$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft File: 34UAobIJAKu39Z62mwcBjfgEXF4.mft (raw, json) Hash identifier: nQwYtpM7eJaIlhVgiQ8ky4JelX97yO4u1r7T3jmQHus= Subject key identifier: 5E:B7:96:52:E6:D7:D5:A7:B6:4B:25:70:50:12:77:2E:49:3D:CD:9C Authority key identifier: DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E Certificate issuer: /CN=A916EB73/serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Certificate serial: 347D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft Manifest number: 3475 Signing time: Thu 24 Apr 2025 15:18:20 +0000 Manifest this update: Thu 24 Apr 2025 15:18:20 +0000 Manifest next update: Thu 01 May 2025 15:18:20 +0000 Files and hashes: 1: 34UAobIJAKu39Z62mwcBjfgEXF4.crl (hash: ZpJNDPwcC9lao7BVehSvcBVfTvXEf3zG/QGjDG3RN0I=) 2: B92D2816064311EAAFD3B416C4F9AE02.roa (hash: snskZTPzgdK1oFEckPC5HgyDQRzXftf0PJQ8L4j0QcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:18:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13437 (0x347d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB73, serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Validity Not Before: Apr 24 15:18:20 2025 GMT Not After : May 1 15:18:20 2025 GMT Subject: CN=680a563c-9f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:57:b0:4d:5d:63:30:27:f3:eb:57:1d:cb:0f: b0:67:7f:f7:71:f4:03:54:b3:6b:c3:d4:63:aa:c4: 8f:ca:5a:de:0c:f2:d9:ed:8c:b4:8c:cf:03:23:27: 16:cd:06:c3:b2:b6:cc:61:48:b1:dd:39:9b:d3:37: d7:a7:9f:a8:c2:bf:f7:93:08:55:d2:d2:51:eb:dc: 77:a2:d3:5a:40:ba:d2:4d:ad:ad:b1:dc:c2:34:d6: 00:ec:91:aa:20:d7:b8:da:c2:ce:aa:a0:7e:87:bf: cd:43:6b:72:a1:ad:f6:77:0c:77:75:ea:02:22:51: 93:d3:11:e7:ed:52:a9:b6:6b:29:59:e0:ca:33:24: 9c:6c:16:63:30:01:ea:d8:2a:f1:73:3e:53:cc:35: 47:0e:b3:32:34:f7:e3:34:36:0f:b4:87:37:da:06: 36:a8:b6:10:05:a7:66:4b:fa:a8:f7:b7:39:d7:88: c3:30:c4:d8:02:58:38:40:e7:95:81:1f:76:4b:89: 90:1c:75:4f:d7:0a:92:de:d6:d9:1e:20:e9:80:c5: 2c:ac:91:cb:9b:48:25:3d:15:a7:c5:3b:3d:b7:2e: e4:dd:cc:60:31:cc:02:29:5c:ac:b4:57:8d:e0:2a: 96:49:aa:05:16:a1:a0:08:89:c8:3e:f0:b1:7e:dc: d9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B7:96:52:E6:D7:D5:A7:B6:4B:25:70:50:12:77:2E:49:3D:CD:9C X509v3 Authority Key Identifier: keyid:DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:69:e5:5b:6d:a7:c5:55:f4:a2:1e:d2:50:84:00:bd:0f:ee: db:d9:91:fa:97:7d:05:96:b4:26:61:d3:bf:d3:ec:c2:67:c0: 91:77:8f:4a:80:3c:7a:8a:ed:ff:47:23:d2:f4:c9:ec:59:4d: 36:b5:1d:7e:0d:13:ce:99:5c:bf:b5:f2:8e:a1:a9:22:5d:6b: 57:59:4d:de:76:51:0d:6c:5e:cd:42:4c:ae:0b:3d:47:d0:1b: c7:d6:8c:8f:6e:3d:21:50:93:a0:21:a0:63:c6:52:80:3d:d2: 28:ce:72:f5:c2:0f:b7:ed:54:f9:6f:1a:59:9a:c1:6e:fa:4a: 3d:ff:21:9b:3b:79:b8:4c:49:7e:78:44:ff:ea:22:e1:04:e8: 2d:13:2a:a5:46:e8:16:7e:37:f5:e1:0e:7b:f6:b9:7b:63:d6: df:af:f5:55:2b:e0:4a:46:81:52:04:b1:4c:31:e6:bd:f6:5a: 1c:b2:30:0e:a9:23:8f:e0:21:e1:6d:55:fe:87:6e:09:03:de: 2a:72:4a:71:15:93:30:ec:12:1d:29:90:bd:aa:b8:a1:86:2f: 14:c4:18:a7:2d:5c:64:0c:c9:a9:81:68:e3:88:4c:8f:85:7c: 41:ef:f2:83:57:2a:26:57:f4:33:96:ca:43:c9:e1:41:19:7a: 95:b9:4f:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCNzMxMTAvBgNVBAUTKERGODUwMEExQjIwOTAwQUJCN0Y1OUVCNjlCMDcwMThE RjgwNDVDNUUwHhcNMjUwNDI0MTUxODIwWhcNMjUwNTAxMTUxODIwWjAYMRYwFAYD VQQDEw02ODBhNTYzYy05ZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVewTV1jMCfz61cdyw+wZ3/3cfQDVLNrw9RjqsSPylreDPLZ7Yy0jM8DIycW zQbDsrbMYUix3Tmb0zfXp5+owr/3kwhV0tJR69x3otNaQLrSTa2tsdzCNNYA7JGq INe42sLOqqB+h7/NQ2tyoa32dwx3deoCIlGT0xHn7VKptmspWeDKMyScbBZjMAHq 2Crxcz5TzDVHDrMyNPfjNDYPtIc32gY2qLYQBadmS/qo97c514jDMMTYAlg4QOeV gR92S4mQHHVP1wqS3tbZHiDpgMUsrJHLm0glPRWnxTs9ty7k3cxgMcwCKVystFeN 4CqWSaoFFqGgCInIPvCxftzZBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF63llLm 19WntkslcFASdy5JPc2cMB8GA1UdIwQYMBaAFN+FAKGyCQCrt/WetpsHAY34BFxe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI3My9CODhGREU4QzFE QUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFLdTM5WjYybXdjQmpmZ0VY RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0VUFvYklKQUt1MzlaNjJtd2NCamZnRVhGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI3My9CODhGREU4QzFEQUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFL dTM5WjYybXdjQmpmZ0VYRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNaeVbbafFVfSiHtJQhAC9D+7b2ZH6l30FlrQmYdO/0+zCZ8CRd49K gDx6iu3/RyPS9MnsWU02tR1+DRPOmVy/tfKOoakiXWtXWU3edlENbF7NQkyuCz1H 0BvH1oyPbj0hUJOgIaBjxlKAPdIoznL1wg+37VT5bxpZmsFu+ko9/yGbO3m4TEl+ eET/6iLhBOgtEyqlRugWfjf14Q579rl7Y9bfr/VVK+BKRoFSBLFMMea99locsjAO qSOP4CHhbVX+h24JA94qckpxFZMw7BIdKZC9qrihhi8UxBinLVxkDMmpgWjjiEyP hXxB7/KDVyomV/QzlspDyeFBGXqVuU+/ -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:30 2025 by rpki-client