$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: Onmh+kJzekviKJkDzdKmfcmQ1R6qeGBZ0hiKWkDL6ns= Subject key identifier: D3:3C:58:37:95:58:33:60:0A:80:F5:93:C9:56:14:2F:F2:78:87:E1 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 07CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 07BC Signing time: Thu 24 Apr 2025 20:58:26 +0000 Manifest this update: Thu 24 Apr 2025 20:58:26 +0000 Manifest next update: Thu 01 May 2025 20:58:26 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: P2rAeLvdkf1XPSl7FF9+yGkkjWcrSdEE3dRsP3Y6vxw=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: Es/KgzPMe1zYauziZBRZHyjZJ35reOpMCOBV6MckhCs=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: Ka3pUjVhAjV8Jw2bqRS1fw1Jl4NqlRDOjR/Fjs/H0+M=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: OhYJKozvfID8ylqYGKB5GjbLkxxbmKyR5Jo0rIME+Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1994 (0x7ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Apr 24 20:58:26 2025 GMT Not After : May 1 20:58:26 2025 GMT Subject: CN=680aa5f2-b92a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b3:c2:f6:8c:73:83:82:ad:35:12:ff:fb:51: c7:a8:b4:39:64:59:7f:e2:58:29:a3:24:f7:6b:a8: 4b:78:ee:81:01:08:85:d8:db:df:03:62:4e:24:39: a2:d9:20:bb:61:c1:48:4c:08:2f:1e:b4:d5:0f:23: 32:1a:24:44:1c:38:13:fe:39:8c:92:b3:39:72:fb: 2a:0b:f8:81:19:5e:f0:bc:b6:c0:61:c2:e3:20:b6: ad:1f:92:68:ac:90:e1:72:de:45:1f:1e:33:65:87: 7b:d7:ae:93:73:81:1b:25:c7:44:d1:91:9e:db:69: 08:d6:03:ed:70:05:3d:e7:48:20:e3:2f:4b:4a:0f: fa:64:33:7a:3e:cf:5c:45:3a:5e:fe:d8:8d:fb:60: 98:52:95:1d:c2:43:07:0c:21:11:66:70:a6:f9:72: 8d:2e:bd:de:e5:a5:00:9f:12:a7:bf:d9:69:0e:48: e0:17:1d:f1:03:2e:92:22:d5:e9:68:41:97:f8:92: 7a:3b:ad:96:8c:48:b6:b1:37:91:f6:e3:0a:12:5e: 07:65:c4:4b:01:71:e4:74:cf:f4:cc:a8:df:bb:8e: d5:cd:af:fa:4d:8f:f3:09:01:b2:a8:e3:3f:a9:9e: 9a:18:49:de:fc:d3:cf:2b:d9:db:1a:0e:9e:41:8e: ce:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3C:58:37:95:58:33:60:0A:80:F5:93:C9:56:14:2F:F2:78:87:E1 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:83:ae:d9:26:77:cf:63:4b:eb:3f:eb:36:65:59:e7:d4:85: 8f:36:20:a9:4e:2f:9d:34:f4:89:95:be:f9:2a:c0:2c:e1:65: ed:8d:4c:34:10:f6:bd:1c:29:67:bd:9c:81:83:10:76:26:a6: cb:ee:50:a3:f7:6e:3a:29:33:88:9a:9e:88:0a:15:03:89:21: 2e:79:63:6c:3e:08:5e:ef:73:4e:88:9c:6b:1e:46:39:ae:ca: cd:e3:78:64:c4:f9:82:26:c4:bc:c8:37:0c:05:85:35:7b:ba: f1:c2:9e:88:b3:a8:31:0a:6c:e4:65:9a:ae:61:a9:4b:ed:72: d6:3a:4c:bb:ce:79:34:50:a3:75:5e:e1:c6:4d:fe:0f:73:5c: ba:76:65:96:28:a2:06:58:f3:a0:06:2c:b1:94:af:34:48:3e: 41:30:0b:10:41:dc:b0:f8:52:79:d2:ac:dc:eb:ec:24:6e:1c: ce:f6:a1:57:9f:84:38:5c:78:a3:3d:0f:25:02:f6:a1:5e:13: bd:d3:45:e0:bd:66:bd:a0:78:7e:d3:11:27:7f:9e:7a:ee:27: bb:a0:db:66:85:5f:53:06:49:f2:28:b2:1f:49:c0:7d:2c:3e: 41:a5:b7:34:1f:6d:8c:61:8a:43:cf:3d:1d:0f:73:b6:d1:40: 3e:da:9f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUwNDI0MjA1ODI2WhcNMjUwNTAxMjA1ODI2WjAYMRYwFAYD VQQDEw02ODBhYTVmMi1iOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8bPC9oxzg4KtNRL/+1HHqLQ5ZFl/4lgpoyT3a6hLeO6BAQiF2NvfA2JOJDmi 2SC7YcFITAgvHrTVDyMyGiREHDgT/jmMkrM5cvsqC/iBGV7wvLbAYcLjILatH5Jo rJDhct5FHx4zZYd7166Tc4EbJcdE0ZGe22kI1gPtcAU950gg4y9LSg/6ZDN6Ps9c RTpe/tiN+2CYUpUdwkMHDCERZnCm+XKNLr3e5aUAnxKnv9lpDkjgFx3xAy6SItXp aEGX+JJ6O62WjEi2sTeR9uMKEl4HZcRLAXHkdM/0zKjfu47Vza/6TY/zCQGyqOM/ qZ6aGEne/NPPK9nbGg6eQY7OSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNM8WDeV WDNgCoD1k8lWFC/yeIfhMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxg67ZJnfPY0vrP+s2ZVnn1IWPNiCpTi+dNPSJlb75KsAs4WXtjUw0 EPa9HClnvZyBgxB2JqbL7lCj9246KTOImp6IChUDiSEueWNsPghe73NOiJxrHkY5 rsrN43hkxPmCJsS8yDcMBYU1e7rxwp6Is6gxCmzkZZquYalL7XLWOky7znk0UKN1 XuHGTf4Pc1y6dmWWKKIGWPOgBiyxlK80SD5BMAsQQdyw+FJ50qzc6+wkbhzO9qFX n4Q4XHijPQ8lAvahXhO900XgvWa9oHh+0xEnf5567ie7oNtmhV9TBknyKLIfScB9 LD5Bpbc0H22MYYpDzz0dD3O20UA+2p8z -----END CERTIFICATE-----Generated at Sat Apr 26 05:46:08 2025 by rpki-client