$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft File: ADiahleuCYgERy-OaNcF4u_b18A.mft (raw, json) Hash identifier: UGPHRnSmzsIts1+ctqYJinwngKvEobDsYTJrAIUoNUw= Subject key identifier: 43:F1:4F:79:44:FF:B9:6A:1C:40:DB:46:A3:E1:AF:A8:13:8B:D9:22 Authority key identifier: 00:38:9A:86:57:AE:09:88:04:47:2F:8E:68:D7:05:E2:EF:DB:D7:C0 Certificate issuer: /CN=A914FA25/serialNumber=00389A8657AE098804472F8E68D705E2EFDBD7C0 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft Manifest number: 0D99 Signing time: Thu 24 Apr 2025 18:50:41 +0000 Manifest this update: Thu 24 Apr 2025 18:50:41 +0000 Manifest next update: Thu 01 May 2025 18:50:41 +0000 Files and hashes: 1: ADiahleuCYgERy-OaNcF4u_b18A.crl (hash: 3gi9AWiFBNlWTFRWaEJmUVsDiey2JXn4Q6hrZ3mK+1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.crl rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FA25, serialNumber=00389A8657AE098804472F8E68D705E2EFDBD7C0 Validity Not Before: Apr 24 18:50:41 2025 GMT Not After : May 1 18:50:41 2025 GMT Subject: CN=680a8801-26d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8c:4b:82:d3:61:33:65:59:11:cc:a4:43:f2: ec:8a:e3:a6:65:54:a7:5b:6e:32:d9:f8:37:17:e8: a5:3c:27:01:e1:a3:ab:0b:72:11:ae:63:f4:a9:fa: 5d:6e:73:0b:08:4a:08:fb:85:6c:b8:fe:df:d9:8b: ce:a1:5b:2c:7e:12:02:6a:e3:59:66:5d:6e:69:e8: 1e:66:9e:f4:d0:a2:e7:5e:93:f1:bd:b1:9e:cf:ba: 5e:47:3a:4c:5e:cc:93:3e:fb:29:29:7e:a0:5f:a7: 30:44:38:45:c2:b5:fd:c2:d2:8a:4b:70:6a:9d:3e: 38:69:d8:f3:9b:95:45:68:4f:0f:de:fc:26:c7:ad: 6e:92:39:8f:00:cc:78:06:45:f9:08:84:66:ec:11: bc:33:3a:94:29:7d:85:61:ea:d5:3a:69:d5:85:f5: f1:d2:95:b8:fd:35:ae:0b:d7:92:08:90:e6:39:b2: 69:a0:e7:81:cb:63:7e:75:fb:a3:e9:15:f1:f8:39: 2d:95:70:9b:85:7c:f4:df:63:ce:4f:8a:3d:b2:da: a2:76:8e:94:db:72:a5:48:1a:09:d9:a1:13:27:67: a6:f4:43:f6:1e:92:9e:ae:9b:a1:02:cb:34:49:1c: 97:29:21:31:33:ac:c8:ff:39:3c:ec:e4:b0:c5:a6: d2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F1:4F:79:44:FF:B9:6A:1C:40:DB:46:A3:E1:AF:A8:13:8B:D9:22 X509v3 Authority Key Identifier: keyid:00:38:9A:86:57:AE:09:88:04:47:2F:8E:68:D7:05:E2:EF:DB:D7:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:e6:76:a5:e1:ad:ac:1f:1c:c4:a1:f8:5f:73:e5:4e:a3:18: c9:cb:3e:1f:57:7a:48:ed:fc:ef:e8:36:09:3a:fe:df:58:01: e5:dc:3e:c5:75:a7:bb:12:ac:9e:9c:2a:7d:63:73:dc:93:4b: d9:79:d4:de:44:2f:82:a8:45:0b:79:00:72:84:11:88:4e:d0: b4:b6:a0:e9:41:70:83:5e:42:10:78:ac:8c:ec:e7:04:c3:d1: 7b:5d:7b:b2:ba:61:c5:e3:54:1c:c5:0c:e2:3a:a4:c4:bc:98: e2:a4:50:96:36:db:5d:45:cd:d1:11:a3:fb:c7:3e:4a:5e:44: f9:6e:59:9f:fd:5d:31:d4:f2:56:62:be:94:84:3b:ab:71:ac: 16:e5:38:cd:1a:36:1a:80:9a:a7:f9:73:e3:6e:69:6a:c6:e7: c4:9e:ca:bb:a0:11:99:55:80:20:14:af:c6:c9:46:82:30:81: e5:17:02:da:65:c7:c0:01:17:0d:50:58:3c:8b:60:67:31:9c: d4:42:1d:6f:86:c6:08:6b:ae:b1:87:85:54:d9:71:4f:33:00: 92:a9:5a:bc:0d:9d:5e:a6:62:10:72:6d:95:9b:f2:b3:af:95: 9f:3d:f8:c8:f7:a2:bb:cb:47:7f:a6:e5:5c:3b:76:e2:75:06: 08:a1:c4:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZBMjUxMTAvBgNVBAUTKDAwMzg5QTg2NTdBRTA5ODgwNDQ3MkY4RTY4RDcwNUUy RUZEQkQ3QzAwHhcNMjUwNDI0MTg1MDQxWhcNMjUwNTAxMTg1MDQxWjAYMRYwFAYD VQQDEw02ODBhODgwMS0yNmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4xLgtNhM2VZEcykQ/LsiuOmZVSnW24y2fg3F+ilPCcB4aOrC3IRrmP0qfpd bnMLCEoI+4VsuP7f2YvOoVssfhICauNZZl1uaegeZp700KLnXpPxvbGez7peRzpM XsyTPvspKX6gX6cwRDhFwrX9wtKKS3BqnT44adjzm5VFaE8P3vwmx61ukjmPAMx4 BkX5CIRm7BG8MzqUKX2FYerVOmnVhfXx0pW4/TWuC9eSCJDmObJpoOeBy2N+dfuj 6RXx+DktlXCbhXz032POT4o9stqido6U23KlSBoJ2aETJ2em9EP2HpKerpuhAss0 SRyXKSExM6zI/zk87OSwxabSqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPxT3lE /7lqHEDbRqPhr6gTi9kiMB8GA1UdIwQYMBaAFAA4moZXrgmIBEcvjmjXBeLv29fA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkEyNS8yQkJDQkNBQTFE QUMxMUVBQUY0QTM3NjNDNEY5QUUwMi9BRGlhaGxldUNZZ0VSeS1PYU5jRjR1X2Ix OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FEaWFobGV1Q1lnRVJ5LU9hTmNGNHVfYjE4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkEyNS8yQkJDQkNBQTFEQUMxMUVBQUY0QTM3NjNDNEY5QUUwMi9BRGlhaGxldUNZ Z0VSeS1PYU5jRjR1X2IxOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg5nal4a2sHxzEofhfc+VOoxjJyz4fV3pI7fzv6DYJOv7fWAHl3D7F dae7EqyenCp9Y3Pck0vZedTeRC+CqEULeQByhBGITtC0tqDpQXCDXkIQeKyM7OcE w9F7XXuyumHF41QcxQziOqTEvJjipFCWNttdRc3REaP7xz5KXkT5blmf/V0x1PJW Yr6UhDurcawW5TjNGjYagJqn+XPjbmlqxufEnsq7oBGZVYAgFK/GyUaCMIHlFwLa ZcfAARcNUFg8i2BnMZzUQh1vhsYIa66xh4VU2XFPMwCSqVq8DZ1epmIQcm2Vm/Kz r5WfPfjI96K7y0d/puVcO3bidQYIocSg -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:47 2025 by rpki-client