$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft File: p3fkgYyg3MY4LlYlcG-YyB6TByA.mft (raw, json) Hash identifier: /ADpevDDCVECPJ6XQHugdU8zMLCLEtFKPUbOMO75ZU0= Subject key identifier: 2E:C5:05:53:06:4B:47:69:3C:0B:A3:FC:2B:0C:85:E1:3D:48:FD:22 Authority key identifier: A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 Certificate issuer: /CN=A918EF94/serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Certificate serial: 0E1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft Manifest number: 0E13 Signing time: Thu 24 Apr 2025 17:47:17 +0000 Manifest this update: Thu 24 Apr 2025 17:47:17 +0000 Manifest next update: Thu 01 May 2025 17:47:17 +0000 Files and hashes: 1: p3fkgYyg3MY4LlYlcG-YyB6TByA.crl (hash: M4zp31Ryham8mj4HCM8RYNbf6dsn+S0VUoXQMu+vNkc=) 2: EE78BE36068611EDA1C2070DC4F9AE02.roa (hash: X7Dq3eZ/GJf+9yPNH4D4Wvo3ddILMQm0OljP2i+67DY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3611 (0xe1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Validity Not Before: Apr 24 17:47:17 2025 GMT Not After : May 1 17:47:17 2025 GMT Subject: CN=680a7925-ca8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8e:49:44:03:7c:4d:cf:d8:5e:01:57:4e:da: 95:bd:39:40:49:f3:54:9a:00:85:27:1c:1b:30:0e: 62:16:34:c5:f2:ce:61:a7:52:30:2f:18:c6:67:5e: 28:bc:80:d5:5b:6d:83:c2:79:1c:50:86:14:12:f1: 94:bb:3c:f8:b4:29:e9:b0:d3:8f:94:ec:f7:24:bb: 0c:2b:a4:c1:b4:de:f8:79:de:04:b0:51:ee:c7:cc: 6d:bc:8d:0f:16:a8:e0:e0:f4:f5:ae:e8:d3:3d:96: cc:e8:e1:0d:26:3f:b7:95:55:ed:55:db:4e:16:c8: 20:e3:c0:4e:6b:90:44:df:0a:ba:e7:c9:57:cc:06: 2e:87:2a:1f:6a:59:3a:90:08:b0:d8:e5:51:75:b3: 4f:59:82:1b:46:4d:53:40:78:ce:d9:24:1e:bb:77: 52:db:f8:0d:38:fd:ef:af:8d:5d:2b:09:73:2b:72: 4e:4d:36:74:49:88:55:7b:f8:e1:98:87:dc:1c:6a: 1a:6e:d8:15:62:58:01:bc:f9:52:98:95:07:48:d5: 44:63:d6:ef:84:8a:af:bf:93:f9:77:6c:11:f4:55: 96:55:e4:77:61:08:1a:9f:01:d2:3b:99:b9:a8:ff: 3a:93:3e:6b:2f:53:95:fb:41:03:9a:90:a6:ed:d0: 5f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C5:05:53:06:4B:47:69:3C:0B:A3:FC:2B:0C:85:E1:3D:48:FD:22 X509v3 Authority Key Identifier: keyid:A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:42:80:db:9c:c2:eb:4a:ef:6d:7d:3d:80:74:4d:82:69:b9: ca:95:b6:1d:cb:21:f3:2f:ca:35:f3:dc:bf:cb:1e:78:37:b7: d3:1c:be:35:1c:a2:92:03:5c:4a:13:a8:71:9f:54:eb:7a:75: 67:bf:56:fd:3b:9b:ce:45:8b:a0:f4:22:d5:81:37:dc:3b:2f: a6:96:36:00:6e:2a:da:ee:de:81:88:c0:90:7f:f3:1a:6a:ed: 69:3b:f3:3d:73:3a:19:ac:6b:0a:0b:10:71:a7:e2:b7:53:ce: ed:eb:5b:a7:c7:e6:9f:0d:d7:ac:fa:03:88:29:c6:9c:a2:b2: 41:f1:ea:04:93:4c:19:8b:56:26:f5:fa:5a:8d:87:20:b9:0f: 64:cb:50:de:c2:0f:d4:4c:9a:4d:a9:8b:a8:fa:12:d3:ae:08: f6:57:23:5f:7a:9d:40:18:ee:a3:35:ac:57:ce:19:8e:25:64: db:87:d5:48:18:a5:a2:2d:5c:e6:3f:f0:03:1c:25:da:be:e8: d4:da:23:58:0f:76:13:0a:97:a5:ca:d2:69:df:2f:6d:e6:a0: e3:68:1d:f1:45:08:64:82:25:bc:f6:c7:f2:9c:aa:a9:41:63: 89:6a:90:30:1d:d4:b2:5d:bc:fe:6d:45:36:4c:4b:44:92:4d: cc:c6:e3:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEE3NzdFNDgxOENBMERDQzYzODJFNTYyNTcwNkY5OEM4 MUU5MzA3MjAwHhcNMjUwNDI0MTc0NzE3WhcNMjUwNTAxMTc0NzE3WjAYMRYwFAYD VQQDEw02ODBhNzkyNS1jYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyo5JRAN8Tc/YXgFXTtqVvTlASfNUmgCFJxwbMA5iFjTF8s5hp1IwLxjGZ14o vIDVW22DwnkcUIYUEvGUuzz4tCnpsNOPlOz3JLsMK6TBtN74ed4EsFHux8xtvI0P Fqjg4PT1rujTPZbM6OENJj+3lVXtVdtOFsgg48BOa5BE3wq658lXzAYuhyofalk6 kAiw2OVRdbNPWYIbRk1TQHjO2SQeu3dS2/gNOP3vr41dKwlzK3JOTTZ0SYhVe/jh mIfcHGoabtgVYlgBvPlSmJUHSNVEY9bvhIqvv5P5d2wR9FWWVeR3YQganwHSO5m5 qP86kz5rL1OV+0EDmpCm7dBf9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7FBVMG S0dpPAuj/CsMheE9SP0iMB8GA1UdIwQYMBaAFKd35IGMoNzGOC5WJXBvmMgekwcg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81QjI0QTVDOEE2 QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNNWTRMbFlsY0ctWXlCNlRC eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AzZmtnWXlnM01ZNExsWWxjRy1ZeUI2VEJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81QjI0QTVDOEE2QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNN WTRMbFlsY0ctWXlCNlRCeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrQoDbnMLrSu9tfT2AdE2CabnKlbYdyyHzL8o189y/yx54N7fTHL41 HKKSA1xKE6hxn1TrenVnv1b9O5vORYug9CLVgTfcOy+mljYAbira7t6BiMCQf/Ma au1pO/M9czoZrGsKCxBxp+K3U87t61unx+afDdes+gOIKcacorJB8eoEk0wZi1Ym 9fpajYcguQ9ky1Dewg/UTJpNqYuo+hLTrgj2VyNfep1AGO6jNaxXzhmOJWTbh9VI GKWiLVzmP/ADHCXavujU2iNYD3YTCpelytJp3y9t5qDjaB3xRQhkgiW89sfynKqp QWOJapAwHdSyXbz+bUU2TEtEkk3MxuMp -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:28 2025 by rpki-client