$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: uFsTfTmp+IfSkAa1iUAFLXKMcjgwT3JKm2w2Q/zVrU8= Subject key identifier: A7:47:E2:30:AD:72:6D:38:F2:DC:45:0D:C6:DB:66:CD:14:2D:E7:49 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 0979 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 0970 Signing time: Thu 24 Apr 2025 20:03:45 +0000 Manifest this update: Thu 24 Apr 2025 20:03:45 +0000 Manifest next update: Thu 01 May 2025 20:03:45 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: sLIWUsKx6dxlM6EH3b7kwD10cSbgdnvhWPyqGIwLZ5U=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2425 (0x979) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Apr 24 20:03:45 2025 GMT Not After : May 1 20:03:45 2025 GMT Subject: CN=680a9921-6385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:a6:b1:f5:32:d0:31:c5:50:37:bc:86:bd: cf:6c:7b:87:ae:0f:0a:1f:a1:fb:e4:da:94:e0:eb: 7b:74:6d:a3:a3:4e:1c:2e:d8:ad:6f:3f:82:37:7e: 48:b3:a5:75:c1:75:15:64:6c:03:70:2a:7c:6a:08: ba:26:87:dd:27:a4:93:2f:20:72:91:06:1a:6a:3a: 4b:e8:9e:e6:8c:ba:44:23:cc:7f:1c:4c:21:28:57: e0:a9:29:94:71:d1:f5:67:a7:e7:a9:4a:f1:7d:1d: c7:0e:0f:e7:c2:34:d3:a2:be:a9:f3:8f:0b:6f:4e: 68:5a:ba:f6:d9:58:6d:97:76:b8:9c:8d:b6:c5:06: 17:e6:f0:60:6c:0a:11:0e:08:13:43:c0:62:34:47: d8:aa:ae:86:da:d3:76:ba:34:7f:dd:fe:da:03:99: d1:fd:99:76:dd:6e:c5:b4:27:fc:6b:fa:c2:06:0c: b0:38:c1:ff:cd:92:38:be:60:1e:c5:f3:6a:05:20: 30:c4:c5:08:b5:29:4a:7a:0c:37:93:f5:6e:02:73: 33:89:44:53:11:bd:59:56:eb:20:1d:72:0c:7b:fc: 5b:94:3a:8d:32:18:9c:d3:fd:f0:0e:56:5f:49:c6: ab:ea:1b:a1:f0:2c:56:e4:a5:3d:2b:52:d3:82:ee: 8a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:47:E2:30:AD:72:6D:38:F2:DC:45:0D:C6:DB:66:CD:14:2D:E7:49 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:3b:e1:dc:a1:6c:c2:d1:da:ea:a8:60:a0:de:7a:18:02:e8: 04:06:4a:d1:02:7f:58:10:20:c6:a0:28:fd:16:3b:2b:82:64: 7e:97:b4:80:ab:33:a0:a8:54:2a:c4:b7:c5:ef:13:f3:0e:67: 9c:55:5c:53:17:57:3c:01:72:a4:fe:03:85:41:32:74:87:2f: 31:2e:61:e3:2f:d9:46:5e:98:ef:6d:3e:f8:00:e5:05:db:08: 94:dd:58:c8:cf:6f:42:39:5a:f9:29:f4:ff:4f:76:fc:1a:24: d6:32:b8:81:17:01:fc:3a:30:f0:51:e5:9f:42:7e:d1:d5:1c: c2:7d:90:e4:8e:54:5e:41:54:c9:23:0e:0d:ce:d2:5f:85:12: 7c:2f:7a:2b:29:3e:08:72:a2:14:c9:3d:2b:32:11:10:6c:db: b1:50:46:18:a0:e9:2c:e9:03:0d:0f:f0:0d:a8:ac:dc:ff:3e: 13:7b:bc:6e:5d:0a:94:4b:a2:6c:7a:eb:4e:6c:d8:fd:e7:79: 9d:85:dd:a0:f6:8e:56:5c:26:e6:64:95:30:f7:9e:e7:1a:9e: 76:cd:03:5b:07:c9:50:c6:db:b8:e2:4a:91:a5:f8:c1:b3:42: d8:66:45:38:ae:53:41:56:7c:d1:a2:d8:ab:d9:b0:05:87:5d: b0:4d:b8:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUwNDI0MjAwMzQ1WhcNMjUwNTAxMjAwMzQ1WjAYMRYwFAYD VQQDEw02ODBhOTkyMS02Mzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/amsfUy0DHFUDe8hr3PbHuHrg8KH6H75NqU4Ot7dG2jo04cLtitbz+CN35I s6V1wXUVZGwDcCp8agi6JofdJ6STLyBykQYaajpL6J7mjLpEI8x/HEwhKFfgqSmU cdH1Z6fnqUrxfR3HDg/nwjTTor6p848Lb05oWrr22Vhtl3a4nI22xQYX5vBgbAoR DggTQ8BiNEfYqq6G2tN2ujR/3f7aA5nR/Zl23W7FtCf8a/rCBgywOMH/zZI4vmAe xfNqBSAwxMUItSlKegw3k/VuAnMziURTEb1ZVusgHXIMe/xblDqNMhic0/3wDlZf Scar6huh8CxW5KU9K1LTgu6K+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdH4jCt cm048txFDcbbZs0ULedJMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHO+HcoWzC0drqqGCg3noYAugEBkrRAn9YECDGoCj9FjsrgmR+l7SA qzOgqFQqxLfF7xPzDmecVVxTF1c8AXKk/gOFQTJ0hy8xLmHjL9lGXpjvbT74AOUF 2wiU3VjIz29COVr5KfT/T3b8GiTWMriBFwH8OjDwUeWfQn7R1RzCfZDkjlReQVTJ Iw4NztJfhRJ8L3orKT4IcqIUyT0rMhEQbNuxUEYYoOks6QMND/ANqKzc/z4Te7xu XQqUS6JseutObNj953mdhd2g9o5WXCbmZJUw957nGp52zQNbB8lQxtu44kqRpfjB s0LYZkU4rlNBVnzRotir2bAFh12wTbiQ -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:53 2025 by rpki-client