$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: YGMlxox4n16SwQqSszPMvmGTWiaexQMp/m3y5+rL84E= Subject key identifier: BF:3B:7A:F7:4A:67:0B:58:42:4F:98:21:71:5F:A2:A1:50:5B:7B:62 Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 3477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 3477 Signing time: Thu 08 May 2025 14:41:25 +0000 Manifest this update: Thu 08 May 2025 14:41:25 +0000 Manifest next update: Thu 15 May 2025 14:41:25 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: p6vvs93is77H/tly36wwI3cbZUUPJeXKIepmNQDjQDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 14:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13431 (0x3477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: May 8 14:41:25 2025 GMT Not After : May 15 14:41:25 2025 GMT Subject: CN=681cc295-ec23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2c:13:40:d6:01:82:d9:97:95:c6:d8:09:9a: 1d:53:aa:b5:2a:25:cc:0f:42:42:92:56:c8:96:7d: a8:52:24:84:9d:6f:4a:ae:36:12:c3:e9:a1:76:02: 6d:6f:0f:8d:4c:ab:c6:c7:75:56:7b:3b:49:69:54: 46:bd:46:ab:44:d4:9a:49:a9:29:bb:55:7d:03:ae: 76:c3:14:a7:76:e5:43:b3:26:a5:c4:65:56:0e:bd: 36:51:7a:02:8d:14:b2:a6:af:59:8c:cf:b6:26:17: dc:cc:ba:da:e3:e3:6c:47:9a:72:fb:53:3b:73:36: 04:65:c8:70:3f:85:d8:53:8a:6e:ea:af:d3:72:c9: ad:6d:2c:67:1d:0e:ec:ca:fd:32:2d:75:76:9a:70: 12:bc:d4:29:4a:4b:7e:93:d0:49:0a:ec:12:71:74: 36:3d:84:fe:eb:15:6e:5e:63:dd:5c:3b:6b:9d:7d: 5a:eb:14:e6:51:90:57:09:12:c9:65:a3:19:b4:9d: 86:99:49:d0:50:c2:c1:0b:12:b7:38:73:96:b9:34: 26:ed:6f:b8:8a:f3:16:49:0e:e3:3e:30:69:b1:e3: d4:26:1e:2a:c2:09:8c:06:e5:42:88:3d:ea:96:c3: 7b:5c:59:86:76:15:4a:5a:ca:05:83:4b:33:18:29: 4d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:3B:7A:F7:4A:67:0B:58:42:4F:98:21:71:5F:A2:A1:50:5B:7B:62 X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:1e:8e:52:f1:03:10:e0:55:a8:a7:4f:e7:22:29:d1:86:45: f8:bd:c2:b6:2b:a7:64:27:21:83:3c:d5:de:e4:a0:6c:a1:c2: 38:47:09:ee:be:c9:ed:4e:61:25:86:9b:b0:a7:11:d0:c3:6a: ed:a6:85:82:cf:d1:83:c8:b4:9f:eb:e3:40:df:71:41:ed:f0: 8b:2a:c2:f5:a1:97:89:36:dc:61:29:80:5d:67:65:46:67:fc: dd:02:9e:40:be:1b:c6:6c:41:1f:b7:8e:14:af:d0:c1:52:48: fc:4b:60:8a:f9:2d:2d:07:56:43:5d:ed:75:47:b9:c2:be:b5: 25:9d:ae:57:2f:6d:f8:c3:ad:7b:c0:5a:76:78:aa:17:d2:66: de:8d:a7:aa:32:e7:46:9c:eb:39:82:19:b3:23:60:a7:12:cd: aa:4e:c1:54:8a:21:f7:11:92:77:a4:63:23:f3:21:5c:25:79: aa:69:63:1f:a2:cf:1a:4e:5f:9d:a6:7f:f9:cb:a5:bd:e9:48: d2:22:72:79:cd:8a:ec:61:35:38:cd:c1:b6:d5:90:7c:59:9b: 4c:65:c2:c3:a1:08:6b:22:ba:aa:45:4f:0c:b4:aa:81:f2:56: 18:c9:be:cc:79:17:f4:41:74:bb:57:bc:d0:ff:98:94:1a:87: be:f8:1f:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUwNTA4MTQ0MTI1WhcNMjUwNTE1MTQ0MTI1WjAYMRYwFAYD VQQDEw02ODFjYzI5NS1lYzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSwTQNYBgtmXlcbYCZodU6q1KiXMD0JCklbIln2oUiSEnW9KrjYSw+mhdgJt bw+NTKvGx3VWeztJaVRGvUarRNSaSakpu1V9A652wxSnduVDsyalxGVWDr02UXoC jRSypq9ZjM+2JhfczLra4+NsR5py+1M7czYEZchwP4XYU4pu6q/TcsmtbSxnHQ7s yv0yLXV2mnASvNQpSkt+k9BJCuwScXQ2PYT+6xVuXmPdXDtrnX1a6xTmUZBXCRLJ ZaMZtJ2GmUnQUMLBCxK3OHOWuTQm7W+4ivMWSQ7jPjBpsePUJh4qwgmMBuVCiD3q lsN7XFmGdhVKWsoFg0szGClNwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL87evdK ZwtYQk+YIXFfoqFQW3tiMB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhHo5S8QMQ4FWop0/nIinRhkX4vcK2K6dkJyGDPNXe5KBsocI4Rwnu vsntTmElhpuwpxHQw2rtpoWCz9GDyLSf6+NA33FB7fCLKsL1oZeJNtxhKYBdZ2VG Z/zdAp5AvhvGbEEft44Ur9DBUkj8S2CK+S0tB1ZDXe11R7nCvrUlna5XL234w617 wFp2eKoX0mbejaeqMudGnOs5ghmzI2CnEs2qTsFUiiH3EZJ3pGMj8yFcJXmqaWMf os8aTl+dpn/5y6W96UjSInJ5zYrsYTU4zcG21ZB8WZtMZcLDoQhrIrqqRU8MtKqB 8lYYyb7MeRf0QXS7V7zQ/5iUGoe++B/9 -----END CERTIFICATE-----Generated at Sat May 10 10:25:50 2025 by rpki-client