$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: VyTw36RmSCUyhvzRiZbJgdaTYHE8DNiM0TtZBUTgKHw= Subject key identifier: BC:76:C7:72:7E:E4:7A:8A:51:4A:CD:F1:FB:8A:52:E5:38:D3:91:C8 Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0B2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0B21 Signing time: Mon 12 May 2025 19:03:26 +0000 Manifest this update: Mon 12 May 2025 19:03:25 +0000 Manifest next update: Mon 19 May 2025 19:03:25 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: G+jXgpmqIEiVyiN2BR5k42pUG1upEloCBYTN9E2rCRg=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: zSM1B8wSUB+mHKY/5kPPrFTVt9OokOjyYR65igDrdV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2858 (0xb2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219, serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: May 12 19:03:25 2025 GMT Not After : May 19 19:03:25 2025 GMT Subject: CN=682245fe-9ea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:70:4e:b3:ea:83:25:b8:44:74:73:81:0b:69: df:1a:60:a5:90:ed:e4:78:2a:f2:d3:93:db:59:01: 6b:9f:68:57:42:ef:ac:37:21:c3:14:1f:ac:e6:cd: 7d:fc:4b:23:8a:52:9f:e7:c8:02:cc:de:d5:e6:c1: ee:ef:b7:84:9a:40:56:72:a8:21:12:6a:96:94:9d: 51:f2:81:bf:74:10:63:c0:0d:32:59:0d:74:b1:63: 1b:28:a2:85:8f:29:8e:f1:19:48:70:86:80:b2:21: 44:07:0b:c2:9b:a4:23:de:83:df:f5:aa:d5:7f:b7: a2:0d:58:7f:d9:dd:28:82:23:ba:19:6f:98:87:15: f6:29:c6:d6:82:93:96:e4:83:3c:3b:c1:5b:c3:25: ca:00:ec:01:ff:cf:af:34:01:9a:36:8d:47:cb:f1: 89:e0:c3:f3:77:54:35:09:cd:38:8b:85:b4:5f:a3: ad:40:d3:df:1c:ef:0b:86:4c:69:e3:99:7c:56:b8: 97:48:f7:b0:5c:61:e5:b7:2f:89:10:7f:46:d8:8d: b4:d6:cb:2d:76:22:c2:45:d6:12:79:fe:83:ad:19: 77:93:9d:d7:3b:d7:92:a8:c1:88:af:a7:bb:75:15: e0:76:3b:e9:57:48:d4:62:25:86:9e:09:6d:ec:b5: 0f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:76:C7:72:7E:E4:7A:8A:51:4A:CD:F1:FB:8A:52:E5:38:D3:91:C8 X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:56:18:86:73:10:9f:e9:45:51:e1:aa:90:3f:f1:c1:8a:f5: e2:e9:95:24:72:b6:97:96:81:41:1c:77:29:ee:aa:4e:5f:0c: 4c:7b:fd:05:24:2c:ca:6a:d7:e7:45:90:a4:d6:3a:4c:02:8c: e0:be:c8:18:05:69:1c:9f:de:5f:12:24:41:87:f6:54:90:78: 6f:35:90:ef:e9:1f:3f:0c:73:8b:5a:ad:17:bb:1c:9d:35:7a: db:9a:f0:c4:61:36:45:0c:20:dd:18:9b:6b:44:97:85:43:6f: 93:56:a6:e8:10:09:c7:82:6e:89:0b:50:02:74:6f:0a:76:f9: 37:70:1f:34:38:c9:35:36:59:85:06:2e:90:62:d3:33:de:f3: 43:f8:27:77:66:2c:a1:74:e7:8f:2b:42:99:2f:a4:e0:1a:b8: 9c:f8:2a:96:83:86:86:16:19:00:6e:b8:8d:9a:e1:4e:b3:15: 93:18:de:ea:cb:0a:5f:3b:20:35:40:79:66:05:30:1c:bc:7a: d1:80:0b:76:db:5c:cb:fe:d2:8f:09:80:41:23:13:78:1d:a4: eb:7b:6e:11:81:ca:43:a6:75:b3:c7:33:cf:f6:9f:79:30:42: dc:38:58:03:b7:ec:19:09:d7:7e:e7:0b:09:15:0c:21:39:bd: 1e:4a:fa:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjUwNTEyMTkwMzI1WhcNMjUwNTE5MTkwMzI1WjAYMRYwFAYD VQQDEw02ODIyNDVmZS05ZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXBOs+qDJbhEdHOBC2nfGmClkO3keCry05PbWQFrn2hXQu+sNyHDFB+s5s19 /EsjilKf58gCzN7V5sHu77eEmkBWcqghEmqWlJ1R8oG/dBBjwA0yWQ10sWMbKKKF jymO8RlIcIaAsiFEBwvCm6Qj3oPf9arVf7eiDVh/2d0ogiO6GW+YhxX2KcbWgpOW 5IM8O8FbwyXKAOwB/8+vNAGaNo1Hy/GJ4MPzd1Q1Cc04i4W0X6OtQNPfHO8Lhkxp 45l8VriXSPewXGHlty+JEH9G2I201sstdiLCRdYSef6DrRl3k53XO9eSqMGIr6e7 dRXgdjvpV0jUYiWGnglt7LUPOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx2x3J+ 5HqKUUrN8fuKUuU405HIMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNVhiGcxCf6UVR4aqQP/HBivXi6ZUkcraXloFBHHcp7qpOXwxMe/0F JCzKatfnRZCk1jpMAozgvsgYBWkcn95fEiRBh/ZUkHhvNZDv6R8/DHOLWq0Xuxyd NXrbmvDEYTZFDCDdGJtrRJeFQ2+TVqboEAnHgm6JC1ACdG8Kdvk3cB80OMk1NlmF Bi6QYtMz3vND+Cd3ZiyhdOePK0KZL6TgGric+CqWg4aGFhkAbriNmuFOsxWTGN7q ywpfOyA1QHlmBTAcvHrRgAt221zL/tKPCYBBIxN4HaTre24RgcpDpnWzxzPP9p95 MELcOFgDt+wZCdd+5wsJFQwhOb0eSvph -----END CERTIFICATE-----Generated at Wed May 14 01:37:52 2025 by rpki-client