$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft File: L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft (raw, json) Hash identifier: fbb3xP4u+Le7Sgg9po9Mcy27h0Tf4nVUJiA7VQxww+g= Subject key identifier: A6:A6:40:9A:67:1A:BC:FA:B6:D7:FD:E6:CF:A6:F4:D6:2C:8D:65:7C Authority key identifier: 2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 Certificate issuer: /CN=A9152D1E/serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Certificate serial: 03D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft Manifest number: 03D2 Signing time: Fri 25 Apr 2025 00:19:46 +0000 Manifest this update: Fri 25 Apr 2025 00:19:46 +0000 Manifest next update: Fri 02 May 2025 00:19:46 +0000 Files and hashes: 1: L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl (hash: a+098CkSLJQSn1jZ53hlNWet6u/2oU42v5gZp08ZjNI=) 2: 74D78D2AB28F11EFB915BB1BC4F9AE02.roa (hash: tkOHoIczvR2mvnPtwO2I6CTO8JqQ7Ha6TbdyLv7Jiak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 979 (0x3d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D1E, serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Validity Not Before: Apr 25 00:19:46 2025 GMT Not After : May 2 00:19:46 2025 GMT Subject: CN=680ad522-cb5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:b8:8d:92:b3:0a:c1:6e:b6:d8:62:ac:ff: 16:c7:96:14:21:9e:83:3d:c7:ff:40:29:13:4a:da: 76:0e:b9:cc:46:fe:06:70:e1:dc:c0:56:8f:7f:26: 63:e7:a1:d7:67:9a:f2:b2:9e:fe:e9:aa:64:4d:d2: 3e:6c:3f:80:26:d9:6d:68:24:36:b9:ca:75:d1:bc: 1d:af:82:8f:19:c6:8f:1e:aa:71:fc:fc:2f:7f:96: 9c:76:51:7c:de:bc:8f:71:93:32:e0:d2:f8:4a:80: 43:06:b1:f0:ee:2c:99:09:f3:46:84:87:b6:f4:ca: 09:74:28:34:53:83:93:9d:1b:2a:fd:3b:31:48:23: 5e:a7:69:01:d5:c9:86:88:95:4a:d9:a4:f7:53:19: 3f:77:4c:14:04:6e:81:f8:4c:10:9d:b0:92:20:48: fc:ca:77:fa:d9:e5:e3:3d:f3:79:0b:09:a1:38:fb: e6:ad:b2:56:59:bf:6f:6d:74:9d:a3:b5:22:b4:de: 1d:76:47:b2:8a:76:50:22:6c:dc:1c:28:6c:5f:50: f6:db:d3:66:76:d5:4d:6d:4e:4d:db:2f:ed:d7:bf: 0f:4f:57:25:fd:62:bd:28:74:e3:43:92:06:83:22: e7:d2:b5:b5:7d:cc:f4:89:e7:01:c9:08:b6:8a:5d: f9:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A6:40:9A:67:1A:BC:FA:B6:D7:FD:E6:CF:A6:F4:D6:2C:8D:65:7C X509v3 Authority Key Identifier: keyid:2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:4b:91:8a:21:bf:66:ca:ca:1a:cd:3e:15:a9:97:00:a4:0c: 21:2a:42:56:19:5c:88:0a:8c:91:8a:4e:18:b7:bf:00:68:cc: 7d:ef:29:9b:3f:bf:a0:0e:6d:e7:2f:1a:f6:7c:b2:93:90:78: 61:43:54:cc:db:6d:eb:d6:a5:7b:27:4f:bc:19:0a:e0:45:66: 7d:fc:89:42:04:36:c3:8e:5e:46:27:a4:bb:65:a1:9b:e6:ed: 70:30:ec:ca:2e:4b:de:e7:02:95:2e:67:9f:b5:f9:72:83:23: 61:37:d1:99:0c:00:07:59:43:a3:f1:d9:8c:35:bb:ba:d0:53: 24:51:b3:9f:02:1c:a8:d7:a5:06:42:ac:a6:07:c6:92:97:3a: e5:01:54:0f:a3:f5:10:9a:4b:6c:83:42:ee:93:b5:1f:f6:81: a6:66:91:1c:6a:fe:0d:9c:fa:87:01:94:33:1d:0b:b1:de:c8: 4f:73:21:4e:66:49:2c:e5:1e:d9:4a:1c:38:b2:77:e0:b9:0c: d0:d9:5a:25:d0:30:05:d4:cf:3c:e0:ab:2d:ac:de:ce:d8:77: fb:55:94:75:f7:8d:ac:28:13:b8:fa:65:c2:2b:10:b8:28:86: 97:42:42:e0:f4:33:b6:dd:ae:76:ce:0f:32:d4:8d:35:7e:ae: b3:6a:f8:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMUUxMTAvBgNVBAUTKDJGQzQ2MDE5RUU1MkQxRTkxQkIxRDFEOEUxN0U5OThB NzE1QjcyNDQwHhcNMjUwNDI1MDAxOTQ2WhcNMjUwNTAyMDAxOTQ2WjAYMRYwFAYD VQQDEw02ODBhZDUyMi1jYjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGm4jZKzCsFutthirP8Wx5YUIZ6DPcf/QCkTStp2DrnMRv4GcOHcwFaPfyZj 56HXZ5rysp7+6apkTdI+bD+AJtltaCQ2ucp10bwdr4KPGcaPHqpx/Pwvf5acdlF8 3ryPcZMy4NL4SoBDBrHw7iyZCfNGhIe29MoJdCg0U4OTnRsq/TsxSCNep2kB1cmG iJVK2aT3Uxk/d0wUBG6B+EwQnbCSIEj8ynf62eXjPfN5CwmhOPvmrbJWWb9vbXSd o7UitN4ddkeyinZQImzcHChsX1D229NmdtVNbU5N2y/t178PT1cl/WK9KHTjQ5IG gyLn0rW1fcz0iecByQi2il35cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKamQJpn Grz6ttf95s+m9NYsjWV8MB8GA1UdIwQYMBaAFC/EYBnuUtHpG7HR2OF+mYpxW3JE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQxRS9DN0MwQzFEQTdE NjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBla2JzZEhZNFg2WmluRmJj a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UmdHZTVTMGVrYnNkSFk0WDZaaW5GYmNrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkQxRS9DN0MwQzFEQTdENjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBl a2JzZEhZNFg2WmluRmJja1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjS5GKIb9mysoazT4VqZcApAwhKkJWGVyICoyRik4Yt78AaMx97ymb P7+gDm3nLxr2fLKTkHhhQ1TM223r1qV7J0+8GQrgRWZ9/IlCBDbDjl5GJ6S7ZaGb 5u1wMOzKLkve5wKVLmeftflygyNhN9GZDAAHWUOj8dmMNbu60FMkUbOfAhyo16UG QqymB8aSlzrlAVQPo/UQmktsg0Luk7Uf9oGmZpEcav4NnPqHAZQzHQux3shPcyFO Zkks5R7ZShw4snfguQzQ2Vol0DAF1M884KstrN7O2Hf7VZR1942sKBO4+mXCKxC4 KIaXQkLg9DO23a52zg8y1I01fq6zavgA -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:51 2025 by rpki-client