$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: wJKuLFVGasWaORn6BXmEwW/Jh66avH7Lynhj7TOymeQ= Subject key identifier: 6A:AE:B9:34:A0:59:69:39:FB:F9:70:1E:C1:31:82:FC:0B:5D:FA:EC Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 01DF Signing time: Tue 29 Apr 2025 02:50:14 +0000 Manifest this update: Tue 29 Apr 2025 02:50:13 +0000 Manifest next update: Tue 06 May 2025 02:50:13 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: oWNF9CtpwXzm7ZAtV66n5UjouXO0NQTWNvNAW42B6vM=) 2: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 88kWEiY/06EoXdAjoPmCFzf4ibe9Kqek376AzBNc9lE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Apr 29 02:50:13 2025 GMT Not After : May 6 02:50:13 2025 GMT Subject: CN=68103e66-72c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a5:7d:11:06:f2:c0:20:1a:c3:db:33:39:22: 60:fc:b7:4d:5e:f5:4a:91:58:6d:76:e0:24:d2:dc: ba:73:da:e7:ff:a7:70:0d:5f:8d:72:45:ac:ea:41: be:e0:97:87:47:67:74:10:9b:6f:02:56:60:68:72: 79:b1:fa:88:16:de:fc:4c:da:72:88:40:9c:4b:c6: 19:eb:1f:a7:46:e2:95:56:1a:72:e3:f5:e6:cc:84: 05:7b:18:67:bb:52:d9:5d:0b:3e:31:39:b5:30:a2: fe:32:3a:61:d3:db:78:b7:f5:6c:53:8f:86:1c:31: 08:10:16:63:04:73:22:c5:24:7e:da:a4:eb:28:fa: c6:9e:8f:7d:99:15:00:8e:1a:21:82:e9:6a:1e:7d: 0e:d3:eb:e2:6c:ae:49:07:4c:45:7e:62:1c:be:3e: c4:ee:25:df:8d:73:26:2a:2e:9c:3a:5a:20:69:8b: 6c:13:d4:ee:7c:a2:88:ea:52:36:73:da:5a:00:05: 56:b2:43:fb:2c:19:f6:42:17:9a:c9:cc:52:de:2b: 5c:5a:c0:6f:64:34:52:00:ea:4c:cf:26:90:f0:6f: de:a3:e9:41:11:c9:1e:ba:56:7a:73:1c:7b:e0:52: 38:1b:4b:c0:04:20:24:0a:98:98:d4:3b:b3:0b:26: 0f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AE:B9:34:A0:59:69:39:FB:F9:70:1E:C1:31:82:FC:0B:5D:FA:EC X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:06:93:c0:21:fe:13:04:dd:84:8c:7a:2f:a7:29:62:ff:73: 97:b6:30:ea:bc:5a:19:0b:f3:1a:66:c3:e1:b0:12:77:38:b4: 0e:58:54:b2:38:77:8f:03:8e:20:48:fd:df:9f:17:99:be:d4: a6:a6:3a:3b:a7:55:04:01:06:56:78:34:c0:d4:1a:a0:55:d9: 33:70:94:71:07:10:34:c7:ba:a3:e1:56:9d:99:47:7c:d8:23: d5:bf:56:ca:46:07:29:5e:98:06:30:fc:5c:26:5f:9d:0c:22: f1:7e:89:dd:eb:3c:7f:12:d3:ee:ae:0d:86:8e:a0:a3:a0:7a: 52:be:d6:9d:0b:84:91:cc:a4:72:4f:58:be:df:00:03:62:5b: d1:a8:9a:70:5e:fb:26:92:a6:78:b6:ed:aa:0c:2c:f0:76:65: 1f:51:08:24:81:c5:4c:fd:33:1e:84:1c:0f:ec:47:69:2b:ed: e4:8b:3e:1a:c6:45:bc:64:6f:40:44:96:6b:7f:82:27:11:69: 85:36:48:e1:77:f8:f3:23:6f:9d:40:a0:7b:d4:9f:4d:5d:b2: 00:ed:2d:41:23:ce:64:55:4e:5b:c6:ac:3e:6d:fd:76:1a:1a: fa:7e:7f:1a:45:0b:25:85:b6:e2:ca:a9:7b:42:db:59:a8:95: 43:31:6a:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUwNDI5MDI1MDEzWhcNMjUwNTA2MDI1MDEzWjAYMRYwFAYD VQQDEw02ODEwM2U2Ni03MmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qV9EQbywCAaw9szOSJg/LdNXvVKkVhtduAk0ty6c9rn/6dwDV+NckWs6kG+ 4JeHR2d0EJtvAlZgaHJ5sfqIFt78TNpyiECcS8YZ6x+nRuKVVhpy4/XmzIQFexhn u1LZXQs+MTm1MKL+Mjph09t4t/VsU4+GHDEIEBZjBHMixSR+2qTrKPrGno99mRUA jhohgulqHn0O0+vibK5JB0xFfmIcvj7E7iXfjXMmKi6cOlogaYtsE9TufKKI6lI2 c9paAAVWskP7LBn2QheaycxS3itcWsBvZDRSAOpMzyaQ8G/eo+lBEckeulZ6cxx7 4FI4G0vABCAkCpiY1DuzCyYPWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGquuTSg WWk5+/lwHsExgvwLXfrsMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3BpPAIf4TBN2EjHovpyli/3OXtjDqvFoZC/MaZsPhsBJ3OLQOWFSy OHePA44gSP3fnxeZvtSmpjo7p1UEAQZWeDTA1BqgVdkzcJRxBxA0x7qj4VadmUd8 2CPVv1bKRgcpXpgGMPxcJl+dDCLxfond6zx/EtPurg2GjqCjoHpSvtadC4SRzKRy T1i+3wADYlvRqJpwXvsmkqZ4tu2qDCzwdmUfUQgkgcVM/TMehBwP7EdpK+3kiz4a xkW8ZG9ARJZrf4InEWmFNkjhd/jzI2+dQKB71J9NXbIA7S1BI85kVU5bxqw+bf12 Ghr6fn8aRQslhbbiyql7QttZqJVDMWoN -----END CERTIFICATE-----Generated at Tue Apr 29 10:17:52 2025 by rpki-client