$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: W0a9qAG5YeseRkNBBabLj/B4/a+x4fp91JIpQBApw7M= Subject key identifier: 80:C0:89:5E:B0:82:2A:2B:83:38:32:31:54:33:E1:DB:CD:0F:34:05 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 0C Signing time: Sun 11 May 2025 06:50:48 +0000 Manifest this update: Sun 11 May 2025 06:50:47 +0000 Manifest next update: Sun 18 May 2025 06:50:47 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: 5UYuyOsbo9WDRJ9ENo9Ut25kMt3W0G46eRK6+yN2odc=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 1rT5RRmmBu2dtW7r80awQ5qBk4VrGxHD3sFnkgNZ9lQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: May 11 06:50:47 2025 GMT Not After : May 18 06:50:47 2025 GMT Subject: CN=682048c8-096c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:37:a7:16:23:ea:f0:1b:03:90:b4:c1:03:e0: 79:b4:61:c9:8f:3c:24:e0:84:ad:8d:6c:ac:77:79: 21:e3:e9:a1:b7:0c:78:89:99:5e:a1:5c:fa:c3:d4: 2d:40:47:1b:5d:c0:1c:76:09:66:c4:3e:55:bc:59: 82:2d:2d:67:a8:73:46:ce:68:bd:59:c7:12:07:87: 3a:28:2e:01:26:90:f4:d1:77:0d:a7:71:62:85:90: 80:0e:af:37:de:bb:99:c5:00:b0:da:d6:37:a6:1e: aa:4f:ab:32:f4:8f:ea:74:1a:1a:2a:d0:af:4b:46: 36:eb:65:ba:f0:ef:3d:1b:b0:bb:64:e5:47:32:72: a0:9d:6d:44:85:99:43:fb:1b:d8:2a:ac:1a:43:8b: b8:37:f8:83:ce:34:a4:d5:09:95:7d:83:1a:12:f6: a6:07:a7:31:c8:39:47:64:ad:b1:ab:92:21:37:17: ee:8c:96:e6:62:c6:05:d4:d8:0f:c7:f3:bc:33:33: a1:b4:d3:c9:31:63:fa:c1:05:08:9f:a6:62:18:55: 95:8b:07:e8:9c:42:64:c9:5a:ee:76:21:97:dc:f1: eb:fe:f9:35:ef:e0:e7:cd:37:bf:42:c8:3a:5e:37: b2:20:34:d1:fe:8d:dd:e1:08:07:b2:76:a9:06:6d: 2b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C0:89:5E:B0:82:2A:2B:83:38:32:31:54:33:E1:DB:CD:0F:34:05 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:5d:c8:86:66:d8:8d:46:88:c2:22:a0:0d:cf:f4:4d:38:cf: dc:14:d7:57:d1:9f:38:74:86:86:9f:ae:9c:02:ad:65:1e:87: 2d:bb:3e:de:7b:7c:45:7e:9e:0f:0f:0e:e6:4f:79:8a:91:b7: 71:67:96:56:e9:03:d0:2d:2e:9d:c6:76:38:14:07:a3:89:3e: 7b:1b:14:df:7c:5f:55:74:16:ca:ba:cf:64:a6:20:f1:1b:74: e3:f1:11:89:55:85:17:cb:4f:89:59:b3:72:69:95:f6:52:d2: 4c:ef:1c:a2:5e:a6:a0:c8:8e:51:42:cf:4e:67:13:fd:b3:cc: 13:fb:80:bf:b1:82:0e:f0:3e:07:c5:5b:4e:c0:2a:8e:62:cc: ee:2d:e0:b1:58:3d:4b:15:65:5f:43:f9:55:4e:43:19:54:dc: d1:54:bf:80:ed:91:47:27:cf:86:dc:c4:37:bd:12:2f:b7:29: 84:65:b6:52:e4:10:3c:9f:ba:4d:4f:3d:c0:94:58:5e:d7:a1: 69:dd:f7:70:38:ea:6a:21:01:77:3a:fc:c7:76:38:f4:35:4c: c6:2a:24:45:09:00:36:60:dd:e3:28:f9:77:c7:e3:80:c8:05: 62:13:ad:33:10:e5:9c:9f:e4:46:9c:70:2c:74:c2:e5:c4:56: 02:2b:c3:f5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTA1MTEwNjUwNDdaFw0yNTA1MTgwNjUwNDdaMBgxFjAUBgNV BAMTDTY4MjA0OGM4LTA5NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHN6cWI+rwGwOQtMED4Hm0YcmPPCTghK2NbKx3eSHj6aG3DHiJmV6hXPrD1C1A RxtdwBx2CWbEPlW8WYItLWeoc0bOaL1ZxxIHhzooLgEmkPTRdw2ncWKFkIAOrzfe u5nFALDa1jemHqpPqzL0j+p0Ghoq0K9LRjbrZbrw7z0bsLtk5UcycqCdbUSFmUP7 G9gqrBpDi7g3+IPONKTVCZV9gxoS9qYHpzHIOUdkrbGrkiE3F+6MluZixgXU2A/H 87wzM6G008kxY/rBBQifpmIYVZWLB+icQmTJWu52IZfc8ev++TXv4OfNN79CyDpe N7IgNNH+jd3hCAeydqkGbSt5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgMCJXrCC KiuDODIxVDPh280PNAUwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFZdyIZm2I1GiMIioA3P9E04z9wU11fRnzh0hoafrpwCrWUehy27Pt57 fEV+ng8PDuZPeYqRt3FnllbpA9AtLp3GdjgUB6OJPnsbFN98X1V0Fsq6z2SmIPEb dOPxEYlVhRfLT4lZs3JplfZS0kzvHKJepqDIjlFCz05nE/2zzBP7gL+xgg7wPgfF W07AKo5izO4t4LFYPUsVZV9D+VVOQxlU3NFUv4DtkUcnz4bcxDe9Ei+3KYRltlLk EDyfuk1PPcCUWF7XoWnd93A46mohAXc6/Md2OPQ1TMYqJEUJADZg3eMo+XfH44DI BWITrTMQ5Zyf5EaccCx0wuXEVgIrw/U= -----END CERTIFICATE-----Generated at Mon May 12 04:21:23 2025 by rpki-client