$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: a53oR9BpEQTvEa9fypF4RVrrS1tMNIKWWp6+E624+I4= Subject key identifier: 01:FD:7F:60:92:EE:96:94:75:A3:52:A1:18:07:DF:F4:F2:F6:F9:3F Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 3470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 3470 Signing time: Thu 24 Apr 2025 14:39:25 +0000 Manifest this update: Thu 24 Apr 2025 14:39:25 +0000 Manifest next update: Thu 01 May 2025 14:39:25 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: +0ZVZdg6V2ptlOdr9NyX/JRWESEgfh2GPGkHaHXvxfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13424 (0x3470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Apr 24 14:39:25 2025 GMT Not After : May 1 14:39:25 2025 GMT Subject: CN=680a4d1d-6a89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0a:1c:cc:e7:8f:90:69:0f:11:97:2c:3d:d0: 90:85:ec:a8:fe:ff:bb:75:b5:e8:dc:64:f8:fd:86: ae:04:a2:86:2e:04:4e:d3:04:e4:32:44:26:1c:17: 7a:9a:0a:75:18:1c:a4:58:15:41:78:88:77:3d:f8: ff:9a:c8:a3:57:5c:46:f9:2a:61:d3:6b:66:dc:47: 09:b8:93:6e:cb:3b:4b:2d:c7:7f:14:26:01:5e:ca: f7:1d:7c:57:48:52:a1:fc:00:f2:8d:68:4d:e8:db: 5f:4c:2e:1a:ca:e9:52:ba:f0:0e:c6:11:52:99:b8: b8:22:3b:79:24:4c:7e:ad:d9:01:70:7d:db:ce:00: e5:28:8c:46:15:c6:5c:94:94:b1:a9:4c:0b:b6:64: 56:e3:99:27:23:78:19:0c:e5:85:d7:71:22:03:b1: e3:2e:da:65:b4:0d:02:56:ab:b9:c6:4f:b4:ec:61: 64:4a:49:33:3c:fa:23:4e:53:fe:4f:75:47:ab:fe: 18:52:bf:96:f7:28:d6:f4:19:ef:eb:36:ee:5b:3c: 6b:bf:49:e4:4c:55:3b:07:ac:7f:ab:d5:13:b7:bd: 75:ca:28:3e:33:f9:83:e8:99:21:9f:99:0f:e6:61: 42:06:ee:e7:f9:81:e7:50:84:f3:c8:a5:ef:1a:cb: 3f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:FD:7F:60:92:EE:96:94:75:A3:52:A1:18:07:DF:F4:F2:F6:F9:3F X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:81:10:53:2e:48:46:ce:b3:5e:1e:e6:31:3d:6d:09:0d:70: 37:c9:51:17:f2:d0:ba:62:6e:ea:45:1e:5a:99:fa:29:70:36: 79:81:a4:e1:79:b4:76:bf:9a:99:12:9b:7d:65:6f:bd:4c:97: 92:87:e3:55:c1:d7:0a:40:f0:3b:da:a5:04:fd:69:5c:e4:ac: ad:7b:af:1d:35:20:9b:1f:37:9d:98:3e:78:ce:45:06:32:f5: e2:9e:f6:1e:98:6b:96:d2:2c:1f:50:5c:eb:b3:7f:51:ab:4c: 2a:a1:e3:45:fe:97:c1:a2:fb:6e:db:72:6f:95:09:58:e1:53: a5:6e:75:a1:69:0d:25:ec:a0:ec:c8:86:0c:d6:87:54:ec:c3: c7:6b:01:00:0a:73:5b:91:c4:8c:d7:61:74:b9:00:14:67:4d: 86:06:7b:58:1b:0c:4d:be:9e:8a:3b:ae:91:03:31:b6:cd:f2: 16:ac:83:a3:71:4e:3a:a8:bd:de:2b:88:b0:57:59:ec:90:bf: aa:94:fd:8f:b6:dd:8e:17:f9:c5:33:7f:e8:48:a0:41:93:04: 5c:08:2a:bf:e3:65:34:38:2e:4a:1b:5e:5c:2c:f7:65:d2:d7: 21:71:06:29:2b:27:ab:c7:04:6b:5e:ab:bb:2d:7e:bc:13:38: e2:37:2c:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUwNDI0MTQzOTI1WhcNMjUwNTAxMTQzOTI1WjAYMRYwFAYD VQQDEw02ODBhNGQxZC02YTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0woczOePkGkPEZcsPdCQheyo/v+7dbXo3GT4/YauBKKGLgRO0wTkMkQmHBd6 mgp1GBykWBVBeIh3Pfj/msijV1xG+Sph02tm3EcJuJNuyztLLcd/FCYBXsr3HXxX SFKh/ADyjWhN6NtfTC4ayulSuvAOxhFSmbi4Ijt5JEx+rdkBcH3bzgDlKIxGFcZc lJSxqUwLtmRW45knI3gZDOWF13EiA7HjLtpltA0CVqu5xk+07GFkSkkzPPojTlP+ T3VHq/4YUr+W9yjW9Bnv6zbuWzxrv0nkTFU7B6x/q9UTt711yig+M/mD6Jkhn5kP 5mFCBu7n+YHnUITzyKXvGss/+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAH9f2CS 7paUdaNSoRgH3/Ty9vk/MB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTgRBTLkhGzrNeHuYxPW0JDXA3yVEX8tC6Ym7qRR5amfopcDZ5gaTh ebR2v5qZEpt9ZW+9TJeSh+NVwdcKQPA72qUE/Wlc5Kyte68dNSCbHzedmD54zkUG MvXinvYemGuW0iwfUFzrs39Rq0wqoeNF/pfBovtu23JvlQlY4VOlbnWhaQ0l7KDs yIYM1odU7MPHawEACnNbkcSM12F0uQAUZ02GBntYGwxNvp6KO66RAzG2zfIWrIOj cU46qL3eK4iwV1nskL+qlP2Ptt2OF/nFM3/oSKBBkwRcCCq/42U0OC5KG15cLPdl 0tchcQYpKyerxwRrXqu7LX68EzjiNyyv -----END CERTIFICATE-----Generated at Sat Apr 26 03:29:18 2025 by rpki-client