$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: svJzwoO279BPSWVW3MCDKkIbx9vTO0nuz4n+/qtrFSI= Subject key identifier: B9:FB:10:A4:4B:A4:DB:26:56:00:FC:44:11:6A:EF:33:5C:45:E3:D5 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2D8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D1F Signing time: Fri 16 May 2025 15:42:45 +0000 Manifest this update: Fri 16 May 2025 15:42:44 +0000 Manifest next update: Fri 23 May 2025 15:42:44 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: O8LIF+Wn5IlcDzziy7YufNW7pZMGWyu51vSNuJwJqy8=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: arjppb8o0dAo/PmRzQByMlM088vFXvA0RnVconCK+zU=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: fUhNa2zvGR6tljYmicsoP8kxi9R8oyVSsotkZ+dJbwI=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11658 (0x2d8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: May 16 15:42:44 2025 GMT Not After : May 23 15:42:44 2025 GMT Subject: CN=68275cf5-319d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:84:ce:0e:92:ff:c7:c1:b0:28:eb:ed:ae:b9: 7d:1d:f4:18:07:df:eb:a5:0e:bf:b9:da:d8:db:1a: c0:e8:75:25:22:f0:19:d3:e4:b2:32:ec:e7:a6:c7: 99:92:6c:3a:7e:52:e1:47:03:26:dc:32:39:39:17: 40:8e:38:4c:29:e0:8f:12:e4:59:ac:fe:07:a1:e2: ee:69:85:d1:4b:fa:c6:56:65:07:96:1b:f5:69:83: 0d:79:0a:a7:83:49:d2:3e:ff:05:ec:e9:4b:e0:10: 90:80:e4:05:13:28:99:d3:ed:c7:7d:23:2f:66:6d: a6:58:7b:f7:36:f8:c0:a9:8f:c2:ec:0a:d9:c7:0c: bb:d7:5b:80:dd:64:f7:e6:f1:06:6e:97:7a:3c:62: ca:5b:38:50:54:55:83:f5:b1:41:0f:5e:46:56:01: e9:73:8d:49:83:dd:dc:d1:9d:ae:c8:21:c1:83:1b: 8d:80:28:0f:25:89:c4:f2:c6:1f:90:28:9e:9c:fb: 17:0f:84:ed:54:14:70:de:14:b3:94:c9:4f:d6:32: 5e:c3:62:9d:94:a1:ee:d3:bd:50:2c:08:0d:37:e3: 8f:0d:fa:8e:3f:f5:43:b4:87:9c:a4:17:86:5f:45: 1b:0c:26:a1:f8:e6:84:a1:e7:14:46:67:66:43:a1: 0e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:FB:10:A4:4B:A4:DB:26:56:00:FC:44:11:6A:EF:33:5C:45:E3:D5 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:9f:67:9a:16:97:9c:fb:dd:22:b7:1f:05:87:a7:24:25:fe: 23:f8:0b:3b:d9:9b:01:a7:86:7e:81:9e:17:8e:60:a5:1a:1c: a1:67:65:97:43:10:f0:5f:cf:0e:65:47:90:c1:90:f4:d2:82: cb:1d:a7:2e:ba:07:e1:35:a6:33:69:d3:5e:1f:27:c2:e1:70: 12:c1:f1:c7:eb:c6:77:4e:14:8e:17:9b:75:e7:2b:ad:07:40: eb:6b:ce:e0:cf:af:04:eb:da:93:6c:67:18:f4:cf:96:dd:5c: 6c:2f:72:ca:2f:e4:b2:f9:7b:12:44:6f:4c:44:bb:d3:d8:c6: 94:d1:ad:3c:18:d4:d8:4c:7b:aa:4c:6a:59:9f:49:2f:a9:ef: 10:e2:0d:b1:02:00:80:d8:62:d1:74:0d:1e:05:e9:2d:2f:22: cc:46:dc:61:62:95:1f:5a:e5:f6:fa:50:e5:71:d9:10:cf:d7: be:13:15:87:42:89:b4:d7:86:86:12:dd:59:1b:9e:cd:ed:34: 44:f9:79:8b:a9:93:49:36:b7:58:0e:ce:65:8f:61:ad:c9:25: c6:d9:f0:d2:e0:af:6f:ce:ee:7f:5c:4f:8c:2a:97:91:00:0a: 17:5b:95:19:67:6f:35:4d:fb:96:bb:11:a7:79:b9:d4:d3:95: ef:52:94:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUwNTE2MTU0MjQ0WhcNMjUwNTIzMTU0MjQ0WjAYMRYwFAYD VQQDEw02ODI3NWNmNS0zMTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ITODpL/x8GwKOvtrrl9HfQYB9/rpQ6/udrY2xrA6HUlIvAZ0+SyMuznpseZ kmw6flLhRwMm3DI5ORdAjjhMKeCPEuRZrP4HoeLuaYXRS/rGVmUHlhv1aYMNeQqn g0nSPv8F7OlL4BCQgOQFEyiZ0+3HfSMvZm2mWHv3NvjAqY/C7ArZxwy711uA3WT3 5vEGbpd6PGLKWzhQVFWD9bFBD15GVgHpc41Jg93c0Z2uyCHBgxuNgCgPJYnE8sYf kCienPsXD4TtVBRw3hSzlMlP1jJew2KdlKHu071QLAgNN+OPDfqOP/VDtIecpBeG X0UbDCah+OaEoecURmdmQ6EO4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLn7EKRL pNsmVgD8RBFq7zNcRePVMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBln2eaFpec+90itx8Fh6ckJf4j+As72ZsBp4Z+gZ4XjmClGhyhZ2WX QxDwX88OZUeQwZD00oLLHacuugfhNaYzadNeHyfC4XASwfHH68Z3ThSOF5t15yut B0Dra87gz68E69qTbGcY9M+W3VxsL3LKL+Sy+XsSRG9MRLvT2MaU0a08GNTYTHuq TGpZn0kvqe8Q4g2xAgCA2GLRdA0eBektLyLMRtxhYpUfWuX2+lDlcdkQz9e+ExWH Qom014aGEt1ZG57N7TRE+XmLqZNJNrdYDs5lj2GtySXG2fDS4K9vzu5/XE+MKpeR AAoXW5UZZ281TfuWuxGnebnU05XvUpTY -----END CERTIFICATE-----Generated at Fri May 16 18:42:54 2025 by rpki-client