$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: b0ZtjjsEdcftaIDGvILkOSWdtf8R4RqcDLUka+Iu0eA= Subject key identifier: F9:01:99:20:9A:A7:06:D8:86:AB:D2:7D:56:9E:3A:E6:76:F2:7B:FC Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 3472 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 3472 Signing time: Thu 24 Apr 2025 14:58:32 +0000 Manifest this update: Thu 24 Apr 2025 14:58:31 +0000 Manifest next update: Thu 01 May 2025 14:58:31 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: cTzJQJRXYiiwiyVIQWoaCYHU8Ki4eaBJVRywEr4hFX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:58:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13426 (0x3472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Apr 24 14:58:31 2025 GMT Not After : May 1 14:58:31 2025 GMT Subject: CN=680a5198-5d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9c:94:48:f5:98:57:c1:b9:2f:c3:67:68:8f: 5e:6f:67:bc:c6:58:74:43:5e:4d:72:ef:92:71:7d: bc:e3:6a:73:ec:cd:7b:32:5f:01:2e:f7:97:f3:bd: f8:1e:23:a9:b3:a5:fc:fa:6d:10:70:92:b3:de:8f: a5:2e:7c:2d:ae:1c:2b:a7:e5:5d:e9:87:eb:b1:88: ba:f3:7e:ee:45:49:9d:01:f3:f9:e4:a7:6e:e4:5c: bd:2f:e4:f8:d6:1c:07:4c:cd:2a:25:1c:56:89:11: 2f:ef:fc:90:49:f6:87:63:bf:aa:d3:b3:bb:41:74: 56:d5:0c:1a:30:c1:c0:a5:b1:c1:29:86:51:2f:2b: f3:ec:7c:54:93:e7:38:09:40:8c:a9:f5:96:b3:51: 2e:7d:3e:a9:6c:b4:2e:d4:8a:4a:1e:0b:08:ce:7e: a5:61:9c:28:ee:98:ec:3f:a6:00:5a:83:0b:8a:f7: c5:fb:44:f9:cb:97:eb:0d:f6:d7:e1:f4:e5:c5:8a: 5e:74:80:56:75:e4:b1:1c:d4:74:97:98:4a:fe:87: 78:e9:03:25:e0:ea:4f:5f:76:5b:98:67:a3:d4:5f: fb:ac:3e:9c:db:06:16:c1:61:c4:6b:8a:af:48:73: 44:95:d2:e3:54:a4:25:65:02:09:0f:40:3e:16:73: ba:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:01:99:20:9A:A7:06:D8:86:AB:D2:7D:56:9E:3A:E6:76:F2:7B:FC X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:08:8b:16:ff:5d:9b:03:31:f5:80:15:cb:cb:76:9f:97:e7: 5d:7d:75:9c:94:b1:15:6a:c6:10:3c:2f:ff:6a:17:3a:88:a7: bf:26:27:3e:0a:94:71:82:28:98:4e:47:0a:38:9f:ea:b8:28: 44:db:b3:b7:86:dd:b9:b2:3f:e3:b7:1b:82:0c:f5:7b:6c:37: dc:44:1a:3c:b0:84:2b:bc:05:c1:ad:bc:d5:8e:73:d0:d0:b9: be:a5:22:db:8c:19:64:77:fc:e1:97:1b:06:b5:c1:8c:19:ef: 2d:a0:db:e1:61:b3:40:5a:19:cb:fe:66:dd:0d:a9:5b:4b:74: 93:1b:4c:78:c8:7c:86:94:ec:9b:56:f7:c0:81:b5:8a:29:42: 89:88:87:f2:99:b4:56:2a:31:21:97:e2:fd:d7:c6:07:7f:ad: d2:85:fd:dc:a1:6b:f9:f6:40:4e:b8:5d:45:c5:5a:3a:68:a8: 70:e7:fa:d1:2d:40:ca:9e:2f:df:5b:39:c2:f4:cd:27:91:af: 1b:61:bf:5b:f6:d5:f7:6f:9b:56:08:25:6e:ba:c8:c8:52:ad: a1:86:84:31:d5:77:e6:62:0b:56:b3:08:94:7c:a5:56:8d:4b: eb:f1:4f:da:cc:3d:e1:68:8b:2f:2e:2d:db:c6:2e:6a:dc:50: 06:1f:e5:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUwNDI0MTQ1ODMxWhcNMjUwNTAxMTQ1ODMxWjAYMRYwFAYD VQQDEw02ODBhNTE5OC01ZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JyUSPWYV8G5L8NnaI9eb2e8xlh0Q15Ncu+ScX2842pz7M17Ml8BLveX8734 HiOps6X8+m0QcJKz3o+lLnwtrhwrp+Vd6YfrsYi6837uRUmdAfP55Kdu5Fy9L+T4 1hwHTM0qJRxWiREv7/yQSfaHY7+q07O7QXRW1QwaMMHApbHBKYZRLyvz7HxUk+c4 CUCMqfWWs1EufT6pbLQu1IpKHgsIzn6lYZwo7pjsP6YAWoMLivfF+0T5y5frDfbX 4fTlxYpedIBWdeSxHNR0l5hK/od46QMl4OpPX3ZbmGej1F/7rD6c2wYWwWHEa4qv SHNEldLjVKQlZQIJD0A+FnO6zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkBmSCa pwbYhqvSfVaeOuZ28nv8MB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1CIsW/12bAzH1gBXLy3afl+ddfXWclLEVasYQPC//ahc6iKe/Jic+ CpRxgiiYTkcKOJ/quChE27O3ht25sj/jtxuCDPV7bDfcRBo8sIQrvAXBrbzVjnPQ 0Lm+pSLbjBlkd/zhlxsGtcGMGe8toNvhYbNAWhnL/mbdDalbS3STG0x4yHyGlOyb VvfAgbWKKUKJiIfymbRWKjEhl+L918YHf63Shf3coWv59kBOuF1FxVo6aKhw5/rR LUDKni/fWznC9M0nka8bYb9b9tX3b5tWCCVuusjIUq2hhoQx1XfmYgtWswiUfKVW jUvr8U/azD3haIsvLi3bxi5q3FAGH+W4 -----END CERTIFICATE-----Generated at Sat Apr 26 03:34:07 2025 by rpki-client