$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: U7615k7LKjhZkDt1TR5n1bMIBYbEbleAHijxpNSsHiA= Subject key identifier: CD:5B:F5:08:94:19:5A:E6:DB:A4:69:52:BE:9D:DA:F9:6F:40:0D:7D Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0306 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 0301 Signing time: Fri 25 Apr 2025 01:01:15 +0000 Manifest this update: Fri 25 Apr 2025 01:01:15 +0000 Manifest next update: Fri 02 May 2025 01:01:15 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: ZFNwtKqNsVyh/66M9DWbsVaVFxO4Vsb+pFYG5q2NSSM=) 2: 756558C6D19611ECB75A996BC4F9AE02.roa (hash: jBN+GZ5K5hQcx74ci+Zj74gtJO93V93U4mPbsdd8SsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 774 (0x306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Apr 25 01:01:15 2025 GMT Not After : May 2 01:01:15 2025 GMT Subject: CN=680adedb-b075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:24:9c:b9:13:3f:8e:f9:d4:d4:0c:98:66:4a: 65:22:30:a9:f3:7e:86:25:67:d7:da:41:c1:78:04: 47:c4:73:a5:84:fe:25:90:b3:4d:11:81:62:e3:94: 5e:c0:70:9a:71:a4:ea:11:8d:3c:79:8f:0d:62:13: 18:5c:6e:ae:4a:50:80:3f:fa:56:53:11:88:8f:1c: 8e:01:8a:16:29:29:4e:5e:ec:a3:19:09:41:79:74: 86:5e:da:fb:d0:16:64:0c:59:15:c5:0f:4b:db:1d: 14:26:f5:f9:3f:90:2a:4f:77:ac:60:55:a9:50:59: 87:dc:e1:d2:d2:5f:4e:b2:16:5d:8b:90:37:61:5c: 44:1b:50:4c:ff:53:e3:5f:99:83:3b:17:d4:55:0f: 5e:03:95:8e:64:22:4f:1c:40:61:2a:9d:70:b5:6e: 61:10:92:ec:f4:4a:74:ae:4f:d2:52:16:af:30:f1: 1e:90:dd:60:c7:b0:4c:4e:73:ca:bb:99:e7:47:d5: 47:c7:2b:48:98:c5:20:80:47:93:8b:42:8c:d0:6b: d9:65:c8:b0:ac:be:ce:a8:dd:ee:70:9e:aa:1d:a1: 81:e1:7c:50:8f:f0:0f:f2:c1:3e:7d:d1:04:1b:50: 9d:ca:d8:dd:79:05:ad:89:e0:4d:05:f0:5c:6d:27: 92:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:5B:F5:08:94:19:5A:E6:DB:A4:69:52:BE:9D:DA:F9:6F:40:0D:7D X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b0:75:91:28:ec:13:33:04:72:51:9e:46:f1:95:22:5b:25: 3a:91:d9:01:cd:fe:79:43:26:e5:f6:21:6d:37:b4:01:8e:fb: 2b:50:6f:04:2c:6a:8c:de:83:ab:14:b8:4a:8d:ad:26:f3:1f: c7:3e:07:72:20:d9:30:d9:b8:d1:4e:ef:f4:b3:5c:0e:84:d6: 0f:c6:f2:4a:d3:09:37:a8:10:a9:f9:cf:d0:ea:ca:c6:36:10: a8:17:1d:89:5e:06:c3:36:10:3e:21:be:5c:0a:79:9a:21:0d: 5a:9f:4a:f6:da:7f:e8:af:27:b8:ac:55:78:0d:2c:87:c7:6e: af:83:3b:a8:d0:6f:1d:52:b3:08:7d:8d:79:ee:50:0c:34:8c: f3:2d:2e:2d:09:97:9c:8b:5f:ff:3e:ad:42:8a:b9:7f:b9:f0: 0f:40:ed:bd:e1:e8:fc:9a:93:39:14:ff:f8:5b:f8:c2:16:1e: c7:1e:f1:89:e5:57:06:43:3e:39:a0:70:bb:5e:a0:21:f4:32: e0:2d:90:35:ce:63:c1:12:f5:33:ad:51:ec:dc:03:e9:75:3e: 11:58:9c:9d:d8:32:3c:81:ca:d2:c1:30:03:df:46:81:72:a8: 33:3d:1b:f3:da:e6:16:c0:85:d2:c7:a2:3f:ab:d4:0c:19:48: 2c:5f:8d:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUwNDI1MDEwMTE1WhcNMjUwNTAyMDEwMTE1WjAYMRYwFAYD VQQDEw02ODBhZGVkYi1iMDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SScuRM/jvnU1AyYZkplIjCp836GJWfX2kHBeARHxHOlhP4lkLNNEYFi45Re wHCacaTqEY08eY8NYhMYXG6uSlCAP/pWUxGIjxyOAYoWKSlOXuyjGQlBeXSGXtr7 0BZkDFkVxQ9L2x0UJvX5P5AqT3esYFWpUFmH3OHS0l9OshZdi5A3YVxEG1BM/1Pj X5mDOxfUVQ9eA5WOZCJPHEBhKp1wtW5hEJLs9Ep0rk/SUhavMPEekN1gx7BMTnPK u5nnR9VHxytImMUggEeTi0KM0GvZZciwrL7OqN3ucJ6qHaGB4XxQj/AP8sE+fdEE G1CdytjdeQWtieBNBfBcbSeSmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1b9QiU GVrm26RpUr6d2vlvQA19MB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6sHWRKOwTMwRyUZ5G8ZUiWyU6kdkBzf55Qybl9iFtN7QBjvsrUG8E LGqM3oOrFLhKja0m8x/HPgdyINkw2bjRTu/0s1wOhNYPxvJK0wk3qBCp+c/Q6srG NhCoFx2JXgbDNhA+Ib5cCnmaIQ1an0r22n/orye4rFV4DSyHx26vgzuo0G8dUrMI fY157lAMNIzzLS4tCZeci1//Pq1Cirl/ufAPQO294ej8mpM5FP/4W/jCFh7HHvGJ 5VcGQz45oHC7XqAh9DLgLZA1zmPBEvUzrVHs3APpdT4RWJyd2DI8gcrSwTAD30aB cqgzPRvz2uYWwIXSx6I/q9QMGUgsX43Z -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:03 2025 by rpki-client