$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: y9eLNU417loAqwGFwRMotAfs+nXQHjb3nkP5irYE8oQ= Subject key identifier: 01:6D:68:9E:D8:26:FA:2C:8B:75:83:69:6F:D3:D4:67:FF:5D:6A:16 Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: 46 Signing time: Sat 10 May 2025 22:41:28 +0000 Manifest this update: Sat 10 May 2025 22:41:27 +0000 Manifest next update: Sat 17 May 2025 22:41:27 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: y/qk4dlxIPUN6IxUn5DYr5DC85Q8RjyfZEBvj52KIZM=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: eqsW8B/nzh24Js41J8yQQdlaY75NMXqpYi5U4uiBwdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:41:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: May 10 22:41:27 2025 GMT Not After : May 17 22:41:27 2025 GMT Subject: CN=681fd617-f816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:77:ab:f8:09:d5:28:b4:9d:e9:31:3e:d7:11: 40:3a:6d:a3:94:d6:46:c9:4d:58:a5:9d:d1:26:ce: eb:7a:e7:00:5d:21:a4:78:51:88:43:8c:84:64:62: be:c4:3f:70:84:de:84:67:89:74:2d:34:fb:5e:dd: bb:14:98:dc:db:d6:c6:6a:2d:2e:f6:e6:d9:91:0e: f6:bb:d4:e6:0a:ad:10:63:3a:52:25:5a:52:dc:04: cf:c8:fb:08:b2:7f:c0:df:8f:fc:5b:6b:48:54:ca: 7b:4b:41:44:5a:ee:ec:f5:30:39:3d:ce:6c:8a:4e: 6f:5e:01:6d:48:a0:bc:95:5e:31:2f:42:4c:ab:ad: cb:8a:00:a9:78:22:24:f8:6e:c1:b0:31:46:8b:2a: e9:11:02:af:b6:fc:bf:37:9a:d2:06:f5:a3:85:a9: ad:f5:f7:d5:5e:16:83:ca:c8:04:3d:72:10:79:78: 63:30:9b:f0:d2:20:08:81:4b:fa:51:c1:15:8f:01: 6c:4c:65:ba:a0:2b:ae:18:5b:e0:4e:9f:e5:7a:f7: f5:c1:4c:b9:46:9a:ac:62:a4:7e:db:f6:07:70:4c: a2:8c:5b:68:dd:87:8e:1a:80:b6:f8:d3:5e:4f:7e: f3:a5:e4:08:f7:95:dc:ba:d7:10:4c:d9:7f:11:62: c1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:6D:68:9E:D8:26:FA:2C:8B:75:83:69:6F:D3:D4:67:FF:5D:6A:16 X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:ec:32:e6:bd:bd:2e:ee:0d:15:2f:7d:16:73:cd:18:f1:28: 21:31:4b:10:af:b8:db:78:4d:73:3d:d3:5a:f9:03:42:9e:82: 9d:29:e6:e7:56:54:ab:a6:fb:37:4e:59:ca:81:06:e3:2e:05: f2:e3:8e:26:21:6c:cd:b7:07:22:b4:61:6d:9a:fb:d7:b7:1c: 87:d7:11:76:73:ee:04:90:1d:f5:22:6e:04:51:d3:77:29:85: f1:b4:0b:25:f3:d4:22:5e:64:18:57:34:42:6d:4c:23:13:8b: bd:f6:c8:48:2b:16:42:32:d5:83:66:7d:79:ff:be:65:30:84: 0f:0f:11:70:8e:46:c4:a5:7b:0e:02:c5:55:fa:69:be:99:0c: 59:58:1d:bd:0c:e4:09:78:c3:76:18:2c:28:80:16:a5:97:d0: 31:69:df:10:22:61:25:c9:c2:2a:43:ed:64:c3:9b:e9:9f:51: 69:c8:aa:e9:3f:bd:72:36:d8:e9:3c:3e:cc:33:a2:ac:5b:a0: a5:10:39:64:46:5e:1f:36:53:65:e9:10:e1:b2:ca:a4:0f:5c: 3c:e1:07:f5:6a:34:e9:a3:23:5a:dc:93:89:5a:02:39:00:09: df:48:09:ee:85:22:e0:9a:db:28:24:04:2a:0f:42:89:31:11: cf:75:6f:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0E4MjExMC8GA1UEBRMoNjg0MTNENDFGNjAwNUUwMzE2RTBFMjU3NkYyMjZDMjE4 OEFBMTU2RjAeFw0yNTA1MTAyMjQxMjdaFw0yNTA1MTcyMjQxMjdaMBgxFjAUBgNV BAMTDTY4MWZkNjE3LWY4MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEd6v4CdUotJ3pMT7XEUA6baOU1kbJTVilndEmzut65wBdIaR4UYhDjIRkYr7E P3CE3oRniXQtNPte3bsUmNzb1sZqLS725tmRDva71OYKrRBjOlIlWlLcBM/I+wiy f8Dfj/xba0hUyntLQURa7uz1MDk9zmyKTm9eAW1IoLyVXjEvQkyrrcuKAKl4IiT4 bsGwMUaLKukRAq+2/L83mtIG9aOFqa3199VeFoPKyAQ9chB5eGMwm/DSIAiBS/pR wRWPAWxMZbqgK64YW+BOn+V69/XBTLlGmqxipH7b9gdwTKKMW2jdh44agLb4015P fvOl5Aj3ldy61xBM2X8RYsG/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAW1ontgm +iyLdYNpb9PUZ/9dahYwHwYDVR0jBBgwFoAUaEE9QfYAXgMW4OJXbyJsIYiqFW8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQTgyL0Y2OTlFMzU0Q0Yx MjExRUY4RjFEMjA1QkM0RjlBRTAyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZX OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYUVFOVFmWUFYZ01XNE9KWGJ5SnNJWWlxRlc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QTgyL0Y2OTlFMzU0Q0YxMjExRUY4RjFEMjA1QkM0RjlBRTAyL2FFRTlRZllBWGdN VzRPSlhieUpzSVlpcUZXOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFfsMua9vS7uDRUvfRZzzRjxKCExSxCvuNt4TXM901r5A0Kegp0p5udW VKum+zdOWcqBBuMuBfLjjiYhbM23ByK0YW2a+9e3HIfXEXZz7gSQHfUibgRR03cp hfG0CyXz1CJeZBhXNEJtTCMTi732yEgrFkIy1YNmfXn/vmUwhA8PEXCORsSlew4C xVX6ab6ZDFlYHb0M5Al4w3YYLCiAFqWX0DFp3xAiYSXJwipD7WTDm+mfUWnIquk/ vXI22Ok8PswzoqxboKUQOWRGXh82U2XpEOGyyqQPXDzhB/VqNOmjI1rck4laAjkA Cd9ICe6FIuCa2ygkBCoPQokxEc91b+k= -----END CERTIFICATE-----Generated at Mon May 12 10:23:29 2025 by rpki-client