$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: W1T5YeOdCrjfsNV6M29hH3nap3VTdz2xd36iEBTjltE= Subject key identifier: D2:14:CC:7F:52:77:F7:71:1A:19:2F:DA:EC:49:65:23:47:3C:FF:49 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 01DD Signing time: Fri 25 Apr 2025 01:57:27 +0000 Manifest this update: Fri 25 Apr 2025 01:57:26 +0000 Manifest next update: Fri 02 May 2025 01:57:26 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: CrOc5yeYuIKjzFZxqM50nhuXjHMQP/ZyQy0k7I6cR+s=) 2: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 88kWEiY/06EoXdAjoPmCFzf4ibe9Kqek376AzBNc9lE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Apr 25 01:57:26 2025 GMT Not After : May 2 01:57:26 2025 GMT Subject: CN=680aec07-3298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7a:ae:e9:82:c5:fb:fd:f2:4f:c9:04:39:6f: 34:be:81:bd:42:6e:3c:45:d2:0f:0c:1e:b0:40:59: 59:50:3c:04:50:39:81:f2:0d:3e:e4:a0:09:bb:79: af:f9:d8:38:ff:b3:e4:ea:b3:04:35:3c:c9:ce:56: 5b:96:50:a8:66:88:70:5c:8d:81:6c:a2:23:46:24: 33:11:44:fb:e3:5e:87:b5:52:c0:7c:1c:23:c5:51: f6:d7:d7:7e:33:64:8a:35:cb:e1:fd:39:0d:ca:c6: de:50:40:52:9c:b8:67:a6:ca:c6:b9:f7:f5:0b:6b: 1a:64:27:67:eb:0e:cf:c6:8d:3a:da:6c:0a:3c:18: 0a:d7:42:bc:5a:82:63:dc:6a:a7:92:d6:a5:7d:b2: 7a:05:68:6d:b7:33:45:f0:38:a2:48:ff:11:54:37: 58:20:fd:fc:78:0c:d8:ab:2a:f4:05:53:2c:c9:78: 7e:3f:52:7f:7c:ea:76:13:c3:6d:ad:d1:de:f3:fe: 52:a0:52:af:f0:68:f5:8e:8e:99:eb:50:36:ee:52: b4:d5:b0:1b:71:ab:dd:1b:b6:7d:e3:eb:5e:1d:62: 4b:c1:75:f1:03:04:cb:38:9f:3f:45:17:2c:33:0d: ad:a5:47:75:7a:82:81:40:58:5c:68:00:99:14:43: 3e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:14:CC:7F:52:77:F7:71:1A:19:2F:DA:EC:49:65:23:47:3C:FF:49 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:36:7e:4d:15:98:df:ed:13:b2:26:cb:4e:62:ed:84:76:cc: a2:1a:ab:a3:8b:66:77:0a:9c:66:59:5e:98:b2:bf:e9:17:1e: b7:92:66:67:29:34:4d:7b:0d:c1:13:bb:1b:54:fa:01:16:13: 62:16:ac:2b:66:c8:45:67:d5:e8:5d:13:1d:26:b7:52:65:75: d3:12:b3:18:05:21:f3:c1:48:94:21:7f:fc:f1:f0:61:f8:4c: dd:ff:6a:a9:88:9f:f8:c4:d8:af:c6:69:90:fc:9c:e9:48:d9: 3b:b9:eb:d8:80:45:66:ba:e6:24:e1:03:3e:73:1e:25:ba:e5: 31:d4:92:2f:ca:12:4f:f7:09:59:75:a7:71:e2:a2:2d:0e:bc: 0c:5b:b3:89:a3:6e:2a:07:f2:42:98:af:2f:6c:87:db:79:75: 46:ab:04:47:07:ef:0d:0e:c6:1f:e7:0f:1c:8b:c0:a0:e5:3b: df:4e:eb:bd:c6:88:13:b7:a2:9f:fb:53:78:36:18:85:40:8d: 17:ea:5e:9d:46:be:c8:7d:52:8c:1b:b9:d7:57:6e:91:f7:14: a6:ac:59:f3:01:ed:64:ea:ab:ef:7f:ae:db:a8:e9:96:5f:9b: c4:6c:2e:4a:f3:d1:11:f3:03:bf:66:ba:65:32:b3:17:b6:e5: 7e:6e:76:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUwNDI1MDE1NzI2WhcNMjUwNTAyMDE1NzI2WjAYMRYwFAYD VQQDEw02ODBhZWMwNy0zMjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43qu6YLF+/3yT8kEOW80voG9Qm48RdIPDB6wQFlZUDwEUDmB8g0+5KAJu3mv +dg4/7Pk6rMENTzJzlZbllCoZohwXI2BbKIjRiQzEUT7416HtVLAfBwjxVH219d+ M2SKNcvh/TkNysbeUEBSnLhnpsrGuff1C2saZCdn6w7Pxo062mwKPBgK10K8WoJj 3GqnktalfbJ6BWhttzNF8DiiSP8RVDdYIP38eAzYqyr0BVMsyXh+P1J/fOp2E8Nt rdHe8/5SoFKv8Gj1jo6Z61A27lK01bAbcavdG7Z94+teHWJLwXXxAwTLOJ8/RRcs Mw2tpUd1eoKBQFhcaACZFEM++QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIUzH9S d/dxGhkv2uxJZSNHPP9JMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Nn5NFZjf7ROyJstOYu2EdsyiGquji2Z3CpxmWV6Ysr/pFx63kmZn KTRNew3BE7sbVPoBFhNiFqwrZshFZ9XoXRMdJrdSZXXTErMYBSHzwUiUIX/88fBh +Ezd/2qpiJ/4xNivxmmQ/JzpSNk7uevYgEVmuuYk4QM+cx4luuUx1JIvyhJP9wlZ dadx4qItDrwMW7OJo24qB/JCmK8vbIfbeXVGqwRHB+8NDsYf5w8ci8Cg5TvfTuu9 xogTt6Kf+1N4NhiFQI0X6l6dRr7IfVKMG7nXV26R9xSmrFnzAe1k6qvvf67bqOmW X5vEbC5K89ER8wO/ZrplMrMXtuV+bnaG -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:19 2025 by rpki-client