$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft File: C7AFcf321rzGNEbrOmSR-uqpCG8.mft (raw, json) Hash identifier: A0r2XqrBX/epv+H5ncircBYm1kF+Hj7N/9TIRvW1820= Subject key identifier: 16:82:D4:F7:DA:E1:F7:0F:B5:22:52:EF:7C:0B:C1:4B:F8:D3:8B:2F Authority key identifier: 0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F Certificate issuer: /CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Certificate serial: 0536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft Manifest number: 0531 Signing time: Mon 12 May 2025 23:17:40 +0000 Manifest this update: Mon 12 May 2025 23:17:39 +0000 Manifest next update: Mon 19 May 2025 23:17:39 +0000 Files and hashes: 1: C7AFcf321rzGNEbrOmSR-uqpCG8.crl (hash: z1qu4pnwnKshYHcq+tI+Q4iznq7qO141rzxm3Vm9X1Y=) 2: 6B191E20F75811EB9C2B5D4DC4F9AE02.roa (hash: gIqEUytD692JqpeV91M06iKGJH68vEW3s4YtICieKE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1334 (0x536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC83, serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Validity Not Before: May 12 23:17:39 2025 GMT Not After : May 19 23:17:39 2025 GMT Subject: CN=68228193-56d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9c:f9:9f:07:fa:cf:b3:c5:59:3d:15:41:1f: 69:ed:9e:8a:44:32:57:52:b8:b5:88:c6:51:97:72: 99:41:99:a1:b6:ee:d8:37:18:9d:05:8a:3b:67:05: fc:69:a9:79:fa:70:b7:fc:43:28:ed:ad:9a:53:93: e6:5c:e1:2d:49:1d:86:e4:79:d6:6e:42:29:08:4a: fe:98:33:13:77:b2:3c:60:2c:67:0b:ed:9c:79:82: a6:16:fe:73:7e:6c:9e:f6:fc:c6:d5:05:7f:4e:f5: c6:c0:98:14:5c:7e:50:6a:96:81:3f:93:12:be:6b: 5c:89:75:c7:b2:74:2b:bb:8a:53:83:74:bb:ea:b2: c7:00:f8:ea:dc:73:71:06:9d:1d:df:02:db:a0:a0: ef:3f:17:d9:a7:bc:34:1b:4b:bc:ec:82:21:a8:39: 54:f6:71:fd:66:ad:d9:f1:78:26:b9:82:25:84:f4: 1b:79:7c:bf:9e:fb:b9:81:19:03:28:0c:b5:7b:a4: e3:32:95:7c:cd:39:bc:7c:0d:f2:62:57:83:8a:2c: 66:05:f6:67:d1:fb:29:7d:e5:18:cb:48:e3:64:1c: f2:42:e5:65:e7:13:cd:20:60:d8:4a:56:44:47:dc: f8:ac:cc:11:43:a5:06:7c:0f:c6:45:4f:c0:ae:b3: 45:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:82:D4:F7:DA:E1:F7:0F:B5:22:52:EF:7C:0B:C1:4B:F8:D3:8B:2F X509v3 Authority Key Identifier: keyid:0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:33:cb:a4:11:54:3e:54:9a:a1:bd:78:4e:65:bc:8a:21:c5: d1:51:cd:5a:de:82:c2:9e:94:4c:4a:da:34:1a:e3:67:20:60: dc:aa:c7:c6:2c:e6:51:8f:dc:1e:64:bc:64:94:50:8e:33:55: d2:6e:82:19:e4:0a:69:e8:b0:cc:f1:16:28:2c:46:d9:46:a1: ba:7f:b0:ee:6f:f3:f6:c7:16:26:c5:7b:e9:dd:a1:5c:db:04: cb:e3:0d:34:94:13:11:a7:33:64:69:d2:88:76:91:28:88:20: 06:97:99:11:fb:c7:69:d8:6f:8d:4e:d5:0d:4a:36:d8:74:92: 9d:a5:4c:7e:73:6d:32:a0:14:53:54:cd:e9:c1:ba:37:83:35: f4:5a:3a:19:d4:a4:4a:e4:f0:91:9e:7f:9e:73:67:8c:c6:39: aa:4e:22:37:37:79:76:64:19:5d:09:59:74:b0:93:77:b0:db: 44:f4:6b:98:b5:76:73:49:d0:78:c7:de:67:d3:e0:c6:12:97: a9:21:71:64:1b:6e:c7:6f:70:99:a0:7a:2d:d7:ec:20:ed:40: 78:4b:62:bf:48:73:63:89:57:fa:c8:25:52:b1:4a:04:7b:43: 62:5a:69:a6:0f:73:fd:e8:ad:dd:a2:78:da:3c:85:81:00:dc: ef:23:6b:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDODMxMTAvBgNVBAUTKDBCQjAwNTcxRkRGNkQ2QkNDNjM0NDZFQjNBNjQ5MUZB RUFBOTA4NkYwHhcNMjUwNTEyMjMxNzM5WhcNMjUwNTE5MjMxNzM5WjAYMRYwFAYD VQQDEw02ODIyODE5My01NmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Jz5nwf6z7PFWT0VQR9p7Z6KRDJXUri1iMZRl3KZQZmhtu7YNxidBYo7ZwX8 aal5+nC3/EMo7a2aU5PmXOEtSR2G5HnWbkIpCEr+mDMTd7I8YCxnC+2ceYKmFv5z fmye9vzG1QV/TvXGwJgUXH5QapaBP5MSvmtciXXHsnQru4pTg3S76rLHAPjq3HNx Bp0d3wLboKDvPxfZp7w0G0u87IIhqDlU9nH9Zq3Z8XgmuYIlhPQbeXy/nvu5gRkD KAy1e6TjMpV8zTm8fA3yYleDiixmBfZn0fspfeUYy0jjZBzyQuVl5xPNIGDYSlZE R9z4rMwRQ6UGfA/GRU/ArrNFhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaC1Pfa 4fcPtSJS73wLwUv404svMB8GA1UdIwQYMBaAFAuwBXH99ta8xjRG6zpkkfrqqQhv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM4My80QkFGQjExOEY3 NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFyekdORWJyT21TUi11cXBD RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QUZjZjMyMXJ6R05FYnJPbVNSLXVxcENHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUM4My80QkFGQjExOEY3NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFy ekdORWJyT21TUi11cXBDRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhM8ukEVQ+VJqhvXhOZbyKIcXRUc1a3oLCnpRMSto0GuNnIGDcqsfG LOZRj9weZLxklFCOM1XSboIZ5App6LDM8RYoLEbZRqG6f7Dub/P2xxYmxXvp3aFc 2wTL4w00lBMRpzNkadKIdpEoiCAGl5kR+8dp2G+NTtUNSjbYdJKdpUx+c20yoBRT VM3pwbo3gzX0WjoZ1KRK5PCRnn+ec2eMxjmqTiI3N3l2ZBldCVl0sJN3sNtE9GuY tXZzSdB4x95n0+DGEpepIXFkG27Hb3CZoHot1+wg7UB4S2K/SHNjiVf6yCVSsUoE e0NiWmmmD3P96K3donjaPIWBANzvI2so -----END CERTIFICATE-----Generated at Tue May 13 01:48:14 2025 by rpki-client