$ rpki-client -vvf rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft File: rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft (raw, json) Hash identifier: EGgSWwxOi63+LnyZa+rKlkWYAw0CH2tcA4vGyr1Jdjg= Subject key identifier: 6D:15:00:46:A0:72:8E:AA:7F:FD:AD:98:D6:9D:4C:F4:C4:11:95:79 Authority key identifier: AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 Certificate issuer: /CN=A917138D/serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Certificate serial: 07D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft Manifest number: 07C7 Signing time: Thu 24 Apr 2025 20:58:13 +0000 Manifest this update: Thu 24 Apr 2025 20:58:12 +0000 Manifest next update: Thu 01 May 2025 20:58:12 +0000 Files and hashes: 1: rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl (hash: vc7RTSEKhwGIxCatB5YSTlmBfgyVBda5dvXx7pGOPiE=) 2: 7D0F62FAF3EF11EA82F3C251C4F9AE02.roa (hash: qjMMlEqEvaBO7XAFYzvleISXKC2IIZdSXJalJOe7pw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917138D, serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Validity Not Before: Apr 24 20:58:12 2025 GMT Not After : May 1 20:58:12 2025 GMT Subject: CN=680aa5e5-682c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:59:bc:6c:8b:c6:40:5e:b2:c7:07:33:cf:05: 77:41:08:d0:8c:0d:00:45:21:0d:a2:a7:83:1e:95: db:63:9a:20:9c:46:6d:d0:4e:44:0f:aa:e9:a9:cd: bd:08:2a:63:fb:88:33:c2:c5:64:86:14:de:f5:f9: f5:18:6d:70:52:0c:4b:d1:35:ef:e7:8d:62:63:cf: 7d:7e:3f:1f:84:20:53:a8:18:cb:61:d6:4a:7b:2e: 38:ca:1b:79:ce:23:9f:c4:a7:70:bb:5f:57:62:32: 5e:06:b3:70:fd:fb:50:21:93:f3:4e:04:ef:b7:c6: 7a:45:a8:5d:78:50:a6:11:4c:1d:c3:ed:c3:1e:40: ee:f3:1f:57:01:11:8d:f7:60:bd:58:51:de:6a:1e: 2a:62:b9:5e:d8:d6:5d:02:be:a1:84:82:9c:6d:68: 4a:bf:c4:51:bd:80:33:d2:e9:7f:fc:94:a8:79:47: bd:a5:bd:c3:ed:4d:c9:a8:7d:61:d0:b5:43:30:7b: f4:b2:7a:48:0e:ab:be:97:a9:d0:f9:e5:99:77:cc: 6e:74:30:e5:de:b9:da:ee:33:9e:bc:56:27:bf:d3: 12:7d:03:ba:0b:76:d7:b2:65:b0:98:19:fa:6f:d9: 0f:b7:af:64:45:ef:52:5e:eb:54:c4:ee:96:a5:81: 0c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:15:00:46:A0:72:8E:AA:7F:FD:AD:98:D6:9D:4C:F4:C4:11:95:79 X509v3 Authority Key Identifier: keyid:AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:e3:74:9b:78:83:74:90:74:62:27:16:53:9d:b4:df:f5:6b: 04:ca:39:97:58:fa:08:63:3a:71:18:9c:fd:61:6c:05:d7:89: c3:9b:05:e4:2d:6c:61:93:5a:b5:16:d5:03:fd:66:12:69:32: dc:85:b1:58:70:cf:d6:06:94:cf:0a:8f:bc:4e:e4:47:95:91: d0:17:02:af:de:73:38:82:04:fc:2a:ab:cc:d4:7f:ea:38:72: 10:06:6c:26:51:1d:bc:a9:93:65:0f:31:7b:28:2e:0e:65:10: cf:c6:aa:d5:7e:e9:a2:23:57:94:fa:a0:3b:d9:94:2c:28:d4: a3:dd:23:da:91:60:43:ab:85:66:26:66:97:f9:70:a3:e0:48: 23:6c:33:72:b5:f6:c2:2e:1f:e5:10:f1:9e:ad:d5:58:73:ca: d0:7e:b7:a1:e1:d1:34:db:2e:82:7c:42:64:f1:ac:39:9a:c9: 45:a8:3e:80:40:42:2e:d0:8c:88:59:9b:b5:39:1c:dd:af:53: 76:ae:d3:17:0f:ab:c6:19:6a:ae:e5:ba:53:4e:ab:a2:2d:22: 6f:c2:78:18:a4:2a:43:b6:d0:c8:e9:14:d2:4a:96:28:b6:49: 91:86:a1:17:41:a1:36:51:f0:6c:9f:fe:33:d0:00:9a:7a:c0: d8:b9:63:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEzOEQxMTAvBgNVBAUTKEFFMEYwRTlFRDRBNjcwNkU5MkUxMEI3ODlCQUMyQzYy NUE1NjUxNTYwHhcNMjUwNDI0MjA1ODEyWhcNMjUwNTAxMjA1ODEyWjAYMRYwFAYD VQQDEw02ODBhYTVlNS02ODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVm8bIvGQF6yxwczzwV3QQjQjA0ARSENoqeDHpXbY5ognEZt0E5ED6rpqc29 CCpj+4gzwsVkhhTe9fn1GG1wUgxL0TXv541iY899fj8fhCBTqBjLYdZKey44yht5 ziOfxKdwu19XYjJeBrNw/ftQIZPzTgTvt8Z6RahdeFCmEUwdw+3DHkDu8x9XARGN 92C9WFHeah4qYrle2NZdAr6hhIKcbWhKv8RRvYAz0ul//JSoeUe9pb3D7U3JqH1h 0LVDMHv0snpIDqu+l6nQ+eWZd8xudDDl3rna7jOevFYnv9MSfQO6C3bXsmWwmBn6 b9kPt69kRe9SXutUxO6WpYEM7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0VAEag co6qf/2tmNadTPTEEZV5MB8GA1UdIwQYMBaAFK4PDp7UpnBukuELeJusLGJaVlFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTM4RC80RjZFOTMxOEYz RUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNHNlM0UXQ0bTZ3c1lscFdV VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JnOE9udFNtY0c2UzRRdDRtNndzWWxwV1VWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTM4RC80RjZFOTMxOEYzRUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNH NlM0UXQ0bTZ3c1lscFdVVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE43SbeIN0kHRiJxZTnbTf9WsEyjmXWPoIYzpxGJz9YWwF14nDmwXk LWxhk1q1FtUD/WYSaTLchbFYcM/WBpTPCo+8TuRHlZHQFwKv3nM4ggT8KqvM1H/q OHIQBmwmUR28qZNlDzF7KC4OZRDPxqrVfumiI1eU+qA72ZQsKNSj3SPakWBDq4Vm JmaX+XCj4EgjbDNytfbCLh/lEPGerdVYc8rQfreh4dE02y6CfEJk8aw5mslFqD6A QEIu0IyIWZu1ORzdr1N2rtMXD6vGGWqu5bpTTquiLSJvwngYpCpDttDI6RTSSpYo tkmRhqEXQaE2UfBsn/4z0ACaesDYuWNY -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:28 2025 by rpki-client