$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft File: 3glSX1epVbpvLTKtIoMwQhUYLkU.mft (raw, json) Hash identifier: o1QSu931kDaczesPCqDPwBStAxLsG9ZPDKlwKPmVQb0= Subject key identifier: 7A:04:F7:67:71:17:A0:3C:C3:53:C9:FF:65:46:94:A7:3E:DA:E3:B2 Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft Manifest number: 0142 Signing time: Tue 13 May 2025 03:33:09 +0000 Manifest this update: Tue 13 May 2025 03:33:08 +0000 Manifest next update: Tue 20 May 2025 03:33:08 +0000 Files and hashes: 1: 3glSX1epVbpvLTKtIoMwQhUYLkU.crl (hash: VYk4dI1GPSdwE/9JiH50nGgnB8aS8hTIIPmxZkyLaq8=) 2: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (hash: 0Dz92F7ct8bVXTADuiwvMmdgfbqvyjCznAHcDYM7e2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32, serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Validity Not Before: May 13 03:33:08 2025 GMT Not After : May 20 03:33:08 2025 GMT Subject: CN=6822bd74-012e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c2:7e:66:d1:e1:88:cd:fb:40:0f:e2:76:83: 8e:7d:59:e9:7f:33:ec:38:8e:23:d4:1c:c8:32:1a: bf:b1:ba:39:a6:2f:6c:16:2d:e8:b0:e7:7a:e3:8c: bb:78:6d:e2:2f:02:60:0c:5d:da:cf:af:1f:a8:b5: 77:36:a5:4d:9f:3d:53:da:a4:08:89:2b:16:d5:4f: a6:b8:78:1c:d3:15:04:2e:38:d8:0e:27:92:2b:06: 0e:cc:92:cf:64:d2:0a:ac:50:06:48:11:00:dc:ce: b2:15:ed:48:fd:6b:78:50:da:e4:4b:5a:f2:10:09: 82:f1:7f:78:50:04:a5:01:b2:08:b6:59:dd:8d:77: 76:a1:35:26:7d:a1:41:4e:7b:d4:81:5d:5f:fa:8c: ac:d1:4e:87:b8:64:7a:84:a1:a4:35:3a:44:96:9f: f3:df:d0:6d:69:33:9b:f4:1e:7b:fc:82:15:c6:05: 21:aa:fe:43:fb:56:b7:c8:bc:f0:c5:b0:03:64:a0: 96:e9:c5:cb:09:da:36:20:81:3a:c7:f6:fc:de:3c: 7a:46:a7:c3:f7:dd:b8:68:81:57:3d:2c:66:d6:b1: 08:38:41:bc:bf:e5:93:3c:92:d5:1a:d2:4d:a6:c9: ea:8f:74:50:fc:8d:a8:6b:49:7d:4f:b9:76:bc:3b: ef:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:04:F7:67:71:17:A0:3C:C3:53:C9:FF:65:46:94:A7:3E:DA:E3:B2 X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:5d:14:e8:72:06:40:2e:bc:54:5f:a3:c0:9e:58:2f:a9:30: bc:fe:e7:95:e0:c7:a6:21:23:ac:02:31:fc:8f:fc:6f:be:d4: a7:23:7c:c0:3f:cf:0c:a3:af:89:78:35:fe:6e:61:85:29:f9: 3d:a0:71:ab:45:05:dd:ba:0c:a0:12:c3:5b:94:49:e8:50:78: 4f:f1:56:c5:8f:c2:cb:14:7e:43:3e:82:e9:32:1e:5e:cb:f4: f0:16:89:1a:d8:f7:de:1f:dc:57:6c:2b:5e:b3:7e:e2:26:1f: 51:0d:48:64:23:57:31:1c:ef:78:c9:4a:e7:bf:36:45:f6:55: 2c:52:82:af:37:20:c4:0f:39:55:4d:a7:41:03:5f:13:2f:69: f0:f7:14:38:00:bd:28:d0:65:51:29:19:9e:31:52:4f:e1:b6: 22:39:11:80:51:2f:de:87:1b:8e:4a:fd:e7:e1:7f:ef:91:f3: 38:ac:fa:fd:87:17:4f:7c:38:78:cf:81:5d:bd:e8:66:c2:b2: 8f:b7:72:42:ee:65:3f:83:31:27:a6:f6:29:d0:f7:6b:57:b3: 0c:e4:cf:ae:99:84:a1:91:eb:40:3b:82:bd:c6:c4:79:f4:e0: bd:9f:eb:0f:5b:38:da:82:10:f4:66:82:73:75:91:df:2b:95: 28:81:1b:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjUwNTEzMDMzMzA4WhcNMjUwNTIwMDMzMzA4WjAYMRYwFAYD VQQDEw02ODIyYmQ3NC0wMTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cJ+ZtHhiM37QA/idoOOfVnpfzPsOI4j1BzIMhq/sbo5pi9sFi3osOd644y7 eG3iLwJgDF3az68fqLV3NqVNnz1T2qQIiSsW1U+muHgc0xUELjjYDieSKwYOzJLP ZNIKrFAGSBEA3M6yFe1I/Wt4UNrkS1ryEAmC8X94UASlAbIItlndjXd2oTUmfaFB TnvUgV1f+oys0U6HuGR6hKGkNTpElp/z39BtaTOb9B57/IIVxgUhqv5D+1a3yLzw xbADZKCW6cXLCdo2IIE6x/b83jx6RqfD9924aIFXPSxm1rEIOEG8v+WTPJLVGtJN psnqj3RQ/I2oa0l9T7l2vDvvgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoE92dx F6A8w1PJ/2VGlKc+2uOyMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUMzMi9DNEVBMUI5RTQ2RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZi cHZMVEt0SW9Nd1FoVVlMa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbXRTocgZALrxUX6PAnlgvqTC8/ueV4MemISOsAjH8j/xvvtSnI3zA P88Mo6+JeDX+bmGFKfk9oHGrRQXdugygEsNblEnoUHhP8VbFj8LLFH5DPoLpMh5e y/TwFoka2PfeH9xXbCtes37iJh9RDUhkI1cxHO94yUrnvzZF9lUsUoKvNyDEDzlV TadBA18TL2nw9xQ4AL0o0GVRKRmeMVJP4bYiORGAUS/ehxuOSv3n4X/vkfM4rPr9 hxdPfDh4z4FdvehmwrKPt3JC7mU/gzEnpvYp0PdrV7MM5M+umYShketAO4K9xsR5 9OC9n+sPWzjaghD0ZoJzdZHfK5UogRva -----END CERTIFICATE-----Generated at Wed May 14 16:50:38 2025 by rpki-client