$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: ny4K2tZPXxKS55XLpok8o7obNojMwbeGCgV7EuGclb4= Subject key identifier: DA:71:49:8E:78:78:32:A5:F2:8C:0A:10:27:5B:C9:F3:84:F3:B0:B8 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 0105 Signing time: Fri 25 Apr 2025 04:06:43 +0000 Manifest this update: Fri 25 Apr 2025 04:06:43 +0000 Manifest next update: Fri 02 May 2025 04:06:43 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: /leYZDE35hM5nVe40RdDIbEck4jANuF6fKThyzVuRK4=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: Z3NjmZHjrC5QDqZVrNc2A+wY2OMdX2iZifn6im8ttEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Apr 25 04:06:43 2025 GMT Not After : May 2 04:06:43 2025 GMT Subject: CN=680b0a53-393e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c7:e9:e1:15:fc:9d:49:9e:11:fe:ab:05:7a: 83:fe:2b:3a:50:b4:89:16:b1:f7:09:f4:75:08:b7: da:d7:ca:15:a6:98:2f:8d:ef:3a:09:6a:67:28:22: 12:60:c6:35:56:fc:15:81:5d:e7:02:e3:52:33:58: 99:d5:51:16:7e:5b:b0:1f:77:de:61:4a:29:98:b8: a7:63:07:fc:b8:41:de:17:e1:a5:3b:e3:12:79:ed: 7b:e9:c4:06:45:c8:a4:89:aa:16:4c:1a:a3:e0:6c: 79:54:e7:28:5b:0b:c8:e0:b8:3f:ce:99:9e:9c:89: 10:01:6d:35:02:26:23:60:d4:a2:97:be:f1:4c:b1: 31:32:2d:8d:47:64:39:0d:54:1b:ae:42:1f:a3:0e: dc:77:cd:10:dc:02:40:42:69:61:2e:f4:f7:b6:7a: 86:72:a8:c5:7d:29:67:bc:c0:44:be:a9:ea:a8:29: dd:03:37:ad:99:1c:5d:43:b2:06:6e:47:ad:09:ed: 66:54:42:56:de:44:fb:52:c1:47:eb:0f:69:dc:b2: ec:57:c3:86:84:8b:0f:2f:9d:6e:1b:fd:f5:7c:d2: 92:15:26:18:cc:de:17:14:70:0c:23:87:6d:28:8d: 8c:bf:e2:76:f3:eb:0b:20:20:a7:c5:8c:c4:82:3b: 1a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:71:49:8E:78:78:32:A5:F2:8C:0A:10:27:5B:C9:F3:84:F3:B0:B8 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:eb:aa:ee:40:db:e2:47:4b:b1:3c:64:2a:7d:39:f3:1e:aa: 42:7b:6c:19:56:3b:81:b1:ae:41:53:d1:ee:c0:7a:5c:2d:ff: 48:f5:d3:a9:77:0e:3b:de:64:ef:b4:7e:ad:81:11:d2:ee:c5: 4f:cd:eb:db:44:f3:dd:e9:ad:61:aa:a4:9b:70:ef:a0:70:9f: b5:cd:66:0b:b4:ad:a6:03:b9:85:3f:30:03:dc:c9:8a:8f:ba: 7f:ea:c9:41:aa:fa:95:92:15:98:9d:ad:12:f7:8f:c0:53:95: b2:04:d4:ad:ce:93:3f:d4:fd:01:8c:e8:e1:84:7c:b8:ac:a9: 37:eb:5b:56:48:25:8a:ed:9c:52:07:60:26:82:1b:6f:65:8c: 97:fd:7f:89:e4:10:4d:0c:ea:eb:8b:74:0d:c1:52:f1:ac:bd: 69:2a:b2:be:0e:c0:e5:35:9e:10:15:50:22:ca:17:74:22:82: db:4f:17:2f:c2:f1:ee:64:7e:be:83:8c:7d:e1:15:22:40:7b: ea:da:20:13:e6:cd:87:bd:53:6b:d4:bb:4c:51:97:ce:15:d7: 89:f1:11:5c:93:2b:2c:06:6e:f6:a8:79:8c:1c:49:8a:11:7e: 1b:e7:dd:6c:e9:94:d4:f9:a3:3d:36:8f:08:0e:74:c5:61:2a: 10:69:ff:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjUwNDI1MDQwNjQzWhcNMjUwNTAyMDQwNjQzWjAYMRYwFAYD VQQDEw02ODBiMGE1My0zOTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcfp4RX8nUmeEf6rBXqD/is6ULSJFrH3CfR1CLfa18oVppgvje86CWpnKCIS YMY1VvwVgV3nAuNSM1iZ1VEWfluwH3feYUopmLinYwf8uEHeF+GlO+MSee176cQG RcikiaoWTBqj4Gx5VOcoWwvI4Lg/zpmenIkQAW01AiYjYNSil77xTLExMi2NR2Q5 DVQbrkIfow7cd80Q3AJAQmlhLvT3tnqGcqjFfSlnvMBEvqnqqCndAzetmRxdQ7IG bketCe1mVEJW3kT7UsFH6w9p3LLsV8OGhIsPL51uG/31fNKSFSYYzN4XFHAMI4dt KI2Mv+J28+sLICCnxYzEgjsa4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpxSY54 eDKl8owKECdbyfOE87C4MB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB266ruQNviR0uxPGQqfTnzHqpCe2wZVjuBsa5BU9HuwHpcLf9I9dOp dw473mTvtH6tgRHS7sVPzevbRPPd6a1hqqSbcO+gcJ+1zWYLtK2mA7mFPzAD3MmK j7p/6slBqvqVkhWYna0S94/AU5WyBNStzpM/1P0BjOjhhHy4rKk361tWSCWK7ZxS B2AmghtvZYyX/X+J5BBNDOrri3QNwVLxrL1pKrK+DsDlNZ4QFVAiyhd0IoLbTxcv wvHuZH6+g4x94RUiQHvq2iAT5s2HvVNr1LtMUZfOFdeJ8RFckyssBm72qHmMHEmK EX4b591s6ZTU+aM9No8IDnTFYSoQaf9M -----END CERTIFICATE-----Generated at Sat Apr 26 04:59:48 2025 by rpki-client