$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft File: poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft (raw, json) Hash identifier: GdRQD72krD9+LCWH/RylHZVMO2fMoCSfDUUym+9Qqlo= Subject key identifier: 8E:BD:E3:A4:3A:9F:9D:A4:06:81:80:7F:B8:00:1C:F6:D3:0B:E7:C1 Authority key identifier: A6:85:F5:1A:7D:D3:F0:26:CF:28:E2:1F:03:A1:40:69:9D:B8:FE:8C Certificate issuer: /CN=A918F1EE/serialNumber=A685F51A7DD3F026CF28E21F03A140699DB8FE8C Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/poX1Gn3T8CbPKOIfA6FAaZ24_ow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft Manifest number: 28 Signing time: Fri 25 Apr 2025 06:43:59 +0000 Manifest this update: Fri 25 Apr 2025 06:43:59 +0000 Manifest next update: Fri 02 May 2025 06:43:59 +0000 Files and hashes: 1: poX1Gn3T8CbPKOIfA6FAaZ24_ow.crl (hash: xRhvCA75yrmkKV+YQhFvAGaS7AAaSWUuiLX6tslkJj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.crl rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/poX1Gn3T8CbPKOIfA6FAaZ24_ow.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1EE, serialNumber=A685F51A7DD3F026CF28E21F03A140699DB8FE8C Validity Not Before: Apr 25 06:43:59 2025 GMT Not After : May 2 06:43:59 2025 GMT Subject: CN=680b2f2f-e08f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:31:3e:42:d1:5b:b4:05:9a:04:9c:c1:2e:f7: c7:a3:09:46:5d:da:a6:5c:7b:a9:36:ee:76:0f:04: da:06:f5:ff:fc:e5:72:a1:04:54:a3:a3:fd:be:e7: f8:c1:8a:fb:b6:e3:3a:e3:ea:51:55:f5:b7:98:74: 82:4a:a9:6e:ba:c7:a6:3c:98:7c:89:47:4b:3f:6c: 39:89:60:97:e0:60:64:3c:9c:7f:a8:cd:4b:10:e5: 5a:ce:29:4a:91:d0:b5:46:c7:7f:39:e0:25:02:0c: 83:72:f7:43:f9:9f:3a:70:b9:7a:01:5f:d1:04:03: 6b:67:b2:8d:55:bc:e4:ef:48:9c:d0:7f:d8:78:32: 8a:88:a6:4d:2a:23:8a:03:9a:65:7b:b3:91:2e:ba: 3b:ba:4d:8f:2b:c7:d8:7b:8a:16:21:5c:7b:88:35: 73:96:1e:0b:82:b2:d2:5c:73:1a:9b:b4:bf:80:2f: 92:d7:84:84:c1:31:30:74:98:86:21:bf:86:bb:86: 76:74:cc:67:25:5b:d2:72:85:d0:75:4a:57:ba:1d: de:b0:03:14:bc:ac:43:5e:22:00:48:6c:86:89:37: f9:01:9d:0e:5e:1a:3d:98:5c:13:b5:f9:f3:bf:0f: c9:a9:02:f0:db:50:b0:fa:bc:76:3f:b9:c2:3c:0d: 63:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:BD:E3:A4:3A:9F:9D:A4:06:81:80:7F:B8:00:1C:F6:D3:0B:E7:C1 X509v3 Authority Key Identifier: keyid:A6:85:F5:1A:7D:D3:F0:26:CF:28:E2:1F:03:A1:40:69:9D:B8:FE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/poX1Gn3T8CbPKOIfA6FAaZ24_ow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:77:e1:20:0e:f7:86:85:00:1a:9c:6c:c3:35:75:92:ec:c3: 11:c7:7a:3a:1a:8a:38:05:91:5b:6e:09:80:f8:58:45:81:48: 4c:03:ef:13:0a:cb:40:1a:e3:e6:64:30:88:42:73:fe:dc:bf: ff:ab:96:a5:36:b9:c3:7b:42:66:78:e0:5e:83:3a:f0:fa:3a: 06:f9:39:3c:47:9b:04:49:f0:61:8d:f2:32:f1:18:56:51:fb: f2:82:3e:1a:74:55:a1:08:d7:ec:dc:75:ae:43:32:82:76:3d: ea:ad:95:58:a8:0d:2e:8a:1f:e9:c2:f7:df:c1:98:e2:da:91: 6d:7f:89:d3:d6:77:88:39:14:a2:22:05:38:a8:4c:dc:59:28: 50:b4:16:24:67:98:34:a9:eb:55:6f:87:27:96:22:21:07:c6: 6d:b1:30:7d:2b:d6:89:d4:7a:48:70:fb:c9:46:f1:64:eb:2c: 86:2f:e7:8d:d8:fe:d6:87:3c:00:34:cd:ed:a4:17:2c:7a:78: 27:b2:d3:5f:0a:be:a2:b4:6b:f0:8f:fc:8d:32:c9:63:f6:ee: 21:f6:b5:63:9d:75:d3:df:e8:8c:7b:8f:b2:2a:4a:5c:c2:5c: 80:e7:d1:72:21:d6:3e:34:9d:fb:ce:0e:4f:60:e0:57:ca:31: e7:da:2b:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFFRTExMC8GA1UEBRMoQTY4NUY1MUE3REQzRjAyNkNGMjhFMjFGMDNBMTQwNjk5 REI4RkU4QzAeFw0yNTA0MjUwNjQzNTlaFw0yNTA1MDIwNjQzNTlaMBgxFjAUBgNV BAMTDTY4MGIyZjJmLWUwOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqMT5C0Vu0BZoEnMEu98ejCUZd2qZce6k27nYPBNoG9f/85XKhBFSjo/2+5/jB ivu24zrj6lFV9beYdIJKqW66x6Y8mHyJR0s/bDmJYJfgYGQ8nH+ozUsQ5VrOKUqR 0LVGx3854CUCDINy90P5nzpwuXoBX9EEA2tnso1VvOTvSJzQf9h4MoqIpk0qI4oD mmV7s5Euuju6TY8rx9h7ihYhXHuINXOWHguCstJccxqbtL+AL5LXhITBMTB0mIYh v4a7hnZ0zGclW9JyhdB1Sle6Hd6wAxS8rENeIgBIbIaJN/kBnQ5eGj2YXBO1+fO/ D8mpAvDbULD6vHY/ucI8DWMTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjr3jpDqf naQGgYB/uAAc9tML58EwHwYDVR0jBBgwFoAUpoX1Gn3T8CbPKOIfA6FAaZ24/oww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUVFL0VCMDBBOEM4RTc1 MTExRUZCRUQ4MUIwRUM0RjlBRTAyL3BvWDFHbjNUOENiUEtPSWZBNkZBYVoyNF9v dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcG9YMUduM1Q4Q2JQS09JZkE2RkFhWjI0X293LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUVFL0VCMDBBOEM4RTc1MTExRUZCRUQ4MUIwRUM0RjlBRTAyL3BvWDFHbjNUOENi UEtPSWZBNkZBYVoyNF9vdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAN34SAO94aFABqcbMM1dZLswxHHejoaijgFkVtuCYD4WEWBSEwD7xMK y0Aa4+ZkMIhCc/7cv/+rlqU2ucN7QmZ44F6DOvD6Ogb5OTxHmwRJ8GGN8jLxGFZR +/KCPhp0VaEI1+zcda5DMoJ2PeqtlVioDS6KH+nC99/BmOLakW1/idPWd4g5FKIi BTioTNxZKFC0FiRnmDSp61VvhyeWIiEHxm2xMH0r1onUekhw+8lG8WTrLIYv543Y /taHPAA0ze2kFyx6eCey018KvqK0a/CP/I0yyWP27iH2tWOdddPf6Ix7j7IqSlzC XIDn0XIh1j40nfvODk9g4FfKMefaK3k= -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:15 2025 by rpki-client