$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: 13F0jv7AfcddBX0ZEl5OS4aoX877XPMITDqSG11M96w= Subject key identifier: 9B:A1:7A:9C:05:2C:45:0E:8E:76:46:61:3D:3F:B1:38:FC:13:60:FC Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 02E8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 02E5 Signing time: Fri 25 Apr 2025 00:46:00 +0000 Manifest this update: Fri 25 Apr 2025 00:46:00 +0000 Manifest next update: Fri 02 May 2025 00:46:00 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: VJDtG3ic0LgwE9R8Ki4XdQPo4SltIziEvg1nOO5zQqE=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: PU6naooXvRoDV33LBTNRBxRANbQSj2Y43wiSsnkhFEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Apr 25 00:46:00 2025 GMT Not After : May 2 00:46:00 2025 GMT Subject: CN=680adb48-7901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8c:6f:51:c0:d4:12:3f:f1:32:b8:63:02:db: a9:44:6f:9f:70:d1:92:12:0d:8d:fe:d2:7c:1c:cc: 8b:51:f2:bc:f2:a1:51:13:1b:3f:be:7f:94:f2:ed: 7f:96:e6:32:3c:66:25:47:f1:f4:6b:fd:b2:66:93: 49:47:5e:37:84:a7:17:9b:d1:8b:f5:07:00:5b:ef: 34:bb:ce:52:78:35:6b:a7:34:db:8d:18:40:72:0b: 81:b4:2a:95:73:fe:93:63:05:11:b6:bf:b9:b9:a7: 60:66:6d:d6:0a:57:22:63:12:1e:66:63:7f:37:b2: 97:87:08:a5:d3:19:10:96:0c:5f:0d:91:03:e6:ac: ce:e9:96:61:35:6f:5b:68:e4:d7:4b:80:24:18:81: 45:83:3b:9d:36:06:22:1a:1e:41:11:36:a6:3e:7d: 10:bd:ba:a3:9c:58:d7:bc:9c:d0:af:8f:a3:6f:cd: 8c:89:6e:c9:5f:69:1f:6c:90:26:4b:98:84:9a:aa: db:da:e7:a6:0e:1c:47:4c:ff:02:fd:e9:6c:17:e7: 94:58:ad:ed:09:a6:cf:21:5d:83:7b:2e:5a:1f:33: 16:3e:71:cd:45:6f:ef:e5:59:fd:28:55:97:a6:bc: 12:25:ae:2a:06:95:06:2b:e9:42:76:72:cc:83:ad: b2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A1:7A:9C:05:2C:45:0E:8E:76:46:61:3D:3F:B1:38:FC:13:60:FC X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:50:99:47:da:cc:72:59:1d:95:45:0e:29:fa:15:90:cf:8e: 43:d5:9c:49:f1:1e:e3:b7:a4:60:5e:ca:d8:8e:a3:5c:82:64: cb:9e:4c:7f:2e:15:39:18:39:24:42:84:43:88:f7:92:e1:88: 51:87:bc:39:a9:90:30:6a:ca:91:d8:ce:fa:e6:1d:d9:1c:e1: ea:95:b3:a7:fe:91:f7:f2:e9:cb:da:16:d1:bf:b2:13:dc:8b: 74:87:bd:55:96:33:eb:fb:db:4b:36:c5:a4:83:aa:9e:70:18: e3:2a:9c:bc:fd:bd:08:20:d2:1b:a7:41:ff:a6:87:2f:29:2e: c9:4d:86:5e:3d:b7:0c:37:14:41:3a:cf:ea:60:ca:32:4c:76: b5:c5:ec:c6:0e:12:45:d6:eb:63:1b:e2:a1:4c:d8:33:c0:b6: be:a1:b9:84:84:a6:32:9e:fb:61:80:e1:2d:2e:a7:73:a8:66: f2:b6:2f:a9:e5:2c:a9:ba:72:9f:39:4a:5d:38:0b:a6:24:7d: e3:ec:a7:c1:2e:99:d5:9b:1b:c4:f5:2d:b4:38:83:4f:9a:36: 8b:e5:fd:1c:1f:aa:75:47:55:9a:59:ab:1a:ca:ab:4c:4f:4c: 2c:fd:8c:d1:7a:dc:51:2b:f2:12:b5:f8:c5:aa:af:7a:bd:fe: 0f:b0:30:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjUwNDI1MDA0NjAwWhcNMjUwNTAyMDA0NjAwWjAYMRYwFAYD VQQDEw02ODBhZGI0OC03OTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYxvUcDUEj/xMrhjAtupRG+fcNGSEg2N/tJ8HMyLUfK88qFRExs/vn+U8u1/ luYyPGYlR/H0a/2yZpNJR143hKcXm9GL9QcAW+80u85SeDVrpzTbjRhAcguBtCqV c/6TYwURtr+5uadgZm3WClciYxIeZmN/N7KXhwil0xkQlgxfDZED5qzO6ZZhNW9b aOTXS4AkGIFFgzudNgYiGh5BETamPn0QvbqjnFjXvJzQr4+jb82MiW7JX2kfbJAm S5iEmqrb2uemDhxHTP8C/elsF+eUWK3tCabPIV2Dey5aHzMWPnHNRW/v5Vn9KFWX prwSJa4qBpUGK+lCdnLMg62yMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuhepwF LEUOjnZGYT0/sTj8E2D8MB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqUJlH2sxyWR2VRQ4p+hWQz45D1ZxJ8R7jt6RgXsrYjqNcgmTLnkx/ LhU5GDkkQoRDiPeS4YhRh7w5qZAwasqR2M765h3ZHOHqlbOn/pH38unL2hbRv7IT 3It0h71VljPr+9tLNsWkg6qecBjjKpy8/b0IINIbp0H/pocvKS7JTYZePbcMNxRB Os/qYMoyTHa1xezGDhJF1utjG+KhTNgzwLa+obmEhKYynvthgOEtLqdzqGbyti+p 5SypunKfOUpdOAumJH3j7KfBLpnVmxvE9S20OINPmjaL5f0cH6p1R1WaWasayqtM T0ws/YzRetxRK/IStfjFqq96vf4PsDCS -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:41 2025 by rpki-client