$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: bMmUMnjR5Di3XaVYxWLlVGSlZF7Z/XlD8KEww9Kh/X4= Subject key identifier: F0:7F:47:B9:33:47:9A:AD:9E:CF:79:CF:85:8E:7B:8A:89:5D:A0:DB Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 04C1 Signing time: Tue 06 May 2025 19:54:00 +0000 Manifest this update: Tue 06 May 2025 19:53:59 +0000 Manifest next update: Tue 13 May 2025 19:53:59 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: RpLmVtdX1B65ovxCKHSsJ07YRNQmLc9WG/SO3rSky08=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 19:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: May 6 19:53:59 2025 GMT Not After : May 13 19:53:59 2025 GMT Subject: CN=681a68d7-fb76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:51:b6:bd:71:6b:3c:77:e1:73:2a:ab:8b:8a: 98:44:58:1a:dc:f5:5c:82:ed:a5:06:e6:2d:2d:e5: fe:a6:29:df:04:ae:a6:ce:9f:1d:02:3e:38:99:de: 72:ff:95:c4:b9:0b:dd:25:b1:9f:f7:b6:a5:2b:fa: 69:a4:c9:6e:ff:94:91:2e:9c:1b:b6:3b:df:0e:be: c9:90:c0:9c:a5:91:89:43:ca:14:59:44:1a:ba:85: 9e:69:82:54:3f:75:a5:c4:a1:e1:c9:77:d9:f3:fa: bd:fa:b4:dd:20:b4:15:68:3f:f2:5f:ed:33:f4:07: 23:c2:78:2e:d8:fd:ac:c3:0d:7e:35:d2:9c:8e:89: a4:46:2c:05:fc:35:e6:bb:d1:4b:62:58:a2:40:23: 91:94:50:86:00:59:cf:0d:91:17:e8:7e:c4:6a:35: 4b:83:c6:d4:d6:ac:44:4b:3e:be:3e:63:28:da:19: 36:f1:9c:29:dd:e2:11:08:98:32:36:b8:6a:9c:2a: f7:25:ca:6c:a6:07:d9:04:b8:27:74:77:23:37:75: c0:da:f4:30:c6:cf:d7:2a:6c:dc:1e:c1:cb:3c:15: c2:3d:d5:10:52:7d:3f:08:50:86:8b:3a:df:a9:db: 92:7a:9e:f6:ab:b8:05:5f:ad:d9:c1:d3:38:fc:ea: f1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7F:47:B9:33:47:9A:AD:9E:CF:79:CF:85:8E:7B:8A:89:5D:A0:DB X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:98:60:ec:37:3a:d5:62:01:7d:7f:bc:41:f2:90:bb:e8:bb: 13:27:77:64:b4:16:10:4c:81:c7:b6:26:c2:a4:f9:a0:57:5f: 8b:9e:9b:cf:6f:e6:23:5a:95:8e:dd:87:c6:76:94:63:35:14: 51:da:37:ea:6f:9f:3f:f3:37:fe:d2:96:64:9a:30:f6:77:2e: 6c:a0:06:c7:f2:0f:90:25:5d:7a:5a:db:8c:63:9d:38:3c:5f: 5e:da:09:7f:ef:d5:e5:36:70:96:5a:7d:c5:92:39:36:71:b7: 70:25:ae:86:8f:19:b6:5e:34:dd:dd:0b:c5:7d:ae:e2:79:80: b2:a2:0d:71:dc:99:ab:00:bc:2f:57:96:09:11:f5:75:4c:fb: 53:44:6b:4c:27:a2:c8:49:8e:7c:30:cc:1e:df:6f:f6:79:91: 34:4d:bd:3a:b8:f1:7f:14:d8:00:d6:b8:cd:ff:c1:97:eb:31: 3d:35:dd:b5:61:b0:74:20:64:96:db:65:a2:5b:f2:c4:cd:90: a2:f7:69:9e:a3:06:00:8d:14:17:90:b1:ef:2e:2c:50:56:02: f9:4f:3e:ad:97:76:8a:09:66:e6:d4:55:f4:a7:ed:c0:24:c4: 15:0a:b9:8f:b6:62:51:3e:40:4b:1d:96:1e:6b:17:7a:e6:57: 93:31:6c:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUwNTA2MTk1MzU5WhcNMjUwNTEzMTk1MzU5WjAYMRYwFAYD VQQDEw02ODFhNjhkNy1mYjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2lG2vXFrPHfhcyqri4qYRFga3PVcgu2lBuYtLeX+pinfBK6mzp8dAj44md5y /5XEuQvdJbGf97alK/pppMlu/5SRLpwbtjvfDr7JkMCcpZGJQ8oUWUQauoWeaYJU P3WlxKHhyXfZ8/q9+rTdILQVaD/yX+0z9Acjwngu2P2sww1+NdKcjomkRiwF/DXm u9FLYliiQCORlFCGAFnPDZEX6H7EajVLg8bU1qxESz6+PmMo2hk28Zwp3eIRCJgy NrhqnCr3JcpspgfZBLgndHcjN3XA2vQwxs/XKmzcHsHLPBXCPdUQUn0/CFCGizrf qduSep72q7gFX63ZwdM4/OrxIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPB/R7kz R5qtns95z4WOe4qJXaDbMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmmGDsNzrVYgF9f7xB8pC76LsTJ3dktBYQTIHHtibCpPmgV1+LnpvP b+YjWpWO3YfGdpRjNRRR2jfqb58/8zf+0pZkmjD2dy5soAbH8g+QJV16WtuMY504 PF9e2gl/79XlNnCWWn3Fkjk2cbdwJa6Gjxm2XjTd3QvFfa7ieYCyog1x3JmrALwv V5YJEfV1TPtTRGtMJ6LISY58MMwe32/2eZE0Tb06uPF/FNgA1rjN/8GX6zE9Nd21 YbB0IGSW22WiW/LEzZCi92meowYAjRQXkLHvLixQVgL5Tz6tl3aKCWbm1FX0p+3A JMQVCrmPtmJRPkBLHZYeaxd65leTMWzB -----END CERTIFICATE-----Generated at Wed May 7 19:06:38 2025 by rpki-client