$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: jsx+YhypWZkwLhSrPPLqrY3e25FA1n2+Dwk4NX+47AY= Subject key identifier: 02:AB:2F:97:0C:AE:E0:D4:85:85:94:EF:11:7F:04:26:A3:B7:BE:58 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 04AB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 04A0 Signing time: Sat 26 Apr 2025 23:36:50 +0000 Manifest this update: Sat 26 Apr 2025 23:36:50 +0000 Manifest next update: Sat 03 May 2025 23:36:50 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: KGtM2oQi1gjxuVmZZQDKlti0CORfxPsQqtG+xs2vKtY=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:36:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Apr 26 23:36:50 2025 GMT Not After : May 3 23:36:50 2025 GMT Subject: CN=680d6e12-16ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:42:fa:47:55:46:2e:f6:ef:39:29:a0:5f:bc: 17:3c:a7:6e:b3:bf:91:b8:b1:ef:2f:53:13:bd:c6: f8:2d:d9:8a:fc:2a:16:4a:4b:49:91:15:62:2f:cc: 8e:ea:83:0d:dc:05:e9:b5:e5:a9:04:5d:27:88:c6: 60:39:95:44:c5:be:cf:d7:be:db:33:65:62:45:e2: d9:c4:7c:49:e3:85:e6:75:0c:7c:dd:18:2d:14:10: d5:ee:d9:13:b5:48:d6:b7:38:8c:45:1d:50:93:19: 66:1d:53:95:7f:06:a6:8b:7c:22:56:57:da:de:47: 0e:29:70:dc:49:44:69:1f:40:9b:d9:ec:ea:c0:ec: 6e:e4:55:40:3f:f0:e5:c3:27:21:7b:dd:91:a9:fc: 9b:1f:36:89:d9:a4:cc:46:6c:99:5a:aa:27:8a:ed: e3:0d:2e:f1:bd:bc:54:c0:e0:64:fc:c4:f8:54:8d: 9e:1f:ef:d0:60:42:5b:aa:a9:ea:4e:03:a5:86:69: d6:85:e2:30:bf:c3:93:59:de:9b:d5:80:f4:0d:fe: 3f:c6:3f:51:5f:05:38:d7:6e:66:a8:b7:5a:cb:9b: 7c:bf:52:9d:85:38:fc:e5:d3:47:17:2c:28:8a:7c: 7b:ce:c8:ba:98:a8:3e:5b:a4:ed:6a:f0:d4:ae:fb: b4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:AB:2F:97:0C:AE:E0:D4:85:85:94:EF:11:7F:04:26:A3:B7:BE:58 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:75:ec:8b:a0:32:37:b2:fc:92:53:90:e6:d6:f1:cd:3a:bc: 0b:a3:eb:0e:4d:4a:28:69:38:22:81:a2:b9:d3:40:0f:c8:79: 8c:a9:f7:8a:42:48:09:06:24:bc:7f:04:e9:07:b4:75:14:4a: 97:0a:31:53:35:e1:5d:39:c7:39:ea:87:64:f2:92:fc:5a:94: af:2e:68:f6:aa:45:4c:d9:9c:03:87:26:95:3c:3c:e4:00:c8: 4d:9b:47:bc:40:33:ee:f6:da:52:b6:e3:46:96:b8:e5:af:db: cd:5d:54:13:db:cc:92:4d:70:29:ec:43:fd:9c:04:d6:b7:ff: bf:89:f2:45:3c:93:41:8c:1c:73:f5:72:c0:b5:3e:a4:25:b8: 39:42:0f:07:26:44:4a:43:9e:6a:70:57:bd:e8:18:75:18:38: e8:02:e6:a5:e6:a9:29:64:9d:0e:0a:5d:71:29:05:02:0c:06: 7f:fb:ea:75:cd:0e:a9:10:3d:b2:82:70:18:9a:f4:fd:29:ed: 0f:d8:73:13:a8:cf:57:72:19:2f:b8:3e:8f:84:86:ec:d2:9b: 01:14:34:74:08:f0:f7:30:2f:c5:15:4c:d6:c0:ee:1d:5a:8f: 73:8b:5e:6b:57:47:4f:0e:47:75:83:67:b3:9f:49:4f:76:21: dd:c0:18:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUwNDI2MjMzNjUwWhcNMjUwNTAzMjMzNjUwWjAYMRYwFAYD VQQDEw02ODBkNmUxMi0xNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20L6R1VGLvbvOSmgX7wXPKdus7+RuLHvL1MTvcb4LdmK/CoWSktJkRViL8yO 6oMN3AXpteWpBF0niMZgOZVExb7P177bM2ViReLZxHxJ44XmdQx83RgtFBDV7tkT tUjWtziMRR1QkxlmHVOVfwami3wiVlfa3kcOKXDcSURpH0Cb2ezqwOxu5FVAP/Dl wyche92RqfybHzaJ2aTMRmyZWqoniu3jDS7xvbxUwOBk/MT4VI2eH+/QYEJbqqnq TgOlhmnWheIwv8OTWd6b1YD0Df4/xj9RXwU4125mqLday5t8v1KdhTj85dNHFywo inx7zsi6mKg+W6TtavDUrvu08wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKrL5cM ruDUhYWU7xF/BCajt75YMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIdeyLoDI3svySU5Dm1vHNOrwLo+sOTUooaTgigaK500APyHmMqfeK QkgJBiS8fwTpB7R1FEqXCjFTNeFdOcc56odk8pL8WpSvLmj2qkVM2ZwDhyaVPDzk AMhNm0e8QDPu9tpStuNGlrjlr9vNXVQT28ySTXAp7EP9nATWt/+/ifJFPJNBjBxz 9XLAtT6kJbg5Qg8HJkRKQ55qcFe96Bh1GDjoAual5qkpZJ0OCl1xKQUCDAZ/++p1 zQ6pED2ygnAYmvT9Ke0P2HMTqM9XchkvuD6PhIbs0psBFDR0CPD3MC/FFUzWwO4d Wo9zi15rV0dPDkd1g2ezn0lPdiHdwBie -----END CERTIFICATE-----Generated at Sun Apr 27 05:27:19 2025 by rpki-client