$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: QewGjGprB6WMUjfIQ+EENWAXaV+oD6dKT+sJH/cUMXs= Subject key identifier: AB:63:5B:DF:B9:05:FC:55:14:62:9F:B1:48:E3:67:EF:A5:48:7B:B2 Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0C40 Signing time: Thu 24 Apr 2025 18:26:44 +0000 Manifest this update: Thu 24 Apr 2025 18:26:43 +0000 Manifest next update: Thu 01 May 2025 18:26:43 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: BeuBgImbnU7lvyTLEPODCiWmGumgZ0Je85CWaqQQAo8=) 2: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (hash: XbQlgJ5ij8Zawt91ZOfJM2GofSHHlhd8JxuJOM9FhXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Apr 24 18:26:43 2025 GMT Not After : May 1 18:26:43 2025 GMT Subject: CN=680a8264-ce3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ea:2d:d5:06:98:a9:9e:c3:99:5b:39:bb:6e: 6b:00:0f:f3:7a:e0:17:b3:20:15:95:d8:4d:18:f9: 21:bf:a7:42:eb:18:ec:32:16:69:b9:84:0a:e5:d0: 0f:e2:f2:04:b2:0a:22:e2:18:3b:c1:ac:69:cf:70: 6e:9c:69:6b:af:f5:06:8c:9f:85:0b:c9:52:24:0f: 01:31:58:ad:02:75:b6:bf:84:7c:20:63:cc:49:6b: 48:be:de:82:1f:41:e7:3f:b0:29:a8:62:0f:70:a4: 2e:88:4f:21:5d:c7:0f:d6:29:1f:4b:d9:0e:39:3b: 5b:f1:61:aa:6b:a3:1c:40:c0:30:89:34:f1:a7:dc: fd:c7:95:db:dc:90:2f:6d:26:44:a9:2d:35:7b:27: 6c:48:22:27:d1:c3:7a:64:25:b4:b2:51:0c:b8:ee: df:fd:f7:30:f6:81:3a:17:8b:41:80:3b:21:02:53: aa:a6:22:29:ef:09:17:30:0c:3b:69:58:f3:fe:2c: d0:0b:9f:a5:25:34:8f:08:97:5d:71:44:46:e8:1d: 4e:1d:e2:06:06:61:18:0f:ff:db:f1:6a:f8:e0:96: f5:5c:b9:dd:3c:d1:d8:a1:77:07:c6:e6:bf:13:7a: fb:eb:26:fe:d8:47:5c:19:6e:78:ed:89:a7:f2:56: 7d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:63:5B:DF:B9:05:FC:55:14:62:9F:B1:48:E3:67:EF:A5:48:7B:B2 X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:52:70:35:6f:3b:26:3d:48:ac:2c:61:78:67:60:2a:a5:a1: a4:23:be:0d:b3:ce:83:cc:ac:ea:c0:5d:ea:4f:6c:96:c6:4c: 2e:bf:20:f4:81:17:d8:e0:16:68:eb:ac:a6:81:e7:8b:7e:18: 57:8c:bc:49:90:24:ff:8f:3c:62:1c:ce:8b:61:11:a6:a0:22: 92:17:79:05:44:e0:79:22:59:81:92:94:fb:1b:e3:36:c9:53: 72:67:04:4a:b7:17:cb:fc:3e:5f:ec:0a:b0:e6:89:dc:28:82: e1:b2:7e:5e:c8:5b:63:57:6a:a3:bc:ee:a7:ee:32:35:13:60: 4b:48:8d:3c:13:78:a1:6f:da:f3:28:92:46:7a:ec:49:75:fe: ee:42:56:49:85:8e:93:f6:d2:6a:a0:fc:e1:6b:0d:af:27:0c: 52:8c:19:21:ec:c5:eb:e0:7c:57:d5:4e:7c:05:5d:04:34:e4: ff:27:73:40:99:be:e7:3e:ce:ab:56:8f:e2:1b:a1:d9:9e:45: aa:e7:cd:a1:b9:c5:ef:85:cd:f6:7c:9b:2b:a7:dd:2f:d0:96: 85:4c:d2:bb:d5:1a:d5:2a:bd:0d:5c:e8:4b:50:e5:cd:99:d3: 62:b3:ff:65:68:17:68:ff:80:19:ca:52:d6:ec:ca:63:91:33: e2:1f:e0:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUwNDI0MTgyNjQzWhcNMjUwNTAxMTgyNjQzWjAYMRYwFAYD VQQDEw02ODBhODI2NC1jZTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueot1QaYqZ7DmVs5u25rAA/zeuAXsyAVldhNGPkhv6dC6xjsMhZpuYQK5dAP 4vIEsgoi4hg7waxpz3BunGlrr/UGjJ+FC8lSJA8BMVitAnW2v4R8IGPMSWtIvt6C H0HnP7ApqGIPcKQuiE8hXccP1ikfS9kOOTtb8WGqa6McQMAwiTTxp9z9x5Xb3JAv bSZEqS01eydsSCIn0cN6ZCW0slEMuO7f/fcw9oE6F4tBgDshAlOqpiIp7wkXMAw7 aVjz/izQC5+lJTSPCJddcURG6B1OHeIGBmEYD//b8Wr44Jb1XLndPNHYoXcHxua/ E3r76yb+2EdcGW547Ymn8lZ9yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtjW9+5 BfxVFGKfsUjjZ++lSHuyMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeUnA1bzsmPUisLGF4Z2AqpaGkI74Ns86DzKzqwF3qT2yWxkwuvyD0 gRfY4BZo66ymgeeLfhhXjLxJkCT/jzxiHM6LYRGmoCKSF3kFROB5IlmBkpT7G+M2 yVNyZwRKtxfL/D5f7Aqw5oncKILhsn5eyFtjV2qjvO6n7jI1E2BLSI08E3ihb9rz KJJGeuxJdf7uQlZJhY6T9tJqoPzhaw2vJwxSjBkh7MXr4HxX1U58BV0ENOT/J3NA mb7nPs6rVo/iG6HZnkWq582hucXvhc32fJsrp90v0JaFTNK71RrVKr0NXOhLUOXN mdNis/9laBdo/4AZylLW7MpjkTPiH+BL -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:52 2025 by rpki-client