$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft File: 9ncWp9N92wPcVtA6uQKnIDfqGdk.mft (raw, json) Hash identifier: NdQRtRjv0nHpzBr+IX2oBGBXvF5FkS42nsdYlryLyBg= Subject key identifier: 4F:B8:5B:40:16:67:C7:B3:16:4C:AA:09:B7:E2:46:FB:EB:CD:79:DB Authority key identifier: F6:77:16:A7:D3:7D:DB:03:DC:56:D0:3A:B9:02:A7:20:37:EA:19:D9 Certificate issuer: /CN=A918F1EE/serialNumber=F67716A7D37DDB03DC56D03AB902A72037EA19D9 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft Manifest number: 28 Signing time: Fri 25 Apr 2025 06:44:01 +0000 Manifest this update: Fri 25 Apr 2025 06:44:01 +0000 Manifest next update: Fri 02 May 2025 06:44:01 +0000 Files and hashes: 1: 9ncWp9N92wPcVtA6uQKnIDfqGdk.crl (hash: WvJ4GvtxjKK4NUE/UjggPRtSINEduIfvELzLOVOMZms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.crl rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1EE, serialNumber=F67716A7D37DDB03DC56D03AB902A72037EA19D9 Validity Not Before: Apr 25 06:44:01 2025 GMT Not After : May 2 06:44:01 2025 GMT Subject: CN=680b2f31-1f00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c1:28:a7:a1:6c:e2:2f:20:40:bb:fc:4c:95: 3c:a8:4f:15:23:46:0e:54:27:60:21:0f:e0:a0:85: 48:46:6c:6f:68:89:7d:d3:35:e3:b2:de:d7:ca:06: 66:f2:4a:6d:c7:69:92:44:9a:7a:b6:45:4d:8f:8f: ab:c6:96:25:3d:7e:d9:22:45:af:a6:12:f7:28:93: 4a:92:39:6c:df:14:ae:91:1b:60:bb:3c:34:33:a1: 64:93:43:80:20:28:81:6b:0b:00:6b:14:4c:4a:ff: ba:7e:6b:1a:86:aa:f8:43:b6:66:d7:c3:c0:db:a7: ce:2e:ba:00:e0:27:49:37:ed:fa:84:ce:5a:34:89: f4:c1:29:39:70:48:ba:b5:0f:4f:a7:96:7a:eb:84: 67:9a:ae:18:bb:e2:75:0a:1b:1b:d6:a9:d4:0c:bb: 61:16:42:c7:2f:09:29:05:5c:b9:73:9a:27:39:5c: 53:a5:57:51:2e:65:3b:87:8b:82:7c:09:02:67:3e: 70:89:34:97:2f:1a:a5:79:b3:71:5f:a4:1a:a4:d5: fb:aa:c9:2d:c9:f2:df:2a:4a:70:f2:1a:a5:78:d7: 14:13:8f:06:25:8d:2d:f3:ad:1c:56:29:27:86:ad: ba:c5:d5:bf:48:01:af:69:97:15:4b:5e:e6:cf:d1: 09:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B8:5B:40:16:67:C7:B3:16:4C:AA:09:B7:E2:46:FB:EB:CD:79:DB X509v3 Authority Key Identifier: keyid:F6:77:16:A7:D3:7D:DB:03:DC:56:D0:3A:B9:02:A7:20:37:EA:19:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:8e:bc:58:c5:21:56:58:90:98:af:d4:f2:03:72:93:eb:c8: 3a:c1:99:bb:ea:04:e8:23:4f:e5:f8:a1:3c:91:af:20:2f:ff: 12:fc:b3:d4:78:d4:04:1e:e3:c5:ec:8a:1e:61:a1:4a:c6:98: 55:a8:18:5c:32:2d:c4:05:dd:c1:db:91:ab:81:78:22:51:00: e5:d9:f0:ea:07:f8:a7:55:36:15:d4:f6:aa:87:80:5a:74:84: 5e:a2:c7:2f:85:61:c7:6f:7a:43:bf:ab:8a:a9:ba:cd:8b:1b: b8:09:bc:ca:87:0d:c5:a2:da:b4:14:55:f4:17:c0:d9:09:1c: 36:a5:37:85:ac:98:aa:8c:ed:9e:d7:0f:30:4a:d4:e6:25:df: d6:e0:b1:8f:55:5e:4b:39:79:c0:e8:02:19:da:8b:2c:3d:11: 09:00:77:e0:63:fc:f4:15:c3:82:1e:f8:bd:6d:a8:45:a9:fb: f5:92:b0:2c:65:95:04:37:59:77:4b:94:83:aa:3d:80:c6:cb: fc:52:df:f2:f0:2e:11:9e:9c:30:91:7c:40:ca:a7:d3:34:80: 64:a1:c9:ff:32:b1:58:c3:eb:1f:6b:95:1e:d3:41:1e:b9:12: d6:8e:fd:f4:32:6b:94:f1:a9:48:1d:8e:f9:70:4f:30:86:ad: 19:35:39:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFFRTExMC8GA1UEBRMoRjY3NzE2QTdEMzdEREIwM0RDNTZEMDNBQjkwMkE3MjAz N0VBMTlEOTAeFw0yNTA0MjUwNjQ0MDFaFw0yNTA1MDIwNjQ0MDFaMBgxFjAUBgNV BAMTDTY4MGIyZjMxLTFmMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKwSinoWziLyBAu/xMlTyoTxUjRg5UJ2AhD+CghUhGbG9oiX3TNeOy3tfKBmby Sm3HaZJEmnq2RU2Pj6vGliU9ftkiRa+mEvcok0qSOWzfFK6RG2C7PDQzoWSTQ4Ag KIFrCwBrFExK/7p+axqGqvhDtmbXw8Dbp84uugDgJ0k37fqEzlo0ifTBKTlwSLq1 D0+nlnrrhGearhi74nUKGxvWqdQMu2EWQscvCSkFXLlzmic5XFOlV1EuZTuHi4J8 CQJnPnCJNJcvGqV5s3FfpBqk1fuqyS3J8t8qSnDyGqV41xQTjwYljS3zrRxWKSeG rbrF1b9IAa9plxVLXubP0QkhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT7hbQBZn x7MWTKoJt+JG++vNedswHwYDVR0jBBgwFoAU9ncWp9N92wPcVtA6uQKnIDfqGdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUVFL0YzMkNGNEU4RTc1 MTExRUZCRUQ4MUIwRUM0RjlBRTAyLzluY1dwOU45MndQY1Z0QTZ1UUtuSURmcUdk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOW5jV3A5Tjkyd1BjVnRBNnVRS25JRGZxR2RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUVFL0YzMkNGNEU4RTc1MTExRUZCRUQ4MUIwRUM0RjlBRTAyLzluY1dwOU45MndQ Y1Z0QTZ1UUtuSURmcUdkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJSOvFjFIVZYkJiv1PIDcpPryDrBmbvqBOgjT+X4oTyRryAv/xL8s9R4 1AQe48Xsih5hoUrGmFWoGFwyLcQF3cHbkauBeCJRAOXZ8OoH+KdVNhXU9qqHgFp0 hF6ixy+FYcdvekO/q4qpus2LG7gJvMqHDcWi2rQUVfQXwNkJHDalN4WsmKqM7Z7X DzBK1OYl39bgsY9VXks5ecDoAhnaiyw9EQkAd+Bj/PQVw4Ie+L1tqEWp+/WSsCxl lQQ3WXdLlIOqPYDGy/xS3/LwLhGenDCRfEDKp9M0gGShyf8ysVjD6x9rlR7TQR65 EtaO/fQya5TxqUgdjvlwTzCGrRk1OZo= -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:03 2025 by rpki-client