$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft File: aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft (raw, json) Hash identifier: Xwz57ThZTZsl2qt1B7vCL1p5L5sLS6MTiwlkG9pL4g8= Subject key identifier: 18:FE:83:68:23:97:79:DA:0A:98:19:93:4C:00:8E:23:6A:D5:CC:BA Authority key identifier: 68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 Certificate issuer: /CN=A9114D4F/serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft Manifest number: 8E Signing time: Tue 13 May 2025 05:39:40 +0000 Manifest this update: Tue 13 May 2025 05:39:40 +0000 Manifest next update: Tue 20 May 2025 05:39:40 +0000 Files and hashes: 1: aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl (hash: sF6NDTAqQv8kLmj8hSVHStrY3TbRbxLDg/6ObhT3HWE=) 2: 444375E25B9C11EFA181A044C4F9AE02.roa (hash: Yhh6V+gIv+Ld1DK0VM67Fxc3c5mvFHS895j33+/A8nE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114D4F, serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Validity Not Before: May 13 05:39:40 2025 GMT Not After : May 20 05:39:40 2025 GMT Subject: CN=6822db1c-7a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:54:85:74:80:38:9e:91:05:fd:81:1a:aa:41: 0f:ce:17:14:3a:49:38:11:ab:95:d5:40:ae:20:f7: da:5e:4e:ed:c1:50:03:1c:4b:8e:6f:5b:5a:ce:0a: 83:35:53:de:1e:7a:67:1f:dc:dd:e9:5d:6f:e2:c7: 6c:2b:f0:0f:4a:7a:74:5d:b9:95:a0:b8:6d:04:d5: 4c:54:56:32:7d:9a:a2:7c:90:f6:3a:07:f5:b5:5f: 0e:62:6d:1e:8e:ed:72:b8:96:44:4d:5b:21:43:fd: c0:cb:ef:6f:62:c3:07:b3:14:f2:9d:dc:df:08:bd: f4:3f:07:86:79:76:ee:be:a9:9c:22:9c:16:8e:87: dd:41:2e:62:e1:07:ba:6d:6c:ed:c6:a5:1d:11:3a: 45:c6:80:e1:14:a2:25:84:bf:54:8c:6b:f9:60:9a: 3a:23:88:cf:90:14:66:5f:d5:a7:17:c3:60:4d:ea: 47:76:90:4e:f5:d4:5c:16:f1:a8:dc:bf:60:95:b0: cb:46:cc:70:b1:17:1d:46:22:b6:6e:32:2e:b6:3b: 04:6d:73:41:b9:51:bd:ae:85:eb:1c:9b:f0:a6:92: 10:3c:51:ee:cc:97:19:e4:49:7d:8e:4f:53:c9:a4: e2:b5:df:fd:a8:fe:63:d7:94:07:db:cf:cc:86:87: 20:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FE:83:68:23:97:79:DA:0A:98:19:93:4C:00:8E:23:6A:D5:CC:BA X509v3 Authority Key Identifier: keyid:68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:90:43:4e:16:8e:00:ec:44:19:6f:30:57:81:fe:6b:44:65: fb:90:78:b1:e0:d1:27:ae:b2:f3:f1:af:d4:23:bf:77:4d:27: f7:0e:e8:49:c5:2f:af:75:59:94:c0:9e:26:ac:45:b7:9a:59: fc:44:58:32:e9:80:51:14:bd:a5:8a:c4:53:05:a9:70:ec:26: e5:01:dc:d2:e3:10:03:7a:b1:60:d8:c5:45:fb:87:12:08:99: c5:f8:04:b5:5a:95:1f:7a:41:c3:a7:e3:d2:f7:df:75:9c:0f: 39:be:60:e7:b1:82:0c:2d:39:6f:c9:a8:8e:28:d4:2b:bd:49: 62:b9:a8:a6:f2:70:6b:ff:5f:fc:19:61:40:27:6d:c5:35:6a: 29:26:32:36:20:4e:75:7e:29:41:40:de:4f:d0:ab:e1:1d:b7: b6:b3:ce:d3:f8:a9:da:bc:c2:9f:da:4e:54:b8:79:a1:25:b7: b3:ff:a6:e3:33:25:1c:f4:bc:36:8b:8d:aa:3d:74:2c:82:e4: f3:99:90:41:15:af:41:d7:63:06:3b:cf:7c:7a:d6:8c:c3:98: 24:09:ea:e2:2f:7f:30:8e:cf:ee:79:a8:65:b5:0f:4b:5f:75: a9:df:e3:96:40:bf:13:ff:3d:cc:b9:c3:46:7e:1c:05:9e:97: b5:59:f2:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRENEYxMTAvBgNVBAUTKDY4Nzc0MURFMTVDRDg4M0MxMEREQkM0RkMzQTJEQ0Y1 NDg1RTdERjMwHhcNMjUwNTEzMDUzOTQwWhcNMjUwNTIwMDUzOTQwWjAYMRYwFAYD VQQDEw02ODIyZGIxYy03YTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFSFdIA4npEF/YEaqkEPzhcUOkk4EauV1UCuIPfaXk7twVADHEuOb1tazgqD NVPeHnpnH9zd6V1v4sdsK/APSnp0XbmVoLhtBNVMVFYyfZqifJD2Ogf1tV8OYm0e ju1yuJZETVshQ/3Ay+9vYsMHsxTyndzfCL30PweGeXbuvqmcIpwWjofdQS5i4Qe6 bWztxqUdETpFxoDhFKIlhL9UjGv5YJo6I4jPkBRmX9WnF8NgTepHdpBO9dRcFvGo 3L9glbDLRsxwsRcdRiK2bjIutjsEbXNBuVG9roXrHJvwppIQPFHuzJcZ5El9jk9T yaTitd/9qP5j15QH28/MhocgMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBj+g2gj l3naCpgZk0wAjiNq1cy6MB8GA1UdIwQYMBaAFGh3Qd4VzYg8EN28T8Oi3PVIXn3z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEQ0Ri8wRTNBQ0NGQzVC OUMxMUVGOUIxNTQ5NDRDNEY5QUUwMi9hSGRCM2hYTmlEd1EzYnhQdzZMYzlVaGVm Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIZEIzaFhOaUR3UTNieFB3NkxjOVVoZWZmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEQ0Ri8wRTNBQ0NGQzVCOUMxMUVGOUIxNTQ5NDRDNEY5QUUwMi9hSGRCM2hYTmlE d1EzYnhQdzZMYzlVaGVmZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7kENOFo4A7EQZbzBXgf5rRGX7kHix4NEnrrLz8a/UI793TSf3DuhJ xS+vdVmUwJ4mrEW3mln8RFgy6YBRFL2lisRTBalw7CblAdzS4xADerFg2MVF+4cS CJnF+AS1WpUfekHDp+PS9991nA85vmDnsYIMLTlvyaiOKNQrvUliuaim8nBr/1/8 GWFAJ23FNWopJjI2IE51filBQN5P0KvhHbe2s87T+KnavMKf2k5UuHmhJbez/6bj MyUc9Lw2i42qPXQsguTzmZBBFa9B12MGO898etaMw5gkCeriL38wjs/ueahltQ9L X3Wp3+OWQL8T/z3MucNGfhwFnpe1WfLu -----END CERTIFICATE-----Generated at Wed May 14 20:52:00 2025 by rpki-client