$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: pAQ/lbIGfT2ZnsKnlosiE5XcUCmpOy9cS2T7yHzVr+g= Subject key identifier: 26:DF:66:9C:E7:08:E2:EE:53:73:7B:A7:E3:C3:81:AD:4D:01:FE:BD Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 0702 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2CDB Signing time: Thu 24 Apr 2025 15:43:47 +0000 Manifest this update: Thu 24 Apr 2025 15:43:47 +0000 Manifest next update: Thu 01 May 2025 15:43:47 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: 9tPG1WRgoijoIz2qXcjF2obwxW0KavZvBp42dUQj7zk=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: Mse2fnTgzH7IcGff7hL/OaUafi6TDhnPkojb8Rkr2XY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1794 (0x702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Apr 24 15:43:47 2025 GMT Not After : May 1 15:43:47 2025 GMT Subject: CN=680a5c33-9198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cc:37:18:d4:91:c5:cd:a5:ed:eb:1f:07:c7: 84:17:34:dd:d4:bf:bf:29:f0:63:c3:c8:aa:d0:25: 04:fe:1f:70:a5:fc:26:66:21:19:bc:fe:70:a3:9f: a2:26:57:1b:e4:80:d0:22:2f:87:b8:55:4d:42:d1: c5:38:29:76:73:aa:e2:de:a2:f7:67:e8:a3:9e:cc: a1:11:52:95:aa:27:d0:4d:bd:70:86:f8:bb:48:b1: 6f:50:33:1d:15:86:59:37:25:3e:34:76:77:91:f8: 48:38:02:04:f6:a2:09:03:c2:2e:13:c1:1c:1d:8d: d0:3b:a3:53:7b:af:4b:9e:81:b4:74:e1:4e:cb:c2: 0c:1d:0a:f9:8a:17:34:ff:cd:e9:14:fa:8a:58:d9: df:25:a0:52:dd:b7:00:df:c0:b7:e4:84:cc:d6:33: dc:4d:8e:d7:89:67:0b:1a:80:88:f4:7a:cf:cb:b4: bb:38:00:45:71:6a:19:15:29:04:c4:23:b3:66:d4: 2e:54:dc:be:69:60:d1:f6:30:74:32:c5:96:ce:69: de:6e:fa:41:20:91:a7:74:78:22:45:8c:43:be:16: d0:3e:65:b1:dd:6d:1c:69:84:fd:a2:53:1a:61:9b: b1:64:94:db:e5:47:19:5e:a2:b2:17:aa:3a:53:a7: b0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DF:66:9C:E7:08:E2:EE:53:73:7B:A7:E3:C3:81:AD:4D:01:FE:BD X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:d3:47:82:c4:5c:c0:15:e0:8e:3f:c9:01:68:54:8c:2c:8f: 65:d1:4d:9e:21:1c:bb:c5:f7:46:ba:7a:ee:2b:dc:73:23:64: bd:c3:d5:7d:50:2d:ce:27:af:53:91:88:b7:48:95:f3:84:96: a9:3d:e8:5c:a9:fd:46:2c:ab:12:40:55:a4:3d:51:59:3b:f4: 58:d7:c8:61:29:d8:ac:5a:31:4d:4b:58:96:45:65:74:94:87: 21:ce:81:8e:0d:39:b3:8e:6f:8e:c3:8b:f0:5c:8e:46:c3:61: a7:58:d7:46:bd:20:22:44:dd:d6:9d:eb:53:c1:85:56:5f:26: 2b:e8:5b:be:b2:a2:25:8c:4b:a2:41:c4:3d:a3:51:bc:9f:91: c3:cf:a0:35:d8:df:c8:e2:ba:35:a7:5d:a9:c3:4f:07:f8:b0: 65:0c:a7:9c:41:c0:3a:5e:88:dd:b5:66:67:ce:b0:20:16:9a: bc:3b:ac:29:aa:54:6e:89:ab:1e:a0:1b:18:3a:d2:db:a3:6e: ab:f6:29:28:15:3b:bd:89:69:27:2b:2d:3e:b0:d1:10:b5:aa: ca:eb:27:59:b5:df:40:9a:36:fe:dc:7e:d5:d3:9f:ab:df:dd: 3a:39:4b:b7:4b:8d:ab:4d:c1:d8:18:00:91:9c:a6:c1:a5:46: a9:53:5b:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjUwNDI0MTU0MzQ3WhcNMjUwNTAxMTU0MzQ3WjAYMRYwFAYD VQQDEw02ODBhNWMzMy05MTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcw3GNSRxc2l7esfB8eEFzTd1L+/KfBjw8iq0CUE/h9wpfwmZiEZvP5wo5+i Jlcb5IDQIi+HuFVNQtHFOCl2c6ri3qL3Z+ijnsyhEVKVqifQTb1whvi7SLFvUDMd FYZZNyU+NHZ3kfhIOAIE9qIJA8IuE8EcHY3QO6NTe69LnoG0dOFOy8IMHQr5ihc0 /83pFPqKWNnfJaBS3bcA38C35ITM1jPcTY7XiWcLGoCI9HrPy7S7OABFcWoZFSkE xCOzZtQuVNy+aWDR9jB0MsWWzmnebvpBIJGndHgiRYxDvhbQPmWx3W0caYT9olMa YZuxZJTb5UcZXqKyF6o6U6ewzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbfZpzn COLuU3N7p+PDga1NAf69MB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE00eCxFzAFeCOP8kBaFSMLI9l0U2eIRy7xfdGunruK9xzI2S9w9V9 UC3OJ69TkYi3SJXzhJapPehcqf1GLKsSQFWkPVFZO/RY18hhKdisWjFNS1iWRWV0 lIchzoGODTmzjm+Ow4vwXI5Gw2GnWNdGvSAiRN3WnetTwYVWXyYr6Fu+sqIljEui QcQ9o1G8n5HDz6A12N/I4ro1p12pw08H+LBlDKecQcA6XojdtWZnzrAgFpq8O6wp qlRuiaseoBsYOtLbo26r9ikoFTu9iWknKy0+sNEQtarK6ydZtd9Amjb+3H7V05+r 3906OUu3S42rTcHYGACRnKbBpUapU1st -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:44 2025 by rpki-client