$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: z04ItkRhH4TXTVYVVo2kt+X+imL0PzqC96u/z6Q3piM= Subject key identifier: 04:77:86:5B:03:A7:90:71:F1:AB:92:7F:7B:10:3D:E7:E3:A2:17:AA Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 07FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 07F7 Signing time: Thu 24 Apr 2025 20:45:59 +0000 Manifest this update: Thu 24 Apr 2025 20:45:59 +0000 Manifest next update: Thu 01 May 2025 20:45:59 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: 6forJgnAZlOlds5rMfFK4kNlxq2rQN+9k9tflswFNn8=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: k50ZB9p61nq4gYFWFacngoDcN0U36+Btc6YIKa1PUKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462, serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: Apr 24 20:45:59 2025 GMT Not After : May 1 20:45:59 2025 GMT Subject: CN=680aa307-2ec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a7:a5:6e:87:84:9f:3e:f9:c0:08:7f:7c:9e: f2:3d:3a:06:4d:f5:5b:fe:f9:ca:19:ee:98:59:d1: 3a:07:4b:dd:ba:b7:b3:8c:51:d4:af:d0:fb:9f:8a: e4:09:c5:9f:48:c2:47:72:32:69:c6:4e:85:6e:85: 93:f5:e7:5d:d0:06:16:4c:82:47:45:b7:da:a3:c1: 86:9e:17:ef:d2:05:8a:1f:8d:54:1a:ba:69:5d:3a: 88:a2:6b:92:cc:74:85:3d:34:a2:4d:9a:68:3c:2d: 1a:d1:ec:0b:ea:12:f5:78:14:8a:b4:ec:0a:cb:8f: 68:92:bd:58:b2:78:7c:87:ab:10:f2:65:ee:5e:c5: d9:1b:e6:00:e6:54:ac:45:96:24:29:75:c8:09:f0: be:f4:7c:ec:4f:9f:6d:a9:dd:45:d4:d3:b1:76:06: 97:db:94:fe:f1:87:55:95:72:6b:7c:11:71:a7:de: f1:0f:0f:03:64:a5:3a:e1:96:44:6c:41:52:9b:82: 7a:a9:f8:19:dc:c7:d1:4b:eb:bd:60:6c:f0:05:b2: 74:7c:bf:22:8b:9d:1f:a0:f1:43:09:85:75:36:2f: ad:cb:08:96:d1:19:45:42:bf:ee:55:99:3c:4d:71: 93:64:4b:82:1c:1c:1d:4f:02:83:19:09:ff:ea:0e: aa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:77:86:5B:03:A7:90:71:F1:AB:92:7F:7B:10:3D:E7:E3:A2:17:AA X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:85:f2:79:00:e9:ff:ca:ba:d7:b7:4a:d1:77:cb:ed:74:5a: bf:25:2e:f1:1b:d1:81:ae:27:8f:e1:38:0e:aa:93:9b:76:68: 50:8f:7c:c4:c0:9d:61:16:97:32:d6:6c:73:a9:a6:f6:71:96: f5:a3:6e:48:b7:d8:0d:20:1d:14:bc:ce:45:7f:3b:21:03:00: 68:a9:d8:1b:3e:eb:9a:f0:25:c8:31:e9:a6:f1:1f:e4:77:f0: fa:bd:6f:53:ef:fc:48:50:f4:b6:ee:37:53:a3:88:bb:ac:97: 49:f3:84:50:3b:c0:2d:73:95:a8:70:ff:e2:d9:0c:af:7b:03: 6a:36:bf:47:6a:24:ad:c0:f5:1b:ba:ec:bf:94:44:32:94:1c: cc:ee:8f:49:9f:72:4f:9a:61:b1:07:2e:bf:1a:b7:d6:9e:16: e2:57:1f:f6:9d:ca:65:39:41:a7:6f:49:6e:95:77:98:1d:2f: 57:1c:ca:70:1d:b8:11:a5:bd:e9:51:4f:26:5b:ea:c2:9a:30: ab:86:e7:f8:f7:31:12:99:0c:5c:b6:7d:04:c9:b3:71:43:f7: 33:c6:85:67:e3:7a:65:58:94:76:6f:74:f5:15:e8:33:a2:e3: 69:96:57:1e:73:95:da:a4:55:59:ad:d6:6e:fa:33:ad:ef:20: 21:99:a1:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjUwNDI0MjA0NTU5WhcNMjUwNTAxMjA0NTU5WjAYMRYwFAYD VQQDEw02ODBhYTMwNy0yZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aelboeEnz75wAh/fJ7yPToGTfVb/vnKGe6YWdE6B0vdurezjFHUr9D7n4rk CcWfSMJHcjJpxk6FboWT9edd0AYWTIJHRbfao8GGnhfv0gWKH41UGrppXTqIomuS zHSFPTSiTZpoPC0a0ewL6hL1eBSKtOwKy49okr1Ysnh8h6sQ8mXuXsXZG+YA5lSs RZYkKXXICfC+9HzsT59tqd1F1NOxdgaX25T+8YdVlXJrfBFxp97xDw8DZKU64ZZE bEFSm4J6qfgZ3MfRS+u9YGzwBbJ0fL8ii50foPFDCYV1Ni+tywiW0RlFQr/uVZk8 TXGTZEuCHBwdTwKDGQn/6g6qZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAR3hlsD p5Bx8auSf3sQPefjoheqMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQhfJ5AOn/yrrXt0rRd8vtdFq/JS7xG9GBrieP4TgOqpObdmhQj3zE wJ1hFpcy1mxzqab2cZb1o25It9gNIB0UvM5FfzshAwBoqdgbPuua8CXIMemm8R/k d/D6vW9T7/xIUPS27jdTo4i7rJdJ84RQO8Atc5WocP/i2QyvewNqNr9HaiStwPUb uuy/lEQylBzM7o9Jn3JPmmGxBy6/GrfWnhbiVx/2ncplOUGnb0lulXeYHS9XHMpw HbgRpb3pUU8mW+rCmjCrhuf49zESmQxctn0EybNxQ/czxoVn43plWJR2b3T1Fegz ouNpllcec5XapFVZrdZu+jOt7yAhmaG9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:49 2025 by rpki-client