$ rpki-client -vvf rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft File: _z4OD6f_JX29huYrEpqZTYpJ2E4.mft (raw, json) Hash identifier: 6k1P7EuUxPsonoTHvDs+907OzYdKG20su7obRUZFhQY= Subject key identifier: 21:50:84:A7:05:58:AA:F6:A5:80:90:F8:26:9B:6C:46:94:4C:14:85 Authority key identifier: FF:3E:0E:0F:A7:FF:25:7D:BD:86:E6:2B:12:9A:99:4D:8A:49:D8:4E Certificate issuer: /CN=A916B1F5/serialNumber=FF3E0E0FA7FF257DBD86E62B129A994D8A49D84E Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft Manifest number: 0203 Signing time: Fri 25 Apr 2025 01:47:59 +0000 Manifest this update: Fri 25 Apr 2025 01:47:58 +0000 Manifest next update: Fri 02 May 2025 01:47:58 +0000 Files and hashes: 1: _z4OD6f_JX29huYrEpqZTYpJ2E4.crl (hash: roKljQF0uCrtKct1cl/gUlb7aNwrPA8ze7OY9Fb3O2o=) 2: 28536FDC340111EDB747A054C4F9AE02.roa (hash: nwv4OnHIeiaOuT9R5A9U+o0snvNWMEn4+NiK+Y5blsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.crl rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B1F5, serialNumber=FF3E0E0FA7FF257DBD86E62B129A994D8A49D84E Validity Not Before: Apr 25 01:47:58 2025 GMT Not After : May 2 01:47:58 2025 GMT Subject: CN=680ae9ce-e972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:79:84:65:1b:af:f3:de:76:9b:e2:ac:2f:f5: 96:a0:d2:05:7c:0d:db:c6:eb:51:db:57:97:92:10: 08:5b:25:66:a9:fd:39:e2:0c:9b:cb:fb:0d:1d:6b: e1:cc:06:43:b0:e4:bb:0a:77:f4:79:1a:f6:51:17: 3d:3a:c6:61:7a:00:5b:13:8c:c5:a6:07:4e:82:d7: 81:de:0c:01:8d:fd:da:c3:7b:5c:88:f8:06:37:72: 77:59:b2:33:51:89:3a:23:f5:2c:10:d7:85:8e:57: 94:e1:42:e3:6f:77:32:cc:c9:6d:da:56:92:3e:e5: fc:e3:38:44:e8:03:3e:cd:3d:4c:f6:9d:cf:fd:6f: 2b:e7:72:db:6b:fb:2e:55:9e:db:eb:08:d6:ce:d8: 07:99:3e:44:71:7a:21:91:5c:02:9a:36:ae:d2:04: d6:2d:86:a9:4f:a5:d8:43:c0:f5:6c:f7:fe:85:68: 9e:38:54:8f:a7:ca:0e:0e:e5:01:e7:79:c6:d4:cc: a2:4e:b6:42:d0:ba:88:c8:f8:a6:05:e9:eb:07:e9: c5:19:5b:7f:35:76:0e:93:12:8f:7a:a3:21:37:79: 5d:93:ff:16:d6:97:f4:72:c8:e4:22:e6:4b:1e:73: 56:50:40:e5:f3:0c:78:91:93:aa:22:ef:f9:38:82: 21:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:50:84:A7:05:58:AA:F6:A5:80:90:F8:26:9B:6C:46:94:4C:14:85 X509v3 Authority Key Identifier: keyid:FF:3E:0E:0F:A7:FF:25:7D:BD:86:E6:2B:12:9A:99:4D:8A:49:D8:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:3e:7e:09:34:f0:11:79:df:0e:40:f9:60:34:c3:e4:63:be: 31:97:a2:1d:c1:de:5a:da:7d:4c:98:45:41:ca:7e:28:a4:6f: b7:41:ea:09:87:d1:ea:83:1b:37:30:bc:37:eb:f8:04:3f:99: de:89:d3:83:6a:8c:ad:cd:36:25:8c:16:ff:df:d3:45:49:89: 64:7e:46:76:ea:89:ef:08:36:8a:13:7e:f0:68:52:d5:d0:77: 2b:a4:9d:12:c2:f7:ec:2a:7a:03:81:8d:a8:dc:20:bf:9b:ee: 64:70:52:38:90:4c:e1:c6:aa:e3:5c:29:99:14:e1:bd:52:05: af:54:c0:9d:6c:f4:d6:7f:6e:f9:ba:03:5a:85:69:60:22:36: 16:a0:89:da:49:34:ad:54:d2:1a:5d:d8:c9:68:1a:95:e8:7e: 8d:d9:09:e1:ff:2a:92:4c:73:5e:80:26:87:71:47:c4:86:ba: b9:5f:41:1c:60:dc:1e:29:af:00:ba:e1:d1:a6:d7:fb:d9:a1: 11:46:29:a6:38:24:31:37:d8:84:bf:5a:55:31:7f:85:74:6e: 1b:ca:5d:6e:14:3b:34:d7:26:f8:e1:39:b2:62:2d:ca:ba:83: b0:35:7f:8f:7b:dd:67:06:8c:fd:cc:98:1c:d8:85:e1:41:db: 9c:91:29:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxRjUxMTAvBgNVBAUTKEZGM0UwRTBGQTdGRjI1N0RCRDg2RTYyQjEyOUE5OTRE OEE0OUQ4NEUwHhcNMjUwNDI1MDE0NzU4WhcNMjUwNTAyMDE0NzU4WjAYMRYwFAYD VQQDEw02ODBhZTljZS1lOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3mEZRuv8952m+KsL/WWoNIFfA3bxutR21eXkhAIWyVmqf054gyby/sNHWvh zAZDsOS7Cnf0eRr2URc9OsZhegBbE4zFpgdOgteB3gwBjf3aw3tciPgGN3J3WbIz UYk6I/UsENeFjleU4ULjb3cyzMlt2laSPuX84zhE6AM+zT1M9p3P/W8r53Lba/su VZ7b6wjWztgHmT5EcXohkVwCmjau0gTWLYapT6XYQ8D1bPf+hWieOFSPp8oODuUB 53nG1MyiTrZC0LqIyPimBenrB+nFGVt/NXYOkxKPeqMhN3ldk/8W1pf0csjkIuZL HnNWUEDl8wx4kZOqIu/5OIIhTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFQhKcF WKr2pYCQ+CabbEaUTBSFMB8GA1UdIwQYMBaAFP8+Dg+n/yV9vYbmKxKamU2KSdhO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjFGNS8wRDIxM0VEQzMz RkQxMUVEQUJGN0NGNEJDNEY5QUUwMi9fejRPRDZmX0pYMjlodVlyRXBxWlRZcEoy RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL196NE9ENmZfSlgyOWh1WXJFcHFaVFlwSjJFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjFGNS8wRDIxM0VEQzMzRkQxMUVEQUJGN0NGNEJDNEY5QUUwMi9fejRPRDZmX0pY MjlodVlyRXBxWlRZcEoyRTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOPn4JNPARed8OQPlgNMPkY74xl6Idwd5a2n1MmEVByn4opG+3QeoJ h9Hqgxs3MLw36/gEP5neidODaoytzTYljBb/39NFSYlkfkZ26onvCDaKE37waFLV 0HcrpJ0SwvfsKnoDgY2o3CC/m+5kcFI4kEzhxqrjXCmZFOG9UgWvVMCdbPTWf275 ugNahWlgIjYWoInaSTStVNIaXdjJaBqV6H6N2Qnh/yqSTHNegCaHcUfEhrq5X0Ec YNweKa8AuuHRptf72aERRimmOCQxN9iEv1pVMX+FdG4byl1uFDs01yb44TmyYi3K uoOwNX+Pe91nBoz9zJgc2IXhQduckSnm -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:51 2025 by rpki-client