$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: 8Jz1FUWTkGnnPJe4qCyX0qw0b54384YleKJtC766MQc= Subject key identifier: F5:C3:9F:F7:A8:8E:23:E8:B9:FF:D1:39:A9:97:DE:D6:BF:89:7C:32 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 04B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 04A8 Signing time: Sat 10 May 2025 23:31:44 +0000 Manifest this update: Sat 10 May 2025 23:31:43 +0000 Manifest next update: Sat 17 May 2025 23:31:43 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: aDr8Ut0eUAgx0mA7dY73uXAiOHecQ/FRX8kuZefSd4c=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: qsT6gdrcrYiz10awZz/5+uahx1IUYSEl585Lltn+07o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1203 (0x4b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: May 10 23:31:43 2025 GMT Not After : May 17 23:31:43 2025 GMT Subject: CN=681fe1e0-8f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:16:0d:18:06:21:f9:87:95:b7:39:26:22:2b: e2:9b:7f:10:76:00:bb:b5:8b:47:f9:24:d4:9f:ff: 3e:c1:ff:21:ab:88:a4:78:d0:cb:5f:6e:65:66:46: 41:e7:27:56:a0:a1:c5:5c:ba:84:ba:ff:3a:d4:eb: 80:78:db:db:30:20:12:54:54:68:f3:8b:76:b5:62: 53:44:dc:49:6e:9a:17:c9:23:19:0b:4e:a6:01:55: 97:5f:fc:60:72:7b:50:99:2f:bc:56:f6:63:e8:8f: 01:80:ce:f8:22:51:9b:d4:be:bd:03:60:47:40:e2: 27:f0:35:e1:74:b7:f0:42:ae:66:b9:ae:e1:1b:4a: f4:5c:14:b7:a9:cc:d3:a2:7a:16:1a:7e:38:09:84: 16:7d:9c:c1:d9:1c:80:06:1a:21:ca:70:ad:49:61: 8c:8a:31:8c:cf:64:87:5c:4e:38:30:ec:1e:fa:fe: a8:0b:3c:24:e7:96:13:21:eb:1b:97:a3:ab:0c:e5: 3c:e4:7e:4b:63:31:74:be:22:81:94:4a:af:90:a4: 1e:5c:36:91:0a:b3:27:46:d8:8e:9d:2b:a9:b8:99: c1:0f:32:b4:0e:7e:1c:ee:b1:26:bf:83:84:96:5e: 23:ac:f4:cf:b8:c1:0b:de:8f:77:bd:7e:53:6e:07: b5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C3:9F:F7:A8:8E:23:E8:B9:FF:D1:39:A9:97:DE:D6:BF:89:7C:32 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:02:e5:78:af:b1:5f:eb:33:44:58:a3:a7:d2:f6:7b:7f:d7: 13:a2:f9:49:ee:d8:eb:f5:26:75:8a:22:1b:08:13:f7:d8:99: f2:71:c0:5b:58:c5:2b:c8:bd:d9:69:1c:79:05:1a:90:0b:06: 98:d5:b8:86:ba:a7:66:44:74:ad:36:c1:1f:31:b2:45:81:fd: 47:0b:7e:96:2b:bd:eb:6d:9b:d3:7b:9e:2b:35:c1:3d:ee:99: 53:1f:7c:2e:c3:b8:aa:cd:e8:85:77:c1:ce:0d:b4:bd:5b:0c: 53:b8:a7:ae:5c:d0:2a:54:74:5f:78:1d:aa:8f:23:70:c4:35: 0b:74:02:81:61:a6:37:78:d7:63:59:03:e8:1d:eb:53:c4:67: b8:9e:3d:9d:c3:21:21:f2:49:66:c9:bf:43:62:25:7d:af:a0: 9d:a1:49:d4:7c:5d:6c:05:0a:c7:1f:00:e5:49:0e:19:ef:1d: 7b:b3:14:fb:9b:d7:d8:6f:36:1b:e8:31:9d:ba:be:e2:88:75: b0:ab:05:cd:88:f6:64:43:6f:de:10:f7:08:9c:45:1c:20:12: b8:fa:98:1d:6f:a4:8f:87:1a:6f:ee:d1:71:28:94:d9:f5:8e: f9:88:f2:cc:4d:20:15:5e:27:fc:cf:ad:ac:f3:39:b8:1e:43: 1b:e1:2f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUwNTEwMjMzMTQzWhcNMjUwNTE3MjMzMTQzWjAYMRYwFAYD VQQDEw02ODFmZTFlMC04ZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BYNGAYh+YeVtzkmIivim38QdgC7tYtH+STUn/8+wf8hq4ikeNDLX25lZkZB 5ydWoKHFXLqEuv861OuAeNvbMCASVFRo84t2tWJTRNxJbpoXySMZC06mAVWXX/xg cntQmS+8VvZj6I8BgM74IlGb1L69A2BHQOIn8DXhdLfwQq5mua7hG0r0XBS3qczT onoWGn44CYQWfZzB2RyABhohynCtSWGMijGMz2SHXE44MOwe+v6oCzwk55YTIesb l6OrDOU85H5LYzF0viKBlEqvkKQeXDaRCrMnRtiOnSupuJnBDzK0Dn4c7rEmv4OE ll4jrPTPuMEL3o93vX5Tbge1cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXDn/eo jiPouf/ROamX3ta/iXwyMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtAuV4r7Ff6zNEWKOn0vZ7f9cTovlJ7tjr9SZ1iiIbCBP32JnyccBb WMUryL3ZaRx5BRqQCwaY1biGuqdmRHStNsEfMbJFgf1HC36WK73rbZvTe54rNcE9 7plTH3wuw7iqzeiFd8HODbS9WwxTuKeuXNAqVHRfeB2qjyNwxDULdAKBYaY3eNdj WQPoHetTxGe4nj2dwyEh8klmyb9DYiV9r6CdoUnUfF1sBQrHHwDlSQ4Z7x17sxT7 m9fYbzYb6DGdur7iiHWwqwXNiPZkQ2/eEPcInEUcIBK4+pgdb6SPhxpv7tFxKJTZ 9Y75iPLMTSAVXif8z62s8zm4HkMb4S8z -----END CERTIFICATE-----Generated at Mon May 12 16:15:17 2025 by rpki-client