$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: 1E3AYScZUiK7tQa9yH81lYhqDWTOyh1Q2VKyMMlW8gM= Subject key identifier: AC:89:FA:D3:60:24:1C:25:05:93:0F:96:F1:F9:FB:2A:9E:1C:C0:19 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0F58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0F45 Signing time: Thu 24 Apr 2025 17:35:33 +0000 Manifest this update: Thu 24 Apr 2025 17:35:32 +0000 Manifest next update: Thu 01 May 2025 17:35:32 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: Pm/x53jmvtlfNwmYvE1FdXnHKqxCGSjjpo8EgvmfWOk=) 2: 12E476745E1A11EFB61C6844C4F9AE02.roa (hash: 3IAJ+9W9KeEq7QTVszcmLK1ObY/QRBXZfU+eVRZCpyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3928 (0xf58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Apr 24 17:35:32 2025 GMT Not After : May 1 17:35:32 2025 GMT Subject: CN=680a7664-b4cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:4d:92:63:86:0b:b8:5e:56:53:b9:6f:b8:05: f0:70:cd:2b:02:f6:41:fc:cb:8e:d8:e8:b6:fd:7a: eb:54:eb:4f:2a:d6:30:d2:8e:c8:8c:fb:f4:c8:08: ad:13:52:3d:69:5e:2e:00:90:d4:a7:84:89:88:c6: 3a:1f:a1:9e:a5:df:9b:18:e4:92:3a:67:36:96:a9: fe:c5:e5:54:a3:29:70:b7:c9:b5:58:06:22:08:36: 9f:1b:87:5f:0d:e6:7e:9e:47:74:5c:a1:26:0c:ec: 50:bf:61:36:56:5f:e4:9f:ab:96:9a:bc:1a:20:92: 9f:4e:da:56:40:9c:e5:39:5b:d9:91:36:af:fb:56: 4a:10:c4:8b:f6:b9:f0:66:b7:ec:22:83:b6:24:9b: 76:e3:a6:91:46:a0:7a:9c:05:60:2f:d5:af:67:02: 2a:e8:e7:35:31:21:67:6e:de:35:93:0f:de:ac:db: 8f:5b:74:81:58:90:00:76:7f:c3:d3:cb:0a:94:42: 75:7f:52:e2:3f:fd:72:f0:62:dc:81:e3:a3:aa:95: b2:d0:2c:d3:8f:91:5e:44:84:39:8f:54:28:64:b7: ce:97:a5:3a:91:75:be:39:77:bd:d7:0f:e5:b6:e4: 7e:3d:70:fa:b1:11:b8:2d:d6:37:cf:5a:39:73:28: e9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:89:FA:D3:60:24:1C:25:05:93:0F:96:F1:F9:FB:2A:9E:1C:C0:19 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:aa:d0:c6:5a:eb:f7:d5:58:dc:51:5a:f3:93:94:16:58:64: e0:64:fc:7a:3a:b8:7c:84:b5:9d:18:62:9f:bd:41:5a:a3:9a: 2c:d0:55:8c:e7:24:49:ea:4e:70:9e:d4:c0:6b:7e:30:61:67: b0:d4:66:2a:7f:a8:c3:33:23:b9:dc:e0:41:34:08:95:fa:25: 11:24:0d:ae:6f:b7:94:07:a1:e2:fa:51:b9:57:ee:20:92:59: 01:d1:c3:5a:f9:fa:5c:14:15:80:af:97:ad:c9:71:14:6b:dd: 7c:d5:e4:4c:aa:65:7a:8f:c2:a2:22:d7:73:a0:74:1d:43:07: b6:97:70:ae:b1:66:42:ed:d1:a1:b2:60:eb:5d:b6:4f:43:ad: 01:ff:aa:37:da:ec:08:25:a8:ad:34:83:20:6d:29:11:e5:5e: dc:d2:43:d5:d6:f5:96:f0:c2:bc:48:56:1d:ca:dd:38:d1:61: c3:ed:e0:5a:8a:5f:17:6d:ea:e0:6e:17:72:32:95:1b:32:e5: 90:5d:e6:79:eb:75:3e:6f:7a:b0:05:86:c8:18:a8:59:c8:4d: 3e:ce:96:3c:21:9f:8f:49:49:06:27:5a:c3:1c:03:5c:5f:c2: 4a:89:ee:f4:51:56:86:79:1b:4c:58:ef:1c:88:9b:30:00:31: 4b:22:61:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUwNDI0MTczNTMyWhcNMjUwNTAxMTczNTMyWjAYMRYwFAYD VQQDEw02ODBhNzY2NC1iNGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA702SY4YLuF5WU7lvuAXwcM0rAvZB/MuO2Oi2/XrrVOtPKtYw0o7IjPv0yAit E1I9aV4uAJDUp4SJiMY6H6Gepd+bGOSSOmc2lqn+xeVUoylwt8m1WAYiCDafG4df DeZ+nkd0XKEmDOxQv2E2Vl/kn6uWmrwaIJKfTtpWQJzlOVvZkTav+1ZKEMSL9rnw ZrfsIoO2JJt246aRRqB6nAVgL9WvZwIq6Oc1MSFnbt41kw/erNuPW3SBWJAAdn/D 08sKlEJ1f1LiP/1y8GLcgeOjqpWy0CzTj5FeRIQ5j1QoZLfOl6U6kXW+OXe91w/l tuR+PXD6sRG4LdY3z1o5cyjp5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyJ+tNg JBwlBZMPlvH5+yqeHMAZMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxqtDGWuv31VjcUVrzk5QWWGTgZPx6Orh8hLWdGGKfvUFao5os0FWM 5yRJ6k5wntTAa34wYWew1GYqf6jDMyO53OBBNAiV+iURJA2ub7eUB6Hi+lG5V+4g klkB0cNa+fpcFBWAr5etyXEUa9181eRMqmV6j8KiItdzoHQdQwe2l3CusWZC7dGh smDrXbZPQ60B/6o32uwIJaitNIMgbSkR5V7c0kPV1vWW8MK8SFYdyt040WHD7eBa il8XbergbhdyMpUbMuWQXeZ563U+b3qwBYbIGKhZyE0+zpY8IZ+PSUkGJ1rDHANc X8JKie70UVaGeRtMWO8ciJswADFLImGj -----END CERTIFICATE-----Generated at Sat Apr 26 14:02:04 2025 by rpki-client