$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: gO+XperdRG5MmvRjxe5JQGg6QC38REgH4ZfcAv0bRGM= Subject key identifier: FE:96:B9:AB:B4:8C:DD:95:FF:68:F4:74:EA:CD:86:B2:11:63:11:78 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 0483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 046D Signing time: Thu 24 Apr 2025 23:55:47 +0000 Manifest this update: Thu 24 Apr 2025 23:55:46 +0000 Manifest next update: Thu 01 May 2025 23:55:46 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: X28A+wgnMQZxAj3yzOEgxDLKm92SZKJgV+U+HvZDGpo=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: 01FpccdP/MsW2CvA7hmJMpiDNjJ1dNkKkLEpim6H7/0=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: qr8b4jL6pkulS0zDMbButEnYyv8gZUas09Wk3ymII28=) 4: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: TI6U5DDyMx2oNjPAY1onItBRjW+RoIBeg5nOMGrAMag=) 5: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: hL3IFyg9Xwqq4SM4WYiBZDcso6a27q9sQZQ/dFLeUNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1155 (0x483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Apr 24 23:55:46 2025 GMT Not After : May 1 23:55:46 2025 GMT Subject: CN=680acf82-15be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:a0:e6:4d:08:dd:6d:d1:fd:ae:d4:ed:3b: 8a:d1:68:dc:49:a5:e2:3d:2e:0b:d6:4b:ca:ac:49: c7:d1:1a:31:27:07:d6:a1:e5:72:54:34:4f:97:0a: b9:fe:df:e7:b3:1d:a0:07:30:22:b4:02:59:55:27: 0d:c3:e1:4c:10:c9:7f:97:e0:24:0d:ec:51:6f:4a: da:7b:48:39:11:aa:6e:29:2c:87:a4:73:c2:bf:8d: 3b:66:df:d0:cc:44:13:a8:10:ef:c8:d6:14:f1:e3: e0:28:da:78:5b:24:7a:2a:b7:b6:16:62:59:cc:f1: 83:08:8c:c2:29:45:77:7b:e3:c9:f8:e5:f6:e8:89: 9f:32:02:74:64:03:22:51:0a:61:91:d9:35:7b:6c: 98:36:a0:2d:37:65:ce:ad:56:d8:47:76:03:a5:cd: 78:d0:a9:95:9b:f2:33:e6:37:62:7d:36:89:80:5c: ca:31:0b:db:54:96:cd:ed:66:9f:84:7e:17:2d:ca: dc:82:53:d1:c0:28:91:6b:49:33:83:e8:78:a9:27: e9:58:a0:38:27:98:b3:9b:9f:29:94:28:d7:fe:bf: b7:7e:d6:c7:70:99:18:26:b1:0b:9d:d1:fe:84:32: 49:df:d4:eb:7e:b9:b6:c7:85:5d:6f:d3:37:e8:7d: f7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:96:B9:AB:B4:8C:DD:95:FF:68:F4:74:EA:CD:86:B2:11:63:11:78 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:af:f4:2a:0b:28:fd:53:22:cb:b8:c3:1b:26:1f:80:4b:17: 79:87:49:bb:c7:ee:c1:16:18:84:c4:03:e4:d1:b1:fa:5e:db: fc:06:e6:ef:04:00:2c:e4:ba:44:5e:60:c2:97:66:81:39:f3: cd:4f:52:f6:47:48:5a:df:55:6e:2d:82:f7:3a:d4:9a:cf:a3: d0:4d:fc:0e:12:63:69:c8:bb:c1:45:54:58:9f:35:48:da:30: e1:21:03:69:a6:22:75:f6:01:50:1a:d8:26:df:5c:c7:31:88: d1:54:76:57:4c:aa:66:37:e9:07:89:8d:ce:2a:e6:b1:9f:73: fe:64:5b:a3:23:19:07:1f:3d:1e:e7:af:5a:c5:41:13:35:59: a9:e6:75:46:62:6c:50:c6:5a:33:a0:e9:0c:ec:d8:11:fe:fd: 7f:56:58:d3:fc:ba:fe:87:6c:cd:87:18:95:8b:13:52:a7:a3: 44:33:5f:d8:2a:21:f0:36:9d:1c:5e:63:b3:e4:95:b9:dd:6b: 6b:ce:8c:99:91:67:ab:af:80:3d:de:7a:0e:74:88:d4:20:6d: 94:eb:b2:92:f3:9d:3d:b2:cb:1e:23:7d:48:e1:d8:9d:29:72: aa:fc:c4:f1:8b:9a:fb:6b:51:64:18:ab:85:1c:d0:31:b0:3a: b7:ea:03:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUwNDI0MjM1NTQ2WhcNMjUwNTAxMjM1NTQ2WjAYMRYwFAYD VQQDEw02ODBhY2Y4Mi0xNWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvn+g5k0I3W3R/a7U7TuK0WjcSaXiPS4L1kvKrEnH0RoxJwfWoeVyVDRPlwq5 /t/nsx2gBzAitAJZVScNw+FMEMl/l+AkDexRb0rae0g5EapuKSyHpHPCv407Zt/Q zEQTqBDvyNYU8ePgKNp4WyR6Kre2FmJZzPGDCIzCKUV3e+PJ+OX26ImfMgJ0ZAMi UQphkdk1e2yYNqAtN2XOrVbYR3YDpc140KmVm/Iz5jdifTaJgFzKMQvbVJbN7Waf hH4XLcrcglPRwCiRa0kzg+h4qSfpWKA4J5izm58plCjX/r+3ftbHcJkYJrELndH+ hDJJ39Trfrm2x4Vdb9M36H33dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6Wuau0 jN2V/2j0dOrNhrIRYxF4MB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARr/QqCyj9UyLLuMMbJh+ASxd5h0m7x+7BFhiExAPk0bH6Xtv8Bubv BAAs5LpEXmDCl2aBOfPNT1L2R0ha31VuLYL3OtSaz6PQTfwOEmNpyLvBRVRYnzVI 2jDhIQNppiJ19gFQGtgm31zHMYjRVHZXTKpmN+kHiY3OKuaxn3P+ZFujIxkHHz0e 569axUETNVmp5nVGYmxQxlozoOkM7NgR/v1/VljT/Lr+h2zNhxiVixNSp6NEM1/Y KiHwNp0cXmOz5JW53WtrzoyZkWerr4A93noOdIjUIG2U67KS8509ssseI31I4did KXKq/MTxi5r7a1FkGKuFHNAxsDq36gOs -----END CERTIFICATE-----Generated at Sat Apr 26 05:51:45 2025 by rpki-client