$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft File: 7CxkBsqh85689Fh1MVANVrlTYsA.mft (raw, json) Hash identifier: t55GWi9z6dtjYbnVPuNJK3dsn2bA/Wt/okAqFoHtGik= Subject key identifier: 4A:61:6B:3D:EF:70:76:E1:3E:33:25:4B:61:3F:74:0E:4C:FB:85:8A Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 34B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft Manifest number: 3490 Signing time: Thu 24 Apr 2025 14:16:42 +0000 Manifest this update: Thu 24 Apr 2025 14:16:41 +0000 Manifest next update: Thu 01 May 2025 14:16:41 +0000 Files and hashes: 1: 7CxkBsqh85689Fh1MVANVrlTYsA.crl (hash: MHNGHvK60fs9Qdywf3Yi2yXxLLst8C6AktFm7vFr3d0=) 2: 3768DFB41C6011EEAF58FB61C4F9AE02.roa (hash: Un+gRmwEe7RmL1YJ6V7sBXAGRc3bNfxPT16yGupUBnU=) 3: 316EEFD4AAE511E68EBE4D52C4F9AE02.roa (hash: JRg1LZXcFPzNHPCZgdhpiNiCJWsLCkY/WCIHJGUF1Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Apr 24 14:16:41 2025 GMT Not After : May 1 14:16:41 2025 GMT Subject: CN=680a47ca-e2f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a6:9e:80:8a:c1:57:d5:d1:4f:99:0f:15:99: 7c:4d:3a:19:67:01:d9:25:be:3f:e9:a5:5f:40:83: 3d:c4:0a:00:3e:8a:de:91:20:89:22:65:15:a4:7d: 65:22:be:9d:e6:ef:38:f5:3d:aa:60:fb:e3:29:d5: 6a:c2:f3:92:ed:33:17:c2:70:f3:28:75:33:90:e1: a5:20:6a:0f:6a:99:12:72:9c:64:13:6e:1e:b3:3b: 16:6f:02:42:5e:de:db:74:05:dc:63:e1:cb:6b:40: b3:5b:be:0b:00:3e:1e:83:68:bc:db:57:3d:74:e6: dd:22:09:cb:b7:25:c8:2b:93:03:ee:e9:82:55:28: 81:f3:85:06:20:e6:21:bd:2d:58:cf:2e:45:9d:bb: df:4d:d4:21:05:d4:6b:0c:95:6f:f7:2a:2e:40:8b: 36:e4:00:d1:75:93:f5:61:7a:ff:67:a0:6f:1d:e8: 7b:43:fc:e4:7d:4f:7a:8f:97:a4:7c:eb:59:f0:b6: 44:ee:31:64:ea:47:b8:23:e9:27:4c:5e:3c:2d:49: aa:4b:ae:f5:e9:5e:90:2f:55:64:08:3a:ee:9f:64: 5b:af:9e:a8:8e:62:90:b6:e3:b8:ba:e6:fd:fc:4f: 4b:f5:b9:62:a8:f6:83:55:e2:2b:8e:f7:57:a3:fa: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:61:6B:3D:EF:70:76:E1:3E:33:25:4B:61:3F:74:0E:4C:FB:85:8A X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:3b:7b:77:f2:4a:35:11:b6:7b:e3:f5:5d:6e:c0:53:14:a2: 0d:74:92:6a:9e:8a:33:67:24:98:d5:36:c4:ba:8c:54:a3:30: 51:c9:47:0d:6c:cf:8a:9c:dc:31:16:1d:ad:1e:f2:cc:80:37: b5:c1:44:b5:52:1c:5f:8c:2b:d7:67:7d:3c:ae:20:c6:4e:b5: 9d:51:f0:26:b7:2a:03:80:51:00:38:49:92:0a:2a:58:75:20: 2d:68:d3:09:66:6d:f1:00:30:ff:e2:9b:e9:91:5d:fb:1a:84: 80:73:2d:01:3d:27:0b:ae:fe:79:48:4f:5d:aa:c1:b0:51:43: eb:7f:46:2a:61:fe:e4:35:e6:eb:ba:5c:52:ca:fe:2d:e1:9e: 04:43:56:e2:fb:d7:b1:c0:fa:e2:84:9e:81:c5:43:8e:12:17: 3e:a8:7b:8b:f0:b3:15:7a:d0:2e:22:56:3a:d8:1f:96:14:e5: 6c:31:aa:58:3a:93:29:2a:b4:01:95:4c:f9:91:81:22:fe:6a: db:9f:67:af:80:e2:48:90:f9:5b:5c:3b:2c:53:a0:b8:db:48: a2:f5:2f:48:71:89:a9:92:d6:fe:6a:98:24:9f:54:e3:8e:a2: 74:ca:84:26:63:1f:71:6b:f0:e1:4c:fb:b4:fd:dd:41:1f:75: 56:2f:46:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjUwNDI0MTQxNjQxWhcNMjUwNTAxMTQxNjQxWjAYMRYwFAYD VQQDEw02ODBhNDdjYS1lMmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06aegIrBV9XRT5kPFZl8TToZZwHZJb4/6aVfQIM9xAoAPorekSCJImUVpH1l Ir6d5u849T2qYPvjKdVqwvOS7TMXwnDzKHUzkOGlIGoPapkScpxkE24eszsWbwJC Xt7bdAXcY+HLa0CzW74LAD4eg2i821c9dObdIgnLtyXIK5MD7umCVSiB84UGIOYh vS1Yzy5FnbvfTdQhBdRrDJVv9youQIs25ADRdZP1YXr/Z6BvHeh7Q/zkfU96j5ek fOtZ8LZE7jFk6ke4I+knTF48LUmqS6716V6QL1VkCDrun2Rbr56ojmKQtuO4uub9 /E9L9bliqPaDVeIrjvdXo/q+3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEphaz3v cHbhPjMlS2E/dA5M+4WKMB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC80RTg2NDUwQzFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1 Njg5RmgxTVZBTlZybFRZc0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJO3t38ko1EbZ74/VdbsBTFKINdJJqnoozZySY1TbEuoxUozBRyUcN bM+KnNwxFh2tHvLMgDe1wUS1UhxfjCvXZ308riDGTrWdUfAmtyoDgFEAOEmSCipY dSAtaNMJZm3xADD/4pvpkV37GoSAcy0BPScLrv55SE9dqsGwUUPrf0YqYf7kNebr ulxSyv4t4Z4EQ1bi+9exwPrihJ6BxUOOEhc+qHuL8LMVetAuIlY62B+WFOVsMapY OpMpKrQBlUz5kYEi/mrbn2evgOJIkPlbXDssU6C420ii9S9IcYmpktb+apgkn1Tj jqJ0yoQmYx9xa/DhTPu0/d1BH3VWL0bo -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:37 2025 by rpki-client