$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft File: aCDlNpQmEvNLA3PdH3ftI0_981w.mft (raw, json) Hash identifier: aAFfLHgfZ8bWlFram3wjeSc0z5EKSYnmECxMl3j3UQI= Subject key identifier: 58:C5:2F:84:DB:77:21:22:C0:F2:D7:CB:16:43:94:8A:E2:8B:4B:AD Authority key identifier: 68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C Certificate issuer: /CN=A911F8C9/serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Certificate serial: 0438 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft Manifest number: 0433 Signing time: Tue 13 May 2025 00:07:17 +0000 Manifest this update: Tue 13 May 2025 00:07:16 +0000 Manifest next update: Tue 20 May 2025 00:07:16 +0000 Files and hashes: 1: aCDlNpQmEvNLA3PdH3ftI0_981w.crl (hash: yeONG9mIPNR+I9Pyuy4r7mLEzoEMmIFWrWnq3b/Pgqg=) 2: 0DC4BC0C5CDE11ECB486850FC4F9AE02.roa (hash: FClvPvzoTDmX/ZzIigyjz+g4sikyQbqSLF5/K9p2wok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1080 (0x438) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8C9, serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Validity Not Before: May 13 00:07:16 2025 GMT Not After : May 20 00:07:16 2025 GMT Subject: CN=68228d34-df03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:79:55:c2:41:e8:7e:ee:d3:d5:0e:30:e0:3d: f8:bd:02:52:a0:73:76:4d:33:f2:c1:56:6c:98:d5: 14:d1:81:ee:37:7c:d9:8b:cf:6b:a6:3c:c0:47:88: 06:9e:eb:0b:ea:8d:3e:74:fb:7f:7c:12:df:99:aa: 08:46:87:1f:56:30:cf:73:12:03:df:9e:62:32:75: a2:5a:e4:c2:af:11:84:ba:d7:21:0e:63:48:c6:36: 0a:07:8a:32:03:7c:1b:bd:94:76:65:41:f1:0e:67: 19:52:3c:69:f2:bc:21:16:67:b7:6f:5e:0c:02:88: 12:cb:1a:b6:d4:7b:8c:01:0c:97:20:76:bb:de:c3: 32:16:a8:6c:7d:57:69:94:69:b7:d4:8f:c3:59:e9: ec:ff:31:de:55:6c:12:bc:33:01:36:bc:bb:d6:ea: fc:37:4c:57:2a:1f:f7:48:dc:45:a6:87:28:0f:45: 2c:dd:f3:4e:19:49:5e:33:43:1f:dd:ac:0a:f7:de: 42:50:de:84:a7:42:b1:d5:d1:81:c1:21:f6:11:20: c0:40:e3:d7:3a:10:41:16:f0:67:83:80:98:71:62: be:06:a1:42:1f:b5:e8:34:93:39:52:57:02:cd:7b: 19:8c:cd:7f:f9:5d:21:61:67:3e:31:26:e6:c6:c5: 97:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C5:2F:84:DB:77:21:22:C0:F2:D7:CB:16:43:94:8A:E2:8B:4B:AD X509v3 Authority Key Identifier: keyid:68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:a2:cf:f6:06:8d:e1:0b:c6:67:2f:b9:38:6d:9f:83:c2:5f: 24:c0:9c:7a:9d:6f:45:35:eb:50:43:1c:12:75:66:d4:b1:1a: 95:29:10:06:e9:f6:b3:ea:a1:55:da:15:f2:59:b6:2c:35:d0: 16:0f:8f:43:f4:30:3b:83:f8:99:dc:22:8c:0d:51:f3:0e:0d: 8c:71:13:53:17:56:51:b4:01:70:2c:df:85:c1:d3:ca:f7:da: 55:54:58:f5:5a:c3:68:e4:42:cf:62:5c:4e:ed:04:0e:66:40: ea:20:2d:85:48:5a:32:af:c5:ae:93:59:8f:42:31:a1:c2:d2: 55:1f:2c:f6:8a:74:90:ee:d8:99:5f:56:eb:95:af:8d:8c:6e: be:56:8a:c7:4a:af:e1:1e:fe:28:97:93:93:18:38:5f:72:4a: 24:de:89:2f:6b:eb:93:31:63:cc:00:fa:d5:e2:17:6e:d8:44: 55:71:e9:b0:b3:86:e5:e3:52:16:1a:60:7e:6d:0f:59:71:35: 46:03:be:22:30:a6:ec:05:58:f2:e1:d6:86:64:d2:46:ea:8f: 56:04:fc:02:52:25:89:fb:f2:52:a3:88:9d:fe:3b:f1:1f:d9: ee:5a:6e:20:95:c4:a9:c1:72:df:69:4c:90:74:95:a5:37:22: 40:93:e2:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QzkxMTAvBgNVBAUTKDY4MjBFNTM2OTQyNjEyRjM0QjAzNzNERDFGNzdFRDIz NEZGREYzNUMwHhcNMjUwNTEzMDAwNzE2WhcNMjUwNTIwMDAwNzE2WjAYMRYwFAYD VQQDEw02ODIyOGQzNC1kZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63lVwkHofu7T1Q4w4D34vQJSoHN2TTPywVZsmNUU0YHuN3zZi89rpjzAR4gG nusL6o0+dPt/fBLfmaoIRocfVjDPcxID355iMnWiWuTCrxGEutchDmNIxjYKB4oy A3wbvZR2ZUHxDmcZUjxp8rwhFme3b14MAogSyxq21HuMAQyXIHa73sMyFqhsfVdp lGm31I/DWens/zHeVWwSvDMBNry71ur8N0xXKh/3SNxFpocoD0Us3fNOGUleM0Mf 3awK995CUN6Ep0Kx1dGBwSH2ESDAQOPXOhBBFvBng4CYcWK+BqFCH7XoNJM5UlcC zXsZjM1/+V0hYWc+MSbmxsWXGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFjFL4Tb dyEiwPLXyxZDlIrii0utMB8GA1UdIwQYMBaAFGgg5TaUJhLzSwNz3R937SNP/fNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhDOS80QjRENzEyQTVD REIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2TkxBM1BkSDNmdEkwXzk4 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FDRGxOcFFtRXZOTEEzUGRIM2Z0STBfOTgxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjhDOS80QjRENzEyQTVDREIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2 TkxBM1BkSDNmdEkwXzk4MXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmos/2Bo3hC8ZnL7k4bZ+Dwl8kwJx6nW9FNetQQxwSdWbUsRqVKRAG 6faz6qFV2hXyWbYsNdAWD49D9DA7g/iZ3CKMDVHzDg2McRNTF1ZRtAFwLN+FwdPK 99pVVFj1WsNo5ELPYlxO7QQOZkDqIC2FSFoyr8Wuk1mPQjGhwtJVHyz2inSQ7tiZ X1brla+NjG6+VorHSq/hHv4ol5OTGDhfckok3okva+uTMWPMAPrV4hdu2ERVcemw s4bl41IWGmB+bQ9ZcTVGA74iMKbsBVjy4daGZNJG6o9WBPwCUiWJ+/JSo4id/jvx H9nuWm4glcSpwXLfaUyQdJWlNyJAk+L+ -----END CERTIFICATE-----Generated at Wed May 14 16:20:50 2025 by rpki-client