$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: xmEfr0bXrUkE7mAm6321AHgiVwbPSZNMlelRSlRzJoM= Subject key identifier: 97:D5:5F:3A:9C:11:9C:4B:8B:A8:96:78:C3:C9:71:73:5A:FE:7B:0B Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0DEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0DD6 Signing time: Thu 24 Apr 2025 17:51:33 +0000 Manifest this update: Thu 24 Apr 2025 17:51:33 +0000 Manifest next update: Thu 01 May 2025 17:51:33 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: Z3ymNV6jyy65P1sLJODHcXqmJneLTOLTVXxSY+PrVMA=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: QoxSmZFkmxLXEXsdlg7AEo5bS3bmundbYECPlf6m84c=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: Hd+fGLIKcj2CGWAhoQMpGvllKlGgq3bRAKOqU9WwZus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Apr 24 17:51:33 2025 GMT Not After : May 1 17:51:33 2025 GMT Subject: CN=680a7a25-3787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6a:84:62:23:2e:c4:df:e9:98:90:c0:2b:4d: d3:c6:61:7a:c5:e2:17:83:9f:c8:01:08:04:84:9a: 61:78:cd:df:b8:18:89:b2:9f:f7:6b:5f:33:d0:8e: a2:b7:f1:26:b1:88:61:e2:b9:4b:90:6f:07:cb:3f: c6:4d:ef:f6:47:97:8a:e5:72:f5:48:55:ea:f4:d1: 24:e9:32:43:ee:32:8f:9f:2b:a3:8c:5e:72:24:be: 46:7d:d2:85:8b:3c:ac:bf:5f:45:d2:1c:33:c7:8d: 60:4c:37:86:ba:15:b9:9d:64:ab:ef:55:42:fe:8c: 42:03:13:d7:8f:c7:c6:7e:03:05:7e:06:92:a3:44: 0e:d0:49:de:e7:47:98:7c:ff:6d:97:25:10:9e:69: 2d:20:50:7a:1c:9c:6c:b2:82:29:e7:b0:97:a7:73: f4:ec:c8:7a:24:ba:39:80:b3:be:3d:55:74:93:58: ae:f5:93:de:89:d7:16:77:29:d3:cd:8a:ab:3f:bc: a7:17:1c:9a:aa:d7:fe:e7:23:3f:12:25:b5:9f:87: e9:3e:0c:d3:7e:5c:20:cc:9f:21:b2:5a:82:f8:ef: b5:87:f0:3d:f8:e8:88:24:97:98:53:1c:1f:d3:1c: e3:ed:e3:19:b1:39:aa:e6:f0:82:a4:08:e9:75:6c: 19:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D5:5F:3A:9C:11:9C:4B:8B:A8:96:78:C3:C9:71:73:5A:FE:7B:0B X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:65:35:72:aa:88:ee:99:6c:a7:6c:50:4f:5b:33:28:62:7e: e6:53:d8:9c:7c:d2:f3:60:18:7f:00:72:b7:a8:42:ed:03:4d: b4:19:a4:e3:7a:68:4e:4b:d9:95:75:7e:01:54:7f:88:d7:f0: 98:b1:4d:93:ff:0d:a5:c4:42:a9:10:ea:66:59:a6:b4:05:47: f5:db:6d:f5:53:83:b5:ef:cc:b5:60:63:d3:a6:a3:75:f6:88: 2a:fa:31:f2:ad:cf:77:2f:c4:70:9a:09:28:eb:f6:67:a3:de: ed:65:e4:63:32:f0:6c:d9:6c:74:f5:e8:6f:70:55:78:15:0b: 59:e7:cb:8d:10:5c:25:1d:12:37:de:7b:5c:4d:5a:71:13:6e: 2d:21:a4:bc:a7:9d:53:1d:d2:de:6a:99:08:b7:cd:51:71:31: 0d:63:6c:48:d4:14:42:a7:9c:00:fb:93:9c:43:79:e1:b0:be: d4:5b:2b:24:b1:3f:91:28:66:2b:a8:c2:04:29:b8:f4:da:a5: 06:c7:01:ae:3d:b4:58:16:52:4b:51:17:c5:25:64:54:05:f3: a9:f5:5b:fc:a1:ac:e5:8e:4b:9d:2d:f7:6d:b8:09:7d:51:2a: ad:6f:4c:8f:33:8d:62:6a:aa:99:41:94:ee:9f:10:8b:3a:27: d7:32:14:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUwNDI0MTc1MTMzWhcNMjUwNTAxMTc1MTMzWjAYMRYwFAYD VQQDEw02ODBhN2EyNS0zNzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GqEYiMuxN/pmJDAK03TxmF6xeIXg5/IAQgEhJpheM3fuBiJsp/3a18z0I6i t/EmsYhh4rlLkG8Hyz/GTe/2R5eK5XL1SFXq9NEk6TJD7jKPnyujjF5yJL5GfdKF izysv19F0hwzx41gTDeGuhW5nWSr71VC/oxCAxPXj8fGfgMFfgaSo0QO0Ene50eY fP9tlyUQnmktIFB6HJxssoIp57CXp3P07Mh6JLo5gLO+PVV0k1iu9ZPeidcWdynT zYqrP7ynFxyaqtf+5yM/EiW1n4fpPgzTflwgzJ8hslqC+O+1h/A9+OiIJJeYUxwf 0xzj7eMZsTmq5vCCpAjpdWwZ9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfVXzqc EZxLi6iWeMPJcXNa/nsLMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKZTVyqojumWynbFBPWzMoYn7mU9icfNLzYBh/AHK3qELtA020GaTj emhOS9mVdX4BVH+I1/CYsU2T/w2lxEKpEOpmWaa0BUf12231U4O178y1YGPTpqN1 9ogq+jHyrc93L8Rwmgko6/Zno97tZeRjMvBs2Wx09ehvcFV4FQtZ58uNEFwlHRI3 3ntcTVpxE24tIaS8p51THdLeapkIt81RcTENY2xI1BRCp5wA+5OcQ3nhsL7UWysk sT+RKGYrqMIEKbj02qUGxwGuPbRYFlJLURfFJWRUBfOp9Vv8oazljkudLfdtuAl9 USqtb0yPM41iaqqZQZTunxCLOifXMhR+ -----END CERTIFICATE-----Generated at Sat Apr 26 05:28:33 2025 by rpki-client