$ rpki-client -vvf rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft File: 6VdtMs2hm7hvPBYuyf020_0lucE.mft (raw, json) Hash identifier: KkecEhbxjQ0AgTlEQRcyh8LSd9JyRz4UogXgWhftZ0g= Subject key identifier: 2F:2F:74:8C:64:CB:61:CA:92:A7:E6:4C:A6:22:96:1E:D0:61:32:22 Authority key identifier: E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 Certificate issuer: /CN=A9131359/serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft Manifest number: 01D0 Signing time: Thu 15 May 2025 02:17:15 +0000 Manifest this update: Thu 15 May 2025 02:17:14 +0000 Manifest next update: Thu 22 May 2025 02:17:14 +0000 Files and hashes: 1: 6VdtMs2hm7hvPBYuyf020_0lucE.crl (hash: Q0iIS8PM39g6nfxj0BPlfUJO49Ej2c+saTTzgdkyopA=) 2: 01C299E0662611ED94A8DA42C4F9AE02.roa (hash: Cbvoa7LrgmapG4r7FY0TXw9PoDEC05XNI+g2GTtN22E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131359, serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Validity Not Before: May 15 02:17:14 2025 GMT Not After : May 22 02:17:14 2025 GMT Subject: CN=68254eaa-89db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d2:9b:57:72:1e:c5:40:7d:c9:fc:00:cf:60: 74:e2:63:26:29:d5:15:85:f9:b9:ca:5a:de:8c:7a: f0:6b:f5:e4:0e:0c:2c:cf:3c:17:80:2e:30:b5:af: 6b:43:81:8f:a8:d4:cc:74:3b:b3:56:ed:d3:73:bc: c2:76:e7:bc:2d:60:0c:49:8a:f1:3d:e9:61:a0:b5: e3:3c:33:52:ea:0a:0d:3c:6a:6a:17:ab:d1:17:77: e1:22:8a:c6:8e:47:23:77:c8:a4:48:a2:54:3c:0a: 60:8d:ed:27:bd:63:70:13:09:87:12:98:f0:1e:62: 5d:25:db:22:d4:be:cc:d6:0a:7a:8f:b1:0e:10:2a: c0:a3:73:0e:a1:61:76:b5:61:5a:3e:40:c1:2e:73: 42:b7:5e:6f:ef:ba:58:e7:99:c8:56:57:67:53:51: 42:8b:89:fc:92:34:fa:35:7a:cc:82:10:52:26:87: 1f:62:ec:29:3a:24:a8:56:9f:4f:17:15:ac:07:82: 79:dd:67:57:41:ad:dc:c4:a2:28:ce:f8:04:da:09: eb:0f:42:9b:5d:11:fd:f7:77:7a:4d:2e:ab:1c:75: bd:42:01:5f:2a:d7:d6:85:ff:ab:b9:0b:90:84:9b: 06:74:e1:33:24:19:c3:e0:50:03:ca:36:a1:8e:97: e3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2F:74:8C:64:CB:61:CA:92:A7:E6:4C:A6:22:96:1E:D0:61:32:22 X509v3 Authority Key Identifier: keyid:E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:6e:9a:e3:48:38:1a:18:0f:04:97:75:13:cf:a0:d5:af:4b: d7:46:1b:d3:38:a1:8d:df:7d:1b:65:23:de:54:3c:fc:da:70: 5b:6d:ce:5e:0b:4b:2d:04:f6:9f:53:aa:8b:bb:d2:88:d6:59: 71:b3:aa:5d:88:50:9a:27:8b:07:3d:89:5d:9f:6e:f1:2c:a7: 9c:f3:c6:3a:51:fb:08:ce:0a:a8:7b:7e:55:91:b0:d2:ed:c6: 7a:ba:05:0d:a0:fa:9b:7a:70:db:e3:56:ea:ea:22:be:cb:f6: fd:d6:ba:d2:d9:dd:bb:cc:42:15:1e:09:78:f1:b5:55:3f:e1: 78:8d:d9:a6:cd:a1:7d:39:35:0f:aa:e6:4f:08:c4:14:6f:20: 90:70:d7:11:fc:fd:db:c0:63:f3:d6:04:91:11:2e:cb:fd:f5: fa:6f:86:51:e3:e4:a6:77:93:76:a3:16:3d:92:f5:f2:97:a8: 68:12:1b:78:28:fa:63:95:c7:cf:3d:fd:c6:bf:80:76:44:4a: 2a:d3:56:92:bc:46:42:c4:7f:f6:83:ad:1e:04:d7:22:92:8c: 73:79:f6:cf:eb:9c:a6:c3:0d:6d:4b:24:98:93:13:ca:48:4a: 12:00:f5:9c:bc:ec:27:28:a7:99:07:11:90:33:22:ef:24:c7: a8:0e:b7:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzEzNTkxMTAvBgNVBAUTKEU5NTc2RDMyQ0RBMTlCQjg2RjNDMTYyRUM5RkQzNkQz RkQyNUI5QzEwHhcNMjUwNTE1MDIxNzE0WhcNMjUwNTIyMDIxNzE0WjAYMRYwFAYD VQQDEw02ODI1NGVhYS04OWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytKbV3IexUB9yfwAz2B04mMmKdUVhfm5ylrejHrwa/XkDgwszzwXgC4wta9r Q4GPqNTMdDuzVu3Tc7zCdue8LWAMSYrxPelhoLXjPDNS6goNPGpqF6vRF3fhIorG jkcjd8ikSKJUPApgje0nvWNwEwmHEpjwHmJdJdsi1L7M1gp6j7EOECrAo3MOoWF2 tWFaPkDBLnNCt15v77pY55nIVldnU1FCi4n8kjT6NXrMghBSJocfYuwpOiSoVp9P FxWsB4J53WdXQa3cxKIozvgE2gnrD0KbXRH993d6TS6rHHW9QgFfKtfWhf+ruQuQ hJsGdOEzJBnD4FADyjahjpfjJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8vdIxk y2HKkqfmTKYilh7QYTIiMB8GA1UdIwQYMBaAFOlXbTLNoZu4bzwWLsn9NtP9JbnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTM1OS9DQTlBMzRCNjY2 MjMxMUVEOTE4NTVENDJDNEY5QUUwMi82VmR0TXMyaG03aHZQQll1eWYwMjBfMGx1 Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZWZHRNczJobTdodlBCWXV5ZjAyMF8wbHVjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTM1OS9DQTlBMzRCNjY2MjMxMUVEOTE4NTVENDJDNEY5QUUwMi82VmR0TXMyaG03 aHZQQll1eWYwMjBfMGx1Y0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSbprjSDgaGA8El3UTz6DVr0vXRhvTOKGN330bZSPeVDz82nBbbc5e C0stBPafU6qLu9KI1llxs6pdiFCaJ4sHPYldn27xLKec88Y6UfsIzgqoe35VkbDS 7cZ6ugUNoPqbenDb41bq6iK+y/b91rrS2d27zEIVHgl48bVVP+F4jdmmzaF9OTUP quZPCMQUbyCQcNcR/P3bwGPz1gSRES7L/fX6b4ZR4+Smd5N2oxY9kvXyl6hoEht4 KPpjlcfPPf3Gv4B2REoq01aSvEZCxH/2g60eBNcikoxzefbP65ymww1tSySYkxPK SEoSAPWcvOwnKKeZBxGQMyLvJMeoDreK -----END CERTIFICATE-----Generated at Fri May 16 07:01:42 2025 by rpki-client