$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: NGCCEhnLeDgynn3UGwD43PdGpnvlhLvw8zLZ4BvCHr0= Subject key identifier: B5:3D:F9:E2:7D:43:01:FF:D7:31:CE:84:31:39:CA:54:2F:8F:0C:B4 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 1355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 1329 Signing time: Thu 24 Apr 2025 17:03:59 +0000 Manifest this update: Thu 24 Apr 2025 17:03:59 +0000 Manifest next update: Thu 01 May 2025 17:03:59 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: V/1l8apzKZl5KAfy+AV7xzsomXOVDO+W8mh5F6ULCoQ=) 2: 354FE56C6C5111EC9FF8F481C4F9AE02.roa (hash: yLsbLNfO8+GYafdqIv83Nfi6PSWJ/614Kmn3tZCnkTY=) 3: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: 2CAgcrLv4JGzDGMPlAonDkbaG+eLBXz0G6EKid4bHfs=) 4: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: d1W5JywmHjLqObvdK9tSNHN2RsDjV33NPPuORYy/wG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4949 (0x1355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Apr 24 17:03:59 2025 GMT Not After : May 1 17:03:59 2025 GMT Subject: CN=680a6eff-5d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5b:32:f7:d5:4f:0a:91:ec:67:6f:b9:95:46: ea:40:67:93:fa:50:a0:51:1a:79:e2:5b:42:e0:4e: c0:51:94:d4:6d:db:63:94:64:b0:e1:9a:3c:c0:df: ed:18:c7:bd:0f:f1:e5:2e:7f:bd:ce:72:34:5d:f8: f6:64:99:29:d3:f7:ce:00:5f:07:b4:94:39:6b:3c: 6d:8c:ea:d0:fb:46:4b:78:72:b8:a3:cd:d5:11:38: c4:2e:3c:dc:f3:77:f5:ef:ed:5c:89:8b:55:c8:bc: f3:99:3e:e0:39:d0:bb:3d:c3:66:e8:d7:58:a2:17: a0:89:89:20:c1:6e:28:20:9d:f3:47:ad:16:a8:9c: 41:31:54:3c:97:d3:ca:ba:a5:73:ae:3e:c5:84:4b: 46:ae:b7:39:71:eb:f9:eb:88:71:30:a8:53:c5:84: 34:44:f5:36:e4:88:fc:61:c1:bb:0f:ff:2c:ec:ad: 4f:e3:e5:56:d3:54:32:e7:6d:61:05:92:dd:d8:f2: 93:81:18:65:dc:73:78:98:77:79:3b:99:18:6f:2b: b6:a8:ba:80:68:1c:86:e8:b2:4d:54:67:eb:78:26: bd:43:f2:95:d2:0b:a9:09:6f:58:1c:e3:29:ea:72: 83:f0:96:77:b8:42:ce:62:8a:7a:ad:6d:1b:e1:75: de:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3D:F9:E2:7D:43:01:FF:D7:31:CE:84:31:39:CA:54:2F:8F:0C:B4 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2c:57:fe:3f:be:ef:11:f4:f3:a8:de:87:94:0c:46:88:d6: 3b:27:55:75:34:ae:60:5d:2d:43:32:18:8e:89:55:1d:3d:06: c2:89:03:c5:2c:35:4d:fe:5f:dd:e5:be:d4:86:7c:06:55:0b: 83:07:bc:10:09:ad:b5:41:d9:fa:d8:e1:17:f4:2f:ef:45:74: 58:6c:a3:cd:51:ac:56:0d:8b:ef:31:1d:5b:02:80:e0:a4:7b: b8:97:f2:2d:3a:a4:28:68:b2:c9:43:22:1f:14:5b:ec:b7:da: 99:e0:e8:6d:cb:52:3a:77:46:e4:a2:78:40:0f:48:0d:6b:46: df:78:3d:8d:35:54:28:9f:c2:4f:9b:79:13:b7:c2:ac:26:0b: 3d:ea:44:26:32:a1:99:c4:e7:db:f3:08:ba:aa:72:22:0b:44: ca:d9:e3:e0:f1:4a:1f:6d:68:77:1c:8f:f2:9e:73:10:3e:9c: 95:35:2b:9a:cf:72:d5:45:18:ef:98:15:24:98:61:4b:cf:2f: 95:76:79:5e:45:62:13:c3:bb:d5:37:35:ca:07:41:c3:5e:f8: 98:a3:95:af:d6:cb:de:ee:7e:10:67:e7:ab:57:80:6d:bf:bc: d8:9b:13:e0:2f:d2:8e:fd:dc:4e:75:aa:b6:e9:b4:27:11:7f: 9e:d4:fe:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUwNDI0MTcwMzU5WhcNMjUwNTAxMTcwMzU5WjAYMRYwFAYD VQQDEw02ODBhNmVmZi01ZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVsy99VPCpHsZ2+5lUbqQGeT+lCgURp54ltC4E7AUZTUbdtjlGSw4Zo8wN/t GMe9D/HlLn+9znI0Xfj2ZJkp0/fOAF8HtJQ5azxtjOrQ+0ZLeHK4o83VETjELjzc 83f17+1ciYtVyLzzmT7gOdC7PcNm6NdYohegiYkgwW4oIJ3zR60WqJxBMVQ8l9PK uqVzrj7FhEtGrrc5cev564hxMKhTxYQ0RPU25Ij8YcG7D/8s7K1P4+VW01Qy521h BZLd2PKTgRhl3HN4mHd5O5kYbyu2qLqAaByG6LJNVGfreCa9Q/KV0gupCW9YHOMp 6nKD8JZ3uELOYop6rW0b4XXe/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLU9+eJ9 QwH/1zHOhDE5ylQvjwy0MB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArLFf+P77vEfTzqN6HlAxGiNY7J1V1NK5gXS1DMhiOiVUdPQbCiQPF LDVN/l/d5b7UhnwGVQuDB7wQCa21Qdn62OEX9C/vRXRYbKPNUaxWDYvvMR1bAoDg pHu4l/ItOqQoaLLJQyIfFFvst9qZ4Ohty1I6d0bkonhAD0gNa0bfeD2NNVQon8JP m3kTt8KsJgs96kQmMqGZxOfb8wi6qnIiC0TK2ePg8UofbWh3HI/ynnMQPpyVNSua z3LVRRjvmBUkmGFLzy+VdnleRWITw7vVNzXKB0HDXviYo5Wv1sve7n4QZ+erV4Bt v7zYmxPgL9KO/dxOdaq26bQnEX+e1P7D -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:39 2025 by rpki-client