$ rpki-client -vvf rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft File: 0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft (raw, json) Hash identifier: PKCFnMUseXdI+8GrYn6CpOZDAQU99lTwWjItvshOZ0Y= Subject key identifier: 84:D0:B5:8C:D1:33:1E:24:A1:E9:95:A7:F5:57:48:6E:73:F8:2F:2C Authority key identifier: D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 Certificate issuer: /CN=A914E215/serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft Manifest number: 0655 Signing time: Tue 06 May 2025 22:21:12 +0000 Manifest this update: Tue 06 May 2025 22:21:11 +0000 Manifest next update: Tue 13 May 2025 22:21:11 +0000 Files and hashes: 1: 0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl (hash: ON2dkJ3AMhl0FDma67kB4MU91s/f07ryNy6CRbrGht8=) 2: 436B3BEC822D11EBB19C1844C4F9AE02.roa (hash: aR8xqbFUFjm+ccG/d5FkPfm2CRqS0a29lHr1SXFGeCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 22:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E215, serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Validity Not Before: May 6 22:21:11 2025 GMT Not After : May 13 22:21:11 2025 GMT Subject: CN=681a8b58-59cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:06:35:11:77:3b:48:43:c0:a2:25:c2:2d:e6: 10:fd:f2:02:a9:1c:55:d5:d5:52:43:d9:98:56:70: 54:cd:82:bf:e6:9f:24:7d:fd:de:48:bf:66:ce:d7: fb:95:47:35:f0:ce:e6:72:4c:43:54:20:70:49:d0: f9:1e:55:0b:3f:56:df:a1:c9:3f:d9:70:0d:4c:1f: a8:fe:ea:4f:25:ee:b0:68:85:32:5a:96:b7:4c:33: d1:e5:b8:db:4d:95:7d:71:b9:a9:a9:4f:a5:06:57: 41:1a:e1:a9:b7:1a:61:b6:9b:32:24:65:70:f4:c6: 35:87:e7:b7:2e:c1:96:93:3f:5b:c2:7f:c2:50:dd: 1a:ef:0b:45:0c:ad:75:3a:08:47:dc:43:cf:0a:48: 63:fa:eb:4e:ab:cd:63:4b:da:2c:52:6e:65:d8:5a: aa:e5:40:ea:26:21:bc:53:2f:82:85:04:14:2c:92: ed:18:d5:0a:dd:67:35:70:a4:45:fd:b7:2c:85:88: 8e:c0:c2:33:01:69:ea:73:85:ab:4a:e9:d8:06:c7: 1e:d0:e0:1c:34:0f:a9:91:3f:c1:d0:04:ae:af:8c: 14:81:a5:44:15:1d:44:21:1d:a3:e9:e4:ed:22:8c: 49:e5:51:8d:33:02:76:81:eb:10:c9:e9:4a:fd:12: 99:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D0:B5:8C:D1:33:1E:24:A1:E9:95:A7:F5:57:48:6E:73:F8:2F:2C X509v3 Authority Key Identifier: keyid:D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:97:1e:d5:5d:1c:8b:ca:8b:c4:95:10:a7:d3:e1:b7:d4:b3: 38:38:02:20:06:bc:a3:89:71:c1:5a:b3:5f:1f:01:52:07:34: 37:bc:bb:d1:9e:55:68:4e:3f:04:f4:d3:0b:84:ed:ef:1c:91: dc:cf:60:02:70:d4:b5:56:1c:4c:80:03:fc:23:3b:97:f8:e6: dd:57:62:7e:b7:d9:0a:4f:25:65:48:cb:89:35:45:6f:28:75: a3:39:99:9b:73:28:c1:41:d3:32:49:b8:c2:ba:80:c3:c9:48: 06:91:bb:7a:2d:d0:13:74:85:ef:08:c0:db:d5:bd:18:e5:18: 34:8e:c8:8e:6d:0b:1d:2d:5c:d7:ab:d6:84:13:69:58:3b:67: 2a:58:94:a8:c1:15:79:7b:12:d0:fa:fc:b9:69:85:eb:96:4c: fc:92:16:38:0a:49:5c:f9:d6:58:63:dd:6d:5c:b4:3f:89:9e: 72:f3:82:c0:c3:8f:9d:6e:42:06:4c:d7:5a:e6:bd:c8:77:91: 60:3e:f6:18:83:93:89:3f:3a:ae:d0:aa:07:01:da:08:6b:a3: bd:c2:b0:9d:49:f5:f8:d2:bc:9c:8e:30:05:9f:ef:92:69:82: 32:d5:0c:02:92:5f:3e:7e:38:0e:20:81:06:f0:9c:9a:23:b1: c6:9f:05:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyMTUxMTAvBgNVBAUTKEQyMEU1MkQwOUNFQkU2QjU3MDUwMzU4Q0EyOTMwRDg5 Mzk3NzI5MTEwHhcNMjUwNTA2MjIyMTExWhcNMjUwNTEzMjIyMTExWjAYMRYwFAYD VQQDEw02ODFhOGI1OC01OWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQY1EXc7SEPAoiXCLeYQ/fICqRxV1dVSQ9mYVnBUzYK/5p8kff3eSL9mztf7 lUc18M7mckxDVCBwSdD5HlULP1bfock/2XANTB+o/upPJe6waIUyWpa3TDPR5bjb TZV9cbmpqU+lBldBGuGptxphtpsyJGVw9MY1h+e3LsGWkz9bwn/CUN0a7wtFDK11 OghH3EPPCkhj+utOq81jS9osUm5l2Fqq5UDqJiG8Uy+ChQQULJLtGNUK3Wc1cKRF /bcshYiOwMIzAWnqc4WrSunYBsce0OAcNA+pkT/B0ASur4wUgaVEFR1EIR2j6eTt IoxJ5VGNMwJ2gesQyelK/RKZaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITQtYzR Mx4koemVp/VXSG5z+C8sMB8GA1UdIwQYMBaAFNIOUtCc6+a1cFA1jKKTDYk5dykR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTIxNS85MjJEQkI5NDgy MkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVyVndVRFdNb3BNTmlUbDNL UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBnNVMwSnpyNXJWd1VEV01vcE1OaVRsM0tSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTIxNS85MjJEQkI5NDgyMkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVy VndVRFdNb3BNTmlUbDNLUkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYlx7VXRyLyovElRCn0+G31LM4OAIgBryjiXHBWrNfHwFSBzQ3vLvR nlVoTj8E9NMLhO3vHJHcz2ACcNS1VhxMgAP8IzuX+ObdV2J+t9kKTyVlSMuJNUVv KHWjOZmbcyjBQdMySbjCuoDDyUgGkbt6LdATdIXvCMDb1b0Y5Rg0jsiObQsdLVzX q9aEE2lYO2cqWJSowRV5exLQ+vy5aYXrlkz8khY4Cklc+dZYY91tXLQ/iZ5y84LA w4+dbkIGTNda5r3Id5FgPvYYg5OJPzqu0KoHAdoIa6O9wrCdSfX40rycjjAFn++S aYIy1QwCkl8+fjgOIIEG8JyaI7HGnwUO -----END CERTIFICATE-----Generated at Thu May 8 03:18:46 2025 by rpki-client