$ rpki-client -vvf rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft File: 0ba-fNUVRYE-wxdmgHrN2YepD98.mft (raw, json) Hash identifier: /GcI7XrLccE5pm7ZUzRpbS1Oao/aOtmGdcFzSoFSTsM= Subject key identifier: 86:CA:A3:CF:92:AE:F7:C8:15:AD:CD:5E:42:50:6E:45:CC:63:D0:35 Authority key identifier: D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF Certificate issuer: /CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Certificate serial: 08D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft Manifest number: 08CC Signing time: Thu 24 Apr 2025 20:20:22 +0000 Manifest this update: Thu 24 Apr 2025 20:20:22 +0000 Manifest next update: Thu 01 May 2025 20:20:22 +0000 Files and hashes: 1: 0ba-fNUVRYE-wxdmgHrN2YepD98.crl (hash: LgAAAf9+VITCILxBUdTUzxFd7R/Oj88O5xL7tQC8tEw=) 2: 3BEF1820AFBA11EA8449B980C4F9AE02.roa (hash: uf4p5pgx1V0SluLNrAv0V4EHqRaHMDNsXkTRhyZ1WHY=) 3: F4757B1018C811EB94A5327AC4F9AE02.roa (hash: 76P6B+zD6PNBr4hksz9RJT8sA9qgnhZO985SFBzvQHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915418F, serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Validity Not Before: Apr 24 20:20:22 2025 GMT Not After : May 1 20:20:22 2025 GMT Subject: CN=680a9d06-58e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:85:16:8d:20:5b:df:8f:e1:05:a9:b6:35:02: 2d:5c:57:89:dd:5d:3c:f0:fe:d6:ee:4b:ec:0e:8e: 80:f7:32:21:fe:79:10:4b:15:21:b0:42:50:bc:ae: 8e:ba:14:6b:83:a7:fd:f9:ba:e9:91:b5:25:ea:4b: 45:b7:c2:7f:c3:6d:5f:71:48:45:68:17:c5:79:d6: 1d:26:6d:8f:f5:da:19:ee:1a:8b:84:9d:34:1f:2a: 96:51:06:1a:dd:d9:cf:95:c6:67:56:74:69:65:e7: fb:60:48:c5:e3:e7:02:16:d3:0c:04:00:6a:7c:05: 1d:2f:11:ed:fc:d9:4a:e5:ae:3b:c0:be:78:a0:c2: 3c:a5:68:14:d9:d4:8d:94:7f:ca:ba:40:05:98:90: 7c:bf:7e:9e:56:8b:4e:ac:92:9e:f4:db:0e:47:f1: a7:a3:f8:f3:c9:6d:56:3a:ac:45:c7:5b:fe:f6:10: 54:8b:01:98:ab:13:9a:08:d5:40:81:10:1e:6d:75: 40:f5:7a:52:c5:44:55:6d:80:8c:30:f0:59:61:09: 33:3a:5c:0b:12:f6:3a:e8:ee:a6:6d:a0:e4:d9:45: 43:ab:ae:d7:a4:2d:be:a8:97:9a:81:04:6a:e8:9b: 27:0b:14:85:b2:ef:b5:22:ce:62:36:9b:fc:21:ac: d4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CA:A3:CF:92:AE:F7:C8:15:AD:CD:5E:42:50:6E:45:CC:63:D0:35 X509v3 Authority Key Identifier: keyid:D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:42:c9:19:86:82:28:5f:43:59:d8:00:22:82:8d:4b:90:ad: 09:6e:25:97:18:ab:16:a4:c4:2f:fd:eb:40:6a:23:c3:1d:57: 1b:eb:e4:a6:22:b5:41:2c:d5:0e:4e:06:59:7f:4e:85:e0:bb: ab:26:46:40:4f:cf:a7:3b:dd:54:a2:6f:90:26:3f:f3:01:36: 57:3c:0b:6c:89:8c:c1:ab:c9:16:1c:f1:12:17:14:b8:8b:51: 31:2b:91:ee:9f:76:89:aa:46:b4:cb:82:99:5b:55:b2:cc:01: cf:c9:01:d0:2b:fd:84:0e:3a:3e:e9:94:6a:83:dd:2d:83:fd: 35:82:e0:39:c2:09:9d:5d:96:1c:86:71:9a:4b:eb:97:51:36: fc:f6:6b:6b:96:25:81:a2:05:76:35:8e:49:9b:60:46:08:a3: 62:6d:ea:94:d9:6d:c4:a4:05:7e:14:15:84:e4:cb:62:0d:f3: 5f:5a:79:67:0b:1b:b7:46:5a:ca:e7:1d:6c:ec:ef:2a:a6:ff: 97:e4:52:97:44:bc:e6:15:cc:04:59:66:e9:da:ac:b1:73:23: ca:cd:2d:bb:08:49:f7:62:f0:43:85:0f:53:6d:4b:8d:ba:be: cc:e8:4c:3c:14:ab:9a:e5:4d:f2:f1:06:8d:2e:06:c0:b8:22: 7f:26:f5:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQxOEYxMTAvBgNVBAUTKEQxQjZCRTdDRDUxNTQ1ODEzRUMzMTc2NjgwN0FDREQ5 ODdBOTBGREYwHhcNMjUwNDI0MjAyMDIyWhcNMjUwNTAxMjAyMDIyWjAYMRYwFAYD VQQDEw02ODBhOWQwNi01OGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YUWjSBb34/hBam2NQItXFeJ3V088P7W7kvsDo6A9zIh/nkQSxUhsEJQvK6O uhRrg6f9+brpkbUl6ktFt8J/w21fcUhFaBfFedYdJm2P9doZ7hqLhJ00HyqWUQYa 3dnPlcZnVnRpZef7YEjF4+cCFtMMBABqfAUdLxHt/NlK5a47wL54oMI8pWgU2dSN lH/KukAFmJB8v36eVotOrJKe9NsOR/Gno/jzyW1WOqxFx1v+9hBUiwGYqxOaCNVA gRAebXVA9XpSxURVbYCMMPBZYQkzOlwLEvY66O6mbaDk2UVDq67XpC2+qJeagQRq 6JsnCxSFsu+1Is5iNpv8IazU3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbKo8+S rvfIFa3NXkJQbkXMY9A1MB8GA1UdIwQYMBaAFNG2vnzVFUWBPsMXZoB6zdmHqQ/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDE4Ri83NUI5MEQyNEFG QjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZRS13eGRtZ0hyTjJZZXBE OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBiYS1mTlVWUllFLXd4ZG1nSHJOMlllcEQ5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDE4Ri83NUI5MEQyNEFGQjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZ RS13eGRtZ0hyTjJZZXBEOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyQskZhoIoX0NZ2AAigo1LkK0JbiWXGKsWpMQv/etAaiPDHVcb6+Sm IrVBLNUOTgZZf06F4LurJkZAT8+nO91Uom+QJj/zATZXPAtsiYzBq8kWHPESFxS4 i1ExK5Hun3aJqka0y4KZW1WyzAHPyQHQK/2EDjo+6ZRqg90tg/01guA5wgmdXZYc hnGaS+uXUTb89mtrliWBogV2NY5Jm2BGCKNibeqU2W3EpAV+FBWE5MtiDfNfWnln Cxu3RlrK5x1s7O8qpv+X5FKXRLzmFcwEWWbp2qyxcyPKzS27CEn3YvBDhQ9TbUuN ur7M6Ew8FKua5U3y8QaNLgbAuCJ/JvXI -----END CERTIFICATE-----Generated at Sat Apr 26 16:48:00 2025 by rpki-client