$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft File: bOLX0NlZgNdDytSEhphI26Elwps.mft (raw, json) Hash identifier: EmEFAUCMhtZwY1OuPeMKNuBvNG/JhzC8ml2x2Buf2ZI= Subject key identifier: 90:53:2B:94:E6:13:74:68:25:53:EB:4C:06:FD:B3:10:F1:82:E6:7F Authority key identifier: 6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B Certificate issuer: /CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft Manifest number: 0129 Signing time: Tue 13 May 2025 03:51:58 +0000 Manifest this update: Tue 13 May 2025 03:51:58 +0000 Manifest next update: Tue 20 May 2025 03:51:58 +0000 Files and hashes: 1: bOLX0NlZgNdDytSEhphI26Elwps.crl (hash: B/IBljXdllulvLFO5lxX7JYnB+HZIGWaI3NCNbZ08Jc=) 2: 36F3B6A86E5411EEAA31F87AC4F9AE02.roa (hash: TgP6m9OEjffqCLWh57vOCQCFFyLSkjZJc7ba7bn55rY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E98, serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Validity Not Before: May 13 03:51:58 2025 GMT Not After : May 20 03:51:58 2025 GMT Subject: CN=6822c1de-d11d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dc:d5:d4:6d:44:f0:bb:49:1b:bc:5e:e4:98: 53:6e:70:fb:aa:a0:c6:1a:5c:1d:68:35:fb:72:ba: 29:09:26:54:cf:78:b0:5f:3c:93:f4:b7:4b:85:cf: 44:2d:5e:1a:2c:72:3c:84:b9:f5:79:32:28:59:77: cf:81:bc:db:7a:51:59:a8:f0:a3:f1:93:42:c6:9f: 46:30:8e:2b:e2:08:e7:3c:f3:f5:f3:72:ef:98:40: ad:b7:d1:c5:fb:91:2c:b3:de:9e:e9:d2:d1:59:8d: c3:59:78:a1:b6:86:da:01:ae:c8:f2:02:b9:5e:40: 48:16:10:0b:f2:cc:ac:ab:c5:c6:57:87:00:bd:78: 1e:dd:7f:bf:1d:a9:14:1d:7b:73:c2:f5:85:11:a0: 4a:11:95:c0:9f:34:cd:40:7d:14:ab:10:2c:41:e4: 2b:45:96:1d:96:3e:2f:10:65:78:8a:fc:26:8f:a1: e5:61:62:5a:f7:4f:c6:c0:0a:18:bd:51:37:ee:01: 3f:12:91:f1:86:c0:f8:17:bb:98:11:a4:a7:cf:d2: e0:e1:86:70:b0:6b:1f:3d:57:22:85:46:67:23:15: 2e:b6:1f:32:da:3f:f6:21:6b:55:14:25:26:f1:db: b4:c9:a0:34:62:58:db:62:9e:f0:26:8c:f8:de:f9: 3e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:53:2B:94:E6:13:74:68:25:53:EB:4C:06:FD:B3:10:F1:82:E6:7F X509v3 Authority Key Identifier: keyid:6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:bd:21:0c:41:b3:1c:dc:cb:75:6e:29:4d:18:06:9b:43:86: 37:e1:53:36:ca:0d:49:a4:7e:9a:45:46:87:06:53:89:3a:90: 07:8b:7f:bf:ad:19:24:1e:d7:18:ab:d8:c5:1d:d9:ab:ae:b1: df:ad:dc:3b:16:44:24:b2:97:e8:5b:9e:b8:b9:df:c4:3b:3b: 83:a8:ab:70:c2:d9:3b:c4:c1:72:cb:ad:e1:88:fc:24:f5:61: bd:20:82:c5:17:79:cd:b1:21:04:f3:a1:a0:f7:9d:61:c2:23: 34:88:d6:89:7e:ba:4f:c3:07:34:4d:cc:42:c8:90:22:59:71: 7b:06:30:ad:5d:91:67:55:2e:94:d0:62:ae:1d:90:3f:c5:d7: dc:aa:c4:74:e9:2f:68:be:46:05:cd:f2:5a:72:41:9c:d9:68: 59:58:80:31:7d:f4:3f:38:c9:65:15:b5:70:b2:eb:18:61:7e: 5a:89:c4:57:e5:3a:94:03:de:3c:2a:42:53:e4:25:b5:fa:48: e8:91:72:e4:c2:53:e1:97:88:ed:c5:f2:42:01:9c:b1:6e:15: 18:5d:60:db:fa:dc:38:b9:d8:1b:5e:cb:a0:fc:29:5c:55:e6: e0:4b:5c:e3:90:ae:86:19:81:34:98:c0:e1:02:42:2f:4b:75: 6b:2c:67:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFOTgxMTAvBgNVBAUTKDZDRTJEN0QwRDk1OTgwRDc0M0NBRDQ4NDg2OTg0OERC QTEyNUMyOUIwHhcNMjUwNTEzMDM1MTU4WhcNMjUwNTIwMDM1MTU4WjAYMRYwFAYD VQQDEw02ODIyYzFkZS1kMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdzV1G1E8LtJG7xe5JhTbnD7qqDGGlwdaDX7cropCSZUz3iwXzyT9LdLhc9E LV4aLHI8hLn1eTIoWXfPgbzbelFZqPCj8ZNCxp9GMI4r4gjnPPP183LvmECtt9HF +5Ess96e6dLRWY3DWXihtobaAa7I8gK5XkBIFhAL8sysq8XGV4cAvXge3X+/HakU HXtzwvWFEaBKEZXAnzTNQH0UqxAsQeQrRZYdlj4vEGV4ivwmj6HlYWJa90/GwAoY vVE37gE/EpHxhsD4F7uYEaSnz9Lg4YZwsGsfPVcihUZnIxUuth8y2j/2IWtVFCUm 8du0yaA0YljbYp7wJoz43vk+sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBTK5Tm E3RoJVPrTAb9sxDxguZ/MB8GA1UdIwQYMBaAFGzi19DZWYDXQ8rUhIaYSNuhJcKb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEU5OC83NEZENUU4MjZF NTMxMUVFOUI5MTdFNzlDNEY5QUUwMi9iT0xYME5sWmdOZER5dFNFaHBoSTI2RWx3 cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPTFgwTmxaZ05kRHl0U0VocGhJMjZFbHdwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEU5OC83NEZENUU4MjZFNTMxMUVFOUI5MTdFNzlDNEY5QUUwMi9iT0xYME5sWmdO ZER5dFNFaHBoSTI2RWx3cHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDvSEMQbMc3Mt1bilNGAabQ4Y34VM2yg1JpH6aRUaHBlOJOpAHi3+/ rRkkHtcYq9jFHdmrrrHfrdw7FkQkspfoW564ud/EOzuDqKtwwtk7xMFyy63hiPwk 9WG9IILFF3nNsSEE86Gg951hwiM0iNaJfrpPwwc0TcxCyJAiWXF7BjCtXZFnVS6U 0GKuHZA/xdfcqsR06S9ovkYFzfJackGc2WhZWIAxffQ/OMllFbVwsusYYX5aicRX 5TqUA948KkJT5CW1+kjokXLkwlPhl4jtxfJCAZyxbhUYXWDb+tw4udgbXsug/Clc VebgS1zjkK6GGYE0mMDhAkIvS3VrLGcE -----END CERTIFICATE-----Generated at Tue May 13 11:28:03 2025 by rpki-client