$ rpki-client -vvf rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft File: thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft (raw, json) Hash identifier: TzJup+Lehkdya/0ePwfkg9TqQ7BS4rnlvHrO0O5Wqw4= Subject key identifier: 77:CD:DF:FB:2B:0C:24:AC:1B:0D:B6:74:D5:D5:29:A7:B9:2A:E0:71 Authority key identifier: B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 Certificate issuer: /CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Certificate serial: 0396 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft Manifest number: 0391 Signing time: Sun 11 May 2025 00:22:38 +0000 Manifest this update: Sun 11 May 2025 00:22:38 +0000 Manifest next update: Sun 18 May 2025 00:22:38 +0000 Files and hashes: 1: thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl (hash: G1qiqwvAONI5z3yH3z5BlSJvD2EeBqBI22aU0dwiDSY=) 2: 0F291AFE9D2811EC83448E6FC4F9AE02.roa (hash: p2rd5X9PRaHj3dg5SJAK0M8GBgiGK7ul3HPfe5PMkz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 918 (0x396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118B32, serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Validity Not Before: May 11 00:22:38 2025 GMT Not After : May 18 00:22:38 2025 GMT Subject: CN=681fedce-8e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:86:78:6f:99:9a:df:ce:f1:92:e3:3e:12:03: 23:20:86:a5:ab:90:f9:63:3b:2b:f8:3d:f5:99:da: 4f:6e:bd:b2:8f:ff:80:58:f6:a7:52:a4:7b:28:8e: 5e:84:0a:db:b6:71:1d:aa:f8:e2:9a:e4:fb:6f:b1: f6:ff:67:73:a7:ea:05:b1:73:79:07:51:81:9e:f6: 4f:f0:ed:66:4a:55:7b:91:8b:a5:15:84:24:a0:7f: 17:82:9b:81:25:b2:d5:d0:8b:2a:aa:66:90:72:b0: c1:f0:95:1a:7e:b6:30:98:fd:e1:4a:e5:68:03:93: 05:cc:ef:d1:c7:2e:55:2b:43:9c:7e:81:07:d0:15: f8:c3:dd:a9:66:55:6a:1c:2d:74:c7:ee:5d:96:ad: 2f:04:a1:55:08:32:34:96:1a:15:16:e0:53:7c:e2: 55:66:c3:03:93:10:63:fd:63:63:64:37:02:62:5a: dc:05:ad:3e:66:ca:cd:e4:95:c9:70:7f:e8:b7:41: 60:08:d3:2a:d7:53:9d:7b:47:55:89:44:83:64:4b: e0:74:b1:bb:6e:13:58:00:4b:2c:89:43:50:33:ae: a6:1d:00:53:f1:af:7b:34:d8:b0:27:32:cc:91:76: c7:91:56:f8:31:78:0a:85:28:7f:51:24:50:cf:51: ed:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:CD:DF:FB:2B:0C:24:AC:1B:0D:B6:74:D5:D5:29:A7:B9:2A:E0:71 X509v3 Authority Key Identifier: keyid:B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d6:be:6a:eb:3e:ee:6b:a0:20:7c:c9:4f:3d:9c:8d:86:41: d3:0c:f2:cf:53:00:6a:b1:86:b2:a0:85:07:89:bb:a6:5b:ef: 19:51:24:df:2a:a1:bd:99:f2:a5:c1:33:92:2b:25:2e:73:2e: 7b:60:11:88:7e:07:2d:80:31:f2:81:f9:67:16:0c:76:84:2c: f1:4c:ac:a6:c1:1c:9b:68:86:3b:db:d2:a8:96:eb:4f:bd:86: 6d:b8:25:98:b1:f8:5e:2a:87:2a:db:5a:3b:3a:da:6c:4a:53: a4:5b:15:57:0a:82:ee:10:6b:29:bc:15:3f:fd:75:85:d0:06: 0b:0b:a3:f2:50:79:c7:b2:92:9d:bd:40:3a:d1:7e:cd:78:01: cd:df:2c:69:ff:b5:87:21:cc:a4:77:0f:e0:0e:0a:fc:85:7f: b1:fe:92:cf:b9:68:96:37:6a:75:2e:1d:9e:c3:44:26:57:e0: 54:d5:96:2e:9a:41:4d:d8:ca:56:4a:d5:af:9c:aa:b0:3b:81: dc:f0:b8:f3:29:43:0b:af:49:70:03:bd:2e:ab:39:d8:57:d7: 20:2c:50:99:1d:35:aa:89:45:46:43:88:aa:b0:e0:6f:51:2d: 9a:d7:4a:e7:9d:98:58:0d:30:d9:bb:7f:7f:6a:86:e3:a5:a3: 98:15:2e:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThCMzIxMTAvBgNVBAUTKEI2MTEwM0E1QzlDQzYwRUFEMTg4QTJGOUZEMTFFNjNE NTIzM0Q5OTUwHhcNMjUwNTExMDAyMjM4WhcNMjUwNTE4MDAyMjM4WjAYMRYwFAYD VQQDEw02ODFmZWRjZS04ZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYZ4b5ma387xkuM+EgMjIIalq5D5Yzsr+D31mdpPbr2yj/+AWPanUqR7KI5e hArbtnEdqvjimuT7b7H2/2dzp+oFsXN5B1GBnvZP8O1mSlV7kYulFYQkoH8XgpuB JbLV0IsqqmaQcrDB8JUafrYwmP3hSuVoA5MFzO/Rxy5VK0OcfoEH0BX4w92pZlVq HC10x+5dlq0vBKFVCDI0lhoVFuBTfOJVZsMDkxBj/WNjZDcCYlrcBa0+ZsrN5JXJ cH/ot0FgCNMq11Ode0dViUSDZEvgdLG7bhNYAEssiUNQM66mHQBT8a97NNiwJzLM kXbHkVb4MXgKhSh/USRQz1Ht7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfN3/sr DCSsGw22dNXVKae5KuBxMB8GA1UdIwQYMBaAFLYRA6XJzGDq0Yii+f0R5j1SM9mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEIzMi9GRjc3MUJCQzlE MjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlPclJpS0w1X1JIbVBWSXoy WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RoRURwY25NWU9yUmlLTDVfUkhtUFZJejJaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEIzMi9GRjc3MUJCQzlEMjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlP clJpS0w1X1JIbVBWSXoyWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd1r5q6z7ua6AgfMlPPZyNhkHTDPLPUwBqsYayoIUHibumW+8ZUSTf KqG9mfKlwTOSKyUucy57YBGIfgctgDHygflnFgx2hCzxTKymwRybaIY729KolutP vYZtuCWYsfheKocq21o7OtpsSlOkWxVXCoLuEGspvBU//XWF0AYLC6PyUHnHspKd vUA60X7NeAHN3yxp/7WHIcykdw/gDgr8hX+x/pLPuWiWN2p1Lh2ew0QmV+BU1ZYu mkFN2MpWStWvnKqwO4Hc8LjzKUMLr0lwA70uqznYV9cgLFCZHTWqiUVGQ4iqsOBv US2a10rnnZhYDTDZu39/aobjpaOYFS4q -----END CERTIFICATE-----Generated at Mon May 12 11:20:51 2025 by rpki-client