$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft File: Rm8RJELF0C5g8kaZGTriFRlbO6k.mft (raw, json) Hash identifier: +1ZQXa7jKFeGb5btjCZSACjKnb+U4kF/dPi6S6Sujac= Subject key identifier: 76:0E:A8:A8:11:1B:44:9B:12:D4:79:00:F1:37:7C:35:2B:EF:06:0D Authority key identifier: 46:6F:11:24:42:C5:D0:2E:60:F2:46:99:19:3A:E2:15:19:5B:3B:A9 Certificate issuer: /CN=A915F89C/serialNumber=466F112442C5D02E60F24699193AE215195B3BA9 Certificate serial: 0D85 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft Manifest number: 0D66 Signing time: Thu 24 Apr 2025 14:22:28 +0000 Manifest this update: Thu 24 Apr 2025 14:22:27 +0000 Manifest next update: Thu 01 May 2025 14:22:27 +0000 Files and hashes: 1: Rm8RJELF0C5g8kaZGTriFRlbO6k.crl (hash: BlvB+I4eVU0ZCZwlI2kxXRPNFuIo7c9jWkcF4Qaty/4=) 2: 266ABA161E5811EF89038F3BC4F9AE02.roa (hash: p/azHtFptIXURVSRFgPxqoeDhngoYTd2NG88s2QFFzY=) 3: 1D3D0DC21E5811EFAC23683BC4F9AE02.roa (hash: 9l1Haea64b2aYD99677ab4KdKZDozQlY1l2PmY/FJ1w=) 4: 91CA6CBC740111EFB5E97021C4F9AE02.roa (hash: 7OpoMhu5yrBYJukUqf3gKs+QCXSGnK6psVOlWcESVPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.crl rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C, serialNumber=466F112442C5D02E60F24699193AE215195B3BA9 Validity Not Before: Apr 24 14:22:27 2025 GMT Not After : May 1 14:22:27 2025 GMT Subject: CN=680a4923-179c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:18:99:6d:c6:99:4d:37:73:ea:44:63:39:fe: 34:ae:03:ce:0c:b3:fd:09:fc:11:3e:53:9d:ef:6a: fb:05:eb:f3:e3:1d:52:3d:24:5b:f9:9f:7a:b4:a9: 55:39:32:51:2e:2e:64:aa:fa:0e:a7:bf:1c:9f:2a: 23:51:fe:82:af:31:b1:c5:24:74:6c:2b:65:e2:9b: 98:ac:94:fe:26:f1:30:d0:42:7d:f5:be:b8:fc:cc: 90:4b:92:1c:b2:5d:9c:0d:7b:c7:89:94:56:ec:21: 94:3e:8a:aa:5c:b2:55:f5:f0:3c:87:0b:f3:7b:7b: 3d:8b:f9:2a:87:7d:37:55:16:6b:17:79:8d:e3:78: 88:c7:13:82:7f:7e:64:79:0c:8a:43:c3:b2:11:47: a7:c2:b3:8b:e0:da:df:2b:1c:35:7f:a9:88:80:8b: ef:75:14:56:cf:b5:30:68:f2:a9:ba:ad:62:7d:96: 70:d8:46:16:d7:29:5a:6f:00:e4:e8:b3:66:75:53: 48:4e:d5:74:df:18:14:00:be:a4:9d:ff:5f:81:55: c7:77:fa:7a:a1:25:15:05:3f:dc:f1:ca:9d:97:0f: 51:f7:b5:af:9a:a1:d7:97:98:72:4e:00:3c:de:35: ad:9b:4f:39:0a:c1:9d:a1:8f:64:17:ed:95:c7:ef: 87:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:0E:A8:A8:11:1B:44:9B:12:D4:79:00:F1:37:7C:35:2B:EF:06:0D X509v3 Authority Key Identifier: keyid:46:6F:11:24:42:C5:D0:2E:60:F2:46:99:19:3A:E2:15:19:5B:3B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:5e:fe:7d:db:24:5d:00:19:65:b1:27:64:c1:ba:97:57:c4: 82:06:5e:8c:9b:fc:b1:52:3a:fe:5f:0e:83:d8:3c:13:8c:4a: 44:19:6c:82:1d:c3:15:b3:5e:f6:69:1e:5e:ae:bf:f6:5c:b9: 25:1a:37:e2:a1:f7:8b:c7:f4:6b:d2:4a:63:cd:fd:6b:9e:09: 0f:cb:2e:fc:21:82:33:15:21:e6:a4:ce:7d:cd:a4:d4:52:28: 1d:a5:78:a2:88:77:6d:c8:6e:1d:14:f4:e4:13:c9:b5:cc:25: 0a:16:f3:b0:0e:8c:d1:c7:8d:04:65:0b:f2:d9:27:d6:20:b3: 20:33:94:dc:ab:92:84:09:07:6d:cb:8e:5e:1f:80:8b:cd:b5: cc:3f:e1:24:57:fe:a6:d4:2b:80:96:52:e9:71:8c:34:f5:0a: 9a:c1:0a:48:8a:b1:bb:d8:15:39:c3:8e:30:4c:c1:90:da:e6: c4:b0:73:34:20:24:47:34:d9:88:39:8f:63:5a:0f:40:d8:1d: a0:58:3b:38:99:20:c2:92:af:3b:9c:42:7e:c3:4e:99:c1:37: d5:df:b2:60:aa:1a:ac:08:c6:59:cc:d2:a5:b2:d1:63:6b:17: ce:e3:eb:e2:d9:0a:3f:44:52:1c:63:91:99:b8:e6:3e:89:f6: 83:e9:e4:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKDQ2NkYxMTI0NDJDNUQwMkU2MEYyNDY5OTE5M0FFMjE1 MTk1QjNCQTkwHhcNMjUwNDI0MTQyMjI3WhcNMjUwNTAxMTQyMjI3WjAYMRYwFAYD VQQDEw02ODBhNDkyMy0xNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxiZbcaZTTdz6kRjOf40rgPODLP9CfwRPlOd72r7Bevz4x1SPSRb+Z96tKlV OTJRLi5kqvoOp78cnyojUf6CrzGxxSR0bCtl4puYrJT+JvEw0EJ99b64/MyQS5Ic sl2cDXvHiZRW7CGUPoqqXLJV9fA8hwvze3s9i/kqh303VRZrF3mN43iIxxOCf35k eQyKQ8OyEUenwrOL4NrfKxw1f6mIgIvvdRRWz7UwaPKpuq1ifZZw2EYW1ylabwDk 6LNmdVNITtV03xgUAL6knf9fgVXHd/p6oSUVBT/c8cqdlw9R97WvmqHXl5hyTgA8 3jWtm085CsGdoY9kF+2Vx++H1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYOqKgR G0SbEtR5APE3fDUr7wYNMB8GA1UdIwQYMBaAFEZvESRCxdAuYPJGmRk64hUZWzup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy8wMUIwNjlGNkNF QkIxMUU5OUIxRjdEM0VDNEY5QUUwMi9SbThSSkVMRjBDNWc4a2FaR1RyaUZSbGJP NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JtOFJKRUxGMEM1ZzhrYVpHVHJpRlJsYk82ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Rjg5Qy8wMUIwNjlGNkNFQkIxMUU5OUIxRjdEM0VDNEY5QUUwMi9SbThSSkVMRjBD NWc4a2FaR1RyaUZSbGJPNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/Xv592yRdABllsSdkwbqXV8SCBl6Mm/yxUjr+Xw6D2DwTjEpEGWyC HcMVs172aR5err/2XLklGjfiofeLx/Rr0kpjzf1rngkPyy78IYIzFSHmpM59zaTU UigdpXiiiHdtyG4dFPTkE8m1zCUKFvOwDozRx40EZQvy2SfWILMgM5Tcq5KECQdt y45eH4CLzbXMP+EkV/6m1CuAllLpcYw09QqawQpIirG72BU5w44wTMGQ2ubEsHM0 ICRHNNmIOY9jWg9A2B2gWDs4mSDCkq87nEJ+w06ZwTfV37JgqhqsCMZZzNKlstFj axfO4+vi2Qo/RFIcY5GZuOY+ifaD6eTm -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:08 2025 by rpki-client