$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: pp7qwmi+y90puwovp/UtPCwlYlLCFuwqHXQkIc145Xg= Subject key identifier: B0:B4:5B:8B:36:8E:95:63:00:C3:FE:98:CD:14:6E:3B:D5:CC:78:FC Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 01C5 Signing time: Tue 13 May 2025 02:14:33 +0000 Manifest this update: Tue 13 May 2025 02:14:32 +0000 Manifest next update: Tue 20 May 2025 02:14:32 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: hHi7YHO6pL3sU0cfel+di/QAZ8PznP0FqgidlBapC8U=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: zvSljqq8u0aCswP8WadYkts+Ql8DETe3wBjOyVuGUoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:14:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: May 13 02:14:32 2025 GMT Not After : May 20 02:14:32 2025 GMT Subject: CN=6822ab09-e9b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:7d:98:10:49:9a:83:90:2c:9c:ec:12:db:61: 29:92:52:ee:8a:56:cf:53:87:34:66:c6:ae:51:aa: 01:3b:89:45:62:12:39:cc:7c:03:9f:54:b9:cd:8c: e5:fe:b9:1e:94:4c:44:a0:02:c7:e0:32:80:1c:8a: 59:57:26:08:46:3f:3f:c8:13:c6:ee:d2:58:79:03: 95:e6:78:e9:d8:10:40:ee:88:93:6a:cc:74:25:88: b4:e1:ac:9e:69:f9:a0:8f:c7:07:0f:68:45:c8:40: bb:a2:a5:b4:c0:a4:70:73:46:ff:c5:a7:9c:56:60: f3:a7:7e:bf:3e:c1:bd:63:53:a8:f9:71:23:d7:93: aa:23:cd:26:5d:80:28:21:94:b1:e1:2b:2e:50:22: 06:ef:73:86:0a:62:6f:ec:e4:b4:40:11:45:2c:c3: 3d:1e:c1:38:25:67:f8:4a:3c:6c:30:c9:03:3e:c9: d4:78:03:58:85:a8:a1:0b:5a:db:c1:6e:1b:51:94: 09:95:5b:79:e4:b2:5e:29:b3:57:40:ea:b2:ef:d9: 10:02:75:07:86:db:e3:69:85:36:31:3d:d6:7c:73: a8:7f:1a:f0:d1:14:31:6d:12:6d:0e:b8:61:6c:ca: 22:3f:fd:05:3e:09:98:9c:cd:8d:20:06:a2:a3:d2: 50:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B4:5B:8B:36:8E:95:63:00:C3:FE:98:CD:14:6E:3B:D5:CC:78:FC X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:97:64:24:95:71:2b:5f:9e:15:66:01:11:28:7c:ae:da:e0: bd:57:fc:16:8f:91:98:31:d9:9e:22:0f:7c:ae:18:13:90:48: 1f:67:ca:5a:b8:8e:bb:7d:ca:1a:a5:be:12:05:0f:f2:85:9e: 5e:77:36:ce:bc:28:5d:04:45:26:29:a2:b3:2f:63:59:0a:b0: 8f:43:07:3e:2a:52:40:4a:f2:c8:f1:72:9d:20:a0:b3:52:44: 2e:aa:19:10:f1:33:b7:a9:86:45:dd:61:d9:65:65:46:59:fa: 39:dc:e8:b7:a9:f0:1b:94:d2:b7:1f:1d:60:10:6f:f0:c8:42: e0:b2:f7:67:97:2f:21:56:a3:19:5f:0c:07:ba:7e:5f:f0:b8: d4:5b:dd:75:06:8a:0f:ac:46:d9:c1:ce:f8:4b:cc:99:4b:e9: 85:00:02:60:31:e6:ae:26:23:c9:d7:34:35:fe:53:d6:eb:7b: 78:10:82:27:b8:f4:a2:3f:f0:dc:20:1f:57:02:8c:e2:09:d4: a0:bd:da:33:f3:d6:fb:75:b0:7a:b1:be:39:90:cb:a7:1b:34: 06:74:16:f3:a3:fc:94:4e:36:e6:97:27:83:82:50:2f:12:07: c6:ba:11:0a:65:47:a4:ae:e0:21:70:aa:eb:1f:77:fa:82:62: 97:88:2d:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUwNTEzMDIxNDMyWhcNMjUwNTIwMDIxNDMyWjAYMRYwFAYD VQQDEw02ODIyYWIwOS1lOWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm32YEEmag5AsnOwS22EpklLuilbPU4c0ZsauUaoBO4lFYhI5zHwDn1S5zYzl /rkelExEoALH4DKAHIpZVyYIRj8/yBPG7tJYeQOV5njp2BBA7oiTasx0JYi04aye afmgj8cHD2hFyEC7oqW0wKRwc0b/xaecVmDzp36/PsG9Y1Oo+XEj15OqI80mXYAo IZSx4SsuUCIG73OGCmJv7OS0QBFFLMM9HsE4JWf4SjxsMMkDPsnUeANYhaihC1rb wW4bUZQJlVt55LJeKbNXQOqy79kQAnUHhtvjaYU2MT3WfHOofxrw0RQxbRJtDrhh bMoiP/0FPgmYnM2NIAaio9JQBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLC0W4s2 jpVjAMP+mM0UbjvVzHj8MB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3l2QklXErX54VZgERKHyu2uC9V/wWj5GYMdmeIg98rhgTkEgfZ8pa uI67fcoapb4SBQ/yhZ5edzbOvChdBEUmKaKzL2NZCrCPQwc+KlJASvLI8XKdIKCz UkQuqhkQ8TO3qYZF3WHZZWVGWfo53Oi3qfAblNK3Hx1gEG/wyELgsvdnly8hVqMZ XwwHun5f8LjUW911BooPrEbZwc74S8yZS+mFAAJgMeauJiPJ1zQ1/lPW63t4EIIn uPSiP/DcIB9XAoziCdSgvdoz89b7dbB6sb45kMunGzQGdBbzo/yUTjbmlyeDglAv EgfGuhEKZUekruAhcKrrH3f6gmKXiC0L -----END CERTIFICATE-----Generated at Tue May 13 10:55:11 2025 by rpki-client