$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft File: Mh0Kt4oavjUafbeTINn_03KgjEU.mft (raw, json) Hash identifier: tGV5Kx553nPbflz3/ltIbkA7NkcLWV12QFTRM7ex68Y= Subject key identifier: 95:F8:29:47:7C:33:D8:C4:A0:7F:45:7F:68:C3:E9:47:CA:98:32:8A Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft Manifest number: 01DB Signing time: Sun 11 May 2025 01:48:30 +0000 Manifest this update: Sun 11 May 2025 01:48:30 +0000 Manifest next update: Sun 18 May 2025 01:48:30 +0000 Files and hashes: 1: Mh0Kt4oavjUafbeTINn_03KgjEU.crl (hash: 8YUYfV3YXwp5IzKsIo7hfYeCxmp4peufGwIbdSwfrmY=) 2: 47DA361A3F8F11EF8FA3802DC4F9AE02.roa (hash: J1WS3Wr+Cq+Ya2W/A8acH4GDeK/tNPuqzs+ITQkHcD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF, serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Validity Not Before: May 11 01:48:30 2025 GMT Not After : May 18 01:48:30 2025 GMT Subject: CN=682001ee-fdf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b1:9e:7d:57:f7:ba:27:09:1d:86:99:cf:d2: 30:96:fe:14:28:aa:1b:38:87:46:de:04:0e:e0:4b: 3c:01:c0:5b:42:4e:dc:7e:4e:dc:72:2c:24:ea:56: cd:17:46:90:a7:d2:96:06:aa:74:9e:5a:d0:e7:7c: 30:55:8e:77:63:ea:11:f3:74:08:92:5d:b1:dc:36: c6:ec:ca:be:98:f8:9e:ec:cb:e1:dd:3f:61:d8:df: 3e:dd:21:1e:bd:de:0a:a5:d4:77:9f:cf:72:52:09: 02:92:2c:79:01:9b:e3:b9:12:cc:cc:15:11:c8:44: 80:f3:ad:f7:74:ee:7c:c1:b8:52:65:eb:de:1c:04: f8:d4:b0:ea:f1:15:b8:79:0f:f1:e0:ae:71:e5:13: fc:ec:05:b2:e9:94:05:45:48:eb:05:78:7b:fe:48: 3e:7f:53:2c:83:1a:32:f5:19:49:bb:a7:91:89:90: 5d:a7:2d:ed:d7:72:48:f7:3f:38:2c:5e:6d:71:69: ad:b3:c8:e7:a5:d9:95:b4:24:07:c9:bc:06:9e:e9: a0:2d:ea:87:81:7a:22:7e:57:28:2e:87:fe:61:88: 2c:57:6d:98:8b:07:1e:f4:af:a6:a0:b8:77:c2:6b: 2b:58:d6:b2:6a:0d:3a:d2:52:aa:c1:18:fc:8e:a9: 39:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F8:29:47:7C:33:D8:C4:A0:7F:45:7F:68:C3:E9:47:CA:98:32:8A X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:46:04:8a:3d:5b:98:33:97:f7:e9:84:70:a7:95:0b:5c:bb: 7f:29:cc:84:1b:41:33:53:1c:21:01:7c:7f:2e:ec:3e:85:b7: 9c:4e:06:b0:8c:a6:b3:53:1c:bf:42:3c:a9:27:7e:1b:d2:f0: a3:82:a6:51:5a:d0:1b:7a:15:a1:4e:58:ab:c4:5f:80:8d:7e: 7a:5a:7e:a4:64:31:b4:8b:a4:3d:a9:24:87:99:64:35:f3:d3: 5c:30:61:7c:2f:28:63:45:57:d7:c4:84:0a:08:d3:6d:83:4f: 09:64:0b:b1:66:ab:ae:42:0a:db:4f:72:a1:99:ce:d4:f2:9d: dc:6e:0a:f6:95:e9:65:d8:59:82:72:34:40:3a:bc:5e:c3:8d: 8f:27:ba:db:82:b7:b4:2c:6b:98:97:cf:f3:91:85:70:84:90: 6e:4e:65:4e:51:c8:13:54:f5:8d:e7:0f:cb:df:22:0a:db:01: d8:86:a2:af:ec:fe:c2:67:97:05:04:44:ac:56:8e:3b:91:b8: 19:7c:12:d0:3f:6f:6c:18:da:a3:07:3b:98:28:2d:90:54:78: b9:90:27:ff:47:cf:89:7d:40:e1:62:ea:99:2b:6c:5a:f8:32: 88:55:ce:a0:05:27:ef:df:35:88:55:84:a4:a0:94:1c:d2:dd: ce:e6:3c:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjUwNTExMDE0ODMwWhcNMjUwNTE4MDE0ODMwWjAYMRYwFAYD VQQDEw02ODIwMDFlZS1mZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLGefVf3uicJHYaZz9Iwlv4UKKobOIdG3gQO4Es8AcBbQk7cfk7cciwk6lbN F0aQp9KWBqp0nlrQ53wwVY53Y+oR83QIkl2x3DbG7Mq+mPie7Mvh3T9h2N8+3SEe vd4KpdR3n89yUgkCkix5AZvjuRLMzBURyESA8633dO58wbhSZeveHAT41LDq8RW4 eQ/x4K5x5RP87AWy6ZQFRUjrBXh7/kg+f1Msgxoy9RlJu6eRiZBdpy3t13JI9z84 LF5tcWmts8jnpdmVtCQHybwGnumgLeqHgXoiflcoLof+YYgsV22Yiwce9K+moLh3 wmsrWNayag060lKqwRj8jqk5swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJX4KUd8 M9jEoH9Ff2jD6UfKmDKKMB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEZFRi9CMDM2M0Q2MDY0RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZq VWFmYmVUSU5uXzAzS2dqRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8RgSKPVuYM5f36YRwp5ULXLt/KcyEG0EzUxwhAXx/Luw+hbecTgaw jKazUxy/QjypJ34b0vCjgqZRWtAbehWhTlirxF+AjX56Wn6kZDG0i6Q9qSSHmWQ1 89NcMGF8LyhjRVfXxIQKCNNtg08JZAuxZquuQgrbT3Khmc7U8p3cbgr2lell2FmC cjRAOrxew42PJ7rbgre0LGuYl8/zkYVwhJBuTmVOUcgTVPWN5w/L3yIK2wHYhqKv 7P7CZ5cFBESsVo47kbgZfBLQP29sGNqjBzuYKC2QVHi5kCf/R8+JfUDhYuqZK2xa +DKIVc6gBSfv3zWIVYSkoJQc0t3O5jxN -----END CERTIFICATE-----Generated at Sun May 11 08:39:35 2025 by rpki-client