$ rpki-client -vvf rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft File: k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft (raw, json) Hash identifier: 0a0FoXgMOf2CNtGc/Ao0Zyla0yfW6mNGeBFkVk0Y8Ss= Subject key identifier: 98:2E:6D:07:68:3F:03:65:AA:2F:15:CB:89:3C:19:26:74:20:54:57 Authority key identifier: 93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 Certificate issuer: /CN=A917584F/serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Certificate serial: 0525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft Manifest number: 0521 Signing time: Thu 24 Apr 2025 23:19:47 +0000 Manifest this update: Thu 24 Apr 2025 23:19:46 +0000 Manifest next update: Thu 01 May 2025 23:19:46 +0000 Files and hashes: 1: k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl (hash: EcgpMC0V5SO6iLJyKlr4gSwbs5/T+qg1zt8acLwMX2w=) 2: CE00DA34FF4411EBAD3A632AC4F9AE02.roa (hash: gsNxtD+HCrA+T6b9YqONqQ4jv3lalAETh9MJihh24Cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917584F, serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Validity Not Before: Apr 24 23:19:46 2025 GMT Not After : May 1 23:19:46 2025 GMT Subject: CN=680ac713-fef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:23:da:42:ae:fa:3d:be:d3:43:85:1c:fe:79: 7f:75:94:c7:69:1b:c2:e7:39:df:e2:b0:b8:de:69: ba:a3:5f:e9:40:04:9a:26:87:4f:a6:ba:a3:e2:d3: 74:49:c7:4c:ba:f8:3d:02:42:c2:31:08:88:82:04: 20:76:1f:6f:d4:fd:f5:94:01:fb:bd:9e:9b:06:2e: b3:08:a3:db:e4:4f:bb:25:ad:4d:50:ef:40:b3:1f: c2:7d:6d:bf:e0:cc:73:b7:f6:3d:12:20:0e:a2:f0: 95:d1:71:ad:d5:4a:be:bb:0f:22:f3:33:ec:84:69: e4:b2:85:91:7f:e2:c1:00:a4:0f:67:c1:14:e5:64: e9:dd:a8:61:72:d2:a1:52:ff:ed:67:84:e7:60:63: db:3b:8f:6b:a3:8d:b1:6b:32:ff:13:6b:58:c4:6b: 82:41:92:72:14:27:e0:35:63:58:a2:d2:36:0a:b5: 84:b0:38:b2:6b:cf:6c:dc:f3:dd:ca:ff:bd:37:1d: 12:56:8d:22:2a:42:8d:b4:fd:a7:a5:90:bc:b1:6f: 24:df:72:a3:e4:2f:70:bd:78:b6:9f:23:c8:e0:e2: 28:91:0e:1d:8e:de:3a:4c:02:c9:05:64:97:a4:3a: 45:0b:22:f0:fe:00:4a:9a:83:08:31:4c:3c:25:d7: 43:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2E:6D:07:68:3F:03:65:AA:2F:15:CB:89:3C:19:26:74:20:54:57 X509v3 Authority Key Identifier: keyid:93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:0b:e5:eb:ef:46:22:5a:99:ef:52:68:dc:e0:42:79:0e:3e: ff:fc:1e:33:4f:8c:96:34:af:75:c1:91:f8:6b:d8:eb:29:1d: d5:bc:f3:99:47:85:37:8e:5e:81:50:04:b8:e5:c4:a9:9c:96: 08:b9:8a:9b:0d:c6:c1:bd:aa:9a:ce:c1:aa:e2:40:a4:63:73: 8e:39:dd:a2:07:cf:b8:8c:d0:a8:d6:77:2a:c8:15:5f:b4:f2: 62:b7:1f:b8:a7:fc:3a:c1:5a:e3:47:fe:ef:c7:df:be:55:46: cb:c2:02:05:8e:07:a6:12:0f:b5:59:00:00:d7:08:03:63:21: fc:04:2f:3c:e2:7f:00:9c:ce:7c:5e:35:c2:a0:da:9d:9d:18: 97:1a:f6:cf:5d:b1:41:aa:8b:41:25:d9:af:80:3c:2c:6c:a6: ba:12:c9:9f:c9:18:76:df:0a:fc:40:e1:9d:a0:a2:f6:58:9f: 2e:78:a1:44:f1:ea:26:08:0f:f8:00:55:84:ed:83:24:39:cc: 94:1a:12:9e:a6:fa:48:59:a4:74:97:10:2d:75:29:68:a1:7e: e0:16:81:a5:3c:72:19:ac:22:65:96:80:b3:ce:ee:af:4f:d9: a8:e4:7d:7a:d7:58:b2:3c:18:d3:e3:c0:83:84:f1:e9:14:99: f4:12:d3:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4NEYxMTAvBgNVBAUTKDkzNEFERkI5NEEzOUEwQzM3Qjc3Rjk3OTAzNzA2QjYx RjBCRUZFRTcwHhcNMjUwNDI0MjMxOTQ2WhcNMjUwNTAxMjMxOTQ2WjAYMRYwFAYD VQQDEw02ODBhYzcxMy1mZWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCPaQq76Pb7TQ4Uc/nl/dZTHaRvC5znf4rC43mm6o1/pQASaJodPprqj4tN0 ScdMuvg9AkLCMQiIggQgdh9v1P31lAH7vZ6bBi6zCKPb5E+7Ja1NUO9Asx/CfW2/ 4Mxzt/Y9EiAOovCV0XGt1Uq+uw8i8zPshGnksoWRf+LBAKQPZ8EU5WTp3ahhctKh Uv/tZ4TnYGPbO49ro42xazL/E2tYxGuCQZJyFCfgNWNYotI2CrWEsDiya89s3PPd yv+9Nx0SVo0iKkKNtP2npZC8sW8k33Kj5C9wvXi2nyPI4OIokQ4djt46TALJBWSX pDpFCyLw/gBKmoMIMUw8JddD2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgubQdo PwNlqi8Vy4k8GSZ0IFRXMB8GA1UdIwQYMBaAFJNK37lKOaDDe3f5eQNwa2Hwvv7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTg0Ri9ERDcyQ0U1OEY5 QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9NTjdkX2w1QTNCcllmQy1f dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swcmZ1VW81b01ON2RfbDVBM0JyWWZDLV91Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTg0Ri9ERDcyQ0U1OEY5QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9N TjdkX2w1QTNCcllmQy1fdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXC+Xr70YiWpnvUmjc4EJ5Dj7//B4zT4yWNK91wZH4a9jrKR3VvPOZ R4U3jl6BUAS45cSpnJYIuYqbDcbBvaqazsGq4kCkY3OOOd2iB8+4jNCo1ncqyBVf tPJitx+4p/w6wVrjR/7vx9++VUbLwgIFjgemEg+1WQAA1wgDYyH8BC884n8AnM58 XjXCoNqdnRiXGvbPXbFBqotBJdmvgDwsbKa6EsmfyRh23wr8QOGdoKL2WJ8ueKFE 8eomCA/4AFWE7YMkOcyUGhKepvpIWaR0lxAtdSlooX7gFoGlPHIZrCJlloCzzu6v T9mo5H1611iyPBjT48CDhPHpFJn0EtO1 -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:36 2025 by rpki-client