$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: oCYFcUEkKAReG4BpR3akAP29gllMK3BxSo9iQaXGvKg= Subject key identifier: 04:8E:F6:A5:AE:91:A7:BA:F5:08:B4:B3:F5:51:A6:32:E7:65:41:76 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0C9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0C59 Signing time: Thu 24 Apr 2025 18:26:07 +0000 Manifest this update: Thu 24 Apr 2025 18:26:06 +0000 Manifest next update: Thu 01 May 2025 18:26:06 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: GRY97aaS35QGWM+8oWdyqUPFyl4XqklJKJIxb4jmHSs=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 5: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3226 (0xc9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Apr 24 18:26:06 2025 GMT Not After : May 1 18:26:06 2025 GMT Subject: CN=680a823f-1142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:38:af:c4:66:0e:40:05:fb:99:6c:31:08:5d: 4c:a3:e9:89:36:0a:c3:1d:79:c4:23:c6:12:3a:aa: 42:17:9c:ba:d2:d4:ac:1f:2b:9a:03:4f:2b:e0:5d: 74:a6:60:35:d0:47:bd:0a:3e:f7:67:31:12:2f:0c: 9a:be:d0:67:e5:ff:89:d8:51:a7:1d:06:f2:66:cd: dc:4f:9d:c8:30:20:cf:40:e3:20:24:7c:94:17:17: a5:c0:a2:da:22:fb:2c:bc:af:5d:32:2a:5b:5d:06: a1:f4:24:20:8d:33:57:91:e7:b0:a1:f4:e0:63:58: d7:c1:20:89:f3:91:8e:73:4f:b3:02:d9:f0:27:9c: 12:34:36:d4:00:27:47:e0:39:0e:e0:e7:ec:eb:d4: 13:9f:12:e4:ae:c0:ad:ef:01:c0:12:62:34:00:45: d1:e2:d9:6c:19:a9:07:e7:77:8f:98:76:f0:01:7b: 2d:6a:64:9b:3f:e5:dd:28:cb:30:bb:01:f2:2a:d5: 65:86:41:b4:31:77:65:0c:ea:52:27:fc:cf:44:c7: b1:d6:ed:00:b5:bb:68:83:a3:28:4a:bb:9b:ce:d0: f3:28:80:27:bf:28:29:4f:ac:f3:a1:0e:93:ed:28: 32:e9:29:c4:ed:6c:51:ae:c7:9f:3e:0c:57:3e:a3: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8E:F6:A5:AE:91:A7:BA:F5:08:B4:B3:F5:51:A6:32:E7:65:41:76 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:c8:54:04:47:00:6d:92:a2:5c:70:e3:02:99:2d:e9:5b:69: 10:e3:7b:28:08:9c:3d:b4:46:8b:9b:3d:6b:ac:bf:52:5b:23: a5:f4:ce:22:81:e0:8a:c2:f3:1a:72:40:c1:ed:46:59:96:8a: 8d:48:0d:1b:10:48:6b:39:3b:90:3b:85:d3:cf:33:f1:1d:c7: 24:e4:a8:61:34:d0:a0:89:57:d7:68:08:d4:13:00:0c:17:79: 2e:03:63:1c:42:86:b0:56:87:f9:0f:00:6d:5a:5c:ac:5c:60: 33:18:ff:91:89:0e:98:1b:2c:25:a5:00:43:0f:81:99:14:ef: f7:2b:3d:d0:1c:e5:c2:16:e7:3f:70:c7:41:a2:07:80:c1:bf: 91:08:7e:33:6e:71:0f:9c:fb:e8:34:18:9c:b8:41:7e:b7:8a: a5:96:a6:ca:fa:3f:cb:19:7e:c2:d9:92:fd:f5:f0:63:49:4b: ac:2d:2e:e4:f4:0d:95:51:a4:87:3a:ea:c9:de:e9:0c:b4:b9: a3:83:77:8c:e5:20:50:ff:1b:60:0c:a6:ef:4a:11:9f:6b:5f: 91:79:a2:9f:ae:4b:33:8c:f9:64:6d:d3:63:f5:c6:37:60:b5: 94:e3:16:f5:6c:71:5d:f1:b6:a2:cb:0f:fa:af:3c:8a:a0:fb: 3c:f8:0f:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUwNDI0MTgyNjA2WhcNMjUwNTAxMTgyNjA2WjAYMRYwFAYD VQQDEw02ODBhODIzZi0xMTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTivxGYOQAX7mWwxCF1Mo+mJNgrDHXnEI8YSOqpCF5y60tSsHyuaA08r4F10 pmA10Ee9Cj73ZzESLwyavtBn5f+J2FGnHQbyZs3cT53IMCDPQOMgJHyUFxelwKLa IvssvK9dMipbXQah9CQgjTNXkeewofTgY1jXwSCJ85GOc0+zAtnwJ5wSNDbUACdH 4DkO4Ofs69QTnxLkrsCt7wHAEmI0AEXR4tlsGakH53ePmHbwAXstamSbP+XdKMsw uwHyKtVlhkG0MXdlDOpSJ/zPRMex1u0Atbtog6MoSrubztDzKIAnvygpT6zzoQ6T 7Sgy6SnE7WxRrsefPgxXPqMDWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASO9qWu kae69Qi0s/VRpjLnZUF2MB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQyFQERwBtkqJccOMCmS3pW2kQ43soCJw9tEaLmz1rrL9SWyOl9M4i geCKwvMackDB7UZZloqNSA0bEEhrOTuQO4XTzzPxHcck5KhhNNCgiVfXaAjUEwAM F3kuA2McQoawVof5DwBtWlysXGAzGP+RiQ6YGywlpQBDD4GZFO/3Kz3QHOXCFuc/ cMdBogeAwb+RCH4zbnEPnPvoNBicuEF+t4qllqbK+j/LGX7C2ZL99fBjSUusLS7k 9A2VUaSHOurJ3ukMtLmjg3eM5SBQ/xtgDKbvShGfa1+ReaKfrkszjPlkbdNj9cY3 YLWU4xb1bHFd8baiyw/6rzyKoPs8+A9/ -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:40 2025 by rpki-client