$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: CrMg+P3E05KSikQH7vGZzpM5BY8aA9P7qWgmSkYDs0M= Subject key identifier: 98:EF:FE:D7:E2:B1:34:38:88:ED:E1:91:85:8A:01:38:8F:3F:74:AC Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 024D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 024A Signing time: Fri 25 Apr 2025 01:38:02 +0000 Manifest this update: Fri 25 Apr 2025 01:38:01 +0000 Manifest next update: Fri 02 May 2025 01:38:01 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: t2YG4FUX6FI7IDwnTZan0/papbxbxsNZELhbzPaNmrA=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Apr 25 01:38:01 2025 GMT Not After : May 2 01:38:01 2025 GMT Subject: CN=680ae779-d2ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:85:40:08:9c:68:bf:54:2e:e1:05:e2:cf:4c: e7:94:60:e7:41:11:d9:fe:45:7f:ca:b7:10:d7:e4: 03:50:1c:77:ef:c2:d5:86:5a:23:54:1e:64:96:fb: 93:88:9a:f6:82:49:ec:37:ad:12:19:d7:dd:a7:47: 46:f4:6e:58:1f:c4:5b:65:d5:b3:4d:0b:d4:8d:d8: 17:56:2b:64:cc:77:a4:f6:84:de:9e:08:74:54:d5: f2:34:3b:7b:a8:73:8c:af:7b:ab:95:e4:5b:1e:a4: b8:5e:35:eb:c8:47:46:97:a5:43:6b:bc:22:58:aa: 64:ff:d1:1f:41:2a:4d:d3:78:c9:9e:6a:48:d6:8d: e3:7f:e2:92:36:55:da:23:c4:f7:c6:21:1f:b6:d3: d2:05:bc:ec:ba:b6:33:f7:f4:bc:5c:53:99:94:38: b6:45:cf:09:46:da:db:12:7f:d8:dc:f0:f7:4d:9e: 5c:b7:60:23:ed:46:6d:94:b3:87:16:4b:84:fb:61: 12:75:b0:11:87:f3:57:56:59:b7:aa:34:bb:81:f9: 94:8d:bb:be:00:95:7e:4b:a7:97:5b:e1:85:e4:fb: c6:13:bc:0f:48:9c:89:11:31:88:0a:20:32:3b:5e: 81:24:20:69:2c:4d:70:8c:57:df:2b:03:ad:fe:bd: 05:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:EF:FE:D7:E2:B1:34:38:88:ED:E1:91:85:8A:01:38:8F:3F:74:AC X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:38:11:b8:97:b7:d0:00:44:c5:a5:e7:ac:e8:1b:df:73:cd: 0c:59:79:34:ec:6e:96:d4:b3:81:12:fe:39:df:f0:c7:f7:b5: 20:b8:ef:ac:25:e3:63:b5:d0:63:d9:1b:ac:ab:f9:54:cd:6d: 0b:55:06:7a:e7:77:f5:6d:71:92:86:d2:01:3c:d4:1d:5f:0e: 90:75:ba:7a:00:4f:74:1c:26:5c:64:af:de:48:92:67:bd:26: 75:22:ae:b1:d4:0c:65:e4:83:18:a8:47:74:1a:80:ec:5f:c2: 83:8c:46:16:34:65:0b:44:b4:e1:bd:fc:58:01:84:04:44:93: 7b:cf:f3:0d:96:c2:a9:56:8e:32:b3:8b:54:2e:f3:48:64:06: 3c:c3:60:24:d1:d9:b1:43:bd:04:83:dd:88:fa:26:a0:c1:32: ff:f1:33:e7:d6:a5:a6:82:55:c4:22:9e:4c:f9:ff:a8:ba:04: 3a:a7:06:93:28:6f:91:00:d3:7d:7d:5d:e1:24:5f:59:d0:f4: a6:82:a6:cb:25:83:fb:5b:68:bf:91:63:af:c1:16:b0:96:9c: f2:ff:75:9e:88:23:ef:34:4e:db:a6:7f:94:2b:fd:eb:fd:2f: f4:e6:88:d6:08:e6:97:66:2e:8a:11:80:2f:38:d8:b5:61:43: 9e:b0:96:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwNDI1MDEzODAxWhcNMjUwNTAyMDEzODAxWjAYMRYwFAYD VQQDEw02ODBhZTc3OS1kMmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYVACJxov1Qu4QXiz0znlGDnQRHZ/kV/yrcQ1+QDUBx378LVhlojVB5klvuT iJr2gknsN60SGdfdp0dG9G5YH8RbZdWzTQvUjdgXVitkzHek9oTengh0VNXyNDt7 qHOMr3urleRbHqS4XjXryEdGl6VDa7wiWKpk/9EfQSpN03jJnmpI1o3jf+KSNlXa I8T3xiEfttPSBbzsurYz9/S8XFOZlDi2Rc8JRtrbEn/Y3PD3TZ5ct2Aj7UZtlLOH FkuE+2ESdbARh/NXVlm3qjS7gfmUjbu+AJV+S6eXW+GF5PvGE7wPSJyJETGICiAy O16BJCBpLE1wjFffKwOt/r0FNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjv/tfi sTQ4iO3hkYWKATiPP3SsMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOOBG4l7fQAETFpees6Bvfc80MWXk07G6W1LOBEv453/DH97UguO+s JeNjtdBj2Rusq/lUzW0LVQZ653f1bXGShtIBPNQdXw6Qdbp6AE90HCZcZK/eSJJn vSZ1Iq6x1Axl5IMYqEd0GoDsX8KDjEYWNGULRLThvfxYAYQERJN7z/MNlsKpVo4y s4tULvNIZAY8w2Ak0dmxQ70Eg92I+iagwTL/8TPn1qWmglXEIp5M+f+ougQ6pwaT KG+RANN9fV3hJF9Z0PSmgqbLJYP7W2i/kWOvwRawlpzy/3WeiCPvNE7bpn+UK/3r /S/05ojWCOaXZi6KEYAvONi1YUOesJZR -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:35 2025 by rpki-client