$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: dZcPwlmXlaC0E9ZYNWgvY2ja3nbfEsvY9i8dMctfNNo= Subject key identifier: 26:F5:2E:97:DC:AA:4F:AA:24:B9:2D:0E:15:8C:7B:76:9D:02:3A:2E Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1029 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 0FF4 Signing time: Fri 16 May 2025 17:44:57 +0000 Manifest this update: Fri 16 May 2025 17:44:57 +0000 Manifest next update: Fri 23 May 2025 17:44:57 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: h3t5VlTUwCFhgOqDJoWvZ8dZwpFuw5fn8um6YsJucqY=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: mhCrCLIryxh44WtZLA41qeaUSE+ipopXbFtA9uM/L9M=) 3: B38547B48C1811ED95522F3EC4F9AE02.roa (hash: HXSaiv/+h3LslBJCo/sEGl2BDqm+Kqjgd7hBF3MDYrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4137 (0x1029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: May 16 17:44:57 2025 GMT Not After : May 23 17:44:57 2025 GMT Subject: CN=68277999-d3a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8e:f6:e2:e3:ca:38:6a:d8:7e:a2:2b:2f:7c: 64:64:da:ff:13:93:f1:e1:c2:1a:e9:95:06:40:0c: 5c:ef:50:77:95:2e:df:e0:4d:bd:75:4c:b2:3c:68: 33:a6:9c:7a:21:86:d4:fe:ff:c4:d5:d6:b9:4e:31: d5:1c:6d:4a:2f:2e:c8:c4:ed:91:24:eb:38:ec:6b: 6a:42:d1:51:22:c8:ba:63:24:5b:4d:1f:41:ca:36: f0:5a:cc:4f:f4:39:fa:53:37:d3:9f:04:98:b4:83: 17:a0:6b:7f:94:b6:ff:da:bb:1e:a2:da:13:20:50: 84:ed:8d:2b:f2:47:72:71:bc:04:d1:aa:a9:63:b0: 13:ec:d8:a0:6d:a0:10:ed:e2:92:67:d5:a4:8a:9e: a1:75:5f:70:6c:7c:7d:21:0d:95:48:75:31:b8:e9: b4:9c:a0:ce:54:bf:5d:cc:0f:db:9d:ab:5c:ab:c6: 4d:22:f5:11:1d:66:c7:5a:35:85:34:d3:93:cb:a2: 81:e3:02:d8:3e:39:b4:00:ca:72:e1:61:01:80:d9: 00:fe:6d:9a:ff:0c:bb:cd:e5:39:af:f2:40:5a:1c: 8d:7d:a3:ad:67:17:1a:d0:65:93:ff:a0:af:e1:1e: fc:e1:ff:27:91:44:cb:f1:6c:d4:b2:9b:82:db:71: 3e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F5:2E:97:DC:AA:4F:AA:24:B9:2D:0E:15:8C:7B:76:9D:02:3A:2E X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:28:37:1c:89:c8:dc:4e:f0:f4:6c:bc:5b:02:da:1d:7d:37: 5a:bc:bd:22:d9:73:73:82:8a:3f:06:c3:9d:81:27:c6:37:c9: 3f:59:ad:c2:3a:19:c2:fc:5a:42:61:1b:d3:f7:91:3c:c7:e4: b7:ef:26:c0:44:7d:28:62:ff:0b:6a:7f:d4:6a:23:c2:70:70: aa:33:28:c3:48:c3:e6:cf:69:b2:bb:99:3d:5e:ba:78:11:7b: 31:ad:18:d9:07:15:89:66:99:48:e5:6c:91:d1:f6:10:3e:d6: 77:0c:c6:5c:8e:c7:52:e1:63:2e:71:bc:94:60:32:fd:53:ec: 0d:0a:77:0a:69:aa:c6:42:92:f2:3a:84:d7:b4:30:52:c9:ed: 81:7e:95:49:9b:71:e9:24:63:cb:c3:ca:de:6b:a9:2d:a8:14: eb:b4:1b:d3:8b:2a:6d:49:89:1d:a1:1d:07:e1:b6:61:f3:d2: 4c:c6:1e:87:64:ef:d9:18:cd:97:44:6a:31:f8:0a:68:e4:15: 3a:f7:36:94:3b:ba:c3:34:09:83:a8:9d:e6:a4:f3:aa:d0:34: 4a:19:78:f3:94:7f:3d:99:27:a5:93:81:52:52:cc:3c:70:0a: f0:10:bb:d2:ff:9d:19:c1:0a:01:5b:ee:98:13:10:a1:7c:1f: 76:c3:0f:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwNTE2MTc0NDU3WhcNMjUwNTIzMTc0NDU3WjAYMRYwFAYD VQQDEw02ODI3Nzk5OS1kM2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2I724uPKOGrYfqIrL3xkZNr/E5Px4cIa6ZUGQAxc71B3lS7f4E29dUyyPGgz ppx6IYbU/v/E1da5TjHVHG1KLy7IxO2RJOs47GtqQtFRIsi6YyRbTR9ByjbwWsxP 9Dn6UzfTnwSYtIMXoGt/lLb/2rseotoTIFCE7Y0r8kdycbwE0aqpY7AT7NigbaAQ 7eKSZ9Wkip6hdV9wbHx9IQ2VSHUxuOm0nKDOVL9dzA/bnatcq8ZNIvURHWbHWjWF NNOTy6KB4wLYPjm0AMpy4WEBgNkA/m2a/wy7zeU5r/JAWhyNfaOtZxca0GWT/6Cv 4R784f8nkUTL8WzUspuC23E+JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCb1Lpfc qk+qJLktDhWMe3adAjouMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnKDccicjcTvD0bLxbAtodfTdavL0i2XNzgoo/BsOdgSfGN8k/Wa3C OhnC/FpCYRvT95E8x+S37ybARH0oYv8Lan/UaiPCcHCqMyjDSMPmz2myu5k9Xrp4 EXsxrRjZBxWJZplI5WyR0fYQPtZ3DMZcjsdS4WMucbyUYDL9U+wNCncKaarGQpLy OoTXtDBSye2BfpVJm3HpJGPLw8rea6ktqBTrtBvTiyptSYkdoR0H4bZh89JMxh6H ZO/ZGM2XRGox+Apo5BU69zaUO7rDNAmDqJ3mpPOq0DRKGXjzlH89mSelk4FSUsw8 cArwELvS/50ZwQoBW+6YExChfB92ww+N -----END CERTIFICATE-----Generated at Sun May 18 12:28:48 2025 by rpki-client