$ rpki-client -vvf rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft File: CmlvYzZ3zH-l3H1bspnTmDD76UI.mft (raw, json) Hash identifier: VAZI9IppXwrJF/K+D+GifAxEmhj+KRBXAjAwGZbS0hQ= Subject key identifier: 83:45:ED:10:F8:68:9E:6E:8E:54:6D:3D:44:5D:F8:40:9A:3C:04:E6 Authority key identifier: 0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42 Certificate issuer: /CN=A9165739/serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942 Certificate serial: 0935 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft Manifest number: 0912 Signing time: Thu 24 Apr 2025 20:18:35 +0000 Manifest this update: Thu 24 Apr 2025 20:18:35 +0000 Manifest next update: Thu 01 May 2025 20:18:35 +0000 Files and hashes: 1: CmlvYzZ3zH-l3H1bspnTmDD76UI.crl (hash: +khsezLRzVewwa+Ginq1z8H03gSu/oSHr8Ke3g2fhJk=) 2: 5EFDD3C4641511EF92F73520C4F9AE02.roa (hash: D1MytX8PFSoPgxFDgyjmvW8kj3dmc3d5kXRVH2UDjTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2357 (0x935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165739, serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942 Validity Not Before: Apr 24 20:18:35 2025 GMT Not After : May 1 20:18:35 2025 GMT Subject: CN=680a9c9b-a816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:38:2a:c7:b1:8f:d6:07:af:79:f3:50:29:35: 0a:4b:57:a5:e2:b3:78:4c:08:ef:56:5a:ae:6e:c1: d5:87:72:1e:d0:cb:bd:bf:6c:b6:22:58:31:48:48: d6:0e:7d:91:fd:e2:c7:cf:7e:6c:13:ba:7d:45:12: 62:a6:05:a4:05:c3:fc:c7:17:07:4f:22:31:24:16: ce:37:44:9f:54:a1:f6:93:86:11:a3:5e:8f:53:4a: 25:ba:11:2e:32:0d:ab:6b:4e:48:ac:e0:c8:b2:6b: aa:2a:45:b8:c2:b0:5c:61:b0:d9:dc:67:e9:f8:e7: d4:72:db:bf:98:bb:e8:0b:2e:cf:7d:df:7f:03:49: ab:8a:1a:ba:1d:e5:da:ad:28:b9:14:91:49:36:2d: 8e:1e:cb:b1:80:9f:42:46:e9:9f:38:80:55:6c:3b: 51:f5:8f:8b:56:d4:dc:7b:36:f9:35:3e:6e:7b:f0: 41:e4:59:bc:f9:dd:62:c1:15:fb:f8:2c:11:3a:35: c9:67:70:e4:08:fe:87:b9:a6:4a:b6:e8:29:28:be: 3a:f5:d4:44:67:dc:a4:9d:64:53:24:b7:70:c0:ab: a1:ce:b5:1d:29:4d:fb:76:95:2c:09:5d:b8:ef:6f: f1:ac:7c:6c:5f:d6:2d:87:6f:84:1f:d3:af:41:a3: 98:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:45:ED:10:F8:68:9E:6E:8E:54:6D:3D:44:5D:F8:40:9A:3C:04:E6 X509v3 Authority Key Identifier: keyid:0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:34:5d:b4:b9:f6:60:00:56:9f:94:f4:dc:9e:2e:64:ac:44: c7:b9:b1:04:e3:bb:89:1c:4a:93:ac:f4:12:d3:22:f3:5f:ac: 8d:3e:ea:0d:8a:87:cd:7b:f1:9d:85:0f:c0:25:63:b4:75:91: 03:61:df:f5:c7:b1:b8:5c:82:fc:d7:56:df:fa:21:c1:e1:26: 72:5f:49:76:64:50:54:2f:a3:8f:69:e5:a2:37:56:d9:e3:ef: f4:49:50:99:f5:e6:73:71:43:49:1f:62:26:45:24:10:47:c5: 04:24:b4:a6:6c:fe:cd:d9:4b:4d:4d:cf:fc:c0:76:4c:97:ca: 26:64:54:69:d8:cf:85:44:16:9a:81:53:4d:47:ed:6a:82:56: a0:c5:bd:e6:43:d8:85:7d:3f:d3:76:02:3e:45:e4:10:81:66: e5:79:90:63:77:83:c9:7a:e1:68:53:7a:65:70:0c:7e:8b:ac: a8:5b:b7:1b:3b:02:95:00:b3:f1:c7:4b:40:bb:b2:63:17:2e: 60:6f:b9:78:7f:3c:51:67:ec:31:f9:a1:47:da:98:f0:a6:99: 68:58:57:2d:24:11:4d:d5:cb:96:80:18:bc:15:75:98:a6:77: 68:1c:d1:24:ce:54:16:95:44:5d:b4:f1:a9:43:99:ce:b5:e0: 2f:52:49:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU3MzkxMTAvBgNVBAUTKDBBNjk2RjYzMzY3N0NDN0ZBNURDN0Q1QkIyOTlEMzk4 MzBGQkU5NDIwHhcNMjUwNDI0MjAxODM1WhcNMjUwNTAxMjAxODM1WjAYMRYwFAYD VQQDEw02ODBhOWM5Yi1hODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDgqx7GP1gevefNQKTUKS1el4rN4TAjvVlqubsHVh3Ie0Mu9v2y2IlgxSEjW Dn2R/eLHz35sE7p9RRJipgWkBcP8xxcHTyIxJBbON0SfVKH2k4YRo16PU0oluhEu Mg2ra05IrODIsmuqKkW4wrBcYbDZ3Gfp+OfUctu/mLvoCy7Pfd9/A0mrihq6HeXa rSi5FJFJNi2OHsuxgJ9CRumfOIBVbDtR9Y+LVtTcezb5NT5ue/BB5Fm8+d1iwRX7 +CwROjXJZ3DkCP6HuaZKtugpKL469dREZ9yknWRTJLdwwKuhzrUdKU37dpUsCV24 72/xrHxsX9Yth2+EH9OvQaOYwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINF7RD4 aJ5ujlRtPURd+ECaPATmMB8GA1UdIwQYMBaAFAppb2M2d8x/pdx9W7KZ05gw++lC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTczOS82QkEwMzI4OEFD NTUxMUVBQTgxNTlFNUNDNEY5QUUwMi9DbWx2WXpaM3pILWwzSDFic3BuVG1ERDc2 VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtbHZZelozekgtbDNIMWJzcG5UbURENzZVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTczOS82QkEwMzI4OEFDNTUxMUVBQTgxNTlFNUNDNEY5QUUwMi9DbWx2WXpaM3pI LWwzSDFic3BuVG1ERDc2VUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnNF20ufZgAFaflPTcni5krETHubEE47uJHEqTrPQS0yLzX6yNPuoN iofNe/GdhQ/AJWO0dZEDYd/1x7G4XIL811bf+iHB4SZyX0l2ZFBUL6OPaeWiN1bZ 4+/0SVCZ9eZzcUNJH2ImRSQQR8UEJLSmbP7N2UtNTc/8wHZMl8omZFRp2M+FRBaa gVNNR+1qglagxb3mQ9iFfT/TdgI+ReQQgWbleZBjd4PJeuFoU3plcAx+i6yoW7cb OwKVALPxx0tAu7JjFy5gb7l4fzxRZ+wx+aFH2pjwpploWFctJBFN1cuWgBi8FXWY pndoHNEkzlQWlURdtPGpQ5nOteAvUkmA -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:57 2025 by rpki-client