$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: FaxtPEVMIy2cuQxhmGVU5L4uPPlvkxHh8PTeQ9wCKfo= Subject key identifier: 31:5E:89:EA:39:03:33:2B:62:52:9F:CF:9D:4D:BF:E6:D3:77:49:F9 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 34AD Signing time: Thu 24 Apr 2025 14:26:37 +0000 Manifest this update: Thu 24 Apr 2025 14:26:37 +0000 Manifest next update: Thu 01 May 2025 14:26:37 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: eRajQEoj4z0ZsNqwox2Ln2WuXpJb5wyPsSmkRDTjTIM=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: /HE0+/UKz944jtczmVdL8xtwz3w/VhqI3+iHS/siDT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Apr 24 14:26:37 2025 GMT Not After : May 1 14:26:37 2025 GMT Subject: CN=680a4a1d-2efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:52:80:f1:fa:de:9d:89:be:9a:84:ec:bf:06: 1b:67:f4:10:42:61:b1:ce:03:e8:b3:ba:55:ac:55: c6:6c:76:33:80:2e:0d:ec:a9:6f:b0:03:89:14:50: f9:20:38:52:5e:09:b5:ec:8f:18:8e:e1:0f:2e:09: 6b:5d:fd:50:c3:9a:51:54:4b:36:8c:03:63:dc:3d: 93:c3:a9:9c:83:6d:65:8a:92:ff:b5:e0:4a:b9:65: ad:f6:5b:fb:49:a9:2e:eb:54:5f:d7:7f:8f:4d:62: dd:07:48:89:c8:30:ff:86:1f:90:da:55:a5:db:5b: bb:28:79:4f:56:2c:a3:64:af:dc:c8:3b:ca:28:65: 5a:90:3d:22:cd:96:99:c0:1a:f6:11:2f:87:98:2a: c8:22:67:d0:fe:4c:5e:f1:30:18:1a:cd:76:59:b0: f0:a0:1f:5f:4c:cc:94:9f:27:de:df:10:ba:6a:3a: 2f:44:30:27:a9:fc:96:3d:28:bb:a0:87:e4:ab:6b: 31:d4:42:98:00:2d:af:94:b4:f6:7f:89:ba:f8:da: 45:31:40:8e:fb:e9:4a:8b:2b:eb:5a:71:df:7e:29: 39:06:6d:2c:a9:3f:68:ac:b2:fa:64:f5:68:f9:93: 6c:5a:57:1c:86:39:47:a7:ba:d5:27:b4:02:d4:e4: 13:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5E:89:EA:39:03:33:2B:62:52:9F:CF:9D:4D:BF:E6:D3:77:49:F9 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:e8:9d:d2:44:de:e1:75:03:01:5b:cc:94:e3:17:90:94:38: 89:ce:84:44:4e:fa:5c:4d:ce:48:a4:dd:a6:d5:5b:cc:4d:a4: e7:f7:1b:5a:0c:5e:0b:11:0f:72:ab:09:bb:ec:6d:c5:a3:28: 1a:91:10:48:48:2d:f3:7c:44:22:1a:81:3d:78:1f:23:20:bf: db:7e:2d:61:48:47:21:9a:ac:32:63:93:41:05:e7:2e:18:36: 49:04:e6:c8:ef:79:f5:e9:56:8d:a3:43:6e:ed:fa:5f:26:98: dd:14:26:10:5c:78:1e:7a:72:b3:62:9a:60:99:50:2e:73:58: 21:5e:e6:48:ac:c4:84:73:1b:f5:81:99:e7:8f:0f:1a:2a:5a: 21:f1:5e:a6:2b:00:6e:3f:67:14:50:0a:ce:b5:8c:b4:18:49: 00:16:b4:94:bb:2b:a7:4c:33:18:f9:e7:18:34:2e:ec:d0:00: 83:10:c0:14:42:ba:ba:30:da:ae:80:93:38:5a:dc:5a:a4:85: 3b:93:78:6d:8d:9b:7e:2e:80:31:3a:c3:d7:16:cb:20:a8:60: c8:c5:cf:62:c9:e9:38:c3:fa:7e:3e:c8:25:25:19:e1:bc:7d: a6:72:0a:08:c2:21:98:02:e7:79:0d:11:3f:e3:1e:36:09:bd: a0:e1:02:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUwNDI0MTQyNjM3WhcNMjUwNTAxMTQyNjM3WjAYMRYwFAYD VQQDEw02ODBhNGExZC0yZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVKA8frenYm+moTsvwYbZ/QQQmGxzgPos7pVrFXGbHYzgC4N7KlvsAOJFFD5 IDhSXgm17I8YjuEPLglrXf1Qw5pRVEs2jANj3D2Tw6mcg21lipL/teBKuWWt9lv7 Saku61Rf13+PTWLdB0iJyDD/hh+Q2lWl21u7KHlPViyjZK/cyDvKKGVakD0izZaZ wBr2ES+HmCrIImfQ/kxe8TAYGs12WbDwoB9fTMyUnyfe3xC6ajovRDAnqfyWPSi7 oIfkq2sx1EKYAC2vlLT2f4m6+NpFMUCO++lKiyvrWnHffik5Bm0sqT9orLL6ZPVo +ZNsWlcchjlHp7rVJ7QC1OQT4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFeieo5 AzMrYlKfz51Nv+bTd0n5MB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC16J3SRN7hdQMBW8yU4xeQlDiJzoRETvpcTc5IpN2m1VvMTaTn9xta DF4LEQ9yqwm77G3FoygakRBISC3zfEQiGoE9eB8jIL/bfi1hSEchmqwyY5NBBecu GDZJBObI73n16VaNo0Nu7fpfJpjdFCYQXHgeenKzYppgmVAuc1ghXuZIrMSEcxv1 gZnnjw8aKloh8V6mKwBuP2cUUArOtYy0GEkAFrSUuyunTDMY+ecYNC7s0ACDEMAU Qrq6MNqugJM4WtxapIU7k3htjZt+LoAxOsPXFssgqGDIxc9iyek4w/p+PsglJRnh vH2mcgoIwiGYAud5DRE/4x42Cb2g4QJc -----END CERTIFICATE-----Generated at Sat Apr 26 05:50:04 2025 by rpki-client