$ rpki-client -vvf rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft File: r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft (raw, json) Hash identifier: UW+dipaIDgA0R99/Ainvx7iZ3MqieSt3P/hUfVqLQxs= Subject key identifier: 6A:DC:C7:CC:C9:DB:AB:D2:F1:B3:7B:7C:ED:C6:8B:A1:85:34:BD:D3 Authority key identifier: AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 Certificate issuer: /CN=A9127686/serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Certificate serial: 04AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft Manifest number: 04A8 Signing time: Mon 12 May 2025 23:43:32 +0000 Manifest this update: Mon 12 May 2025 23:43:31 +0000 Manifest next update: Mon 19 May 2025 23:43:31 +0000 Files and hashes: 1: r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl (hash: x2dcIhetKFEm5eVEV9O6yos8HPZUo9meFaQgZf3GlUI=) 2: 54BBE48A304411EC830F8610C4F9AE02.roa (hash: ES0KtplnGhM27Vh/hroAKpFu+jIJhHlyayZgnN5P/Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:43:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1197 (0x4ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127686, serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Validity Not Before: May 12 23:43:31 2025 GMT Not After : May 19 23:43:31 2025 GMT Subject: CN=682287a4-b5ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:81:5b:39:56:73:e4:94:21:e1:7a:bc:a6:b0: cf:ba:50:e8:e8:b7:0d:49:a1:50:51:c7:83:1f:ba: 3c:37:7a:a8:8e:fd:a3:ac:34:f2:72:7f:e2:88:1c: a1:c3:57:a7:b6:7c:51:73:47:43:2f:c4:65:41:d1: 6f:40:4b:a3:9c:06:c4:5b:bb:99:35:b0:80:cd:97: b6:c4:02:66:2e:19:bb:19:21:ea:a7:8a:42:9d:c1: 77:88:46:78:dc:b8:3d:bd:ca:16:ae:28:87:ad:a8: 81:9a:6e:22:0d:b4:31:6d:94:e7:f3:37:e9:42:01: 06:23:c3:33:17:da:72:d9:75:ea:83:36:51:bc:36: 35:08:c5:c6:07:42:67:09:ce:b2:4e:df:7a:07:07: 69:d6:b9:88:77:a6:66:6d:c9:7a:e9:85:f8:12:96: 57:e5:b1:bd:9e:1c:46:53:ed:e7:8b:4a:6e:9a:a5: 30:31:ee:0d:7f:17:7c:cc:05:7c:55:7e:95:4e:67: 9f:8f:39:af:77:13:f2:6c:e9:8c:fe:1d:db:6d:fa: bc:ab:3a:b4:e8:79:39:20:93:7c:56:d3:f0:6c:5e: 67:7c:8f:03:a8:2c:a0:cb:6f:6c:1f:58:33:41:e1: e0:71:3e:3b:a9:f2:c0:38:86:70:a9:b3:00:fa:d3: 58:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:DC:C7:CC:C9:DB:AB:D2:F1:B3:7B:7C:ED:C6:8B:A1:85:34:BD:D3 X509v3 Authority Key Identifier: keyid:AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:85:cf:d9:35:d0:cf:0f:78:f3:c4:79:99:dc:0d:ee:46:d5: df:bb:f0:4f:fa:86:9c:42:4c:b4:0d:99:75:61:61:74:d3:2c: 55:7c:9f:05:f5:1c:dc:6b:6b:30:56:69:28:6d:24:d2:54:3c: 26:99:fd:85:b9:69:c5:54:ad:6a:8d:cd:25:66:68:f5:c1:d1: 24:10:3a:22:0a:fe:6d:61:d7:b6:1f:8f:ec:52:f1:62:7f:ae: 11:3d:3b:4d:06:77:7d:9a:e5:96:c4:66:01:54:1e:7d:bd:41: 67:18:7b:db:57:90:26:27:52:84:82:f7:85:8e:4e:f0:e9:0a: 2f:c5:12:57:ac:d2:99:c3:77:a9:44:64:6f:4b:ba:89:43:49: 10:81:22:b5:b0:fd:06:60:71:b6:c4:04:f0:9d:3b:a0:06:3b: bf:c1:c3:a6:16:32:4a:36:39:47:ae:45:9d:b2:ec:61:06:7a: c8:de:38:c0:46:a3:79:2e:6c:32:a9:be:a5:bf:51:01:8e:b2: 52:ed:8c:8a:24:f1:36:ac:f9:f9:db:cb:3e:62:f2:be:f9:a8: ef:93:9e:cc:80:5c:6d:9c:da:d7:00:40:73:d9:7c:b9:df:da: f3:47:94:4c:8c:4b:65:14:e9:20:92:80:9c:bc:b5:5f:84:21: 5f:74:2e:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2ODYxMTAvBgNVBAUTKEFGNzFGNUIxNjc5NUY5QjdDRjJCMjQ1ODQ4MDc3RTEx Njg1QkE2RjAwHhcNMjUwNTEyMjM0MzMxWhcNMjUwNTE5MjM0MzMxWjAYMRYwFAYD VQQDEw02ODIyODdhNC1iNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIFbOVZz5JQh4Xq8prDPulDo6LcNSaFQUceDH7o8N3qojv2jrDTycn/iiByh w1entnxRc0dDL8RlQdFvQEujnAbEW7uZNbCAzZe2xAJmLhm7GSHqp4pCncF3iEZ4 3Lg9vcoWriiHraiBmm4iDbQxbZTn8zfpQgEGI8MzF9py2XXqgzZRvDY1CMXGB0Jn Cc6yTt96Bwdp1rmId6Zmbcl66YX4EpZX5bG9nhxGU+3ni0pumqUwMe4Nfxd8zAV8 VX6VTmefjzmvdxPybOmM/h3bbfq8qzq06Hk5IJN8VtPwbF5nfI8DqCygy29sH1gz QeHgcT47qfLAOIZwqbMA+tNYEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrcx8zJ 26vS8bN7fO3Gi6GFNL3TMB8GA1UdIwQYMBaAFK9x9bFnlfm3zyskWEgHfhFoW6bw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY4Ni9DNzRCMUZGRTMw NDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1iZlBLeVJZU0FkLUVXaGJw dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzSDFzV2VWLWJmUEt5UllTQWQtRVdoYnB2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzY4Ni9DNzRCMUZGRTMwNDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1i ZlBLeVJZU0FkLUVXaGJwdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVhc/ZNdDPD3jzxHmZ3A3uRtXfu/BP+oacQky0DZl1YWF00yxVfJ8F 9Rzca2swVmkobSTSVDwmmf2FuWnFVK1qjc0lZmj1wdEkEDoiCv5tYde2H4/sUvFi f64RPTtNBnd9muWWxGYBVB59vUFnGHvbV5AmJ1KEgveFjk7w6QovxRJXrNKZw3ep RGRvS7qJQ0kQgSK1sP0GYHG2xATwnTugBju/wcOmFjJKNjlHrkWdsuxhBnrI3jjA RqN5Lmwyqb6lv1EBjrJS7YyKJPE2rPn528s+YvK++ajvk57MgFxtnNrXAEBz2Xy5 39rzR5RMjEtlFOkgkoCcvLVfhCFfdC5N -----END CERTIFICATE-----Generated at Tue May 13 07:54:45 2025 by rpki-client