$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft File: 25LUPJBhJQWzr0bpZKaMyfXzsq8.mft (raw, json) Hash identifier: O/6AEgNb/+uwpGT8Vz/PleMSyaXOxtqf1keUhSUDdQg= Subject key identifier: 4C:3E:74:CD:73:CB:8F:66:17:AD:FB:E3:C7:3B:01:F0:DF:1E:95:14 Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Certificate serial: 0322 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft Manifest number: 0309 Signing time: Fri 25 Apr 2025 01:04:36 +0000 Manifest this update: Fri 25 Apr 2025 01:04:36 +0000 Manifest next update: Fri 02 May 2025 01:04:36 +0000 Files and hashes: 1: 25LUPJBhJQWzr0bpZKaMyfXzsq8.crl (hash: p7zieOT8/LFuMJF+MN3JtUg4y4MQUz8juHZvEZtjeao=) 2: 299F07F2E15611EFA15DF23DC4F9AE02.roa (hash: wx66/Hu06eoP+zVVWAn8D+AM4OJc8EVNFsXhZZx3TEM=) 3: 9ABE08C606F311F08407D351C4F9AE02.roa (hash: Oo/z3Tl848fDTqTqN7CA+y187n0AUvuUe1PsbRy+loY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 802 (0x322) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Validity Not Before: Apr 25 01:04:36 2025 GMT Not After : May 2 01:04:36 2025 GMT Subject: CN=680adfa4-1bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:61:61:21:c3:7d:8e:6c:23:09:20:04:ce:80: 94:49:1d:ed:8a:c6:34:0d:5e:4e:1e:44:85:c6:3c: 1b:ba:d4:cb:5c:1d:bc:36:a5:0e:3b:4c:d3:16:6c: 38:a9:06:d5:db:90:3f:03:b7:fe:5b:e8:6f:c9:6a: f7:da:7b:ba:c3:d7:9f:5f:43:40:f5:2c:36:d5:f3: 80:77:e0:92:87:9e:5e:2e:35:32:23:8a:11:94:d9: 9b:2d:98:77:d6:48:1c:62:25:80:7d:53:77:48:c5: fd:d9:53:2d:5f:0b:67:7a:c3:84:19:e7:e4:cc:6c: 71:8e:49:5e:5d:05:44:9f:4b:89:cd:6a:9a:e6:79: 23:88:1f:88:4e:6c:b3:8e:57:3b:80:97:7c:6a:43: 80:cb:2f:0e:ff:a2:20:c2:54:c2:bf:09:df:28:ff: 5d:e0:0c:40:f3:d2:d8:57:cd:8c:6c:52:03:bf:a3: 3b:f4:5e:4a:de:c4:ec:6a:e7:c9:85:7e:a8:31:5a: 9b:a1:34:66:d1:17:31:f7:7e:1c:82:64:72:69:2e: 86:8d:99:aa:2b:ab:75:cd:0a:41:5f:f0:3f:e6:4d: 94:f3:d0:c3:d5:e8:87:3e:86:9f:ad:87:14:27:f2: bb:d9:c0:d5:70:d6:ce:ca:e1:c3:ea:86:c0:a7:a1: 92:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3E:74:CD:73:CB:8F:66:17:AD:FB:E3:C7:3B:01:F0:DF:1E:95:14 X509v3 Authority Key Identifier: keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:14:37:16:a9:70:53:8e:c1:25:ed:db:96:71:f4:dc:be:59: 3f:3b:86:78:2f:65:b0:94:df:0a:78:9e:d6:e1:43:3f:17:c4: a1:bf:14:a1:ca:13:fa:1a:41:1f:77:5b:48:17:39:e8:59:c7: f9:8d:4f:27:30:be:a4:de:86:ff:3b:5f:06:73:81:8c:83:7b: c0:4a:9f:3a:16:4d:a5:05:80:7c:3d:90:9a:3c:6c:29:1e:1d: 5c:f7:40:8f:34:37:f5:ce:56:73:4f:b4:d3:15:2d:d4:6d:5e: e6:c9:bd:a2:d1:34:c6:c5:36:e9:b7:52:31:48:41:ae:7e:88: e0:aa:f7:25:5e:8c:5a:cf:db:14:20:d1:a8:b2:10:c6:4e:b3: 5b:01:01:ef:dc:51:da:f0:93:88:ac:7c:cf:0d:ab:4e:57:5d: f5:cb:32:ad:01:aa:a0:72:de:bf:7e:b1:43:a5:9b:8d:0b:a2: 0c:39:df:23:7a:68:8b:37:89:54:0e:f5:5a:4b:7f:be:a8:2e: 2d:b0:7f:cd:4b:e9:06:a3:78:a2:1c:ad:eb:48:84:e4:71:6e: 2a:e9:10:12:8b:4e:0c:ba:04:48:56:62:18:07:1a:3c:53:84: 03:f6:79:29:6e:83:4f:31:08:5f:ae:ef:5b:dd:d8:25:2a:77: 58:01:16:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZFOTY0QTY4Q0M5 RjVGM0IyQUYwHhcNMjUwNDI1MDEwNDM2WhcNMjUwNTAyMDEwNDM2WjAYMRYwFAYD VQQDEw02ODBhZGZhNC0xYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2FhIcN9jmwjCSAEzoCUSR3tisY0DV5OHkSFxjwbutTLXB28NqUOO0zTFmw4 qQbV25A/A7f+W+hvyWr32nu6w9efX0NA9Sw21fOAd+CSh55eLjUyI4oRlNmbLZh3 1kgcYiWAfVN3SMX92VMtXwtnesOEGefkzGxxjkleXQVEn0uJzWqa5nkjiB+ITmyz jlc7gJd8akOAyy8O/6IgwlTCvwnfKP9d4AxA89LYV82MbFIDv6M79F5K3sTsaufJ hX6oMVqboTRm0Rcx934cgmRyaS6GjZmqK6t1zQpBX/A/5k2U89DD1eiHPoafrYcU J/K72cDVcNbOyuHD6obAp6GSjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEw+dM1z y49mF63748c7AfDfHpUUMB8GA1UdIwQYMBaAFNuS1DyQYSUFs69G6WSmjMn187Kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjEzQi8wNzA3NkZBMEQ5 QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpRV3pyMGJwWkthTXlmWHpz cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1TFVQSkJoSlFXenIwYnBaS2FNeWZYenNxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjEzQi8wNzA3NkZBMEQ5QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpR V3pyMGJwWkthTXlmWHpzcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6FDcWqXBTjsEl7duWcfTcvlk/O4Z4L2WwlN8KeJ7W4UM/F8ShvxSh yhP6GkEfd1tIFznoWcf5jU8nML6k3ob/O18Gc4GMg3vASp86Fk2lBYB8PZCaPGwp Hh1c90CPNDf1zlZzT7TTFS3UbV7myb2i0TTGxTbpt1IxSEGufojgqvclXoxaz9sU INGoshDGTrNbAQHv3FHa8JOIrHzPDatOV131yzKtAaqgct6/frFDpZuNC6IMOd8j emiLN4lUDvVaS3++qC4tsH/NS+kGo3iiHK3rSITkcW4q6RASi04MugRIVmIYBxo8 U4QD9nkpboNPMQhfru9b3dglKndYARZR -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:32 2025 by rpki-client