$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: QGclYzz4tPeYe+diwM4MKWZ9FzTx3VqYYmfOKsbVEqA= Subject key identifier: 48:27:D3:06:4D:2B:92:FD:FC:B9:25:BD:FC:21:43:B0:55:50:47:83 Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0FAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0FA1 Signing time: Thu 24 Apr 2025 17:31:28 +0000 Manifest this update: Thu 24 Apr 2025 17:31:28 +0000 Manifest next update: Thu 01 May 2025 17:31:28 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: MzdJ3jaHlkhB0dOCu7mUdMbpCgEed7VEbnAJgvmx1X4=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:31:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4013 (0xfad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Apr 24 17:31:28 2025 GMT Not After : May 1 17:31:28 2025 GMT Subject: CN=680a7570-5665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:aa:b9:4d:bf:bc:18:26:50:d5:82:64:d4:22: e1:62:c1:f1:18:74:0f:d0:91:e4:72:a8:6e:36:1f: 7a:fc:2f:a1:25:02:03:37:30:8b:8c:ad:7c:85:69: 7b:fd:14:b2:7f:64:46:07:50:c7:ed:b2:fb:4e:65: a7:b1:df:52:db:68:8a:57:b7:66:0d:50:c0:c5:7d: 08:e6:b4:8f:22:67:2a:39:5d:c9:fe:3f:bb:e3:86: cf:f7:94:93:da:dc:cd:57:19:94:73:ff:4d:3e:40: 7a:2e:c0:b3:59:1f:ac:d1:d1:b9:6a:46:06:e5:c9: f2:76:ea:d8:63:f1:c6:87:95:33:6b:e6:c6:bb:e4: ea:5b:37:48:22:6f:41:20:ae:f4:e4:59:bd:2d:a6: b5:1f:0a:f3:72:ec:b3:80:71:83:fe:b1:4d:a5:f2: 5c:39:8d:f8:1a:d9:ec:de:7d:48:84:69:7c:0a:d9: e1:4a:8f:10:c6:5f:db:8b:23:0c:ae:6a:b6:89:5e: 1f:70:af:ac:a0:2f:40:7d:aa:ca:ac:3e:b2:fd:9d: 30:90:ef:a9:11:b5:be:aa:e4:df:c8:de:ee:43:09: 58:5e:89:c6:4b:67:d1:0a:72:7c:15:ff:8c:ba:ae: 3a:ed:1e:90:29:49:cb:69:97:5f:c5:c6:8d:e1:c7: 6c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:27:D3:06:4D:2B:92:FD:FC:B9:25:BD:FC:21:43:B0:55:50:47:83 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:43:74:05:0b:1b:84:7f:fe:25:17:13:9c:1e:a8:32:ac:10: 57:a7:f7:15:77:47:06:e5:31:39:fa:65:16:21:07:af:2d:21: ef:79:2b:62:f1:d7:a9:b1:ea:d4:50:57:ec:e8:a9:9b:e4:f6: 0f:30:5a:f9:04:ff:09:d4:2f:bb:74:97:4a:01:31:cc:48:c2: e7:12:d0:22:16:7a:3f:17:d5:f6:09:c0:3c:3d:75:05:a4:51: 01:59:6c:39:6c:1d:57:58:ee:65:8e:f9:9b:b5:04:43:a2:0c: 49:f7:3f:00:5d:41:44:f2:be:70:84:7f:a5:c3:57:ba:f8:20: 35:77:6e:8e:22:48:f7:1e:91:47:56:cf:25:a5:06:98:58:95: fc:dc:d2:d7:f7:f7:e3:a5:d7:38:c4:46:98:e6:80:d2:31:d4: 16:70:6f:1f:2c:3b:f6:4c:4a:bc:d5:db:01:2d:89:2e:a3:72: c9:5c:fc:e1:66:a5:a1:02:fb:7d:3a:39:c4:16:a2:42:14:5f: eb:e3:79:b9:da:46:4d:ae:11:c5:5e:48:3f:29:18:a2:76:75: d6:3e:b7:57:0d:ac:c9:4c:b4:7d:e0:3f:4e:5c:e9:33:4b:cc: 7f:d5:5b:22:fa:26:24:45:14:e8:a9:65:71:3d:42:16:ef:e6: 8c:cf:30:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwNDI0MTczMTI4WhcNMjUwNTAxMTczMTI4WjAYMRYwFAYD VQQDEw02ODBhNzU3MC01NjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6q5Tb+8GCZQ1YJk1CLhYsHxGHQP0JHkcqhuNh96/C+hJQIDNzCLjK18hWl7 /RSyf2RGB1DH7bL7TmWnsd9S22iKV7dmDVDAxX0I5rSPImcqOV3J/j+744bP95ST 2tzNVxmUc/9NPkB6LsCzWR+s0dG5akYG5cnydurYY/HGh5Uza+bGu+TqWzdIIm9B IK705Fm9Laa1HwrzcuyzgHGD/rFNpfJcOY34Gtns3n1IhGl8CtnhSo8Qxl/biyMM rmq2iV4fcK+soC9AfarKrD6y/Z0wkO+pEbW+quTfyN7uQwlYXonGS2fRCnJ8Ff+M uq467R6QKUnLaZdfxcaN4cdsIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgn0wZN K5L9/LklvfwhQ7BVUEeDMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWQ3QFCxuEf/4lFxOcHqgyrBBXp/cVd0cG5TE5+mUWIQevLSHveSti 8depserUUFfs6Kmb5PYPMFr5BP8J1C+7dJdKATHMSMLnEtAiFno/F9X2CcA8PXUF pFEBWWw5bB1XWO5ljvmbtQRDogxJ9z8AXUFE8r5whH+lw1e6+CA1d26OIkj3HpFH Vs8lpQaYWJX83NLX9/fjpdc4xEaY5oDSMdQWcG8fLDv2TEq81dsBLYkuo3LJXPzh ZqWhAvt9OjnEFqJCFF/r43m52kZNrhHFXkg/KRiidnXWPrdXDazJTLR94D9OXOkz S8x/1Vsi+iYkRRToqWVxPUIW7+aMzzB/ -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:00 2025 by rpki-client