$ rpki-client -vvf rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft File: A0iYvB-xsaJGF6zZvIMq6D6vni0.mft (raw, json) Hash identifier: /8xn70KClOn9Dz+osUEi7FE8bV8fET4WNICBgkj/EDc= Subject key identifier: BA:92:67:22:1A:2A:EE:1E:63:A8:5C:59:EF:FD:28:8F:3B:05:B1:B1 Authority key identifier: 03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D Certificate issuer: /CN=A918D727/serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft Manifest number: 0140 Signing time: Fri 25 Apr 2025 03:27:31 +0000 Manifest this update: Fri 25 Apr 2025 03:27:31 +0000 Manifest next update: Fri 02 May 2025 03:27:31 +0000 Files and hashes: 1: A0iYvB-xsaJGF6zZvIMq6D6vni0.crl (hash: he1e5zeLqw1/Y/tJn019f20PTua07klt/g86hUceLCo=) 2: A7E3DAB237FB11EEBB03FD6CC4F9AE02.roa (hash: 8KhdFf717KdtqIgoQSLRSc05ReV0MsZo2CeN3+2la54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D727, serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Validity Not Before: Apr 25 03:27:31 2025 GMT Not After : May 2 03:27:31 2025 GMT Subject: CN=680b0123-8e8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f3:8e:f1:f3:cf:ad:86:f6:c0:37:42:f0:cf: d3:be:6c:eb:01:fb:da:c9:a2:b9:5e:42:d4:eb:12: bc:72:87:93:e2:2d:cc:06:c4:e3:f5:94:ba:41:7b: 6d:b4:28:ef:81:18:0f:08:17:dc:fa:74:37:66:df: 2b:c2:1f:af:d2:82:53:54:50:74:fe:96:d3:63:39: 50:cd:cd:65:93:58:f7:cc:90:04:de:4a:8c:a8:8c: 7b:25:e4:f9:2c:f2:e0:c3:b5:60:0b:77:8e:e9:95: 0c:6f:bb:d8:08:3c:3a:4c:aa:a0:d7:cb:22:77:70: f5:b7:2f:28:2e:99:ef:ce:86:b2:4b:4b:11:c1:c9: 37:46:df:9a:82:cd:ca:5a:a2:1c:58:4e:13:f2:56: 25:f0:ad:7d:1e:9a:38:dc:51:b7:3d:c7:a6:d7:76: 74:8d:bc:73:81:98:71:25:b4:bc:53:3a:c3:b6:d3: 3d:37:44:24:8a:cf:dc:b6:dd:a7:f0:c8:bc:2b:62: 5a:22:f5:17:14:06:01:ea:0b:6b:cf:8e:fd:8b:22: 3f:26:0c:da:62:52:31:74:80:81:bc:92:43:04:47: 65:90:67:e9:65:88:91:37:fd:1d:38:d5:52:3f:10: 2d:6d:3c:17:a2:9b:8d:48:4a:7f:e2:0a:1d:9c:d6: 64:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:92:67:22:1A:2A:EE:1E:63:A8:5C:59:EF:FD:28:8F:3B:05:B1:B1 X509v3 Authority Key Identifier: keyid:03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ed:1d:8f:f1:a6:70:88:62:a8:4f:a8:49:42:8c:2c:cb:eb: a3:e0:ff:c0:bf:09:31:e8:67:b6:92:b1:e1:39:e8:ed:fb:9a: 84:bc:75:4c:66:98:d3:fc:68:35:66:90:8b:7a:3c:47:f6:ed: 64:2b:57:13:6d:64:42:77:09:75:4e:cf:b9:df:61:f1:b5:81: b4:09:89:99:bd:96:38:51:bf:54:32:3b:c5:24:bf:13:e8:7c: 99:33:dd:b0:5f:b9:06:1c:9b:b0:ad:c1:b4:8d:ec:20:16:f6: 40:4b:36:f9:a4:fa:b2:80:46:cd:5a:52:f7:95:76:cd:df:e4: c6:4e:38:9f:1e:50:8c:31:2f:de:19:f0:b8:bb:ec:64:a1:26: d6:28:de:72:36:f6:db:ba:73:dd:e5:a3:74:c2:03:d8:35:91: f2:10:1f:8a:df:0d:7a:d4:85:e9:55:b0:08:41:f5:a4:0f:b2: 0f:97:15:87:46:25:a2:32:f9:6b:1c:32:20:f3:bf:aa:27:10: e9:bc:ff:ee:25:6f:1e:69:43:64:5f:e8:6a:18:43:3d:20:97: 3b:ea:88:9d:bf:8c:ce:fc:de:45:60:fb:0c:a1:30:d4:28:7d: ba:e9:20:d2:df:04:74:f4:79:36:e7:14:cc:b8:f3:44:16:80: 54:a0:41:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MjcxMTAvBgNVBAUTKDAzNDg5OEJDMUZCMUIxQTI0NjE3QUNEOUJDODMyQUU4 M0VBRjlFMkQwHhcNMjUwNDI1MDMyNzMxWhcNMjUwNTAyMDMyNzMxWjAYMRYwFAYD VQQDEw02ODBiMDEyMy04ZThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfOO8fPPrYb2wDdC8M/TvmzrAfvayaK5XkLU6xK8coeT4i3MBsTj9ZS6QXtt tCjvgRgPCBfc+nQ3Zt8rwh+v0oJTVFB0/pbTYzlQzc1lk1j3zJAE3kqMqIx7JeT5 LPLgw7VgC3eO6ZUMb7vYCDw6TKqg18sid3D1ty8oLpnvzoayS0sRwck3Rt+ags3K WqIcWE4T8lYl8K19Hpo43FG3Pcem13Z0jbxzgZhxJbS8UzrDttM9N0Qkis/ctt2n 8Mi8K2JaIvUXFAYB6gtrz479iyI/JgzaYlIxdICBvJJDBEdlkGfpZYiRN/0dONVS PxAtbTwXopuNSEp/4godnNZkWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqSZyIa Ku4eY6hcWe/9KI87BbGxMB8GA1UdIwQYMBaAFANImLwfsbGiRhes2byDKug+r54t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcyNy80Nzk4RkIwNjM3 RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNhSkdGNnpadklNcTZENnZu aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwaVl2Qi14c2FKR0Y2elp2SU1xNkQ2dm5pMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcyNy80Nzk4RkIwNjM3RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNh SkdGNnpadklNcTZENnZuaTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ7R2P8aZwiGKoT6hJQowsy+uj4P/Avwkx6Ge2krHhOejt+5qEvHVM ZpjT/Gg1ZpCLejxH9u1kK1cTbWRCdwl1Ts+532HxtYG0CYmZvZY4Ub9UMjvFJL8T 6HyZM92wX7kGHJuwrcG0jewgFvZASzb5pPqygEbNWlL3lXbN3+TGTjifHlCMMS/e GfC4u+xkoSbWKN5yNvbbunPd5aN0wgPYNZHyEB+K3w161IXpVbAIQfWkD7IPlxWH RiWiMvlrHDIg87+qJxDpvP/uJW8eaUNkX+hqGEM9IJc76oidv4zO/N5FYPsMoTDU KH266SDS3wR09Hk25xTMuPNEFoBUoEGt -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:45 2025 by rpki-client