$ rpki-client -vvf rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft File: 60SnxtcuZG2Eose20umnMhAbgTo.mft (raw, json) Hash identifier: 4AjgiLadX4tS22oxVIH6pkt5CTT341nbNk3+zFZwkf8= Subject key identifier: BC:9B:29:2C:30:B8:73:11:55:84:C5:64:87:AC:2B:6C:DF:7B:68:4A Authority key identifier: EB:44:A7:C6:D7:2E:64:6D:84:A2:C7:B6:D2:E9:A7:32:10:1B:81:3A Certificate issuer: /CN=A912A10A/serialNumber=EB44A7C6D72E646D84A2C7B6D2E9A732101B813A Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60SnxtcuZG2Eose20umnMhAbgTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft Manifest number: 0262 Signing time: Tue 13 May 2025 01:34:24 +0000 Manifest this update: Tue 13 May 2025 01:34:24 +0000 Manifest next update: Tue 20 May 2025 01:34:24 +0000 Files and hashes: 1: 60SnxtcuZG2Eose20umnMhAbgTo.crl (hash: /vmLHlzdDFZojS5v9q6NkOKsMBgJULKFmrWgcF5f//E=) 2: 8C286648818611ED8D1C5824C4F9AE02.roa (hash: xFXNX7ojWtYsPecQfS60CBpkcLKXmlqCPRZZdxkSgiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.crl rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60SnxtcuZG2Eose20umnMhAbgTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A10A, serialNumber=EB44A7C6D72E646D84A2C7B6D2E9A732101B813A Validity Not Before: May 13 01:34:24 2025 GMT Not After : May 20 01:34:24 2025 GMT Subject: CN=6822a1a0-64ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4f:b9:00:89:58:92:95:ea:07:27:79:60:f9: 6c:bb:32:4b:23:40:0f:65:5b:a1:7a:2f:75:35:8b: 03:c5:2a:08:d3:2f:0d:8a:df:92:80:11:9e:1f:6b: 76:ab:23:dc:bb:38:ab:a8:03:2f:d3:47:ed:ec:99: 60:02:c5:c2:e8:ff:77:26:89:7e:04:e4:87:03:cb: 38:99:a1:d3:c9:b7:fb:2f:8d:ea:68:f6:1b:c1:22: 88:6a:01:9f:4d:38:04:03:67:9b:45:55:51:5d:4a: a0:8c:41:75:85:98:ba:d6:e9:5a:9c:e6:fd:da:0d: 1e:8b:40:f7:03:83:10:11:f0:36:be:7b:41:34:29: bf:10:61:11:b3:65:74:c7:a0:c8:a2:63:bf:50:41: 3b:0b:d1:b3:b9:ea:fb:e2:46:da:85:e9:19:eb:a3: 11:be:76:a6:9c:75:09:a5:2a:ad:51:39:e3:50:52: 8e:d9:78:2e:96:37:6a:5d:71:e1:55:bc:d4:7d:ef: 09:bf:d3:cf:e0:02:0a:ca:59:cd:3a:77:c6:8c:a8: 0e:82:fc:19:b4:56:9a:6f:5b:b2:99:9a:ed:bd:f1: b2:06:82:e7:59:f4:6b:fd:20:7f:b0:81:ea:41:5d: 31:37:db:38:df:7d:82:53:99:28:98:09:16:9a:5f: e5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:9B:29:2C:30:B8:73:11:55:84:C5:64:87:AC:2B:6C:DF:7B:68:4A X509v3 Authority Key Identifier: keyid:EB:44:A7:C6:D7:2E:64:6D:84:A2:C7:B6:D2:E9:A7:32:10:1B:81:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60SnxtcuZG2Eose20umnMhAbgTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:f0:b8:21:56:be:1a:09:a7:fc:f6:5f:e6:9c:42:e0:04:44: 23:3e:ba:d7:e2:88:1c:35:00:00:7f:d2:35:1b:d8:04:fb:2b: 99:98:4f:cc:b8:f0:27:20:95:31:40:27:d5:d1:16:38:72:09: 02:36:2c:78:22:f2:1d:1c:da:d2:08:94:74:a6:85:7d:a0:ac: b7:67:dc:6f:ba:fa:d7:ad:97:fd:92:d2:55:c6:b6:9a:98:03: 0f:2d:66:e1:8f:93:a6:3e:1d:b1:32:f4:28:90:07:64:1d:79: 25:eb:37:4a:e2:dd:60:ac:6d:36:cb:ce:52:ff:9b:4f:e3:19: 92:c5:f8:77:14:0d:17:fd:94:4f:d4:2b:c3:a6:aa:ef:a6:2e: ec:5b:11:8d:65:89:c9:fc:77:ff:81:75:bd:fb:aa:84:c0:37: b1:71:8d:f5:47:d6:54:f7:82:c3:1c:64:6c:c0:ee:38:34:0c: fc:38:22:11:52:66:35:07:b1:d1:cf:90:0d:6a:ad:77:33:47: d7:ac:76:66:6e:40:76:cb:ac:44:e9:3e:bf:a7:0c:f0:e5:a1: a9:08:a2:0c:07:4b:b9:53:97:1b:f6:0c:59:7f:66:50:5c:ad: 44:5b:1f:e0:10:2e:6b:1e:14:cd:92:e8:dd:2e:42:c8:94:c3: ca:30:7c:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExMEExMTAvBgNVBAUTKEVCNDRBN0M2RDcyRTY0NkQ4NEEyQzdCNkQyRTlBNzMy MTAxQjgxM0EwHhcNMjUwNTEzMDEzNDI0WhcNMjUwNTIwMDEzNDI0WjAYMRYwFAYD VQQDEw02ODIyYTFhMC02NGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU+5AIlYkpXqByd5YPlsuzJLI0APZVuhei91NYsDxSoI0y8Nit+SgBGeH2t2 qyPcuzirqAMv00ft7JlgAsXC6P93Jol+BOSHA8s4maHTybf7L43qaPYbwSKIagGf TTgEA2ebRVVRXUqgjEF1hZi61ulanOb92g0ei0D3A4MQEfA2vntBNCm/EGERs2V0 x6DIomO/UEE7C9Gzuer74kbahekZ66MRvnamnHUJpSqtUTnjUFKO2XguljdqXXHh VbzUfe8Jv9PP4AIKylnNOnfGjKgOgvwZtFaab1uymZrtvfGyBoLnWfRr/SB/sIHq QV0xN9s4332CU5komAkWml/l6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLybKSww uHMRVYTFZIesK2zfe2hKMB8GA1UdIwQYMBaAFOtEp8bXLmRthKLHttLppzIQG4E6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTEwQS9FNTE4QjA3NjEz OTIxMUVEQTA1MjAyMUZDNEY5QUUwMi82MFNueHRjdVpHMkVvc2UyMHVtbk1oQWJn VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYwU254dGN1WkcyRW9zZTIwdW1uTWhBYmdUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTEwQS9FNTE4QjA3NjEzOTIxMUVEQTA1MjAyMUZDNEY5QUUwMi82MFNueHRjdVpH MkVvc2UyMHVtbk1oQWJnVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx8LghVr4aCaf89l/mnELgBEQjPrrX4ogcNQAAf9I1G9gE+yuZmE/M uPAnIJUxQCfV0RY4cgkCNix4IvIdHNrSCJR0poV9oKy3Z9xvuvrXrZf9ktJVxraa mAMPLWbhj5OmPh2xMvQokAdkHXkl6zdK4t1grG02y85S/5tP4xmSxfh3FA0X/ZRP 1CvDpqrvpi7sWxGNZYnJ/Hf/gXW9+6qEwDexcY31R9ZU94LDHGRswO44NAz8OCIR UmY1B7HRz5ANaq13M0fXrHZmbkB2y6xE6T6/pwzw5aGpCKIMB0u5U5cb9gxZf2ZQ XK1EWx/gEC5rHhTNkujdLkLIlMPKMHwI -----END CERTIFICATE-----Generated at Tue May 13 11:43:48 2025 by rpki-client