$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft File: D96C0nlIVMmvzdhe-37-ScR9Lu4.mft (raw, json) Hash identifier: 95OZ0Ypu7Dh+qSQlLWASfifFInDbcxn3pIz02wh2OcU= Subject key identifier: 90:07:CF:9C:E3:1E:DE:66:CD:C9:2F:7F:68:82:66:15:F9:3B:64:33 Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0CD2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft Manifest number: 0CC7 Signing time: Thu 24 Apr 2025 15:34:57 +0000 Manifest this update: Thu 24 Apr 2025 15:34:57 +0000 Manifest next update: Thu 01 May 2025 15:34:57 +0000 Files and hashes: 1: D96C0nlIVMmvzdhe-37-ScR9Lu4.crl (hash: HuQMZaK+gTYbNzBKWXnOe/cspCXCkjj9+LtZD0THM7M=) 2: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (hash: lu8oWRNPgJxFZ7Lozlet3TlMRukqbbGr2PrraLSuCsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Apr 24 15:34:57 2025 GMT Not After : May 1 15:34:57 2025 GMT Subject: CN=680a5a21-f24a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e6:c5:ca:f2:b1:29:75:bd:3b:17:43:e6:d8: 43:ed:b6:f9:3a:fb:85:8c:4c:55:7d:74:dc:b7:26: 03:32:8a:1f:01:ee:2e:01:e1:3f:9a:d7:21:95:50: 44:63:f5:6e:5a:0b:d5:59:9d:9e:03:3c:89:d6:bc: eb:d4:eb:d4:c5:9c:50:16:d0:31:47:85:9b:7d:9e: dd:2c:90:58:d8:13:11:a6:ab:2d:4e:5e:2f:3a:d6: ec:a2:ab:61:3b:d2:3a:a4:1d:6d:67:07:d0:a9:91: e6:95:69:c4:8d:9f:0e:af:c2:bb:2d:95:c4:db:d2: bc:a0:02:63:e1:4f:ca:14:7d:52:61:c8:10:44:e9: e8:46:c9:a7:75:af:ba:7c:d8:9f:d1:c5:49:42:68: 74:ba:fc:ed:d1:b4:c7:6a:9e:fc:47:17:aa:fc:e9: e6:4c:c6:b8:fe:95:c0:18:6e:a4:a2:62:0b:70:c9: 8a:21:c5:0a:5c:2d:1e:7a:ce:5d:ca:9e:24:ad:56: 80:06:c6:2e:31:5e:35:4e:08:52:d6:b7:50:2d:19: c0:ce:ba:c4:40:e7:4c:72:45:30:b3:2a:0e:5f:21: 13:05:f7:b8:b9:b0:02:f9:48:74:8a:f1:3e:db:10: 53:5d:d2:a0:7c:34:3c:58:b1:2f:ee:e4:9f:62:7d: 2f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:07:CF:9C:E3:1E:DE:66:CD:C9:2F:7F:68:82:66:15:F9:3B:64:33 X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f2:5f:00:0f:26:5d:0e:00:f6:31:77:6c:ab:0d:0a:6f:19: c2:22:40:6d:0c:52:8a:41:d1:7b:1a:bc:ca:50:a3:18:c5:78: ce:5b:22:95:54:1e:c7:c8:d0:78:07:bf:4d:24:64:55:58:34: 7c:dc:27:dd:df:75:da:98:4f:56:11:24:1d:19:8f:00:2f:f6: 5a:4b:c2:b7:7a:24:ee:07:37:25:6d:f9:8e:0c:71:aa:b3:6a: 00:5c:ea:ce:02:48:22:90:06:f6:b7:0b:53:a4:c2:38:4f:04: 2c:4b:22:5f:65:ac:2e:5f:bf:73:5f:f5:e1:8a:14:a4:28:5d: d0:69:61:13:d5:a3:da:c1:61:78:95:f5:8d:00:29:db:24:9f: 03:f8:3c:2c:6d:a0:50:c0:c1:00:1c:e7:fa:17:e3:d5:21:be: 39:a2:f0:36:a3:13:cc:08:73:26:94:ab:ca:84:92:78:b7:2f: 53:6d:25:b9:be:84:d2:d8:34:c3:1f:26:12:c7:ac:4a:d9:50: d0:0f:f0:d7:4c:df:59:6d:e5:8e:be:cb:bd:f9:41:34:1e:51: 7d:ed:a6:67:e6:41:f1:bf:eb:06:56:8a:5f:4d:a2:de:2c:05: 46:bb:c7:e8:db:24:df:02:74:a9:ac:d1:25:a0:ce:bd:ff:ba: 2d:de:e4:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjUwNDI0MTUzNDU3WhcNMjUwNTAxMTUzNDU3WjAYMRYwFAYD VQQDEw02ODBhNWEyMS1mMjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwubFyvKxKXW9OxdD5thD7bb5OvuFjExVfXTctyYDMoofAe4uAeE/mtchlVBE Y/VuWgvVWZ2eAzyJ1rzr1OvUxZxQFtAxR4WbfZ7dLJBY2BMRpqstTl4vOtbsoqth O9I6pB1tZwfQqZHmlWnEjZ8Or8K7LZXE29K8oAJj4U/KFH1SYcgQROnoRsmnda+6 fNif0cVJQmh0uvzt0bTHap78Rxeq/OnmTMa4/pXAGG6komILcMmKIcUKXC0ees5d yp4krVaABsYuMV41TghS1rdQLRnAzrrEQOdMckUwsyoOXyETBfe4ubAC+Uh0ivE+ 2xBTXdKgfDQ8WLEv7uSfYn0v9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAHz5zj Ht5mzckvf2iCZhX5O2QzMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS84RjQ3QTlGQUU5N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZN bXZ6ZGhlLTM3LVNjUjlMdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB8l8ADyZdDgD2MXdsqw0KbxnCIkBtDFKKQdF7GrzKUKMYxXjOWyKV VB7HyNB4B79NJGRVWDR83Cfd33XamE9WESQdGY8AL/ZaS8K3eiTuBzclbfmODHGq s2oAXOrOAkgikAb2twtTpMI4TwQsSyJfZawuX79zX/XhihSkKF3QaWET1aPawWF4 lfWNACnbJJ8D+DwsbaBQwMEAHOf6F+PVIb45ovA2oxPMCHMmlKvKhJJ4ty9TbSW5 voTS2DTDHyYSx6xK2VDQD/DXTN9ZbeWOvsu9+UE0HlF97aZn5kHxv+sGVopfTaLe LAVGu8fo2yTfAnSprNEloM69/7ot3uQI -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:53 2025 by rpki-client