$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: cAhveI4gjGoKFkSJLaqvePtsZ/ePkxHKVqtpQx/BWiw= Subject key identifier: ED:79:B5:45:E5:FC:8A:85:B2:B9:2C:A7:B0:70:B5:98:90:53:7A:9A Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 051E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 0517 Signing time: Wed 14 May 2025 23:39:21 +0000 Manifest this update: Wed 14 May 2025 23:39:21 +0000 Manifest next update: Wed 21 May 2025 23:39:21 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: 87l2I08zL0q2aMdP+rUyz66Cdcq84N3jzMxXOtAGJck=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: lwH3/LI1XgonY5xgqpT7sakTv0eerZuuX+aDEUruDuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1310 (0x51e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: May 14 23:39:21 2025 GMT Not After : May 21 23:39:21 2025 GMT Subject: CN=682529a9-73bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b4:70:41:9a:d6:f5:a9:d6:97:da:68:db:91: d3:62:41:e3:72:06:6f:30:77:b2:f2:f7:17:7d:62: 79:f1:0f:33:1a:9c:ae:88:d9:42:c4:77:2a:27:b8: f0:44:10:c6:e3:67:3b:4b:83:b8:04:37:24:b9:7c: e2:52:a9:e2:02:15:7e:4f:68:56:7a:24:49:a5:44: 5c:26:d2:58:99:c1:58:a1:ae:2a:98:1b:c3:61:77: 3c:a1:87:d3:2b:19:4b:fb:79:e4:bf:a2:4b:6f:1c: 9b:78:a1:88:ed:b1:ab:eb:84:e5:f0:98:25:59:dc: a9:9b:ca:58:23:2b:08:f7:93:d4:d1:27:c5:5b:7c: bb:f5:cf:7d:2a:17:5a:fd:46:48:29:9a:17:df:5f: 87:05:00:2e:68:5b:2b:b2:67:8c:c5:68:e1:3a:4c: b5:52:de:ab:4b:c2:71:4e:f5:72:15:72:f0:b9:29: 29:3c:c2:65:12:eb:f3:3a:57:a8:b4:a9:60:5c:55: f9:3f:b2:51:36:9e:09:4e:80:67:4d:69:7b:05:6a: 71:7b:c4:17:3a:9b:d4:56:26:27:97:ea:db:f0:e5: 5f:69:67:2c:a3:e5:89:c4:cb:6a:69:3e:0f:47:cb: 49:14:c5:37:ec:66:91:f5:b5:69:4f:d6:23:61:7c: e0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:79:B5:45:E5:FC:8A:85:B2:B9:2C:A7:B0:70:B5:98:90:53:7A:9A X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:3c:33:0c:1b:aa:b2:73:40:2b:83:ef:28:1e:7a:0c:85:c8: 23:20:6c:c6:82:71:d4:a4:bf:5f:34:66:bd:42:e8:60:52:46: f6:9e:04:38:d0:b1:f3:f9:bb:39:bf:5f:35:1b:c2:64:d1:10: 93:71:2f:63:cb:0d:e0:8f:69:07:57:06:f8:0f:ec:04:2a:56: f7:b2:c9:4a:ce:b7:e3:3c:ab:c0:79:79:ec:22:cc:17:f7:98: 16:11:34:85:c2:d2:64:81:a3:0e:f9:f7:50:ed:9f:53:b7:ee: d2:d8:d4:3c:8a:42:10:0a:af:19:4f:fb:9f:c8:c6:12:40:90: d4:47:b0:8e:68:99:c5:1c:98:16:d3:74:e6:00:79:11:cf:4f: 0f:31:b9:4f:04:c2:b5:ce:b0:6a:28:18:17:0e:de:5b:fb:07: e9:b0:c0:24:7e:d3:b9:11:e6:81:2a:df:2b:e1:c2:48:f8:16: 2c:4c:80:5f:fb:25:a2:a8:c1:d7:b3:f3:17:fd:b8:28:e9:f4: d4:f0:ce:66:7e:ce:51:f0:5b:ad:f8:0d:21:6e:f3:a4:84:0f: 2a:09:20:50:57:ee:41:1b:5e:75:b5:33:63:c9:10:6e:e8:ad: 54:e8:e6:e9:c5:b4:7c:cf:0e:55:86:42:6c:c5:c3:c3:b6:23: 11:93:99:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUwNTE0MjMzOTIxWhcNMjUwNTIxMjMzOTIxWjAYMRYwFAYD VQQDEw02ODI1MjlhOS03M2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLRwQZrW9anWl9po25HTYkHjcgZvMHey8vcXfWJ58Q8zGpyuiNlCxHcqJ7jw RBDG42c7S4O4BDckuXziUqniAhV+T2hWeiRJpURcJtJYmcFYoa4qmBvDYXc8oYfT KxlL+3nkv6JLbxybeKGI7bGr64Tl8JglWdypm8pYIysI95PU0SfFW3y79c99Khda /UZIKZoX31+HBQAuaFsrsmeMxWjhOky1Ut6rS8JxTvVyFXLwuSkpPMJlEuvzOleo tKlgXFX5P7JRNp4JToBnTWl7BWpxe8QXOpvUViYnl+rb8OVfaWcso+WJxMtqaT4P R8tJFMU37GaR9bVpT9YjYXzgewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO15tUXl /IqFsrksp7BwtZiQU3qaMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSPDMMG6qyc0Arg+8oHnoMhcgjIGzGgnHUpL9fNGa9QuhgUkb2ngQ4 0LHz+bs5v181G8Jk0RCTcS9jyw3gj2kHVwb4D+wEKlb3sslKzrfjPKvAeXnsIswX 95gWETSFwtJkgaMO+fdQ7Z9Tt+7S2NQ8ikIQCq8ZT/ufyMYSQJDUR7COaJnFHJgW 03TmAHkRz08PMblPBMK1zrBqKBgXDt5b+wfpsMAkftO5EeaBKt8r4cJI+BYsTIBf +yWiqMHXs/MX/bgo6fTU8M5mfs5R8Fut+A0hbvOkhA8qCSBQV+5BG151tTNjyRBu 6K1U6ObpxbR8zw5VhkJsxcPDtiMRk5m6 -----END CERTIFICATE-----Generated at Thu May 15 22:42:51 2025 by rpki-client