$ rpki-client -vvf rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft File: 3HxGdMlvt2fql8B49oDvV07eu78.mft (raw, json) Hash identifier: 7mzI9bG+xvkIdlRGR4gxbfbCP7+lciN3hH68ujfT8GE= Subject key identifier: 44:85:E0:FD:A8:2F:B3:80:69:E6:D7:68:98:1A:F2:92:95:06:4F:D8 Authority key identifier: DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF Certificate issuer: /CN=A917CD31/serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft Manifest number: 0652 Signing time: Thu 24 Apr 2025 22:17:59 +0000 Manifest this update: Thu 24 Apr 2025 22:17:59 +0000 Manifest next update: Thu 01 May 2025 22:17:59 +0000 Files and hashes: 1: 3HxGdMlvt2fql8B49oDvV07eu78.crl (hash: Oy3eT9acjhMac1NCX5tLFF1uu8DbbxGZRFidr5FIzao=) 2: A88A17FA823C11EBB35EF50FC4F9AE02.roa (hash: ut9kkhaYpPkueMT9PUXekkExmboRUtj4jv3lyVcffmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CD31, serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Validity Not Before: Apr 24 22:17:59 2025 GMT Not After : May 1 22:17:59 2025 GMT Subject: CN=680ab897-2842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:07:28:45:5a:c2:5b:78:08:98:4e:03:d3:20: 2c:b7:05:b0:b7:b3:d0:c3:8d:43:2c:eb:aa:b1:b5: 8d:f2:52:92:97:97:7a:09:af:21:87:32:c6:ff:13: d0:25:e0:5f:aa:e2:8f:cc:86:e0:2e:cc:46:d5:a0: cf:fc:80:6f:95:fd:c7:25:af:0b:4f:27:c3:ad:af: fd:0a:8a:19:9b:38:42:59:44:86:d6:0c:6f:42:f0: a6:59:40:29:7d:2c:ae:b7:11:74:f7:fe:a9:6a:20: 63:6d:4b:82:cf:e5:e1:8c:ae:cf:54:48:64:37:60: 37:97:80:46:fd:39:bd:07:02:0a:38:87:f6:97:27: d0:80:c0:67:07:03:cf:9c:2e:00:2d:25:e8:69:4c: a5:98:7e:f7:31:72:0b:4b:7d:67:da:e6:3f:55:00: de:02:46:bf:75:a5:6d:35:56:99:fa:2f:16:f9:90: a2:a5:88:b4:c2:55:e5:3a:00:0a:49:b7:10:89:74: ab:31:e1:37:dc:83:af:c5:dc:94:89:60:3e:fb:5b: 4e:51:0c:60:3a:65:02:fa:fb:af:40:a5:f3:43:cd: 5f:a7:e5:9a:b6:77:c3:cf:ff:92:69:f3:93:37:fe: 7a:ae:8e:3d:42:21:4b:3d:4e:88:ff:84:4e:07:bb: a8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:85:E0:FD:A8:2F:B3:80:69:E6:D7:68:98:1A:F2:92:95:06:4F:D8 X509v3 Authority Key Identifier: keyid:DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:8e:85:dc:ae:dc:c9:d4:5c:ac:8d:3a:24:62:88:52:74:c4: d0:d9:af:2d:ab:ce:97:79:83:28:d0:ff:3a:67:1a:ce:b6:6d: 53:26:53:3e:c6:47:97:98:a7:35:3e:9f:38:27:6a:a3:06:cc: 2d:89:07:e3:f8:52:2c:af:91:a0:ee:36:66:22:e3:47:3e:a1: 08:0f:a0:91:b2:ef:88:da:2d:00:fc:03:ca:73:fa:cc:0d:cd: 48:52:be:c8:c4:e9:35:77:1a:01:dd:da:68:e5:bc:47:22:c1: 25:3e:d5:00:fd:68:b7:4d:86:f2:22:7f:3d:fc:db:6a:0a:9f: e3:80:d3:69:3e:e6:d7:9a:5f:2b:b0:3d:40:9c:b7:0f:ac:b6: d0:6c:54:18:08:d5:e2:ca:5e:3e:05:ff:df:43:fa:36:31:f6: 17:ea:49:b2:59:62:f3:4a:96:21:39:1d:e6:fd:77:4d:48:1b: cd:a6:15:55:1d:18:96:01:a6:29:3a:e6:4f:ac:e0:dc:c9:cb: c6:4e:47:39:ae:38:ad:fb:73:50:47:77:32:ff:c5:5d:4e:8d: 2a:79:32:cc:96:8b:cb:d5:f6:0b:73:e4:92:66:0c:36:c9:08: 19:73:49:1a:75:f9:13:ee:09:9b:46:ac:ab:51:f2:84:a9:80: f7:26:3a:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NEMzExMTAvBgNVBAUTKERDN0M0Njc0Qzk2RkI3NjdFQTk3QzA3OEY2ODBFRjU3 NEVERUJCQkYwHhcNMjUwNDI0MjIxNzU5WhcNMjUwNTAxMjIxNzU5WjAYMRYwFAYD VQQDEw02ODBhYjg5Ny0yODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwcoRVrCW3gImE4D0yAstwWwt7PQw41DLOuqsbWN8lKSl5d6Ca8hhzLG/xPQ JeBfquKPzIbgLsxG1aDP/IBvlf3HJa8LTyfDra/9CooZmzhCWUSG1gxvQvCmWUAp fSyutxF09/6paiBjbUuCz+XhjK7PVEhkN2A3l4BG/Tm9BwIKOIf2lyfQgMBnBwPP nC4ALSXoaUylmH73MXILS31n2uY/VQDeAka/daVtNVaZ+i8W+ZCipYi0wlXlOgAK SbcQiXSrMeE33IOvxdyUiWA++1tOUQxgOmUC+vuvQKXzQ81fp+WatnfDz/+SafOT N/56ro49QiFLPU6I/4ROB7uogwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESF4P2o L7OAaebXaJga8pKVBk/YMB8GA1UdIwQYMBaAFNx8RnTJb7dn6pfAePaA71dO3ru/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0QzMS83NUY1N0IxMDgy M0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQyZnFsOEI0OW9EdlYwN2V1 NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIeEdkTWx2dDJmcWw4QjQ5b0R2VjA3ZXU3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0QzMS83NUY1N0IxMDgyM0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQy ZnFsOEI0OW9EdlYwN2V1NzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfjoXcrtzJ1FysjTokYohSdMTQ2a8tq86XeYMo0P86ZxrOtm1TJlM+ xkeXmKc1Pp84J2qjBswtiQfj+FIsr5Gg7jZmIuNHPqEID6CRsu+I2i0A/APKc/rM Dc1IUr7IxOk1dxoB3dpo5bxHIsElPtUA/Wi3TYbyIn89/NtqCp/jgNNpPubXml8r sD1AnLcPrLbQbFQYCNXiyl4+Bf/fQ/o2MfYX6kmyWWLzSpYhOR3m/XdNSBvNphVV HRiWAaYpOuZPrODcycvGTkc5rjit+3NQR3cy/8VdTo0qeTLMlovL1fYLc+SSZgw2 yQgZc0kadfkT7gmbRqyrUfKEqYD3Jjpv -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:00 2025 by rpki-client