$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: 5kJR/LfR95FUuYmN5VsQPqPP8tC2q/Bn0XrdNslOcBA= Subject key identifier: 3A:5E:22:BC:77:3E:9A:AB:95:AC:E2:23:37:0F:4F:C2:D5:8A:8E:E1 Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 349E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 348E Signing time: Sat 10 May 2025 15:04:17 +0000 Manifest this update: Sat 10 May 2025 15:04:17 +0000 Manifest next update: Sat 17 May 2025 15:04:17 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: Ov3BgWja0+WWS9lN9ZWQGpA15pP7M9fAdmimbUzpyFw=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: i+oLVOiTvF13PBUoOa9UfIxFEQhcYfTJRD1Exsj8GIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13470 (0x349e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: May 10 15:04:17 2025 GMT Not After : May 17 15:04:17 2025 GMT Subject: CN=681f6af1-df4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:14:81:57:71:7f:44:b0:ab:a8:44:e7:ee:aa: 48:82:9f:c4:7b:e3:54:de:07:b8:02:2f:1f:93:39: 65:5c:be:8a:1d:35:40:e9:7c:70:9c:13:cb:ea:8a: 5a:39:f1:41:6b:4c:f5:28:f2:1c:e4:20:19:8b:62: 49:44:4d:00:f6:3a:1f:1e:bf:5d:cd:ca:38:59:df: 82:5c:d8:ed:e6:76:a3:8b:fc:18:5f:6e:bf:df:02: 8c:0f:52:57:86:56:e5:2e:71:54:e8:d8:f3:97:00: 1b:97:c5:de:85:7c:60:a3:f3:ef:2b:b6:ce:2b:e8: b2:ad:c7:e5:4f:0a:83:d9:de:d3:38:65:b7:38:17: fc:01:07:86:56:ae:38:be:66:9a:47:4a:18:d8:84: a7:4e:92:58:cc:be:58:59:b1:58:a0:9a:18:75:2a: f5:b6:02:9b:c5:db:f2:4a:b1:d1:91:ce:c3:51:87: 96:c0:a5:a0:82:73:0f:15:9f:23:ed:18:ef:d9:dd: c7:3f:6f:7a:68:71:a7:a8:1f:a6:39:5b:40:ba:5f: 60:4f:82:96:a1:92:db:dd:68:40:e0:50:ea:a3:b2: af:39:86:96:31:3f:23:62:cf:cf:e8:5a:94:9e:85: 1c:39:e1:1c:0e:c3:c1:1b:9f:6c:1f:de:c5:fb:b4: da:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:5E:22:BC:77:3E:9A:AB:95:AC:E2:23:37:0F:4F:C2:D5:8A:8E:E1 X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:46:ad:2d:c9:dd:98:e2:30:50:ee:b0:aa:9e:19:fd:1b:a4: 3a:72:3c:11:28:00:a3:51:e9:aa:bd:54:a8:4b:9f:9e:e5:02: bc:cb:76:73:53:01:43:ba:2f:fd:ef:a9:e9:3d:da:da:92:d1: 28:75:b8:6e:57:78:9c:61:bb:05:ea:43:87:eb:41:77:60:fb: 35:de:e2:88:f7:df:a6:9d:23:5e:9f:f8:a0:e8:24:b8:85:16: 33:af:7a:4a:bd:3c:88:8d:80:ca:a2:f4:f9:bb:c7:35:08:ee: c2:80:13:07:af:7b:b8:1e:a1:da:d5:e0:54:c8:d1:a1:e7:b8: 53:23:e3:ab:77:bc:cf:09:d2:18:7b:25:44:06:22:ba:c8:b2: 74:04:9b:a6:8c:ff:89:56:ca:dd:54:53:7f:40:fb:fe:16:07: 90:4e:ab:7a:5b:40:d8:5c:c1:d6:d9:b0:e0:a3:37:c9:cc:8c: 6c:5c:15:ac:3b:a7:5c:a8:fe:91:d8:ba:02:20:5c:85:82:aa: 67:8a:9f:c5:7c:33:87:2b:57:0e:08:c9:8e:4b:7e:07:94:e9: 69:66:cb:ed:e4:47:75:fd:a2:4c:03:7f:d4:56:98:22:e9:19: 80:d6:79:58:01:ad:c4:40:04:8b:bf:34:90:61:77:e2:55:df: cb:4a:0f:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUwNTEwMTUwNDE3WhcNMjUwNTE3MTUwNDE3WjAYMRYwFAYD VQQDEw02ODFmNmFmMS1kZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBSBV3F/RLCrqETn7qpIgp/Ee+NU3ge4Ai8fkzllXL6KHTVA6XxwnBPL6opa OfFBa0z1KPIc5CAZi2JJRE0A9jofHr9dzco4Wd+CXNjt5naji/wYX26/3wKMD1JX hlblLnFU6NjzlwAbl8XehXxgo/PvK7bOK+iyrcflTwqD2d7TOGW3OBf8AQeGVq44 vmaaR0oY2ISnTpJYzL5YWbFYoJoYdSr1tgKbxdvySrHRkc7DUYeWwKWggnMPFZ8j 7Rjv2d3HP296aHGnqB+mOVtAul9gT4KWoZLb3WhA4FDqo7KvOYaWMT8jYs/P6FqU noUcOeEcDsPBG59sH97F+7TaWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpeIrx3 PpqrlaziIzcPT8LVio7hMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgRq0tyd2Y4jBQ7rCqnhn9G6Q6cjwRKACjUemqvVSoS5+e5QK8y3Zz UwFDui/976npPdraktEodbhuV3icYbsF6kOH60F3YPs13uKI99+mnSNen/ig6CS4 hRYzr3pKvTyIjYDKovT5u8c1CO7CgBMHr3u4HqHa1eBUyNGh57hTI+Ord7zPCdIY eyVEBiK6yLJ0BJumjP+JVsrdVFN/QPv+FgeQTqt6W0DYXMHW2bDgozfJzIxsXBWs O6dcqP6R2LoCIFyFgqpnip/FfDOHK1cOCMmOS34HlOlpZsvt5Ed1/aJMA3/UVpgi 6RmA1nlYAa3EQASLvzSQYXfiVd/LSg85 -----END CERTIFICATE-----Generated at Mon May 12 04:18:41 2025 by rpki-client