$ rpki-client -vvf rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft File: p0zn2tX7UE2xa75wwvnfCqnwBgk.mft (raw, json) Hash identifier: p4yHNd3chpDW6xK8C9bSgFrq0sifgam901Td213XxrY= Subject key identifier: 1B:BB:09:4E:F0:C7:F3:95:07:3D:06:01:42:71:6C:3F:A1:84:14:80 Authority key identifier: A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 Certificate issuer: /CN=A918D699/serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft Manifest number: B8 Signing time: Fri 25 Apr 2025 05:03:30 +0000 Manifest this update: Fri 25 Apr 2025 05:03:29 +0000 Manifest next update: Fri 02 May 2025 05:03:29 +0000 Files and hashes: 1: p0zn2tX7UE2xa75wwvnfCqnwBgk.crl (hash: rXQZTCVunx7fueZwmolswxYN6hy144eORePEvJ2u8k0=) 2: C564E80017E911EF9D471E18C4F9AE02.roa (hash: bHWlYJultpd4141lSOHtlDGQNuKfjn0r+UBsEdeuoEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D699, serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Validity Not Before: Apr 25 05:03:29 2025 GMT Not After : May 2 05:03:29 2025 GMT Subject: CN=680b17a2-7c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:06:4a:94:c7:29:77:85:e9:90:44:28:d6:6a: 8f:d7:c0:60:12:05:eb:c0:20:a3:d9:e6:31:56:99: 2d:06:0e:3b:aa:d3:1a:03:b3:68:3a:b5:cc:a6:62: bf:5b:66:83:94:27:78:55:c7:59:23:42:f1:f5:ef: 5b:b7:0f:9b:60:cf:dc:a7:e7:46:03:02:c5:30:7b: 45:8c:b1:86:ad:96:01:67:cb:64:c1:c9:20:bc:5d: 1a:9e:2a:cf:7e:f2:16:ed:c3:0f:db:31:c4:9b:3a: a2:8e:01:dc:21:4d:48:a3:24:70:a6:2b:97:a5:53: 2b:d7:be:18:ed:d3:f9:ff:fd:32:ef:ce:b2:f2:5f: fb:c9:ee:51:61:fd:ea:02:36:b0:46:89:27:d0:03: 30:b3:11:32:85:5e:6d:32:77:54:49:f1:c5:66:3b: 51:18:52:f9:45:ff:58:e3:5f:4b:ff:bd:d7:b9:12: df:c5:55:7a:d5:4b:d3:9b:d1:dc:d5:00:cb:4e:71: ed:bd:d4:5b:87:90:0a:ab:32:13:d8:ed:c4:82:a5: 38:ff:e0:b6:5d:ff:df:6f:e1:38:4d:bc:5f:98:13: 86:61:b3:92:12:49:eb:98:27:cd:f3:99:ff:47:9d: fc:86:34:05:f8:7a:42:28:86:fc:f7:8f:eb:ab:e1: 64:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BB:09:4E:F0:C7:F3:95:07:3D:06:01:42:71:6C:3F:A1:84:14:80 X509v3 Authority Key Identifier: keyid:A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:a2:8f:52:18:b0:96:f7:49:9b:4d:6c:0e:dc:35:94:d5:cd: 8c:ca:80:5b:54:13:1f:bd:8e:96:fc:e4:16:94:99:7e:44:04: d9:17:0b:66:47:51:e3:41:93:fb:9a:1f:95:63:f1:b2:40:c3: 47:5c:44:01:38:f7:a2:4a:ed:a8:c8:15:66:8f:4c:31:ef:3f: 03:86:4e:a3:5b:e2:16:7f:a6:ec:13:3e:8a:70:90:2e:8f:a9: 24:67:b9:80:43:58:94:10:c6:8f:59:32:2c:a8:b5:69:68:0b: 96:38:61:1d:af:ee:a5:31:4c:0b:d1:60:49:43:77:5f:c4:23: 0b:e5:72:e8:42:ed:56:bb:5a:3c:7d:91:ae:87:73:31:1b:2b: 63:01:1e:f5:a5:fb:4d:b7:0a:cd:de:ea:b1:ca:13:6b:aa:60: 75:d6:43:e3:66:96:bb:a5:60:00:9f:9e:f2:02:e2:58:64:b5: 05:ec:00:39:c5:e4:eb:79:1c:7d:8d:f7:9c:34:85:2a:98:2c: d3:d3:a7:0e:36:f1:60:af:8b:0a:0b:c8:ef:19:6d:49:56:db: cf:3f:2e:9d:d4:bb:b9:00:30:b2:9b:ff:d5:b2:cb:c2:d7:a2: fa:28:f5:1f:25:d2:77:77:d4:a0:e3:a5:82:25:ee:6f:52:0b: 93:25:76:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2OTkxMTAvBgNVBAUTKEE3NENFN0RBRDVGQjUwNERCMTZCQkU3MEMyRjlERjBB QTlGMDA2MDkwHhcNMjUwNDI1MDUwMzI5WhcNMjUwNTAyMDUwMzI5WjAYMRYwFAYD VQQDEw02ODBiMTdhMi03YzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAZKlMcpd4XpkEQo1mqP18BgEgXrwCCj2eYxVpktBg47qtMaA7NoOrXMpmK/ W2aDlCd4VcdZI0Lx9e9btw+bYM/cp+dGAwLFMHtFjLGGrZYBZ8tkwckgvF0anirP fvIW7cMP2zHEmzqijgHcIU1IoyRwpiuXpVMr174Y7dP5//0y786y8l/7ye5RYf3q AjawRokn0AMwsxEyhV5tMndUSfHFZjtRGFL5Rf9Y419L/73XuRLfxVV61UvTm9Hc 1QDLTnHtvdRbh5AKqzIT2O3EgqU4/+C2Xf/fb+E4TbxfmBOGYbOSEknrmCfN85n/ R538hjQF+HpCKIb894/rq+FkMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBu7CU7w x/OVBz0GAUJxbD+hhBSAMB8GA1UdIwQYMBaAFKdM59rV+1BNsWu+cML53wqp8AYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDY5OS81NTg2RUY2QTE3 RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VFMnhhNzV3d3ZuZkNxbndC Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Awem4ydFg3VUUyeGE3NXd3dm5mQ3Fud0Jnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDY5OS81NTg2RUY2QTE3RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VF MnhhNzV3d3ZuZkNxbndCZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzoo9SGLCW90mbTWwO3DWU1c2MyoBbVBMfvY6W/OQWlJl+RATZFwtm R1HjQZP7mh+VY/GyQMNHXEQBOPeiSu2oyBVmj0wx7z8Dhk6jW+IWf6bsEz6KcJAu j6kkZ7mAQ1iUEMaPWTIsqLVpaAuWOGEdr+6lMUwL0WBJQ3dfxCML5XLoQu1Wu1o8 fZGuh3MxGytjAR71pftNtwrN3uqxyhNrqmB11kPjZpa7pWAAn57yAuJYZLUF7AA5 xeTreRx9jfecNIUqmCzT06cONvFgr4sKC8jvGW1JVtvPPy6d1Lu5ADCym//VssvC 16L6KPUfJdJ3d9Sg46WCJe5vUguTJXaf -----END CERTIFICATE-----Generated at Sat Apr 26 15:27:19 2025 by rpki-client