$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: e+Bm7qTOsnJUqA7Et24Cyv2KPXaouWPXd38HanURov8= Subject key identifier: 44:D6:BE:40:80:0F:C3:35:72:F3:87:92:15:24:5D:78:60:AE:F1:4F Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 02CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 02B6 Signing time: Fri 25 Apr 2025 01:16:15 +0000 Manifest this update: Fri 25 Apr 2025 01:16:15 +0000 Manifest next update: Fri 02 May 2025 01:16:15 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: yGW67Sv72cpBWxeDj4YswPxPl5lbJ3pz3uBIhPeZWSs=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: 53m8lgTS9MVUv1Vw8PSfBdAvCrqd3v5hMo0nMfwS2c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Apr 25 01:16:15 2025 GMT Not After : May 2 01:16:15 2025 GMT Subject: CN=680ae25f-4d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:60:3c:5a:55:bf:a0:bb:1e:34:28:cf:64:44: 2a:6a:53:f8:a6:a0:cb:33:e7:f6:2b:27:4a:9e:49: 6d:b6:93:6f:d0:f7:f1:f1:55:95:43:ee:a0:22:be: b9:a6:9f:9b:8d:2c:23:75:8b:ba:de:97:68:36:0c: a2:a9:53:b8:36:0e:f3:5d:d8:9a:d3:c7:6f:35:3e: c9:53:23:35:05:2b:76:c8:73:a3:54:05:3d:00:cc: 8a:f7:3a:de:36:3e:56:bb:82:35:0a:53:86:4a:9e: dc:6a:6c:1f:02:eb:67:14:5f:c5:63:45:61:56:58: 7f:2f:82:14:e6:3a:4c:10:1c:c4:21:ae:54:e9:78: c2:ef:7a:b8:1e:11:b3:99:c2:18:6e:a0:c7:61:fc: 8c:a5:de:fe:c2:aa:0d:19:6e:52:25:c0:3c:6f:f1: 98:aa:eb:e8:23:bb:1b:6b:8e:99:9b:74:b2:71:5b: 77:7b:2a:65:68:27:f2:31:4c:80:40:be:98:ec:1a: 65:2f:8e:8c:e8:12:2f:31:ac:ec:a9:01:f4:9b:41: 9a:0a:90:78:15:4b:92:ad:cc:1b:89:46:28:e8:31: ee:24:8d:45:65:2c:3b:8a:f7:b6:fa:fe:7d:2b:aa: 5a:8a:65:19:ca:d4:3a:86:33:11:8a:80:14:2e:95: 2f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D6:BE:40:80:0F:C3:35:72:F3:87:92:15:24:5D:78:60:AE:F1:4F X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c6:3a:76:f7:78:e7:fd:d5:0e:7a:b6:5a:36:1f:52:bf:c1: b5:62:75:73:71:6e:0c:38:31:ae:18:65:49:73:75:7b:27:ff: 61:38:17:97:4f:65:b3:91:21:15:9d:91:a0:9e:34:84:be:7f: 25:c4:69:fe:8f:f7:f6:b0:3e:58:a0:9b:e1:eb:a6:d3:62:c2: 6c:c3:1b:a7:69:25:f3:bd:b7:f7:c2:ba:8a:25:9b:c6:58:da: 1e:6d:fd:f2:77:87:3a:8f:8a:d1:db:15:2b:30:c1:f8:f1:e1: 9f:56:b1:d0:03:8b:06:59:34:23:a7:9d:c7:18:34:74:86:3e: 68:74:f7:52:bd:8d:f0:6b:42:a6:2e:63:9a:5d:8b:91:7b:c3: 85:2a:3c:c7:b8:c9:20:fe:c5:4e:ce:c7:c9:a7:bd:d8:f8:14: 7d:70:a5:90:22:ff:dd:7d:ca:3f:98:92:14:d9:90:25:37:0f: 5f:20:f1:00:87:53:b5:b5:8b:5e:d4:9e:e0:3f:7d:8e:e6:06: 90:07:e7:11:b8:09:57:b4:d9:bb:6a:a0:59:0b:7b:12:46:d9: 73:02:46:18:fc:c3:a4:66:3c:08:44:9a:1d:ef:eb:4b:12:bb: a4:78:2f:70:a4:3f:c1:61:19:33:21:ce:08:0f:3a:8c:ef:2e: ea:59:2b:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUwNDI1MDExNjE1WhcNMjUwNTAyMDExNjE1WjAYMRYwFAYD VQQDEw02ODBhZTI1Zi00ZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2A8WlW/oLseNCjPZEQqalP4pqDLM+f2KydKnklttpNv0Pfx8VWVQ+6gIr65 pp+bjSwjdYu63pdoNgyiqVO4Ng7zXdia08dvNT7JUyM1BSt2yHOjVAU9AMyK9zre Nj5Wu4I1ClOGSp7camwfAutnFF/FY0VhVlh/L4IU5jpMEBzEIa5U6XjC73q4HhGz mcIYbqDHYfyMpd7+wqoNGW5SJcA8b/GYquvoI7sba46Zm3SycVt3eyplaCfyMUyA QL6Y7BplL46M6BIvMazsqQH0m0GaCpB4FUuSrcwbiUYo6DHuJI1FZSw7ive2+v59 K6paimUZytQ6hjMRioAULpUvYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETWvkCA D8M1cvOHkhUkXXhgrvFPMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfxjp293jn/dUOerZaNh9Sv8G1YnVzcW4MODGuGGVJc3V7J/9hOBeX T2WzkSEVnZGgnjSEvn8lxGn+j/f2sD5YoJvh66bTYsJswxunaSXzvbf3wrqKJZvG WNoebf3yd4c6j4rR2xUrMMH48eGfVrHQA4sGWTQjp53HGDR0hj5odPdSvY3wa0Km LmOaXYuRe8OFKjzHuMkg/sVOzsfJp73Y+BR9cKWQIv/dfco/mJIU2ZAlNw9fIPEA h1O1tYte1J7gP32O5gaQB+cRuAlXtNm7aqBZC3sSRtlzAkYY/MOkZjwIRJod7+tL ErukeC9wpD/BYRkzIc4IDzqM7y7qWSsp -----END CERTIFICATE-----Generated at Sat Apr 26 05:18:03 2025 by rpki-client