb0s0sxJ6olTNnz6Pl0D5Ro7cq7T/zBjw25Aq1CPDJU8XLseGgw7xJ vsjS4wieS4ZjNnaIx7bgmumckzNWflnz7e3YQ13zn8bNXzQOtfqkqXmOu2rDXlkv 55eRoiVPdnpaK8cZWe6ZwySuodzbZxBLBdqvvNhCABxmPzeTo/vOwOPXSfQC5Lyx G4sFyYe0dN7g6bl3uqxoN7WVeU9afFxV+0YBuc6IDT2sUqQE2YQWwGwo2Coynq3c r9TQBLEv7jwVdQ9al7Lo4mLrJSt3/pF+ -----END CERTIFICATE-----Generated at Sat Apr 26 16:05:17 2025 by rpki-client