$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft File: DL7Sere2gbyZZqziRPy_KX5lyhk.mft (raw, json) Hash identifier: LqtjQBDS+cjZ1/5XheFQ91BrxQSJaHSynSHydqdcJ6o= Subject key identifier: 59:02:88:74:0A:8D:7A:97:44:8E:71:C9:AB:58:D8:9F:B3:DC:01:6B Authority key identifier: 0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 Certificate issuer: /CN=A9163BEF/serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Certificate serial: 04BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft Manifest number: 04B5 Signing time: Thu 24 Apr 2025 23:39:09 +0000 Manifest this update: Thu 24 Apr 2025 23:39:08 +0000 Manifest next update: Thu 01 May 2025 23:39:08 +0000 Files and hashes: 1: DL7Sere2gbyZZqziRPy_KX5lyhk.crl (hash: UgxXnRwKokuQ5Jaco6yDzBEgCW/otgx3Eu6MWafUOAA=) 2: 8A9545AE6D1011EFA13D6E2BC4F9AE02.roa (hash: 6texudPJbHfd6J0MPN1D5Oqp/jznw5zyBOIDtk3K0JM=) 3: 8A190AB66D1011EFA13D6E2BC4F9AE02.roa (hash: JXwBxiGEkFaFWVz8HbHFVp2nlp17eTZBvyxAVrqYWhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1211 (0x4bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BEF, serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Validity Not Before: Apr 24 23:39:08 2025 GMT Not After : May 1 23:39:08 2025 GMT Subject: CN=680acb9d-301c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:09:24:7f:de:ce:3c:60:40:e0:09:11:d4:ce: 45:7f:09:2a:aa:9a:e9:c6:63:a4:a7:10:6b:68:59: 48:52:25:b8:3c:23:44:9e:75:e3:22:6d:63:70:51: 19:aa:c6:ec:06:fa:18:cb:ab:a5:8d:69:c3:95:23: 7d:47:bd:7f:c9:48:4c:b8:a7:0e:3b:e2:fa:e7:cd: 83:67:b9:e0:af:53:27:30:e3:f9:77:d1:68:eb:03: 28:46:50:74:f5:83:73:72:eb:f0:92:bd:06:46:6b: 53:6c:9b:c6:ba:17:7d:23:81:ad:97:61:d5:40:e9: de:73:72:f9:bf:62:01:e2:24:d6:80:a1:c7:6c:45: a6:7c:71:84:cd:53:09:0f:f3:7f:fb:bc:23:4f:33: c4:ed:ad:12:35:c1:0e:5d:fb:f0:06:a0:e7:8e:d7: 37:f6:de:95:5e:06:ec:69:53:a0:58:66:ee:57:64: af:ed:be:7c:63:0a:f3:e5:8c:69:4d:9d:ad:5d:5d: 12:4d:4f:42:f7:bb:bc:36:c7:58:10:de:d9:09:74: 91:d1:ea:2e:3e:fd:33:e4:d8:d6:60:92:7d:63:e5: 5c:ed:8f:42:e3:4a:4f:7f:89:10:b3:6b:5f:29:07: 1e:41:a5:58:28:44:0e:be:e4:7c:d8:82:50:c8:ed: 51:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:02:88:74:0A:8D:7A:97:44:8E:71:C9:AB:58:D8:9F:B3:DC:01:6B X509v3 Authority Key Identifier: keyid:0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:e9:03:1d:fd:b2:ac:0a:6d:2f:c1:d9:9c:52:af:0a:f5:51: 0b:02:bd:30:62:03:06:52:a4:d4:36:01:6c:14:dd:51:8e:ba: 5a:fc:8a:ad:f4:e2:f7:e5:3c:7d:a9:77:d9:fd:02:b8:88:8e: 8d:a2:53:59:0d:a4:25:13:50:17:ad:4f:fd:ec:d0:64:bc:66: fb:b4:87:6e:50:03:17:64:cc:fe:4d:ff:bd:a9:0a:6e:87:ca: c7:47:39:d3:54:71:5b:a8:2e:ee:8a:7f:3c:4c:30:cf:69:a2: 7a:ab:9d:fa:c9:47:df:bd:d3:cc:64:d8:0a:43:bf:30:c5:d4: fc:a7:5f:86:7c:c1:7e:e8:58:5d:3c:37:1d:db:a6:83:45:33: 57:3c:07:59:73:c8:31:1b:1d:90:4f:b0:a1:dd:92:2f:91:20: 7d:80:77:d0:05:22:1e:e6:f7:50:e6:4a:72:8f:85:a5:34:ac: 8e:f0:b0:eb:42:e0:a5:46:e8:04:33:5f:56:42:b7:63:c2:e7: a1:a0:64:c9:1f:5f:fc:24:ff:bc:81:61:47:6f:f3:65:aa:27: 82:a7:53:09:87:e5:5d:7f:33:55:b7:e8:8a:a3:72:84:6c:ab: 4e:b5:d9:67:56:36:fb:31:a0:8e:8e:e8:f6:48:15:be:b9:c0: 74:06:f9:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRUYxMTAvBgNVBAUTKDBDQkVEMjdBQjdCNjgxQkM5OTY2QUNFMjQ0RkNCRjI5 N0U2NUNBMTkwHhcNMjUwNDI0MjMzOTA4WhcNMjUwNTAxMjMzOTA4WjAYMRYwFAYD VQQDEw02ODBhY2I5ZC0zMDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAkkf97OPGBA4AkR1M5FfwkqqprpxmOkpxBraFlIUiW4PCNEnnXjIm1jcFEZ qsbsBvoYy6uljWnDlSN9R71/yUhMuKcOO+L6582DZ7ngr1MnMOP5d9Fo6wMoRlB0 9YNzcuvwkr0GRmtTbJvGuhd9I4Gtl2HVQOnec3L5v2IB4iTWgKHHbEWmfHGEzVMJ D/N/+7wjTzPE7a0SNcEOXfvwBqDnjtc39t6VXgbsaVOgWGbuV2Sv7b58Ywrz5Yxp TZ2tXV0STU9C97u8NsdYEN7ZCXSR0eouPv0z5NjWYJJ9Y+Vc7Y9C40pPf4kQs2tf KQceQaVYKEQOvuR82IJQyO1RXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkCiHQK jXqXRI5xyatY2J+z3AFrMB8GA1UdIwQYMBaAFAy+0nq3toG8mWas4kT8vyl+ZcoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JFRi84QUFGRTI4QzI1 Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdieVpacXppUlB5X0tYNWx5 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RMN1NlcmUyZ2J5WlpxemlSUHlfS1g1bHloay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0JFRi84QUFGRTI4QzI1Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdi eVpacXppUlB5X0tYNWx5aGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw6QMd/bKsCm0vwdmcUq8K9VELAr0wYgMGUqTUNgFsFN1Rjrpa/Iqt 9OL35Tx9qXfZ/QK4iI6NolNZDaQlE1AXrU/97NBkvGb7tIduUAMXZMz+Tf+9qQpu h8rHRznTVHFbqC7uin88TDDPaaJ6q536yUffvdPMZNgKQ78wxdT8p1+GfMF+6Fhd PDcd26aDRTNXPAdZc8gxGx2QT7Ch3ZIvkSB9gHfQBSIe5vdQ5kpyj4WlNKyO8LDr QuClRugEM19WQrdjwuehoGTJH1/8JP+8gWFHb/NlqieCp1MJh+VdfzNVt+iKo3KE bKtOtdlnVjb7MaCOjuj2SBW+ucB0Bvl9 -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:54 2025 by rpki-client