$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: 4BSs70ltiQTv6K+ofCeKeWCIVgHaXQ9J9sP1Cv/+FEU= Subject key identifier: 57:50:69:D6:94:1C:FC:B4:3D:2A:DB:BB:E1:52:4F:86:C5:34:E8:2B Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 076A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 0763 Signing time: Thu 24 Apr 2025 15:59:30 +0000 Manifest this update: Thu 24 Apr 2025 15:59:30 +0000 Manifest next update: Thu 01 May 2025 15:59:30 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: UAWvyiNKLhDFOJj/wsjdYwLvZWJPNOs/ppcf5xzi/oE=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: owavO0XDzj500YGpyqbmjhYipEKAfrWBHBWdBUgrtlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1898 (0x76a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Apr 24 15:59:30 2025 GMT Not After : May 1 15:59:30 2025 GMT Subject: CN=680a5fe2-7c40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:29:9d:e9:b4:b8:43:be:65:f1:a8:a8:62:4b: 61:43:66:ee:27:60:a8:a1:60:eb:a3:2a:d0:ba:30: dd:00:78:8b:65:1e:d0:88:f7:cf:31:06:17:71:e9: 2d:d7:90:67:c7:8b:e4:5c:c8:c7:2f:02:71:0c:2f: 6d:5b:35:72:9a:d3:3d:75:8e:ce:60:69:ef:34:44: a3:60:4c:b9:c4:e0:ea:16:8a:03:ec:d1:bb:3a:d7: f5:c8:f1:fe:bc:3b:12:e3:f4:09:24:f0:1f:a3:72: 83:b7:5b:eb:a1:08:3c:be:54:b2:d2:41:76:91:33: 55:6b:88:e9:d8:92:92:57:5c:c1:0b:75:09:20:c1: 3b:da:c5:03:67:48:60:9d:d4:5d:1a:6c:fe:df:ea: 66:2a:f2:01:f6:a3:1d:d3:c0:15:69:6b:f3:67:ec: 1f:72:8d:c0:a9:56:57:6d:d8:f5:4d:45:a1:c7:5c: 9d:ad:8c:85:01:ba:2c:ba:b0:16:54:f7:0a:9e:93: c0:60:7c:80:92:61:28:f0:5e:9d:59:a0:ae:b5:c6: 5b:ea:8e:10:35:be:41:c5:43:0a:6b:40:d0:fc:e8: fb:a8:f5:56:cb:56:74:b5:76:21:31:a1:2b:b8:9b: 6e:34:78:e7:8c:8b:ce:62:91:48:2f:2d:fc:3e:4a: d0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:50:69:D6:94:1C:FC:B4:3D:2A:DB:BB:E1:52:4F:86:C5:34:E8:2B X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:38:53:d7:97:d8:2a:07:3e:20:e5:80:cd:df:37:3a:b6:4e: cb:98:c8:d8:7e:c7:63:ae:1f:d6:20:09:ba:a4:89:64:76:4f: bc:bd:e2:a7:28:df:ca:9e:63:41:0b:11:2f:fc:b9:86:a2:47: 5c:93:6b:1b:ad:d6:75:11:a7:a3:7e:1c:37:ae:94:19:c9:f4: d3:db:16:6f:96:14:88:4b:a0:12:ae:24:64:e7:1a:11:d7:d8: ff:30:85:15:b9:26:66:8b:6a:59:f3:bc:cf:22:2b:07:01:a9: d0:83:e4:d4:aa:5b:24:d0:2f:52:07:90:da:b6:3e:85:38:91: cc:e4:7d:fb:78:0e:ec:51:2e:e2:96:ac:5c:2d:9e:00:03:7d: 26:97:2a:55:e7:23:a1:7f:23:cf:3a:76:50:31:79:ce:a6:32: a5:74:a2:2c:d0:14:1a:48:db:2b:53:66:35:cf:84:d4:26:e9: 88:95:21:b8:22:94:8d:25:3f:6a:f1:50:9d:c9:0a:5f:3a:66: 2b:67:54:f1:83:38:1b:46:ce:ad:fe:35:80:06:dc:c5:56:05: fb:81:a7:8d:fa:53:8f:1d:59:e3:4c:d7:98:b4:d9:ed:81:b5: 96:48:f5:31:c4:98:5d:58:50:a1:1d:03:1e:5f:e2:e2:aa:68: c8:69:d9:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUwNDI0MTU1OTMwWhcNMjUwNTAxMTU1OTMwWjAYMRYwFAYD VQQDEw02ODBhNWZlMi03YzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsymd6bS4Q75l8aioYkthQ2buJ2CooWDroyrQujDdAHiLZR7QiPfPMQYXcekt 15Bnx4vkXMjHLwJxDC9tWzVymtM9dY7OYGnvNESjYEy5xODqFooD7NG7Otf1yPH+ vDsS4/QJJPAfo3KDt1vroQg8vlSy0kF2kTNVa4jp2JKSV1zBC3UJIME72sUDZ0hg ndRdGmz+3+pmKvIB9qMd08AVaWvzZ+wfco3AqVZXbdj1TUWhx1ydrYyFAbosurAW VPcKnpPAYHyAkmEo8F6dWaCutcZb6o4QNb5BxUMKa0DQ/Oj7qPVWy1Z0tXYhMaEr uJtuNHjnjIvOYpFILy38PkrQtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdQadaU HPy0PSrbu+FST4bFNOgrMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFOFPXl9gqBz4g5YDN3zc6tk7LmMjYfsdjrh/WIAm6pIlkdk+8veKn KN/KnmNBCxEv/LmGokdck2sbrdZ1Eaejfhw3rpQZyfTT2xZvlhSIS6ASriRk5xoR 19j/MIUVuSZmi2pZ87zPIisHAanQg+TUqlsk0C9SB5Datj6FOJHM5H37eA7sUS7i lqxcLZ4AA30mlypV5yOhfyPPOnZQMXnOpjKldKIs0BQaSNsrU2Y1z4TUJumIlSG4 IpSNJT9q8VCdyQpfOmYrZ1TxgzgbRs6t/jWABtzFVgX7gaeN+lOPHVnjTNeYtNnt gbWWSPUxxJhdWFChHQMeX+LiqmjIadlK -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:51 2025 by rpki-client