$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft File: c35h2qB72DNCtgxeutSxuxm-QAM.mft (raw, json) Hash identifier: qL8SCqKHZPTH2bf++sDql/tFgoQuE5w8cuBugoq5qkc= Subject key identifier: 7D:A1:0D:8B:B9:C4:E4:9E:93:86:86:B5:E8:EF:0C:44:25:7C:81:B1 Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 09DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft Manifest number: 09BD Signing time: Wed 14 May 2025 20:10:16 +0000 Manifest this update: Wed 14 May 2025 20:10:16 +0000 Manifest next update: Wed 21 May 2025 20:10:16 +0000 Files and hashes: 1: c35h2qB72DNCtgxeutSxuxm-QAM.crl (hash: dpU7GlJDnXa9YV7Q43rnYeticvBsWMPjarA1z6+i93w=) 2: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (hash: cv1XOQDllKYXcpEWN6EDo+84rWYyoCQRLW84g8KQ5ZA=) 3: 95B5855C18CE11EFBCD58454C4F9AE02.roa (hash: 19peW13UIPklgma9IsoYtyIgEi8rvSKuXv+9ezxIut4=) 4: 981F188018CE11EFBCD58454C4F9AE02.roa (hash: VqWzdPFCvuqUEShaf6/toPwLspmfOG4EJ7lP9CUoJW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2527 (0x9df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: May 14 20:10:16 2025 GMT Not After : May 21 20:10:16 2025 GMT Subject: CN=6824f8a8-37f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d2:67:a9:bd:ba:44:47:66:95:36:ea:90:2c: 2b:03:46:ba:69:79:71:a6:dc:4c:77:5f:3e:26:b2: cd:c8:f1:32:68:9a:97:c1:ab:f4:92:95:15:cc:5c: ce:63:41:05:5d:91:f8:57:32:56:82:e8:32:3a:b6: ae:87:0b:af:aa:23:96:07:36:f9:61:ba:81:22:89: 09:ad:e1:00:1e:8e:78:eb:c8:6f:39:c2:09:e2:4d: 82:90:c7:60:82:57:80:8a:8a:5c:57:bb:55:83:a2: 66:6b:3e:89:43:a7:f5:fb:a5:09:fb:7d:fa:91:65: 05:07:93:eb:db:37:e5:03:05:c7:6f:ed:b7:d4:30: 73:97:ae:55:f8:24:25:72:52:67:00:3b:c7:34:42: f3:b3:fa:88:41:cc:6c:e7:10:b8:e1:33:82:95:bc: 27:35:e4:cf:0b:3f:94:3f:bb:1d:54:cd:fb:93:ba: 38:40:05:07:f8:33:e2:33:4c:91:8c:89:48:9c:a1: c5:80:31:c8:bb:06:0e:fb:d0:1d:a1:74:ae:81:d1: 55:51:aa:72:98:c2:d2:68:68:10:85:1e:fd:ba:64: 16:8d:d0:c0:f5:37:14:e3:7d:1b:7c:4b:82:67:f8: b1:ad:d9:ae:e5:3e:14:83:dc:33:a1:d6:6e:57:84: 2d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A1:0D:8B:B9:C4:E4:9E:93:86:86:B5:E8:EF:0C:44:25:7C:81:B1 X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b9:b0:36:eb:4f:68:f7:35:5b:c2:f7:d4:24:02:9a:83:8d: bf:a3:56:28:6a:29:8d:44:e4:1d:de:33:da:43:45:c6:12:1d: b0:34:90:d7:15:21:d8:ab:62:69:e4:cb:a0:ea:0e:c2:a8:71: 2c:d8:16:fc:be:d8:9d:0c:19:0c:b5:b2:9d:df:4d:5e:31:2b: 78:93:04:31:1d:da:3c:26:77:06:47:14:d2:5d:60:18:42:36: 66:ff:f5:2a:a3:12:5d:14:5c:0e:18:ca:c6:c6:bd:b1:db:85: 0a:55:39:41:ff:94:6a:07:00:01:6e:dc:4d:77:82:42:0a:1f: 13:03:25:8a:f4:e0:01:e7:13:6f:57:23:fc:ea:06:8c:a3:b1: 55:9c:f9:a3:e2:20:cc:06:72:8d:02:18:46:89:b8:e8:da:35: 03:ef:65:36:85:da:80:3b:8a:07:3c:de:ff:08:a4:00:43:28: 3a:04:08:3e:d8:f5:ae:a4:e4:59:f3:2a:55:57:57:db:51:ff: 80:5f:67:c8:3e:2d:f4:e3:83:46:45:0f:8e:92:25:aa:03:6a: ae:92:42:15:a1:32:12:3e:36:ae:6e:87:ce:19:3f:2c:94:c0: 15:c4:eb:68:21:69:b3:14:4b:2f:42:f9:cc:6a:25:b2:ad:ab: cb:1c:a6:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjUwNTE0MjAxMDE2WhcNMjUwNTIxMjAxMDE2WjAYMRYwFAYD VQQDEw02ODI0ZjhhOC0zN2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dJnqb26REdmlTbqkCwrA0a6aXlxptxMd18+JrLNyPEyaJqXwav0kpUVzFzO Y0EFXZH4VzJWgugyOrauhwuvqiOWBzb5YbqBIokJreEAHo5468hvOcIJ4k2CkMdg gleAiopcV7tVg6Jmaz6JQ6f1+6UJ+336kWUFB5Pr2zflAwXHb+231DBzl65V+CQl clJnADvHNELzs/qIQcxs5xC44TOClbwnNeTPCz+UP7sdVM37k7o4QAUH+DPiM0yR jIlInKHFgDHIuwYO+9AdoXSugdFVUapymMLSaGgQhR79umQWjdDA9TcU430bfEuC Z/ixrdmu5T4Ug9wzodZuV4QtBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2hDYu5 xOSek4aGtejvDEQlfIGxMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy8zQjFDREZCQzg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJE TkN0Z3hldXRTeHV4bS1RQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZubA2609o9zVbwvfUJAKag42/o1YoaimNROQd3jPaQ0XGEh2wNJDX FSHYq2Jp5Mug6g7CqHEs2Bb8vtidDBkMtbKd301eMSt4kwQxHdo8JncGRxTSXWAY QjZm//UqoxJdFFwOGMrGxr2x24UKVTlB/5RqBwABbtxNd4JCCh8TAyWK9OAB5xNv VyP86gaMo7FVnPmj4iDMBnKNAhhGibjo2jUD72U2hdqAO4oHPN7/CKQAQyg6BAg+ 2PWupORZ8ypVV1fbUf+AX2fIPi3044NGRQ+OkiWqA2qukkIVoTISPjaubofOGT8s lMAVxOtoIWmzFEsvQvnMaiWyravLHKaB -----END CERTIFICATE-----Generated at Fri May 16 03:18:01 2025 by rpki-client