$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: HET9o2ozNsDcJUWrhwQwvOZiVgpFYDh48PEqXR5O/2E= Subject key identifier: 48:DC:53:0A:CE:59:D7:E5:67:10:65:91:44:00:51:95:E2:6C:75:8A Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 0772 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 076B Signing time: Sat 10 May 2025 15:54:37 +0000 Manifest this update: Sat 10 May 2025 15:54:36 +0000 Manifest next update: Sat 17 May 2025 15:54:36 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: DQYf7ghLkOj3JVzn2LZc6Grz/MJQtOqB+q8CjKdjnjc=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: owavO0XDzj500YGpyqbmjhYipEKAfrWBHBWdBUgrtlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1906 (0x772) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: May 10 15:54:36 2025 GMT Not After : May 17 15:54:36 2025 GMT Subject: CN=681f76bd-1744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1f:ef:c2:41:9d:72:2e:19:47:1e:30:24:7d: 6c:f8:c1:be:eb:84:0a:49:4e:6e:bf:1c:f1:d3:3b: 41:f7:95:24:3b:94:dd:43:43:e3:b1:00:fe:59:59: ae:88:0d:d5:23:64:3d:5f:1c:22:31:65:01:2d:8b: ba:8d:d4:3a:0c:5e:42:52:a3:d9:f9:13:21:70:3b: 57:c2:d9:7c:19:7e:09:21:10:af:6d:4c:ef:c6:d8: af:e8:2f:09:49:ed:2f:44:a1:04:70:04:ca:81:ac: 47:9b:0a:b5:ff:fa:43:f4:f9:5e:c1:5b:72:10:b2: 95:f5:b3:98:78:a8:30:a7:a3:44:65:74:2b:25:93: ce:3e:7b:8a:37:fa:ec:d2:da:8a:36:d6:7b:a9:87: c2:7f:52:60:8f:2c:3b:0d:c2:92:85:93:cf:f3:4f: f4:c4:b8:7f:98:c4:2e:6c:92:6d:7b:f4:62:d1:a8: 39:32:10:a1:6d:02:1c:b5:2d:15:4e:9b:1e:5e:80: b4:85:87:c8:23:e7:d9:57:21:ed:76:3e:5c:86:99: 19:60:3c:82:b3:34:d1:1e:88:42:bc:b2:53:29:d3: ee:e6:88:3e:fc:5a:7a:da:b0:9e:5b:72:f4:c4:d6: 85:ff:7a:37:81:b4:d5:79:e5:e8:6d:f6:8b:9e:36: f3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DC:53:0A:CE:59:D7:E5:67:10:65:91:44:00:51:95:E2:6C:75:8A X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:dc:c8:4b:fc:c5:d5:a0:af:16:a6:dc:7f:ad:d9:3b:4f:6f: 20:cd:d8:95:a6:49:98:d3:32:70:25:5d:fd:89:53:b7:04:82: af:19:15:47:5e:6f:7a:5f:f8:9c:03:26:a3:04:f3:05:4e:6a: 79:9a:6a:e7:ae:db:88:89:b6:73:fd:a7:df:21:42:a0:23:47: ea:49:35:ec:2e:3c:6b:47:a1:fb:52:3d:e6:f9:72:7a:e2:c8: ed:18:37:a5:7e:1b:7e:3c:8c:28:ec:88:52:68:46:74:bf:55: 51:33:9b:1a:d8:f2:8c:a9:9a:1c:88:57:45:33:e9:55:05:25: bb:d8:7e:d7:78:f9:49:ce:93:2f:ff:d9:99:f7:fa:91:f9:7e: 57:94:3c:36:9b:74:fd:d9:e6:2c:a4:a8:09:a0:04:bd:4f:a9: e5:de:c4:36:ce:ae:4f:62:00:5c:92:c7:12:8f:11:29:e4:9b: e1:ff:3e:bb:ab:d8:5d:3c:33:f1:2d:b4:d7:84:6a:e1:50:61: 55:1c:bb:95:f9:f5:e1:9c:f0:3a:58:9e:c3:73:71:ac:4e:80: 4e:12:05:5b:23:b1:92:af:a1:f8:aa:61:f0:9f:4c:4c:53:d2: dc:fd:f9:0e:1a:47:99:7d:f5:8e:9c:ff:2c:fd:43:b8:36:8e: 4b:d5:9e:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUwNTEwMTU1NDM2WhcNMjUwNTE3MTU1NDM2WjAYMRYwFAYD VQQDEw02ODFmNzZiZC0xNzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2h/vwkGdci4ZRx4wJH1s+MG+64QKSU5uvxzx0ztB95UkO5TdQ0PjsQD+WVmu iA3VI2Q9XxwiMWUBLYu6jdQ6DF5CUqPZ+RMhcDtXwtl8GX4JIRCvbUzvxtiv6C8J Se0vRKEEcATKgaxHmwq1//pD9PlewVtyELKV9bOYeKgwp6NEZXQrJZPOPnuKN/rs 0tqKNtZ7qYfCf1Jgjyw7DcKShZPP80/0xLh/mMQubJJte/Ri0ag5MhChbQIctS0V TpseXoC0hYfII+fZVyHtdj5chpkZYDyCszTRHohCvLJTKdPu5og+/Fp62rCeW3L0 xNaF/3o3gbTVeeXobfaLnjbztwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjcUwrO WdflZxBlkUQAUZXibHWKMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx3MhL/MXVoK8Wptx/rdk7T28gzdiVpkmY0zJwJV39iVO3BIKvGRVH Xm96X/icAyajBPMFTmp5mmrnrtuIibZz/affIUKgI0fqSTXsLjxrR6H7Uj3m+XJ6 4sjtGDelfht+PIwo7IhSaEZ0v1VRM5sa2PKMqZociFdFM+lVBSW72H7XePlJzpMv /9mZ9/qR+X5XlDw2m3T92eYspKgJoAS9T6nl3sQ2zq5PYgBckscSjxEp5Jvh/z67 q9hdPDPxLbTXhGrhUGFVHLuV+fXhnPA6WJ7Dc3GsToBOEgVbI7GSr6H4qmHwn0xM U9Lc/fkOGkeZffWOnP8s/UO4No5L1Z6t -----END CERTIFICATE-----Generated at Sun May 11 14:38:48 2025 by rpki-client