$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: 3CEZUP2J2eYn2Ew1oEZuQ/jwLnRASKB0yi+YxYto/3s= Subject key identifier: EE:F4:5D:CF:E9:C3:CB:CA:95:FB:4C:32:A0:8E:83:52:5B:4E:C3:F0 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 349B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 3488 Signing time: Thu 24 Apr 2025 14:45:29 +0000 Manifest this update: Thu 24 Apr 2025 14:45:29 +0000 Manifest next update: Thu 01 May 2025 14:45:29 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: CqcTtENA1M6d5ixeqcwxhWiVzwyaBmiSUV9kFDka5tw=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: J0n8zynWewxBVfoDX3OB8RbfuIjzjZ2KDx4R2TodoBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13467 (0x349b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Apr 24 14:45:29 2025 GMT Not After : May 1 14:45:29 2025 GMT Subject: CN=680a4e89-8398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e8:d9:f6:27:96:fa:69:e4:c2:37:96:9d:7a: c2:c2:da:16:f4:93:e8:49:cd:ae:17:2c:bb:2a:57: 31:b4:27:45:ce:1b:fa:e5:71:ec:22:8e:eb:17:32: ef:83:16:56:dd:c9:a1:01:86:e0:f3:d4:6b:44:4a: 3f:42:81:eb:a2:8c:d2:1c:23:ad:f5:98:e4:c3:55: 7c:2a:e2:6b:83:bd:56:75:eb:0c:c4:7a:51:27:a9: 3e:25:eb:19:a0:18:c9:84:2e:41:a1:cc:58:27:43: a9:33:b7:22:7d:27:3a:04:65:1d:cb:a1:ae:af:ff: 13:05:d6:5d:d5:dc:51:b5:d9:17:9a:5d:41:00:bc: 63:fd:d5:c2:77:51:8a:11:42:58:e1:eb:9b:c6:7a: 19:0f:62:77:f2:94:ae:43:d8:d4:a3:1a:0e:b1:7b: 53:7a:48:15:22:32:e6:f1:f4:75:c5:24:be:89:78: f9:cc:4c:f8:14:45:3c:ce:74:67:e6:4a:aa:09:4b: a4:6e:0d:5a:c0:d6:ab:e2:17:fd:1b:37:90:5f:ae: 30:20:83:b3:11:02:e8:92:03:c3:5d:d6:64:1f:a8: de:67:c2:d9:f5:d7:19:ae:64:5b:bb:45:24:90:20: e4:52:4c:d4:2b:66:75:d4:97:c7:96:7b:a4:1d:7a: 21:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F4:5D:CF:E9:C3:CB:CA:95:FB:4C:32:A0:8E:83:52:5B:4E:C3:F0 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:cf:c2:0f:71:93:33:7d:f1:da:7c:a3:ca:44:d2:2a:fb:d9: 13:f5:67:15:5f:73:c6:8b:40:91:41:28:a2:6e:8e:61:6b:5a: 2c:d1:e2:ec:c4:8c:e9:9b:38:85:f3:48:56:bb:fb:be:8b:3f: eb:47:5e:b7:44:42:6d:3f:62:41:f0:47:0b:29:b5:4a:c2:10: f6:80:8c:37:68:e4:d1:b3:80:26:d1:c4:a3:fa:23:38:b7:7c: 8e:f3:0f:7b:0c:c4:1c:af:b3:4b:20:d8:e6:0e:1f:d2:4c:42: f2:c5:47:06:4e:b1:6a:f1:3b:8a:41:53:72:c1:38:7f:0b:49: 43:db:45:e4:bf:d0:ff:24:ac:4c:a6:53:f2:9c:e1:f5:76:08: 83:c2:45:34:ab:1b:1c:72:86:f3:fa:79:4e:56:8a:4e:d2:f5: 25:3f:24:4d:25:18:6e:c3:3a:92:16:78:2b:00:2e:c0:72:53: a8:f9:ae:47:46:44:a0:cd:9b:62:14:07:f8:61:61:4d:db:f9: c1:be:90:01:50:75:eb:1c:a8:3c:58:55:91:ba:da:98:b7:ca: ac:cf:03:44:5c:97:5e:f4:9b:00:30:e2:dc:9b:cd:f3:25:ab: cc:de:08:81:b4:12:b5:dc:07:b1:e3:9f:f9:cf:8d:fc:56:97: 3e:1c:fe:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUwNDI0MTQ0NTI5WhcNMjUwNTAxMTQ0NTI5WjAYMRYwFAYD VQQDEw02ODBhNGU4OS04Mzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ujZ9ieW+mnkwjeWnXrCwtoW9JPoSc2uFyy7KlcxtCdFzhv65XHsIo7rFzLv gxZW3cmhAYbg89RrREo/QoHroozSHCOt9Zjkw1V8KuJrg71WdesMxHpRJ6k+JesZ oBjJhC5BocxYJ0OpM7cifSc6BGUdy6Gur/8TBdZd1dxRtdkXml1BALxj/dXCd1GK EUJY4eubxnoZD2J38pSuQ9jUoxoOsXtTekgVIjLm8fR1xSS+iXj5zEz4FEU8znRn 5kqqCUukbg1awNar4hf9GzeQX64wIIOzEQLokgPDXdZkH6jeZ8LZ9dcZrmRbu0Uk kCDkUkzUK2Z11JfHlnukHXohFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO70Xc/p w8vKlftMMqCOg1JbTsPwMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuz8IPcZMzffHafKPKRNIq+9kT9WcVX3PGi0CRQSiibo5ha1os0eLs xIzpmziF80hWu/u+iz/rR163REJtP2JB8EcLKbVKwhD2gIw3aOTRs4Am0cSj+iM4 t3yO8w97DMQcr7NLINjmDh/STELyxUcGTrFq8TuKQVNywTh/C0lD20Xkv9D/JKxM plPynOH1dgiDwkU0qxsccobz+nlOVopO0vUlPyRNJRhuwzqSFngrAC7AclOo+a5H RkSgzZtiFAf4YWFN2/nBvpABUHXrHKg8WFWRutqYt8qszwNEXJde9JsAMOLcm83z JavM3giBtBK13Aex45/5z438Vpc+HP6m -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:49 2025 by rpki-client