$ rpki-client -vvf rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft File: if0nxQZ7TPQSKW_rps5tgxGFgAs.mft (raw, json) Hash identifier: rYBVRg/Upxxrn47358fcpjzr6tkT7/zOsjpCI8MUdmo= Subject key identifier: A0:3C:CF:AC:C2:B3:AF:0B:58:9A:6A:01:C0:93:9D:FB:1F:5F:14:E4 Authority key identifier: 89:FD:27:C5:06:7B:4C:F4:12:29:6F:EB:A6:CE:6D:83:11:85:80:0B Certificate issuer: /CN=A9185344/serialNumber=89FD27C5067B4CF412296FEBA6CE6D831185800B Certificate serial: 3491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft Manifest number: 347F Signing time: Thu 24 Apr 2025 15:05:19 +0000 Manifest this update: Thu 24 Apr 2025 15:05:19 +0000 Manifest next update: Thu 01 May 2025 15:05:19 +0000 Files and hashes: 1: if0nxQZ7TPQSKW_rps5tgxGFgAs.crl (hash: 7dkBQW7ypexJWtWHErmOMBYO/lvdMfAcW1ynn+nJXuo=) 2: 4453BC8A2CD411EC8884B41FC4F9AE02.roa (hash: zDQWuqCZIhUi8QY/I4kch58V8XHnqGl1lQQctTfprP4=) 3: 438B5C5E2CD411EC8884B41FC4F9AE02.roa (hash: l8ghcFMDKwWn7mEoy2VKp7tzKqBu2ry3hOlnwXhnj7Q=) 4: 7D2A30D22CD111ECBE97C117C4F9AE02.roa (hash: 4Cfi8enYLubX2wFBBV7Fm3xiJ/Lbq6nGpawgJqzCyB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.crl rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13457 (0x3491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185344, serialNumber=89FD27C5067B4CF412296FEBA6CE6D831185800B Validity Not Before: Apr 24 15:05:19 2025 GMT Not After : May 1 15:05:19 2025 GMT Subject: CN=680a532f-f83c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c1:50:e1:db:b8:88:fe:4f:d9:87:80:79:c1: f6:d5:61:2c:df:43:4e:f4:8d:85:65:de:2a:ea:87: 50:0c:40:0c:d3:c4:7f:e8:27:a9:9c:18:12:a2:29: 25:f9:35:44:29:d4:02:c1:98:a7:ce:97:4a:ac:2c: 8b:b6:6e:61:72:7a:3d:94:5e:fb:c1:c8:d7:3a:6b: 66:f9:1a:c6:35:e9:1f:bb:62:51:5f:66:fe:76:3e: 50:ba:16:4e:3a:4c:11:5a:18:1f:32:9a:ca:5b:ad: 71:14:ba:a4:ed:84:fe:cb:65:aa:86:bf:82:b6:37: c9:e0:9d:4f:b7:ba:b4:09:ac:eb:57:b1:9b:b8:6f: 8a:80:ff:a8:58:67:21:f8:47:e3:ab:b8:58:b2:dd: 8f:46:64:62:e5:81:fe:f2:c1:e1:e7:6e:4b:81:75: 29:3c:0c:71:0e:cf:25:99:42:b6:13:77:23:fa:23: fe:b7:7d:bf:49:7e:50:1d:90:7c:8e:9c:33:2b:00: 40:26:f3:18:45:19:72:7a:bb:11:b2:e9:3e:1b:05: 49:d4:d7:c2:9b:96:35:6a:5d:5c:9e:fd:4f:d5:c0: e2:db:f9:92:3d:8d:9d:69:68:ed:a5:c5:21:05:66: 1e:26:b6:1e:0c:63:6a:2d:74:52:13:e0:40:77:18: 61:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3C:CF:AC:C2:B3:AF:0B:58:9A:6A:01:C0:93:9D:FB:1F:5F:14:E4 X509v3 Authority Key Identifier: keyid:89:FD:27:C5:06:7B:4C:F4:12:29:6F:EB:A6:CE:6D:83:11:85:80:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:71:5d:d3:a1:6a:56:1a:3d:36:23:61:47:70:d3:f0:f7:63: 6a:67:17:3a:34:43:67:4d:a6:dc:52:6c:59:ea:ed:11:0e:d6: b4:68:6d:15:5c:0d:65:5a:22:68:f6:7b:26:72:b5:af:80:26: 91:89:f6:7e:fe:a8:e7:dc:78:7f:9d:e9:6b:1b:44:47:d2:81: 6c:8f:05:3e:ee:26:52:07:1b:b0:47:e3:42:3a:6a:b8:2c:77: bd:d2:63:5a:5e:d1:3e:11:45:93:da:09:cc:2c:23:f0:0a:0d: 43:e0:b2:85:30:8a:57:ea:47:73:03:5d:f1:c0:19:1f:c7:f3: 04:cd:48:86:e1:4e:43:ec:17:ad:73:2f:84:86:ad:89:62:41: 46:f7:2e:6b:9e:a0:79:58:06:fe:6e:68:46:3d:8b:1c:00:b6: 56:ba:54:9e:b1:43:b2:dd:23:41:2f:60:5b:f5:68:9e:c8:75: 1d:99:a1:13:99:ba:4e:6e:08:c1:33:2d:c0:66:ef:6b:02:da: bd:dc:cb:66:c5:72:5b:81:89:d7:eb:1b:5a:08:85:15:c1:03: 95:08:e7:b6:87:3d:58:d8:46:c6:28:95:e9:f3:55:ad:ea:6b: e8:29:94:3d:fe:f5:94:23:39:03:94:25:7e:a2:43:df:62:87: 15:1e:40:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzNDQxMTAvBgNVBAUTKDg5RkQyN0M1MDY3QjRDRjQxMjI5NkZFQkE2Q0U2RDgz MTE4NTgwMEIwHhcNMjUwNDI0MTUwNTE5WhcNMjUwNTAxMTUwNTE5WjAYMRYwFAYD VQQDEw02ODBhNTMyZi1mODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9cFQ4du4iP5P2YeAecH21WEs30NO9I2FZd4q6odQDEAM08R/6CepnBgSoikl +TVEKdQCwZinzpdKrCyLtm5hcno9lF77wcjXOmtm+RrGNekfu2JRX2b+dj5QuhZO OkwRWhgfMprKW61xFLqk7YT+y2Wqhr+CtjfJ4J1Pt7q0CazrV7GbuG+KgP+oWGch +Efjq7hYst2PRmRi5YH+8sHh525LgXUpPAxxDs8lmUK2E3cj+iP+t32/SX5QHZB8 jpwzKwBAJvMYRRlyersRsuk+GwVJ1NfCm5Y1al1cnv1P1cDi2/mSPY2daWjtpcUh BWYeJrYeDGNqLXRSE+BAdxhhnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKA8z6zC s68LWJpqAcCTnfsfXxTkMB8GA1UdIwQYMBaAFIn9J8UGe0z0Eilv66bObYMRhYAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTM0NC81MTVDQUJFMDFE QTExMUUyQjJDRDZEOTMwOEIwMkNEMi9pZjBueFFaN1RQUVNLV19ycHM1dGd4R0Zn QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmMG54UVo3VFBRU0tXX3JwczV0Z3hHRmdBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTM0NC81MTVDQUJFMDFEQTExMUUyQjJDRDZEOTMwOEIwMkNEMi9pZjBueFFaN1RQ UVNLV19ycHM1dGd4R0ZnQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJcV3ToWpWGj02I2FHcNPw92NqZxc6NENnTabcUmxZ6u0RDta0aG0V XA1lWiJo9nsmcrWvgCaRifZ+/qjn3Hh/nelrG0RH0oFsjwU+7iZSBxuwR+NCOmq4 LHe90mNaXtE+EUWT2gnMLCPwCg1D4LKFMIpX6kdzA13xwBkfx/MEzUiG4U5D7Bet cy+Ehq2JYkFG9y5rnqB5WAb+bmhGPYscALZWulSesUOy3SNBL2Bb9WieyHUdmaET mbpObgjBMy3AZu9rAtq93MtmxXJbgYnX6xtaCIUVwQOVCOe2hz1Y2EbGKJXp81Wt 6mvoKZQ9/vWUIzkDlCV+okPfYocVHkAK -----END CERTIFICATE-----Generated at Sat Apr 26 04:58:17 2025 by rpki-client