$ rpki-client -vvf rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft File: 3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft (raw, json) Hash identifier: DUHbKU/jNdQgXGJ+W+3yIqVVVVDKiN7eCrqzEd+UTr4= Subject key identifier: 78:A3:62:CE:19:0C:19:F0:2F:C1:3A:D9:71:1F:02:EC:58:16:63:FB Authority key identifier: DE:87:B6:67:69:7D:46:F4:55:05:EA:A1:23:BA:F6:86:DB:22:07:81 Certificate issuer: /CN=A915D8F3/serialNumber=DE87B667697D46F45505EAA123BAF686DB220781 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oe2Z2l9RvRVBeqhI7r2htsiB4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft Manifest number: CD Signing time: Fri 25 Apr 2025 04:43:12 +0000 Manifest this update: Fri 25 Apr 2025 04:43:12 +0000 Manifest next update: Fri 02 May 2025 04:43:12 +0000 Files and hashes: 1: 3oe2Z2l9RvRVBeqhI7r2htsiB4E.crl (hash: JuAgkRjSMs5Pd7VoymD1rGJ1/ppvvgO6uCUHrNbFZLI=) 2: D47D55EEE5BB11EE8B36C249C4F9AE02.roa (hash: 8mrj6WG5h96Mu545OyQl3U5aMKI1r2gwobV+i2Zi3aE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.crl rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oe2Z2l9RvRVBeqhI7r2htsiB4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D8F3, serialNumber=DE87B667697D46F45505EAA123BAF686DB220781 Validity Not Before: Apr 25 04:43:12 2025 GMT Not After : May 2 04:43:12 2025 GMT Subject: CN=680b12e0-b40c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:72:f6:82:ee:1f:63:b9:8d:6f:3c:bc:c3:e0: a7:58:9a:2f:2b:76:ef:28:92:d0:44:e2:96:05:cc: 5c:49:ac:46:06:fa:df:95:70:95:38:87:b5:84:40: 6e:2d:a7:26:2b:b9:df:e0:cf:fa:4a:72:ca:a6:d3: 43:99:ef:94:f1:c4:c8:f6:0e:7a:ab:3b:2a:61:58: f0:98:10:96:fc:38:a6:8f:72:74:dd:60:07:f3:a7: 25:df:32:c8:c9:70:35:bb:c1:75:38:c6:03:4d:4b: 4c:71:57:6b:38:da:bd:6e:ad:2b:d0:72:77:af:78: c8:3b:88:b7:d8:61:70:a6:fa:8a:b9:cd:c5:ac:f3: 06:2d:9a:d6:40:68:8e:5b:c2:25:fe:44:b5:2d:fe: 28:49:f1:63:cb:71:4a:35:4c:0e:83:a1:a9:92:91: 2b:9c:07:fc:f7:eb:d0:67:fb:f8:da:b9:bd:02:a3: 40:41:06:6f:c2:cd:98:aa:6c:95:e3:4f:2e:fe:3f: b7:2f:2b:07:83:f8:43:37:4e:01:fd:2f:4b:33:55: a5:1d:57:ad:59:01:96:77:d6:a1:2c:25:d3:94:ab: fc:18:96:9d:76:ed:44:59:df:34:69:f5:e3:5c:65: 67:58:ef:b5:e0:28:98:d2:da:b0:11:ec:5a:f7:1f: ec:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A3:62:CE:19:0C:19:F0:2F:C1:3A:D9:71:1F:02:EC:58:16:63:FB X509v3 Authority Key Identifier: keyid:DE:87:B6:67:69:7D:46:F4:55:05:EA:A1:23:BA:F6:86:DB:22:07:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oe2Z2l9RvRVBeqhI7r2htsiB4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:1f:32:f0:cc:c2:21:6f:c7:fb:6c:a9:b1:57:d7:c4:62:9c: 46:3c:7d:51:e4:a4:ad:66:cd:be:30:52:1d:23:bd:96:60:ef: d4:85:7d:02:d2:72:47:22:95:1a:84:4f:0d:0f:b7:32:da:e9: 02:5e:75:a7:28:c4:68:d7:08:c3:1f:85:ff:32:bc:b8:6a:c0: 73:cf:55:2c:b7:74:10:ac:a8:b3:77:07:9b:3d:60:8a:20:5b: 5b:3e:46:d8:5b:97:78:5b:0b:07:3e:26:25:29:94:72:a7:2b: ae:3a:a4:24:e7:15:7a:0a:81:bb:41:36:e8:da:6d:70:15:8a: 59:22:50:47:e9:df:75:a2:01:3c:4d:e6:ee:44:53:eb:0a:6f: e4:a2:9d:3e:6f:c6:2f:08:14:e3:42:ea:40:ce:d2:25:52:c3: da:33:b9:7b:0d:a8:ca:95:9b:12:84:06:df:a9:c3:7f:78:46: f9:30:f0:83:d5:eb:e2:39:57:94:78:e5:3e:f8:1b:09:41:e6: 3b:ad:5a:60:0c:43:ba:dd:f1:32:b4:2b:41:07:11:d1:9c:8d: fa:ea:83:e1:c3:7d:a1:5a:d9:e0:7b:d6:3f:82:55:46:f7:f1: d6:5c:1e:27:d0:79:17:be:33:f8:17:a9:2a:e3:e0:5a:da:bc: 38:cc:d9:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ4RjMxMTAvBgNVBAUTKERFODdCNjY3Njk3RDQ2RjQ1NTA1RUFBMTIzQkFGNjg2 REIyMjA3ODEwHhcNMjUwNDI1MDQ0MzEyWhcNMjUwNTAyMDQ0MzEyWjAYMRYwFAYD VQQDEw02ODBiMTJlMC1iNDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHL2gu4fY7mNbzy8w+CnWJovK3bvKJLQROKWBcxcSaxGBvrflXCVOIe1hEBu LacmK7nf4M/6SnLKptNDme+U8cTI9g56qzsqYVjwmBCW/Dimj3J03WAH86cl3zLI yXA1u8F1OMYDTUtMcVdrONq9bq0r0HJ3r3jIO4i32GFwpvqKuc3FrPMGLZrWQGiO W8Il/kS1Lf4oSfFjy3FKNUwOg6GpkpErnAf89+vQZ/v42rm9AqNAQQZvws2YqmyV 408u/j+3LysHg/hDN04B/S9LM1WlHVetWQGWd9ahLCXTlKv8GJaddu1EWd80afXj XGVnWO+14CiY0tqwEexa9x/s9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHijYs4Z DBnwL8E62XEfAuxYFmP7MB8GA1UdIwQYMBaAFN6HtmdpfUb0VQXqoSO69obbIgeB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDhGMy9FQTQ1QjNDMkU1 QkExMUVFOUI2MDdCNDdDNEY5QUUwMi8zb2UyWjJsOVJ2UlZCZXFoSTdyMmh0c2lC NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvZTJaMmw5UnZSVkJlcWhJN3IyaHRzaUI0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDhGMy9FQTQ1QjNDMkU1QkExMUVFOUI2MDdCNDdDNEY5QUUwMi8zb2UyWjJsOVJ2 UlZCZXFoSTdyMmh0c2lCNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6HzLwzMIhb8f7bKmxV9fEYpxGPH1R5KStZs2+MFIdI72WYO/UhX0C 0nJHIpUahE8ND7cy2ukCXnWnKMRo1wjDH4X/Mry4asBzz1Ust3QQrKizdwebPWCK IFtbPkbYW5d4WwsHPiYlKZRypyuuOqQk5xV6CoG7QTbo2m1wFYpZIlBH6d91ogE8 TebuRFPrCm/kop0+b8YvCBTjQupAztIlUsPaM7l7DajKlZsShAbfqcN/eEb5MPCD 1eviOVeUeOU++BsJQeY7rVpgDEO63fEytCtBBxHRnI366oPhw32hWtnge9Y/glVG 9/HWXB4n0HkXvjP4F6kq4+Ba2rw4zNkN -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:05 2025 by rpki-client