$ rpki-client -vvf rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft File: 0N7PEI0mgBt8l-NJAprx_PkKhV4.mft (raw, json) Hash identifier: i8PM1vw8sgiKRD48J5S/30bx4fVUGJnybu8oO1sodog= Subject key identifier: 39:A5:74:77:B2:4E:B6:CF:87:12:6A:40:8B:9C:91:75:E1:EF:5A:58 Authority key identifier: D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E Certificate issuer: /CN=A915408A/serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft Manifest number: B2 Signing time: Fri 25 Apr 2025 04:53:33 +0000 Manifest this update: Fri 25 Apr 2025 04:53:32 +0000 Manifest next update: Fri 02 May 2025 04:53:32 +0000 Files and hashes: 1: 0N7PEI0mgBt8l-NJAprx_PkKhV4.crl (hash: y4BIuW3mC19h1YldM5T8EIBmNGCTE4ZJUxuR/hSjtFs=) 2: 421FF25E18AD11EF99EAA661C4F9AE02.roa (hash: nArjp1EJ9Qh1GSnet/WM1j0sEl6S9LUtwKPDMLMbAas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:53:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915408A, serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Validity Not Before: Apr 25 04:53:32 2025 GMT Not After : May 2 04:53:32 2025 GMT Subject: CN=680b154d-95dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:dc:e9:dc:33:13:ad:16:0e:9f:00:33:b1: e1:56:e3:4b:be:a6:4f:6c:69:ad:06:fc:7c:8f:49: 0e:8b:0f:49:3d:05:0d:17:a4:a8:ae:5e:49:8c:d9: 35:2b:56:c5:25:f5:55:37:40:da:7a:a5:13:cb:10: b0:e3:ad:b3:01:23:ca:ae:ef:d1:09:5b:fa:53:a3: 0a:44:09:f4:27:3e:35:d3:e0:2e:a4:2f:c7:ae:ce: 2b:e7:85:a8:c2:c2:52:06:7f:b4:19:85:6a:9d:6f: 4e:6c:a4:88:57:1b:95:21:b3:5e:88:65:6f:a4:c4: 9f:fd:8c:4b:46:12:8b:a1:c4:53:0f:3f:84:b2:d0: 5d:05:ba:7f:09:56:c2:30:b4:7e:3d:0a:98:7c:6c: 1f:0d:d9:c1:ef:cb:f8:7a:38:9e:c4:30:27:d7:33: 69:ae:77:1a:f5:39:0a:7d:0f:41:76:2d:ae:36:d8: ce:77:5a:b5:b8:9e:56:6d:80:8e:7c:72:8d:c6:49: 01:93:2c:2d:43:2b:a9:87:07:10:d5:3b:09:97:1f: d3:a6:1f:05:77:eb:43:a3:05:3c:74:ad:c6:c4:a3: c5:0f:0c:3d:20:30:48:e0:73:dc:a3:3d:b9:89:12: d2:76:19:f4:19:66:17:28:32:a2:03:f0:20:50:48: a4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A5:74:77:B2:4E:B6:CF:87:12:6A:40:8B:9C:91:75:E1:EF:5A:58 X509v3 Authority Key Identifier: keyid:D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:49:31:65:93:8d:9a:d5:25:34:38:15:ec:f2:61:59:ac:9f: 49:24:03:72:b2:51:00:f1:6e:b7:d2:4c:37:ee:39:95:ff:b9: fa:0a:8b:45:2f:87:66:75:88:ac:80:6d:1f:22:33:f6:31:ce: 96:a9:85:f0:62:c2:00:dd:d3:cc:d1:89:3f:b4:4b:a9:f9:60: 33:c2:07:25:49:33:ee:9a:7c:2f:41:e0:d6:d3:3c:2f:7b:93: eb:82:a0:ab:2c:37:2c:3f:8a:0c:ae:5a:fa:ba:00:9c:f4:d1: 32:6d:39:59:09:74:50:88:27:f8:6a:df:1b:85:c1:77:3f:7b: ae:da:fc:92:b3:fd:4c:d9:1e:dc:11:bf:91:c7:e7:c9:38:03: 61:32:9a:7d:5a:97:27:bb:a8:b3:ca:fb:5c:aa:46:43:b8:d7: c5:9f:e4:cf:2b:67:bd:7f:d7:c5:c0:54:3b:51:21:bf:f0:bf: 3d:3c:95:f3:02:23:c7:05:02:3d:b8:eb:6f:47:17:7b:80:53: 58:5a:a7:c4:fe:91:a8:e7:10:1e:e3:aa:ba:4c:f3:b1:61:d3: cb:d0:90:30:6a:c8:ff:f6:f7:4c:9e:2e:ef:ed:97:99:a2:eb: ae:7b:05:41:70:0f:c6:b4:55:b0:d2:f2:a0:11:47:0a:a6:bd: 85:1b:bf:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQwOEExMTAvBgNVBAUTKEQwREVDRjEwOEQyNjgwMUI3Qzk3RTM0OTAyOUFGMUZD RjkwQTg1NUUwHhcNMjUwNDI1MDQ1MzMyWhcNMjUwNTAyMDQ1MzMyWjAYMRYwFAYD VQQDEw02ODBiMTU0ZC05NWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4Hc6dwzE60WDp8AM7HhVuNLvqZPbGmtBvx8j0kOiw9JPQUNF6Sorl5JjNk1 K1bFJfVVN0DaeqUTyxCw462zASPKru/RCVv6U6MKRAn0Jz410+AupC/Hrs4r54Wo wsJSBn+0GYVqnW9ObKSIVxuVIbNeiGVvpMSf/YxLRhKLocRTDz+EstBdBbp/CVbC MLR+PQqYfGwfDdnB78v4ejiexDAn1zNprnca9TkKfQ9Bdi2uNtjOd1q1uJ5WbYCO fHKNxkkBkywtQyuphwcQ1TsJlx/Tph8Fd+tDowU8dK3GxKPFDww9IDBI4HPcoz25 iRLSdhn0GWYXKDKiA/AgUEikiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmldHey TrbPhxJqQIuckXXh71pYMB8GA1UdIwQYMBaAFNDezxCNJoAbfJfjSQKa8fz5CoVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDA4QS8xODg0NUY2QzE4 QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdCdDhsLU5KQXByeF9Qa0to VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBON1BFSTBtZ0J0OGwtTkpBcHJ4X1BrS2hWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDA4QS8xODg0NUY2QzE4QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdC dDhsLU5KQXByeF9Qa0toVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCSTFlk42a1SU0OBXs8mFZrJ9JJANyslEA8W630kw37jmV/7n6CotF L4dmdYisgG0fIjP2Mc6WqYXwYsIA3dPM0Yk/tEup+WAzwgclSTPumnwvQeDW0zwv e5PrgqCrLDcsP4oMrlr6ugCc9NEybTlZCXRQiCf4at8bhcF3P3uu2vySs/1M2R7c Eb+Rx+fJOANhMpp9Wpcnu6izyvtcqkZDuNfFn+TPK2e9f9fFwFQ7USG/8L89PJXz AiPHBQI9uOtvRxd7gFNYWqfE/pGo5xAe46q6TPOxYdPL0JAwasj/9vdMni7v7ZeZ ouuuewVBcA/GtFWw0vKgEUcKpr2FG78x -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:35 2025 by rpki-client