$ rpki-client -vvf rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft File: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft (raw, json) Hash identifier: pMDwZ7RM1xSbLKQg04zfuExbMokhIx6XLcfeujGdKhY= Subject key identifier: FB:8D:52:DA:00:B2:E5:B9:99:20:9E:2F:8D:E2:B8:4A:4A:8C:AF:48 Authority key identifier: 06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5 Certificate issuer: /CN=A9178D35/serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5 Certificate serial: 3474 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft Manifest number: 3474 Signing time: Thu 24 Apr 2025 14:36:13 +0000 Manifest this update: Thu 24 Apr 2025 14:36:13 +0000 Manifest next update: Thu 01 May 2025 14:36:13 +0000 Files and hashes: 1: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl (hash: IbYBUL9Cp/Jx2zvoc02LuJ09SPil4fy8fX0O1nasjCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13428 (0x3474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178D35, serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5 Validity Not Before: Apr 24 14:36:13 2025 GMT Not After : May 1 14:36:13 2025 GMT Subject: CN=680a4c5d-212e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:77:2d:57:d3:fc:70:6b:ea:37:0e:3f:ba:34: 3d:5d:65:8a:2a:c6:03:1a:90:7c:0a:ad:d3:71:d0: ed:4b:45:35:0c:a3:8c:76:4e:ce:b1:71:2f:9e:34: a5:cc:a3:0d:c7:56:a4:24:6f:bd:d9:8e:90:3f:0a: 2a:97:e6:8e:ae:1c:ed:97:04:4f:f4:68:63:8f:17: d1:57:4c:02:3b:af:72:d8:4d:b0:c5:64:10:6f:6a: 38:0f:a0:5a:4b:56:1a:9b:5a:10:1e:c6:c6:38:e8: 67:07:e4:dd:29:93:fd:84:70:74:e3:1c:e9:a0:ed: 4a:db:7b:f3:fe:64:40:cd:00:18:c2:08:24:ca:84: ef:62:bc:8c:67:78:9a:e8:da:4c:59:74:24:f0:21: 8a:aa:1e:0b:ef:0e:c7:00:8f:86:f9:b4:8c:a0:ef: 3a:ec:39:07:a1:22:a0:4d:c9:1d:48:3d:4d:c3:73: 7a:ae:d9:2b:3b:60:ed:c5:86:10:5d:21:ea:1a:bd: 77:bc:10:ec:ff:91:c0:dd:7a:67:ee:4c:9b:b5:b2: 29:86:66:92:1c:72:59:53:cd:95:84:d2:e4:7b:1a: af:57:c6:0e:94:c9:bd:23:f2:d9:38:11:1e:f1:bb: d9:eb:f5:0d:c5:5a:14:d8:c2:28:6a:51:55:56:7b: 71:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8D:52:DA:00:B2:E5:B9:99:20:9E:2F:8D:E2:B8:4A:4A:8C:AF:48 X509v3 Authority Key Identifier: keyid:06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:33:46:1d:a5:8c:03:6e:18:6d:01:21:08:54:3d:3d:a7:f4: db:03:34:14:16:2d:69:b3:3e:2f:b8:3d:29:f8:ab:7d:28:85: 7c:36:e2:ad:dc:3c:5b:75:6d:f5:38:15:9e:58:3c:46:20:80: 49:79:35:21:67:7d:b0:d5:fb:4a:af:0b:08:06:d4:25:8b:e0: 73:e7:d8:eb:f3:e4:32:80:e6:da:dd:3a:17:1f:f9:b0:d6:91: 2c:b3:51:62:99:3f:58:9f:49:dd:08:c5:55:75:2d:f5:9a:e2: 5b:03:2c:b6:40:2e:f3:41:1f:c5:5b:02:52:45:f4:1d:65:97: ad:7c:ff:8c:76:32:16:b9:51:29:cc:e7:f1:f3:3d:49:15:aa: 71:fa:7a:27:bc:6e:52:67:0b:a9:1c:66:19:41:75:54:e9:87: 1c:c0:ee:3a:f7:48:9c:80:3a:28:28:d7:f3:66:c2:24:b8:f3: ca:da:a7:c8:73:bd:26:76:ed:73:d1:a0:26:8c:bb:4f:63:2a: 5b:dd:ea:95:18:c8:9d:b3:b3:3c:62:ed:83:4f:89:aa:e2:da: 51:85:41:c0:68:a5:57:55:32:c2:9e:b8:f1:d9:19:53:43:70: f9:68:67:33:54:da:73:79:f0:ce:6d:f2:af:4d:89:eb:1c:f0: fb:55:4f:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhEMzUxMTAvBgNVBAUTKDA2NTVFMjkxNUNBREU5MTY3N0FBQjQ4QzIzQzFFMjI0 QjQzREJBQTUwHhcNMjUwNDI0MTQzNjEzWhcNMjUwNTAxMTQzNjEzWjAYMRYwFAYD VQQDEw02ODBhNGM1ZC0yMTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHctV9P8cGvqNw4/ujQ9XWWKKsYDGpB8Cq3TcdDtS0U1DKOMdk7OsXEvnjSl zKMNx1akJG+92Y6QPwoql+aOrhztlwRP9GhjjxfRV0wCO69y2E2wxWQQb2o4D6Ba S1Yam1oQHsbGOOhnB+TdKZP9hHB04xzpoO1K23vz/mRAzQAYwggkyoTvYryMZ3ia 6NpMWXQk8CGKqh4L7w7HAI+G+bSMoO867DkHoSKgTckdSD1Nw3N6rtkrO2DtxYYQ XSHqGr13vBDs/5HA3Xpn7kybtbIphmaSHHJZU82VhNLkexqvV8YOlMm9I/LZOBEe 8bvZ6/UNxVoU2MIoalFVVntxswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuNUtoA suW5mSCeL43iuEpKjK9IMB8GA1UdIwQYMBaAFAZV4pFcrekWd6q0jCPB4iS0Pbql MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEQzNS9ENkY4ODVBNDFE OEMxMUUyOUZBNjIzRUEwOEIwMkNEMi9CbFhpa1Z5dDZSWjNxclNNSThIaUpMUTl1 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JsWGlrVnl0NlJaM3FyU01JOEhpSkxROXVxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEQzNS9ENkY4ODVBNDFEOEMxMUUyOUZBNjIzRUEwOEIwMkNEMi9CbFhpa1Z5dDZS WjNxclNNSThIaUpMUTl1cVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeM0YdpYwDbhhtASEIVD09p/TbAzQUFi1psz4vuD0p+Kt9KIV8NuKt 3DxbdW31OBWeWDxGIIBJeTUhZ32w1ftKrwsIBtQli+Bz59jr8+QygOba3ToXH/mw 1pEss1FimT9Yn0ndCMVVdS31muJbAyy2QC7zQR/FWwJSRfQdZZetfP+MdjIWuVEp zOfx8z1JFapx+nonvG5SZwupHGYZQXVU6YccwO4690icgDooKNfzZsIkuPPK2qfI c70mdu1z0aAmjLtPYypb3eqVGMids7M8Yu2DT4mq4tpRhUHAaKVXVTLCnrjx2RlT Q3D5aGczVNpzefDObfKvTYnrHPD7VU83 -----END CERTIFICATE-----Generated at Sat Apr 26 05:22:21 2025 by rpki-client