$ rpki-client -vvf rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft File: -bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft (raw, json) Hash identifier: 5iddQJz9xrPEE5TMX0QS2B9qAiH1bhnLqw7lLuAn7Uw= Subject key identifier: E4:78:DD:CC:35:7F:4E:9A:03:F2:06:FD:AF:16:FB:CB:AB:A9:16:93 Authority key identifier: F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 Certificate issuer: /CN=A915E012/serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft Manifest number: 0B Signing time: Fri 25 Apr 2025 07:07:13 +0000 Manifest this update: Fri 25 Apr 2025 07:07:12 +0000 Manifest next update: Fri 02 May 2025 07:07:12 +0000 Files and hashes: 1: -bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl (hash: NSdPAwJbz20HddzV13tch1fNAA1KP1WJ/rkbRnXwHQU=) 2: 28BBA728141411F08D862A74C4F9AE02.roa (hash: bM0rHlFCkCxESty36KKICwvwa1HEG8pgqoXnhaZGbjI=) 3: 2857C712141411F08D862A74C4F9AE02.roa (hash: q/LJ7SPvTkUYwfSCfg1Hilqw1bbJVMWb831qXikLEmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E012, serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Validity Not Before: Apr 25 07:07:12 2025 GMT Not After : May 2 07:07:12 2025 GMT Subject: CN=680b34a1-1852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9e:f6:59:47:c0:39:35:01:20:83:99:58:27: c4:45:7c:26:9e:a4:45:20:b3:d0:1a:3c:47:6d:94: 74:b7:b7:27:0b:c3:8d:4b:c7:13:95:8d:64:2b:36: 34:9f:6e:82:c0:7c:46:2b:d8:83:55:9b:c2:ee:cf: 33:c4:c6:ad:be:3c:f8:d7:76:eb:b4:8b:35:5f:ab: 02:1d:a9:30:e0:a9:f0:32:a5:01:ed:1f:8d:32:ac: b6:8e:f1:75:43:7b:46:f9:c7:af:18:4a:37:78:89: 52:b5:a4:5f:d4:7a:41:43:b0:e8:66:fb:88:19:0e: 2b:fc:7a:9c:c9:a7:bb:8e:b5:c1:40:2b:55:54:6a: ad:f9:4b:68:d1:13:0d:5f:27:26:14:66:bb:3a:73: 43:19:dc:28:42:6c:10:cd:52:45:c9:ff:d2:76:53: c1:3f:2f:94:58:89:88:d6:1d:ae:fc:32:26:52:9a: 70:72:55:2d:8c:a3:27:08:8c:6e:4a:b4:8b:65:42: 26:e8:e7:06:20:21:4d:06:7c:73:bc:87:34:a9:be: af:5d:d3:90:e9:7e:92:dc:fe:da:b1:41:06:4c:87: 78:47:25:4c:37:17:d6:f4:e1:45:76:66:90:05:fc: 0f:49:33:39:b7:a8:e2:ef:88:3c:8e:79:52:d8:9b: 9e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:78:DD:CC:35:7F:4E:9A:03:F2:06:FD:AF:16:FB:CB:AB:A9:16:93 X509v3 Authority Key Identifier: keyid:F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:4d:6a:07:2b:96:cf:12:af:76:ec:2b:97:58:8b:5c:96:b1: e7:96:20:f5:e7:1e:00:a3:c5:91:e8:68:17:e2:43:a5:9e:86: 96:15:7d:81:49:83:cc:fc:60:0c:eb:74:8e:18:e8:41:e3:65: ec:b4:c1:8a:64:56:8d:5b:08:bd:a9:4d:07:dd:0c:c5:85:d8: d4:30:a1:a8:74:f1:6a:93:37:e8:3e:b3:97:d3:fd:6e:10:3e: c0:9d:b1:6e:69:d1:21:68:78:3c:d6:bd:a0:29:d7:cf:07:49: fd:25:80:be:8a:10:03:48:49:24:7e:a7:56:d3:e9:e6:58:3a: 75:59:2a:2d:fd:49:60:34:c1:f4:8e:8d:41:47:3d:cf:b3:95: 2a:bc:0c:c2:78:cf:53:00:26:f7:03:97:bf:31:c1:19:be:92: 95:0f:6a:dd:60:f9:ca:7d:43:cf:f2:b0:eb:42:4e:96:09:d2: be:5f:d4:30:59:70:35:4a:cc:e6:04:e9:19:39:7b:76:21:df: 98:49:60:4d:9c:4f:97:a7:8a:30:38:1a:df:f1:9a:73:71:73: cd:b9:23:37:5c:71:58:5b:6f:0c:a6:ee:d0:fb:4e:2a:66:df: 18:bf:05:f9:30:4e:ab:9a:34:1a:ca:17:7d:80:e9:ea:ce:c6: 47:d3:0c:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RTAxMjExMC8GA1UEBRMoRjlCNDAyMkMwMjlFN0Q5RTVBNjM0OTY4RkRCQTRBMEU5 Q0Q2MjRFNDAeFw0yNTA0MjUwNzA3MTJaFw0yNTA1MDIwNzA3MTJaMBgxFjAUBgNV BAMTDTY4MGIzNGExLTE4NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCunvZZR8A5NQEgg5lYJ8RFfCaepEUgs9AaPEdtlHS3tycLw41LxxOVjWQrNjSf boLAfEYr2INVm8LuzzPExq2+PPjXduu0izVfqwIdqTDgqfAypQHtH40yrLaO8XVD e0b5x68YSjd4iVK1pF/UekFDsOhm+4gZDiv8epzJp7uOtcFAK1VUaq35S2jREw1f JyYUZrs6c0MZ3ChCbBDNUkXJ/9J2U8E/L5RYiYjWHa78MiZSmnByVS2MoycIjG5K tItlQibo5wYgIU0GfHO8hzSpvq9d05DpfpLc/tqxQQZMh3hHJUw3F9b04UV2ZpAF /A9JMzm3qOLviDyOeVLYm56hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5HjdzDV/ TpoD8gb9rxb7y6upFpMwHwYDVR0jBBgwFoAU+bQCLAKefZ5aY0lo/bpKDpzWJOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFMDEyL0I4MUFBMjU4MTQx MzExRjBCNjhFNzM3M0M0RjlBRTAyLy1iUUNMQUtlZlo1YVkwbG9fYnBLRHB6V0pP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWJRQ0xBS2VmWjVhWTBsb19icEtEcHpXSk9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVF MDEyL0I4MUFBMjU4MTQxMzExRjBCNjhFNzM3M0M0RjlBRTAyLy1iUUNMQUtlZlo1 YVkwbG9fYnBLRHB6V0pPUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAxNagcrls8Sr3bsK5dYi1yWseeWIPXnHgCjxZHoaBfiQ6WehpYVfYFJ g8z8YAzrdI4Y6EHjZey0wYpkVo1bCL2pTQfdDMWF2NQwoah08WqTN+g+s5fT/W4Q PsCdsW5p0SFoeDzWvaAp188HSf0lgL6KEANISSR+p1bT6eZYOnVZKi39SWA0wfSO jUFHPc+zlSq8DMJ4z1MAJvcDl78xwRm+kpUPat1g+cp9Q8/ysOtCTpYJ0r5f1DBZ cDVKzOYE6Rk5e3Yh35hJYE2cT5enijA4Gt/xmnNxc825IzdccVhbbwym7tD7Tipm 3xi/BfkwTquaNBrKF32A6erOxkfTDGg= -----END CERTIFICATE-----Generated at Sat Apr 26 17:10:46 2025 by rpki-client