$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: L5mBZFwEeSGwuJvz0+GzTaGcNo8TWcdTaU/tMuDTkck= Subject key identifier: EA:AC:25:0B:B0:04:54:20:12:66:79:A1:F6:6C:54:97:8B:A5:91:9F Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 018E Signing time: Fri 25 Apr 2025 02:40:43 +0000 Manifest this update: Fri 25 Apr 2025 02:40:43 +0000 Manifest next update: Fri 02 May 2025 02:40:43 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: M8K41m+qTLDIBKUpyvgVJ0VrZi7g6MXU95XbhCUMSww=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: l8Gj0m9EkG6Fdaxl7SxKrM92rnUZHTkx+j8ukMd+sL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Apr 25 02:40:43 2025 GMT Not After : May 2 02:40:43 2025 GMT Subject: CN=680af62b-ce3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:83:0b:82:1e:77:e1:ee:5a:39:c5:9a:b7:41: 7b:2a:07:7d:ef:d5:5d:4b:12:58:59:3d:4e:44:17: d3:26:ee:d8:5e:3d:40:a6:27:55:00:c0:28:85:ef: ba:27:75:60:3f:60:08:b2:53:c4:01:67:08:aa:86: 1c:4d:7a:a8:05:78:00:1c:1d:12:79:30:cd:8a:e3: d9:2b:a0:e2:3e:4f:bd:f3:bc:4c:5d:55:db:83:98: 3a:38:e0:22:30:46:28:60:07:09:fe:8b:cf:a2:0a: a4:ec:0b:90:be:62:67:77:99:bc:f4:fd:16:04:b6: 2b:fb:68:50:b4:22:14:46:1f:c6:0e:be:1c:54:19: c8:ff:6b:6c:3b:fa:f9:12:f9:5c:15:47:3c:fc:e5: d0:d0:4b:cb:65:da:5a:38:ff:a0:5a:f9:f3:d8:99: 51:c8:39:2d:26:ab:1f:3e:b5:17:cc:d9:c9:97:1c: 42:1c:60:cf:d5:8b:c2:c1:ea:97:2b:cc:d0:fc:9a: f8:db:0b:82:4b:2f:96:90:fb:5d:cb:1d:4c:4f:03: 5f:27:9f:4c:be:c9:c0:20:42:82:1b:0c:84:eb:71: 32:a4:cc:7c:a1:5e:58:12:4d:79:71:6e:3f:52:15: db:23:73:1f:22:31:c4:6f:44:f5:68:a5:54:8d:48: 33:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AC:25:0B:B0:04:54:20:12:66:79:A1:F6:6C:54:97:8B:A5:91:9F X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:7e:db:c4:37:f7:26:6f:2d:a2:1e:17:6e:69:0a:8a:fe:a5: bd:84:22:56:6c:1c:03:e8:87:aa:01:01:a2:7d:35:de:f8:ce: 66:c5:67:84:85:63:37:c3:91:87:f2:5e:3d:1d:df:3c:5d:14: 7d:96:a5:b8:f5:8a:83:5d:e4:b1:74:40:91:78:cf:d8:61:cb: 5a:b3:88:b4:3f:a3:e4:93:22:a9:7e:f3:c1:e2:a9:39:a9:14: 13:c4:7c:a7:62:54:70:38:1e:71:d9:df:67:b0:8d:d8:bf:2c: 16:65:76:41:ff:86:ca:36:ab:19:15:bc:e6:9f:09:d3:ef:f6: 9e:f8:46:da:55:e0:10:96:fb:e3:68:70:51:9a:21:62:b1:19: d6:95:f1:ac:83:e3:4e:86:d0:61:75:69:9f:42:46:75:76:4e: 28:34:6a:92:3b:0f:15:7d:2d:91:3e:bf:be:8c:49:cc:85:df: c2:4e:36:71:a6:3d:73:5d:a8:6d:1b:ec:54:94:29:f5:19:96: 6e:c2:ae:57:75:00:fc:90:d1:6a:cb:16:fa:cf:6a:52:e2:6b: 75:c0:0f:df:cb:d2:c3:13:07:d6:06:53:66:5b:85:e2:b9:9e: 43:84:0e:7f:04:38:e9:22:63:0c:ed:69:eb:f3:ca:53:31:16: 62:aa:60:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUwNDI1MDI0MDQzWhcNMjUwNTAyMDI0MDQzWjAYMRYwFAYD VQQDEw02ODBhZjYyYi1jZTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oMLgh534e5aOcWat0F7Kgd979VdSxJYWT1ORBfTJu7YXj1ApidVAMAohe+6 J3VgP2AIslPEAWcIqoYcTXqoBXgAHB0SeTDNiuPZK6DiPk+987xMXVXbg5g6OOAi MEYoYAcJ/ovPogqk7AuQvmJnd5m89P0WBLYr+2hQtCIURh/GDr4cVBnI/2tsO/r5 EvlcFUc8/OXQ0EvLZdpaOP+gWvnz2JlRyDktJqsfPrUXzNnJlxxCHGDP1YvCweqX K8zQ/Jr42wuCSy+WkPtdyx1MTwNfJ59MvsnAIEKCGwyE63EypMx8oV5YEk15cW4/ UhXbI3MfIjHEb0T1aKVUjUgzzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqsJQuw BFQgEmZ5ofZsVJeLpZGfMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3ftvEN/cmby2iHhduaQqK/qW9hCJWbBwD6IeqAQGifTXe+M5mxWeE hWM3w5GH8l49Hd88XRR9lqW49YqDXeSxdECReM/YYctas4i0P6PkkyKpfvPB4qk5 qRQTxHynYlRwOB5x2d9nsI3YvywWZXZB/4bKNqsZFbzmnwnT7/ae+EbaVeAQlvvj aHBRmiFisRnWlfGsg+NOhtBhdWmfQkZ1dk4oNGqSOw8VfS2RPr++jEnMhd/CTjZx pj1zXahtG+xUlCn1GZZuwq5XdQD8kNFqyxb6z2pS4mt1wA/fy9LDEwfWBlNmW4Xi uZ5DhA5/BDjpImMM7Wnr88pTMRZiqmA9 -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:23 2025 by rpki-client