$ rpki-client -vvf rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft File: rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft (raw, json) Hash identifier: vwXMbC3/YYIbK9/vHCud1zsC7SFPEqd53pY3UHYJeS4= Subject key identifier: 95:15:70:C4:A0:CB:53:6F:53:6B:8B:56:F5:6C:C8:63:21:A9:8A:90 Authority key identifier: AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F Certificate issuer: /CN=A918EBC3/serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft Manifest number: 084A Signing time: Thu 24 Apr 2025 20:36:37 +0000 Manifest this update: Thu 24 Apr 2025 20:36:36 +0000 Manifest next update: Thu 01 May 2025 20:36:36 +0000 Files and hashes: 1: rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl (hash: 2L46LjK48Xs4r6rcMiOsjhbltaHFA8d7E1HTF2535AI=) 2: 7CDBE740C7FD11EAB795396AC4F9AE02.roa (hash: p0a0nQBisH4VKwtpLEiKDNLpUVAu9yIvpOIZZoB51RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EBC3, serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Validity Not Before: Apr 24 20:36:36 2025 GMT Not After : May 1 20:36:36 2025 GMT Subject: CN=680aa0d5-ba53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b8:55:8c:ce:78:87:85:33:00:a8:51:e5:49: 22:6b:ad:95:82:a8:e6:85:8c:68:b4:03:f3:11:40: 19:37:5a:08:9d:29:bd:12:e2:d7:9a:16:2d:e2:2e: cb:8f:e4:39:57:ba:1f:19:a2:5d:74:62:77:a9:31: ea:c1:e2:23:cb:12:e2:b8:e3:3b:db:42:eb:3e:e8: 92:59:62:66:eb:4b:57:47:37:03:b6:4d:d7:c4:73: 49:c8:29:4b:91:45:f8:d9:b2:46:f6:42:ad:11:bd: 8d:20:a5:0b:f9:25:75:eb:6d:2c:74:1d:cc:1c:82: 61:db:4b:5b:4d:86:9d:5c:b6:58:9e:30:3a:e2:75: 80:cb:f9:8b:5b:f9:64:2a:fe:68:b5:4c:80:a3:c9: 7d:c2:70:ce:48:ae:d4:1e:66:83:52:17:e8:d5:9c: 9c:3f:7e:0c:93:77:90:ce:c4:b5:4a:66:0f:b7:df: e0:66:b3:d7:8d:d9:a9:58:60:7d:f9:c0:67:04:52: d1:87:07:84:98:46:6d:4e:b4:ed:63:95:cc:a5:19: e9:5f:be:f7:ff:16:48:7f:66:17:22:8c:18:3d:92: e8:f0:73:d4:86:ed:6c:f3:6a:d1:6b:e6:5e:ca:10: 36:92:ae:57:14:77:31:7d:f9:1f:93:48:de:de:8f: 65:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:15:70:C4:A0:CB:53:6F:53:6B:8B:56:F5:6C:C8:63:21:A9:8A:90 X509v3 Authority Key Identifier: keyid:AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a1:fd:89:40:7b:42:1c:84:6a:d5:6f:d0:49:6b:82:d0:06: 5c:71:16:19:35:45:98:e5:5c:44:76:af:61:c6:10:2f:1f:06: 20:f1:b6:d7:02:31:47:34:07:9c:62:7f:64:37:3c:75:41:d3: 8c:cc:76:aa:a9:25:2e:2f:83:ba:46:7f:09:2a:d7:3e:a5:56: be:3b:7e:bd:ba:72:ad:3f:3b:72:fd:97:de:3a:2a:37:40:63: dd:5a:75:15:9c:07:3f:9c:e1:b9:b8:c1:77:25:8c:d0:d7:d9: cd:cc:dc:3a:54:60:4c:72:da:22:a2:f4:09:1a:ad:39:b7:be: 05:bf:bb:09:b8:78:a4:b5:30:43:c4:3b:5e:7b:52:24:c8:77: b2:6f:67:da:34:15:25:fe:7c:f7:18:1b:d6:6e:28:a0:d5:11: f4:0c:d1:6c:7b:8b:63:6c:10:3a:13:b2:c8:af:58:7a:fa:2b: 06:66:3c:d9:1b:70:2f:bc:e0:72:84:0e:6c:20:a8:37:96:65: 81:22:81:f0:7a:70:ba:85:5a:d1:26:98:db:7d:81:79:d0:4b: a5:8e:bb:ed:e3:20:53:1c:01:b0:71:c0:e3:a7:a0:2f:d0:8a: 9a:a0:6b:39:7e:f5:ef:1d:83:f6:e6:e9:10:68:a8:48:fd:1b: bb:63:7c:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVCQzMxMTAvBgNVBAUTKEFDNTYwNzBEQkU1RUU2REJCRjY3MTE5NzM4NDcyMzMx Mjc5MTdBMkYwHhcNMjUwNDI0MjAzNjM2WhcNMjUwNTAxMjAzNjM2WjAYMRYwFAYD VQQDEw02ODBhYTBkNS1iYTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLhVjM54h4UzAKhR5Ukia62VgqjmhYxotAPzEUAZN1oInSm9EuLXmhYt4i7L j+Q5V7ofGaJddGJ3qTHqweIjyxLiuOM720LrPuiSWWJm60tXRzcDtk3XxHNJyClL kUX42bJG9kKtEb2NIKUL+SV1620sdB3MHIJh20tbTYadXLZYnjA64nWAy/mLW/lk Kv5otUyAo8l9wnDOSK7UHmaDUhfo1ZycP34Mk3eQzsS1SmYPt9/gZrPXjdmpWGB9 +cBnBFLRhweEmEZtTrTtY5XMpRnpX773/xZIf2YXIowYPZLo8HPUhu1s82rRa+Ze yhA2kq5XFHcxffkfk0je3o9l7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUVcMSg y1NvU2uLVvVsyGMhqYqQMB8GA1UdIwQYMBaAFKxWBw2+Xubbv2cRlzhHIzEnkXov MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUJDMy8wRDQxRkU1Q0M3 RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0dV9aeEdYT0Vjak1TZVJl aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWUhEYjVlNXR1X1p4R1hPRWNqTVNlUmVpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUJDMy8wRDQxRkU1Q0M3RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0 dV9aeEdYT0Vjak1TZVJlaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKof2JQHtCHIRq1W/QSWuC0AZccRYZNUWY5VxEdq9hxhAvHwYg8bbX AjFHNAecYn9kNzx1QdOMzHaqqSUuL4O6Rn8JKtc+pVa+O369unKtPzty/ZfeOio3 QGPdWnUVnAc/nOG5uMF3JYzQ19nNzNw6VGBMctoiovQJGq05t74Fv7sJuHiktTBD xDtee1IkyHeyb2faNBUl/nz3GBvWbiig1RH0DNFse4tjbBA6E7LIr1h6+isGZjzZ G3AvvOByhA5sIKg3lmWBIoHwenC6hVrRJpjbfYF50Euljrvt4yBTHAGwccDjp6Av 0IqaoGs5fvXvHYP25ukQaKhI/Ru7Y3zH -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:54 2025 by rpki-client