$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: 4SENbrNbhJkXM4Nc6WPXvtD7+hDW8Ve7FvEb6MqSoqE= Subject key identifier: 1A:7E:AB:F7:4C:A3:32:2C:65:DC:0F:F9:AC:6D:18:87:75:A8:35:6C Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 0125 Signing time: Thu 24 Apr 2025 19:14:51 +0000 Manifest this update: Thu 24 Apr 2025 19:14:51 +0000 Manifest next update: Thu 01 May 2025 19:14:50 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: 47nONR0B61l966B9u3ENhAoaG8jmThiCtCtByO2fB6E=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Apr 24 19:14:51 2025 GMT Not After : May 1 19:14:50 2025 GMT Subject: CN=680a8dab-2301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c9:a7:ae:78:a7:d5:cc:7c:14:ce:be:ce:96: 7c:22:19:04:e2:af:be:de:b0:54:a1:96:28:5d:4f: f2:f0:bc:64:ad:21:08:8f:3c:e8:b8:f6:5a:6d:6a: 34:94:e9:31:42:a5:e3:d4:0a:b3:91:91:53:9c:03: 8d:89:57:c8:4c:40:7c:7e:0a:7e:79:36:7f:ad:63: d4:8c:1b:09:e6:07:27:a1:9e:3c:2b:be:a1:9d:6b: 75:5b:e6:10:46:d6:72:f6:1e:6d:47:cd:73:25:0e: 32:d7:71:d5:47:43:27:d7:0d:cb:4e:07:2c:3b:cf: 73:75:f0:06:06:2c:c2:6e:33:6a:34:05:7c:78:76: 31:f2:79:08:59:57:4e:c2:9f:a9:33:6c:e8:75:c0: f0:b6:43:5c:7d:f3:ee:e7:05:e6:e9:b7:6f:4f:d5: 42:66:ab:43:02:b5:03:44:25:77:02:52:23:05:65: 13:2b:8b:0b:09:c6:46:51:79:97:b4:8e:a6:ce:bd: 58:62:92:c3:be:0d:32:56:21:b7:70:92:f8:7f:c8: c9:74:6a:33:c3:0e:15:42:45:9d:64:78:20:12:d9: 93:02:c2:a4:10:a0:a0:61:46:b5:01:a3:1a:eb:96: 3d:57:f8:93:27:6b:4a:1a:76:b6:2b:87:ae:a3:bb: d9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7E:AB:F7:4C:A3:32:2C:65:DC:0F:F9:AC:6D:18:87:75:A8:35:6C X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:ba:ca:22:70:b9:3b:a2:34:39:a3:83:e0:d2:bb:71:db:05: a9:5a:56:a1:2a:ad:f4:a0:4a:b0:d1:3c:74:9a:9e:d3:44:d8: 52:dc:04:37:76:af:1c:01:84:86:e2:0e:02:c4:ff:0a:98:bd: 08:33:4f:04:67:e8:51:a2:08:e9:ca:22:a5:fb:08:0d:b8:df: b3:da:74:12:b7:a5:1f:92:d0:ca:d6:4a:f1:67:c7:02:52:5c: bd:41:c8:4e:d6:82:30:60:7d:2e:d8:a7:6f:85:37:aa:35:1e: 5b:c2:42:8d:cf:9f:7a:4b:c0:76:f7:09:a7:14:34:ff:60:d6: 51:6a:a8:92:f3:66:38:7f:a2:1a:fc:bc:4d:5f:b7:c3:1d:73: ea:89:06:a9:bd:1a:10:cc:2f:bc:48:37:43:ea:0e:4d:15:fe: 70:66:d5:b5:c3:77:eb:fb:88:14:55:db:81:f0:d9:98:f2:a2: 9d:fc:8a:1c:d4:13:e2:21:71:32:4f:11:9f:45:9f:a9:71:ea: 17:cd:99:39:d7:42:13:52:73:9f:df:36:1b:05:0b:bb:5a:d8: ac:65:de:4e:d1:17:f7:8a:d8:9c:77:e7:b5:c8:a5:5e:5d:9f: 6c:a5:44:b0:50:d8:4c:08:83:e3:b8:57:77:35:42:32:5c:24: 37:48:be:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwNDI0MTkxNDUxWhcNMjUwNTAxMTkxNDUwWjAYMRYwFAYD VQQDEw02ODBhOGRhYi0yMzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8mnrnin1cx8FM6+zpZ8IhkE4q++3rBUoZYoXU/y8LxkrSEIjzzouPZabWo0 lOkxQqXj1AqzkZFTnAONiVfITEB8fgp+eTZ/rWPUjBsJ5gcnoZ48K76hnWt1W+YQ RtZy9h5tR81zJQ4y13HVR0Mn1w3LTgcsO89zdfAGBizCbjNqNAV8eHYx8nkIWVdO wp+pM2zodcDwtkNcffPu5wXm6bdvT9VCZqtDArUDRCV3AlIjBWUTK4sLCcZGUXmX tI6mzr1YYpLDvg0yViG3cJL4f8jJdGozww4VQkWdZHggEtmTAsKkEKCgYUa1AaMa 65Y9V/iTJ2tKGna2K4euo7vZDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBp+q/dM ozIsZdwP+axtGId1qDVsMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDusoicLk7ojQ5o4Pg0rtx2wWpWlahKq30oEqw0Tx0mp7TRNhS3AQ3 dq8cAYSG4g4CxP8KmL0IM08EZ+hRogjpyiKl+wgNuN+z2nQSt6UfktDK1krxZ8cC Uly9QchO1oIwYH0u2KdvhTeqNR5bwkKNz596S8B29wmnFDT/YNZRaqiS82Y4f6Ia /LxNX7fDHXPqiQapvRoQzC+8SDdD6g5NFf5wZtW1w3fr+4gUVduB8NmY8qKd/Ioc 1BPiIXEyTxGfRZ+pceoXzZk510ITUnOf3zYbBQu7WtisZd5O0Rf3iticd+e1yKVe XZ9spUSwUNhMCIPjuFd3NUIyXCQ3SL4F -----END CERTIFICATE-----Generated at Sat Apr 26 15:03:08 2025 by rpki-client