$ rpki-client -vvf rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft File: wS8PVy2jONITRB7wfKUR0anIm20.mft (raw, json) Hash identifier: iMMbkhzJpKoEmwbD6yr+ikdYe9GXkrQ+lfXjrfSRB60= Subject key identifier: AA:66:3F:65:44:CA:6E:68:58:58:93:87:79:F8:71:97:B7:39:0A:43 Authority key identifier: C1:2F:0F:57:2D:A3:38:D2:13:44:1E:F0:7C:A5:11:D1:A9:C8:9B:6D Certificate issuer: /CN=A916CA70/serialNumber=C12F0F572DA338D213441EF07CA511D1A9C89B6D Certificate serial: 0799 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wS8PVy2jONITRB7wfKUR0anIm20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft Manifest number: 0793 Signing time: Thu 24 Apr 2025 21:07:40 +0000 Manifest this update: Thu 24 Apr 2025 21:07:40 +0000 Manifest next update: Thu 01 May 2025 21:07:40 +0000 Files and hashes: 1: wS8PVy2jONITRB7wfKUR0anIm20.crl (hash: CwlT6jG3F64vtbGc4HexN2/65xhQ7PgmBZdBDLVjDhc=) 2: 1E4394CC03AC11EBBA025F2BC4F9AE02.roa (hash: hCxFygIxGBaZzO8/d0Vcf9NqUsTf/UZgA3mXuGpyT3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.crl rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wS8PVy2jONITRB7wfKUR0anIm20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1945 (0x799) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CA70, serialNumber=C12F0F572DA338D213441EF07CA511D1A9C89B6D Validity Not Before: Apr 24 21:07:40 2025 GMT Not After : May 1 21:07:40 2025 GMT Subject: CN=680aa81c-5b4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:eb:b9:79:c6:aa:d9:67:e6:66:09:f5:e9:df: 93:7c:4f:f2:a4:1f:12:a5:00:ea:df:6a:ab:93:1d: 49:5b:b7:82:da:30:7a:a8:99:52:32:25:9d:3c:0e: 27:a2:17:1e:a1:3c:47:1a:b2:8d:f6:20:a7:08:d2: 94:3a:82:2c:71:ce:ef:fe:72:9b:f3:01:a1:b5:4a: 97:ac:49:07:74:2d:9e:8f:75:38:53:b1:61:d2:ef: 17:f9:da:a5:c8:59:02:3b:05:44:69:6b:ba:a5:47: eb:36:1d:ab:b6:fb:1a:71:4e:b7:2c:b6:a5:b1:8d: d9:12:fc:0d:51:d7:d1:75:19:40:4d:67:d9:3b:00: 55:49:eb:2e:17:ac:7b:a4:85:f2:d6:88:d7:ed:ad: 89:16:c7:00:92:33:04:93:29:2d:ca:51:73:89:e5: 3b:48:9f:27:88:57:87:fd:26:16:65:51:d3:71:66: e6:71:b1:ef:52:4b:d5:5c:a9:77:9c:b1:ef:ff:3d: f8:03:98:90:4c:ab:72:49:13:63:46:65:d2:8d:6f: 9d:88:b1:1e:18:7c:fe:8b:c7:cf:82:59:6f:8f:8b: 36:7d:84:25:f1:cc:63:b6:4b:8e:bf:f9:a6:c9:c6: 1f:52:d4:42:a4:68:22:a9:26:e5:7d:8e:47:7a:aa: fc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:66:3F:65:44:CA:6E:68:58:58:93:87:79:F8:71:97:B7:39:0A:43 X509v3 Authority Key Identifier: keyid:C1:2F:0F:57:2D:A3:38:D2:13:44:1E:F0:7C:A5:11:D1:A9:C8:9B:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wS8PVy2jONITRB7wfKUR0anIm20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:44:b2:35:55:64:95:31:45:66:5e:9b:01:72:28:43:55:76: 8f:56:f8:cc:d6:4d:9f:0d:ed:c9:c6:5f:d6:08:1f:ff:fb:50: 74:0b:f0:b8:07:5e:aa:6b:d8:a7:54:24:ea:2a:0a:2b:7b:5c: 99:33:48:d8:e3:e8:18:15:c7:57:bc:bd:b7:fb:83:06:e7:87: d2:8d:56:47:0e:52:54:7d:18:44:de:e8:00:85:be:dd:c0:30: a6:ff:94:e4:87:b0:4c:e2:15:f6:6b:14:c2:de:2e:fb:9b:b8: 48:63:74:27:4b:5a:64:9b:af:c6:c8:07:97:8e:bc:58:be:8a: 9d:05:3f:1b:f6:90:e1:d5:d2:d4:eb:81:4b:54:7b:21:3f:cf: 15:26:d6:7b:79:89:36:17:80:ec:de:98:14:f1:c3:b6:93:36: 94:11:fb:e5:bc:0a:98:7b:51:cc:e3:1c:de:04:16:b2:bb:c3: 71:6e:c4:e7:1d:85:05:d0:d6:bd:8d:72:72:08:2a:d1:42:c5: f4:08:46:0f:41:3d:43:5b:47:66:72:ac:05:8d:19:b0:f6:cc: f0:76:b7:34:71:7b:86:8f:4c:e8:56:ee:4e:ff:1b:99:ba:37: c7:66:56:ad:aa:6d:d9:2b:33:17:66:42:3f:ad:73:23:52:33: 17:b0:f3:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBNzAxMTAvBgNVBAUTKEMxMkYwRjU3MkRBMzM4RDIxMzQ0MUVGMDdDQTUxMUQx QTlDODlCNkQwHhcNMjUwNDI0MjEwNzQwWhcNMjUwNTAxMjEwNzQwWjAYMRYwFAYD VQQDEw02ODBhYTgxYy01YjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuu5ecaq2WfmZgn16d+TfE/ypB8SpQDq32qrkx1JW7eC2jB6qJlSMiWdPA4n ohceoTxHGrKN9iCnCNKUOoIscc7v/nKb8wGhtUqXrEkHdC2ej3U4U7Fh0u8X+dql yFkCOwVEaWu6pUfrNh2rtvsacU63LLalsY3ZEvwNUdfRdRlATWfZOwBVSesuF6x7 pIXy1ojX7a2JFscAkjMEkyktylFzieU7SJ8niFeH/SYWZVHTcWbmcbHvUkvVXKl3 nLHv/z34A5iQTKtySRNjRmXSjW+diLEeGHz+i8fPgllvj4s2fYQl8cxjtkuOv/mm ycYfUtRCpGgiqSblfY5Heqr8BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpmP2VE ym5oWFiTh3n4cZe3OQpDMB8GA1UdIwQYMBaAFMEvD1ctozjSE0Qe8HylEdGpyJtt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0E3MC9BNzEyNUQ3NjAz QUExMUVCOEMxNTgyMjlDNEY5QUUwMi93UzhQVnkyak9OSVRSQjd3ZktVUjBhbklt MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dTOFBWeTJqT05JVFJCN3dmS1VSMGFuSW0yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0E3MC9BNzEyNUQ3NjAzQUExMUVCOEMxNTgyMjlDNEY5QUUwMi93UzhQVnkyak9O SVRSQjd3ZktVUjBhbkltMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzRLI1VWSVMUVmXpsBcihDVXaPVvjM1k2fDe3Jxl/WCB//+1B0C/C4 B16qa9inVCTqKgore1yZM0jY4+gYFcdXvL23+4MG54fSjVZHDlJUfRhE3ugAhb7d wDCm/5Tkh7BM4hX2axTC3i77m7hIY3QnS1pkm6/GyAeXjrxYvoqdBT8b9pDh1dLU 64FLVHshP88VJtZ7eYk2F4Ds3pgU8cO2kzaUEfvlvAqYe1HM4xzeBBayu8NxbsTn HYUF0Na9jXJyCCrRQsX0CEYPQT1DW0dmcqwFjRmw9szwdrc0cXuGj0zoVu5O/xuZ ujfHZlatqm3ZKzMXZkI/rXMjUjMXsPPb -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:12 2025 by rpki-client