$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.mft File: 6tgeRb5BR2cpw1YqNG-29i_IH70.mft (raw, json) Hash identifier: 2P1yKWlsK2fdv+FnLSd+X59hpHZJ2QB8fao/Dj5Nfmc= Subject key identifier: 86:8F:A3:62:94:DE:30:60:31:DB:3D:50:F5:72:97:76:A7:46:83:47 Authority key identifier: EA:D8:1E:45:BE:41:47:67:29:C3:56:2A:34:6F:B6:F6:2F:C8:1F:BD Certificate issuer: /CN=A9119624/serialNumber=EAD81E45BE41476729C3562A346FB6F62FC81FBD Certificate serial: 0D41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tgeRb5BR2cpw1YqNG-29i_IH70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.mft Manifest number: 0D38 Signing time: Mon 12 May 2025 17:53:56 +0000 Manifest this update: Mon 12 May 2025 17:53:56 +0000 Manifest next update: Mon 19 May 2025 17:53:56 +0000 Files and hashes: 1: 6tgeRb5BR2cpw1YqNG-29i_IH70.crl (hash: bMTjJKsboDwE2J/IlE1xGoRRk85uQiKCmdZNy+trk+Y=) 2: 0FA62A50214011EA90EFFE63C4F9AE02.roa (hash: b2eeZFRX3Cfrh2KgUNSH2XUFjtsQ8yv94mtfUkRiNmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.crl rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tgeRb5BR2cpw1YqNG-29i_IH70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3393 (0xd41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=EAD81E45BE41476729C3562A346FB6F62FC81FBD Validity Not Before: May 12 17:53:56 2025 GMT Not After : May 19 17:53:56 2025 GMT Subject: CN=682235b4-c342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8b:71:de:43:dc:8a:e4:31:e3:68:cc:97:b5: 01:40:5a:85:07:e7:a7:00:3c:52:d1:c0:33:ed:b4: bc:87:91:77:27:b7:df:3c:e3:2c:80:7b:f9:c0:cd: ee:1d:34:5d:67:39:82:39:98:b5:a0:e5:98:ce:79: f2:d3:41:8d:08:95:8f:f1:2b:4f:d6:30:a5:53:ae: 58:5f:1f:72:74:b5:2a:cb:9a:ce:14:6e:b5:24:3c: 6d:46:14:93:a8:98:a3:f4:fb:fc:4d:45:f0:1c:dd: 6f:e7:c1:3e:88:95:f6:67:65:e5:55:f3:26:17:d2: e6:09:05:a4:9a:32:a9:42:6d:69:73:1e:3c:ac:f3: 94:64:12:8d:2d:7e:6a:7c:a8:14:49:87:65:f3:36: 57:59:96:06:29:13:dd:90:61:97:35:4e:88:f2:a4: 17:f6:b3:cb:d6:96:1a:cb:0f:0f:e1:92:09:82:50: f9:ae:f1:ed:b4:07:2e:47:ee:5a:96:9d:fe:9d:f0: 20:be:c7:4d:00:dc:6c:a0:e2:17:9f:55:78:fe:21: b1:da:f9:3a:b8:1c:e2:25:1e:7a:02:f5:6f:83:bc: 79:74:fa:d8:30:49:af:a4:a9:43:1e:bf:20:e9:4b: 40:9e:d4:d1:44:a6:6a:0d:ca:93:9c:37:05:bc:ef: ad:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8F:A3:62:94:DE:30:60:31:DB:3D:50:F5:72:97:76:A7:46:83:47 X509v3 Authority Key Identifier: keyid:EA:D8:1E:45:BE:41:47:67:29:C3:56:2A:34:6F:B6:F6:2F:C8:1F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tgeRb5BR2cpw1YqNG-29i_IH70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:c5:39:68:9a:4c:47:4c:9b:0f:5a:84:da:dd:4f:a4:c6:e9: 83:60:78:99:04:d4:bb:f4:32:04:b6:1b:f7:c9:dc:15:46:bd: 57:db:76:c3:dd:94:f8:5d:88:27:4c:c1:3e:d8:d6:5b:6a:d5: 6b:2e:a7:51:2b:59:06:9c:10:c1:6d:b0:88:b4:cf:07:15:4c: 26:92:f8:c4:27:2c:64:e2:71:8c:76:78:ff:bf:d0:1e:95:d0: a6:fe:f0:38:1a:35:e6:2f:47:79:37:f1:36:34:03:1c:69:92: c2:5d:8d:99:b0:80:99:3d:8f:9b:0f:1a:ca:58:3b:02:0e:2d: 53:63:4c:f5:a1:f9:11:e4:4c:02:d8:de:c7:9d:ea:c5:60:c9: 21:da:64:b2:8c:de:7e:d3:e2:53:6c:14:e0:3e:ad:2d:21:d7: 91:63:05:59:1d:36:17:cb:fb:ed:d0:5c:ff:60:a7:37:16:3e: 9d:c5:84:ab:20:d0:2b:7a:14:0c:a7:e4:5b:83:03:53:96:9a: 00:6d:aa:50:47:bc:d3:bc:02:7b:ac:6f:b3:d7:14:33:0b:c0: 78:8c:70:0c:9f:a0:c4:b1:e6:5b:77:cb:3d:f9:c3:f2:94:23: da:20:02:aa:bf:55:5a:2a:1a:14:43:a7:fd:a3:e5:08:90:49: 74:12:3c:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEVBRDgxRTQ1QkU0MTQ3NjcyOUMzNTYyQTM0NkZCNkY2 MkZDODFGQkQwHhcNMjUwNTEyMTc1MzU2WhcNMjUwNTE5MTc1MzU2WjAYMRYwFAYD VQQDEw02ODIyMzViNC1jMzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqItx3kPciuQx42jMl7UBQFqFB+enADxS0cAz7bS8h5F3J7ffPOMsgHv5wM3u HTRdZzmCOZi1oOWYznny00GNCJWP8StP1jClU65YXx9ydLUqy5rOFG61JDxtRhST qJij9Pv8TUXwHN1v58E+iJX2Z2XlVfMmF9LmCQWkmjKpQm1pcx48rPOUZBKNLX5q fKgUSYdl8zZXWZYGKRPdkGGXNU6I8qQX9rPL1pYayw8P4ZIJglD5rvHttAcuR+5a lp3+nfAgvsdNANxsoOIXn1V4/iGx2vk6uBziJR56AvVvg7x5dPrYMEmvpKlDHr8g 6UtAntTRRKZqDcqTnDcFvO+tMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaPo2KU 3jBgMds9UPVyl3anRoNHMB8GA1UdIwQYMBaAFOrYHkW+QUdnKcNWKjRvtvYvyB+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC8zRDRBNUE4NEQ0 NEQxMUU5QTM4M0EzNUJDNEY5QUUwMi82dGdlUmI1QlIyY3B3MVlxTkctMjlpX0lI NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ0Z2VSYjVCUjJjcHcxWXFORy0yOWlfSUg3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC8zRDRBNUE4NEQ0NEQxMUU5QTM4M0EzNUJDNEY5QUUwMi82dGdlUmI1QlIy Y3B3MVlxTkctMjlpX0lINzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXxTlomkxHTJsPWoTa3U+kxumDYHiZBNS79DIEthv3ydwVRr1X23bD 3ZT4XYgnTME+2NZbatVrLqdRK1kGnBDBbbCItM8HFUwmkvjEJyxk4nGMdnj/v9Ae ldCm/vA4GjXmL0d5N/E2NAMcaZLCXY2ZsICZPY+bDxrKWDsCDi1TY0z1ofkR5EwC 2N7HnerFYMkh2mSyjN5+0+JTbBTgPq0tIdeRYwVZHTYXy/vt0Fz/YKc3Fj6dxYSr INArehQMp+RbgwNTlpoAbapQR7zTvAJ7rG+z1xQzC8B4jHAMn6DEseZbd8s9+cPy lCPaIAKqv1VaKhoUQ6f9o+UIkEl0Ejwx -----END CERTIFICATE-----Generated at Mon May 12 22:33:06 2025 by rpki-client