$ rpki-client -vvf rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft File: X-MMr29aMskZ0zWqlNDnMzzQVDU.mft (raw, json) Hash identifier: Gp/lRUDsiFGnmz9iWiDpvfhuBiHsMUbYM8MV2I4lRow= Subject key identifier: CF:DA:FE:73:75:77:F7:79:0B:79:25:5D:D6:33:3E:2E:3F:2E:46:4D Authority key identifier: 5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 Certificate issuer: /CN=A911E403/serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Certificate serial: 07DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft Manifest number: 07CD Signing time: Mon 12 May 2025 20:57:35 +0000 Manifest this update: Mon 12 May 2025 20:57:35 +0000 Manifest next update: Mon 19 May 2025 20:57:35 +0000 Files and hashes: 1: X-MMr29aMskZ0zWqlNDnMzzQVDU.crl (hash: O/vrwzN0zPwUP4McGXBpozM8tIB3dHYTxmeLViPHypU=) 2: FE02E774CFFD11EC8CFDFF68C4F9AE02.roa (hash: Mb3AFxuyqsJCVgV+HTF7n8MDdauyi9spCKyVJmftERQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2014 (0x7de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E403, serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Validity Not Before: May 12 20:57:35 2025 GMT Not After : May 19 20:57:35 2025 GMT Subject: CN=682260bf-af94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bc:92:89:eb:c4:b9:ce:f6:0f:49:34:08:2f: 08:f0:df:0a:7b:76:7d:57:39:82:e7:d8:8e:1e:cb: f0:d0:b1:f1:11:8f:84:1f:b7:e2:df:51:48:aa:b4: f8:a9:11:c1:51:91:35:0d:b3:d2:8b:76:a8:1e:15: 65:a4:d1:c3:eb:5c:d8:dd:1d:c6:9a:85:7e:d1:8a: 5f:50:20:af:f5:9a:6f:96:8e:51:a0:f4:5b:8e:32: a3:4e:70:fe:4a:67:d2:1b:8c:0f:c2:2f:5e:da:82: 4a:14:16:b4:7c:f8:df:f1:52:b3:0e:f3:d5:df:5c: 56:12:52:74:88:68:0d:b7:7d:fd:61:33:9b:6c:86: 88:91:3d:3c:96:c6:99:80:e6:e2:d7:13:cc:0d:13: 8e:12:61:6f:e5:34:65:f8:34:86:77:e3:ba:ae:08: c3:59:ec:b0:81:4a:cb:3d:0d:9c:14:82:64:b8:0d: 38:d3:b3:8e:b1:25:7e:bb:67:35:6c:d0:01:aa:a5: 0f:51:6a:03:6a:c2:d3:2d:2f:4b:f7:62:dc:ff:09: 3a:4c:b5:34:47:5a:b4:a7:c7:60:4f:fe:37:db:96: 75:04:da:96:95:de:7d:78:4f:c1:32:13:e0:95:df: 8e:3c:c8:3c:a5:cd:75:5b:33:dd:3b:fa:58:8d:8e: de:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:DA:FE:73:75:77:F7:79:0B:79:25:5D:D6:33:3E:2E:3F:2E:46:4D X509v3 Authority Key Identifier: keyid:5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:f6:ca:00:f5:5c:76:cc:1c:42:46:b6:1d:d4:fe:4b:b1:c5: 24:f4:9b:ae:06:a9:ab:0d:44:10:b1:9c:61:98:1e:68:7f:fc: 7e:6f:7d:ad:48:c7:24:51:56:80:c6:f2:1d:fb:85:00:ae:b2: ed:c4:01:ea:9e:77:61:86:09:b9:73:15:ae:39:5d:9c:e9:3e: 17:44:b2:69:9a:0c:96:2f:39:95:ff:85:e7:99:5f:30:22:94: df:9d:f9:9e:f3:7b:ac:83:19:b7:59:2d:7c:76:b3:93:41:a2: 4c:58:e8:a6:a5:96:66:89:9a:cc:a5:42:4a:be:94:85:ab:0a: 43:81:68:c8:6f:6a:4a:59:ac:23:f1:24:dc:1a:be:6a:fe:c6: 11:09:00:b2:d7:40:6a:bd:7c:09:34:eb:64:a7:e0:b2:6c:34: c2:79:34:40:89:36:6a:5e:0d:4d:b7:90:fd:ba:eb:0d:dc:8e: 08:ec:5b:8a:dd:8f:f8:b6:d4:34:d8:07:c5:3a:a8:f8:4f:fe: 3d:8c:5b:82:42:7b:b3:0d:60:33:7e:1d:ac:71:5d:a2:fd:89: 47:50:d8:29:31:f2:0a:0e:3e:58:30:7d:b4:2e:ca:36:bc:54: 08:5b:8f:af:ee:90:1c:1b:ef:4a:4a:e3:89:3a:09:56:c0:f4: ea:03:70:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU0MDMxMTAvBgNVBAUTKDVGRTMwQ0FGNkY1QTMyQzkxOUQzMzVBQTk0RDBFNzMz M0NEMDU0MzUwHhcNMjUwNTEyMjA1NzM1WhcNMjUwNTE5MjA1NzM1WjAYMRYwFAYD VQQDEw02ODIyNjBiZi1hZjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrySievEuc72D0k0CC8I8N8Ke3Z9VzmC59iOHsvw0LHxEY+EH7fi31FIqrT4 qRHBUZE1DbPSi3aoHhVlpNHD61zY3R3GmoV+0YpfUCCv9Zpvlo5RoPRbjjKjTnD+ SmfSG4wPwi9e2oJKFBa0fPjf8VKzDvPV31xWElJ0iGgNt339YTObbIaIkT08lsaZ gObi1xPMDROOEmFv5TRl+DSGd+O6rgjDWeywgUrLPQ2cFIJkuA0407OOsSV+u2c1 bNABqqUPUWoDasLTLS9L92Lc/wk6TLU0R1q0p8dgT/4325Z1BNqWld59eE/BMhPg ld+OPMg8pc11WzPdO/pYjY7eSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/a/nN1 d/d5C3klXdYzPi4/LkZNMB8GA1UdIwQYMBaAFF/jDK9vWjLJGdM1qpTQ5zM80FQ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTQwMy9BMUNDRUNGRUY4 QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1za1oweldxbE5Ebk16elFW RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtTU1yMjlhTXNrWjB6V3FsTkRuTXp6UVZEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTQwMy9BMUNDRUNGRUY4QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1z a1oweldxbE5Ebk16elFWRFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB49soA9Vx2zBxCRrYd1P5LscUk9JuuBqmrDUQQsZxhmB5of/x+b32t SMckUVaAxvId+4UArrLtxAHqnndhhgm5cxWuOV2c6T4XRLJpmgyWLzmV/4XnmV8w IpTfnfme83usgxm3WS18drOTQaJMWOimpZZmiZrMpUJKvpSFqwpDgWjIb2pKWawj 8STcGr5q/sYRCQCy10BqvXwJNOtkp+CybDTCeTRAiTZqXg1Nt5D9uusN3I4I7FuK 3Y/4ttQ02AfFOqj4T/49jFuCQnuzDWAzfh2scV2i/YlHUNgpMfIKDj5YMH20Lso2 vFQIW4+v7pAcG+9KSuOJOglWwPTqA3Ds -----END CERTIFICATE-----Generated at Tue May 13 05:05:33 2025 by rpki-client