$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: UeAxe0LLh40C0g4U9ShtwymkKn2wzh7enRY5ZIoP4gc= Subject key identifier: 80:C7:6B:7D:DF:E5:C2:06:FF:22:C6:82:07:98:B8:73:79:E1:E9:64 Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: 33 Signing time: Fri 25 Apr 2025 06:37:17 +0000 Manifest this update: Fri 25 Apr 2025 06:37:17 +0000 Manifest next update: Fri 02 May 2025 06:37:17 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: O4dRrVeYs/VdfS/wNilPm3pBjnvnKQKlwbNaabH/rWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Apr 25 06:37:17 2025 GMT Not After : May 2 06:37:17 2025 GMT Subject: CN=680b2d9d-6bf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fa:c1:06:6a:d9:2a:f3:08:0f:57:f3:ef:d5: d2:3c:42:bb:ca:f2:30:43:fa:13:91:d4:1d:e9:5e: 21:19:45:57:89:be:c5:7e:3e:a2:82:83:bd:4a:f6: 78:fe:a7:64:b8:59:04:12:d2:54:a4:9b:9b:1a:39: f0:16:fe:ed:de:3c:84:1a:ae:69:c9:0d:cb:c3:59: 33:15:54:a7:69:9f:99:dc:5c:04:17:83:c6:3f:dc: 6c:01:01:35:37:95:98:cb:87:f8:8d:c2:d1:fb:5b: f8:68:59:c8:96:6d:a0:08:64:a2:c8:ed:bf:04:b5: d1:2b:13:dd:62:a9:c5:7c:b9:15:1e:f3:7d:ec:b5: a4:97:7c:35:28:cb:ec:54:5a:4d:02:3a:72:2e:93: 27:17:b7:f5:c5:aa:7c:2b:8f:57:d3:09:80:30:20: 95:1b:36:54:39:04:31:4a:3c:60:eb:89:7b:0d:9a: 41:12:e6:fc:d1:57:52:d6:1b:34:a0:4d:e2:8b:e8: ee:06:85:4a:7a:fd:d5:9d:2a:21:ca:91:b7:a2:b0: e4:0a:ad:98:a6:20:80:81:97:52:2b:e7:66:f5:db: c7:35:2e:e4:31:e2:6f:54:89:96:49:4d:4a:99:8d: 06:98:bc:8b:4d:08:a7:aa:df:4c:ed:a7:3c:b9:91: 79:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C7:6B:7D:DF:E5:C2:06:FF:22:C6:82:07:98:B8:73:79:E1:E9:64 X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:11:6c:a6:50:8f:2e:e5:91:8d:50:42:f8:cb:15:b2:46:ab: 13:d0:ec:78:a9:e3:84:f6:2b:3b:84:70:95:54:ee:a1:0c:d0: 61:89:4d:f5:56:0f:a6:01:d4:bc:b1:9d:9a:80:14:5d:87:4c: 22:86:da:df:6a:60:3a:cf:80:9f:eb:89:97:cf:2d:46:46:32: d0:0e:e2:c0:98:6a:27:bd:28:7f:f5:01:9d:bc:cd:f3:c6:a9: 50:f8:33:61:4e:d6:65:3b:00:f1:bf:ac:80:f2:a7:0f:67:29: 23:14:f4:67:5e:48:83:b4:82:64:db:bc:07:b2:cf:bf:01:fe: b3:07:97:fb:c9:9d:3d:47:6f:36:9d:bf:64:dc:5b:92:d2:44: dc:d6:f4:7f:d4:60:b9:d3:5c:38:1c:aa:70:69:0f:d1:80:46: b5:f3:cc:7b:0d:e2:79:3c:65:e5:12:78:f3:41:62:2d:1a:18: 8b:b8:5f:23:54:dd:f6:88:67:31:9c:2b:13:0d:72:c7:3f:c1: 81:7a:57:de:d9:9b:ff:13:e7:bb:95:0e:28:88:f0:4a:e6:49: 59:e4:c9:04:23:b2:5f:6c:7d:8d:b8:3a:0d:da:1e:9f:c3:a9: 2c:88:fa:28:4d:b0:35:19:65:49:74:11:ac:1f:fc:00:90:01: 2f:5b:e4:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkREOTExMC8GA1UEBRMoMDM3ODhFRTJCQUU0RDgwNUVCQ0RDQTY2MThFMkVDMUEx OEE1QzRFMjAeFw0yNTA0MjUwNjM3MTdaFw0yNTA1MDIwNjM3MTdaMBgxFjAUBgNV BAMTDTY4MGIyZDlkLTZiZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn+sEGatkq8wgPV/Pv1dI8QrvK8jBD+hOR1B3pXiEZRVeJvsV+PqKCg71K9nj+ p2S4WQQS0lSkm5saOfAW/u3ePIQarmnJDcvDWTMVVKdpn5ncXAQXg8Y/3GwBATU3 lZjLh/iNwtH7W/hoWciWbaAIZKLI7b8EtdErE91iqcV8uRUe833staSXfDUoy+xU Wk0COnIukycXt/XFqnwrj1fTCYAwIJUbNlQ5BDFKPGDriXsNmkES5vzRV1LWGzSg TeKL6O4GhUp6/dWdKiHKkbeisOQKrZimIICBl1Ir52b128c1LuQx4m9UiZZJTUqZ jQaYvItNCKeq30ztpzy5kXnNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgMdrfd/l wgb/IsaCB5i4c3nh6WQwHwYDVR0jBBgwFoAUA3iO4rrk2AXrzcpmGOLsGhilxOIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGREQ5L0JFN0NBQzEyRDZE RTExRUZCMDQ3NEUxQkM0RjlBRTAyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhP SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQTNpTzRycmsyQVhyemNwbUdPTHNHaGlseE9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG REQ5L0JFN0NBQzEyRDZERTExRUZCMDQ3NEUxQkM0RjlBRTAyL0EzaU80cnJrMkFY cnpjcG1HT0xzR2hpbHhPSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACsRbKZQjy7lkY1QQvjLFbJGqxPQ7Hip44T2KzuEcJVU7qEM0GGJTfVW D6YB1LyxnZqAFF2HTCKG2t9qYDrPgJ/riZfPLUZGMtAO4sCYaie9KH/1AZ28zfPG qVD4M2FO1mU7APG/rIDypw9nKSMU9GdeSIO0gmTbvAeyz78B/rMHl/vJnT1Hbzad v2TcW5LSRNzW9H/UYLnTXDgcqnBpD9GARrXzzHsN4nk8ZeUSePNBYi0aGIu4XyNU 3faIZzGcKxMNcsc/wYF6V97Zm/8T57uVDiiI8ErmSVnkyQQjsl9sfY24Og3aHp/D qSyI+ihNsDUZZUl0Eawf/ACQAS9b5Kw= -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:13 2025 by rpki-client