$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: MMJihYHOypVXKA0T6+tnxXlF/SojVKFcBFJvJMvr43Y= Subject key identifier: 75:6F:C7:BC:1C:5E:F2:97:1F:30:A5:AB:E9:81:74:27:F4:BA:16:9C Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 2382 Signing time: Thu 24 Apr 2025 15:50:52 +0000 Manifest this update: Thu 24 Apr 2025 15:50:51 +0000 Manifest next update: Thu 01 May 2025 15:50:51 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: iWqgXOaFfb8uKXhaQvOigVuco6+sdzafHrahwVNT2SQ=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: vb5cHcm55U7pljjzoO4g9FNB1flb1KgvWDDtM0SHGvU=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: SI+LLofCjizJ4ADDiYbKrAg1//cncoxs2Ga5Zj0MMu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9135 (0x23af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Apr 24 15:50:51 2025 GMT Not After : May 1 15:50:51 2025 GMT Subject: CN=680a5ddc-506d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f4:ce:5c:fa:e5:d1:18:bf:96:78:00:0a:c4: 5f:87:72:ac:67:50:0b:e3:0d:2c:06:13:fc:09:16: d7:22:16:63:ec:cd:c1:74:4f:ca:49:29:58:f9:31: 38:ae:e2:32:4c:35:19:16:69:d1:ef:8c:e7:a9:64: 5d:a8:89:82:33:15:50:57:54:6f:7d:29:7b:b7:ae: 68:54:3f:51:54:17:ba:de:ab:f9:8f:14:bf:68:4f: 3a:e9:7d:3a:17:60:36:88:3f:d6:8d:31:99:bf:36: 50:0c:7c:0a:01:55:d9:8a:3a:1c:ce:76:fd:6e:1f: 9c:8c:c0:99:8a:55:6f:ba:d2:da:7c:d6:f1:73:bd: de:9a:fa:8a:9e:9d:98:51:a5:84:73:55:e4:b4:69: 77:99:ff:62:0b:bd:44:80:73:b3:0c:5b:00:8a:ca: 32:9c:e7:67:e2:a5:a0:c8:32:83:aa:e1:f7:87:18: 81:6b:60:ad:d3:3b:0d:3b:78:bc:57:79:81:60:b7: 22:de:59:d6:15:cc:19:1f:7c:3c:fd:48:aa:cb:c2: 18:a3:2a:37:bc:9f:7f:55:5c:b7:87:6e:8c:6c:4c: 61:c3:61:06:57:d5:d8:ba:0a:b0:fa:36:58:f9:93: 42:2f:03:78:1d:36:90:ff:54:54:06:d6:fe:74:42: b8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6F:C7:BC:1C:5E:F2:97:1F:30:A5:AB:E9:81:74:27:F4:BA:16:9C X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b7:61:3c:1b:b8:84:eb:97:bf:71:0a:55:af:71:a8:e8:2b: c1:b9:70:a7:ff:cf:af:7e:5e:1f:b1:a9:69:47:48:34:fa:72: 68:9f:5f:ad:3a:79:fc:d5:6b:3f:3e:53:9c:99:f8:a3:0f:67: 2c:f0:65:99:7c:5c:4e:b9:d7:1a:70:22:66:bc:7b:19:0a:be: 3d:82:63:c8:a3:7b:8b:a0:4d:a6:f9:f2:a2:3d:08:c4:13:d1: 2c:b6:04:1a:e3:81:12:cd:55:b8:a5:fc:bc:de:cd:30:75:b4: 10:7b:4c:e7:3d:81:0b:7c:9e:fe:b6:87:c7:70:2c:21:95:ac: 4d:66:a5:f6:c8:ee:59:17:9c:44:bc:c4:c9:f7:90:98:0d:72: 77:6d:7b:2b:7c:5c:f6:cb:07:5c:9e:58:4d:dc:3a:90:b9:1a: 4f:24:77:54:d5:c9:46:72:25:71:a2:d6:88:3e:7f:89:b6:58: 22:3a:c9:de:e6:54:1a:8e:10:c1:c5:6e:a3:08:9b:98:3a:4d: b4:4a:f0:11:f5:10:33:73:f3:66:e4:0d:fc:75:cf:ca:65:96: 6a:81:aa:a3:56:e1:9f:37:94:7a:02:3e:30:93:66:9a:55:be: 11:d7:cc:4d:e9:55:52:e6:23:d1:92:15:a1:bd:73:69:4f:ab: 7e:4d:0d:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwNDI0MTU1MDUxWhcNMjUwNTAxMTU1MDUxWjAYMRYwFAYD VQQDEw02ODBhNWRkYy01MDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPTOXPrl0Ri/lngACsRfh3KsZ1AL4w0sBhP8CRbXIhZj7M3BdE/KSSlY+TE4 ruIyTDUZFmnR74znqWRdqImCMxVQV1RvfSl7t65oVD9RVBe63qv5jxS/aE866X06 F2A2iD/WjTGZvzZQDHwKAVXZijocznb9bh+cjMCZilVvutLafNbxc73emvqKnp2Y UaWEc1XktGl3mf9iC71EgHOzDFsAisoynOdn4qWgyDKDquH3hxiBa2Ct0zsNO3i8 V3mBYLci3lnWFcwZH3w8/Uiqy8IYoyo3vJ9/VVy3h26MbExhw2EGV9XYugqw+jZY +ZNCLwN4HTaQ/1RUBtb+dEK4UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVvx7wc XvKXHzClq+mBdCf0uhacMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1t2E8G7iE65e/cQpVr3Go6CvBuXCn/8+vfl4fsalpR0g0+nJon1+t Onn81Ws/PlOcmfijD2cs8GWZfFxOudcacCJmvHsZCr49gmPIo3uLoE2m+fKiPQjE E9EstgQa44ESzVW4pfy83s0wdbQQe0znPYELfJ7+tofHcCwhlaxNZqX2yO5ZF5xE vMTJ95CYDXJ3bXsrfFz2ywdcnlhN3DqQuRpPJHdU1clGciVxotaIPn+JtlgiOsne 5lQajhDBxW6jCJuYOk20SvAR9RAzc/Nm5A38dc/KZZZqgaqjVuGfN5R6Aj4wk2aa Vb4R18xN6VVS5iPRkhWhvXNpT6t+TQ0Y -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:39 2025 by rpki-client