$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: lKxc3hEnTixjeD4ECAmSa+xIVJCwMOBzIzRT5nAL/q4= Subject key identifier: 8E:EA:FB:0D:8B:91:BF:F7:99:B2:4D:DE:CB:7A:19:B4:66:3E:44:05 Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 090E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 08EB Signing time: Thu 24 Apr 2025 20:21:45 +0000 Manifest this update: Thu 24 Apr 2025 20:21:45 +0000 Manifest next update: Thu 01 May 2025 20:21:45 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: 6yOCZz2gfnRYHvkkYTFuQZfHkzqahRgq50PSIhi4siw=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: oYydxPk4UhXwzQt6ATEzMXRyl5GNnPSrO9reRguBtdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2318 (0x90e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Apr 24 20:21:45 2025 GMT Not After : May 1 20:21:45 2025 GMT Subject: CN=680a9d59-8913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:71:29:ee:d7:58:f2:7b:59:3b:d6:7b:81:4c: fa:95:c0:cd:df:8a:6a:d8:71:1b:ec:5c:6a:a7:9c: 75:cd:eb:1a:05:4a:f6:6a:d2:1a:66:7d:28:e5:fe: 99:ee:1e:fd:ba:b5:2d:67:53:6e:46:b6:28:df:e4: 5c:17:29:7d:91:1e:87:dd:2a:a9:60:c7:63:99:92: 66:29:a8:21:43:d7:ca:92:67:a4:af:72:f0:11:28: 48:a3:5f:46:da:1b:c2:ef:13:2d:3a:22:f0:11:e3: ed:44:79:2c:3d:a2:ba:96:ae:b0:3c:78:9b:3f:d5: 88:78:dc:29:41:5a:f1:b2:51:65:0b:83:fe:61:d8: 3b:4d:14:93:b2:30:78:15:9a:e7:6b:0d:6b:ce:8a: 6d:4b:b0:55:0a:32:a7:58:f5:5d:05:a1:26:56:ca: 95:10:8d:c8:24:85:c4:49:c3:0a:95:3a:d5:6b:82: 32:a2:d5:e3:91:87:fc:a3:bc:f4:0d:d5:de:06:09: 6c:2d:a6:83:89:e6:d1:9c:48:c4:33:06:19:dd:d3: 44:09:e5:92:7f:80:dd:0e:cf:db:d0:a6:16:21:09: 92:b9:ab:47:de:ee:ea:96:1b:70:79:8b:25:c4:02: 2b:ab:f7:1c:68:06:2b:56:84:d5:90:d6:83:46:26: de:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:EA:FB:0D:8B:91:BF:F7:99:B2:4D:DE:CB:7A:19:B4:66:3E:44:05 X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:11:32:12:a4:fd:df:c6:fe:dc:6b:1e:6c:f6:89:ce:50:40: ba:e3:1b:0b:31:cc:aa:41:e9:d9:b2:c3:af:00:7e:7f:f5:55: d5:20:f5:57:04:2f:d6:6e:69:13:a6:44:83:1d:84:50:02:3f: 23:af:a0:9e:ee:47:2f:21:09:2f:88:a1:2d:14:1f:ca:d2:bd: 8a:99:f5:5d:e6:0e:22:53:ba:8e:f2:c0:9a:18:44:2b:00:84: 09:0e:df:00:e6:52:7b:61:bd:1f:f8:df:55:f5:59:00:77:b5: eb:47:bf:6c:c0:31:14:cd:89:9e:17:95:e6:83:d2:6a:1b:a8: e4:f2:a6:6a:3f:c4:93:21:d8:4c:fc:85:4a:7d:f8:c1:64:89: a2:a7:1b:d2:0b:dc:7b:de:5a:9c:4f:4b:be:db:b0:53:17:62: ba:7e:06:8a:e0:3c:ce:ce:fd:4a:4b:a4:d5:84:39:d8:b8:db: 10:7d:19:c5:c3:5f:43:74:fa:0f:03:ed:62:35:5e:9a:8a:f5: 6a:bb:14:03:f2:c7:c0:8b:9d:7e:34:1a:86:72:00:2f:a1:a1: 49:80:f5:2f:e7:4b:c2:74:fb:b2:bf:7a:40:66:a4:15:2e:87: 5d:61:32:af:b7:f3:f2:9b:c3:f8:30:c3:12:94:98:e7:66:8d: 65:83:67:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwNDI0MjAyMTQ1WhcNMjUwNTAxMjAyMTQ1WjAYMRYwFAYD VQQDEw02ODBhOWQ1OS04OTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3Ep7tdY8ntZO9Z7gUz6lcDN34pq2HEb7Fxqp5x1zesaBUr2atIaZn0o5f6Z 7h79urUtZ1NuRrYo3+RcFyl9kR6H3SqpYMdjmZJmKaghQ9fKkmekr3LwEShIo19G 2hvC7xMtOiLwEePtRHksPaK6lq6wPHibP9WIeNwpQVrxslFlC4P+Ydg7TRSTsjB4 FZrnaw1rzoptS7BVCjKnWPVdBaEmVsqVEI3IJIXEScMKlTrVa4IyotXjkYf8o7z0 DdXeBglsLaaDiebRnEjEMwYZ3dNECeWSf4DdDs/b0KYWIQmSuatH3u7qlhtweYsl xAIrq/ccaAYrVoTVkNaDRibeDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7q+w2L kb/3mbJN3st6GbRmPkQFMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsETISpP3fxv7cax5s9onOUEC64xsLMcyqQenZssOvAH5/9VXVIPVX BC/WbmkTpkSDHYRQAj8jr6Ce7kcvIQkviKEtFB/K0r2KmfVd5g4iU7qO8sCaGEQr AIQJDt8A5lJ7Yb0f+N9V9VkAd7XrR79swDEUzYmeF5Xmg9JqG6jk8qZqP8STIdhM /IVKffjBZImipxvSC9x73lqcT0u+27BTF2K6fgaK4DzOzv1KS6TVhDnYuNsQfRnF w19DdPoPA+1iNV6aivVquxQD8sfAi51+NBqGcgAvoaFJgPUv50vCdPuyv3pAZqQV LoddYTKvt/Pym8P4MMMSlJjnZo1lg2du -----END CERTIFICATE-----Generated at Sat Apr 26 17:09:19 2025 by rpki-client