$ rpki-client -vvf rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft File: DAsd1farZExXB4GkKeRIBQIY6es.mft (raw, json) Hash identifier: Wi3Dw45zS2YG/pP7FFjEN1WNljN1CPAbLNeAjoZ5/JE= Subject key identifier: CA:29:D6:85:83:7C:24:F8:6D:17:C0:4A:E6:46:BB:05:39:31:C5:21 Authority key identifier: 0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB Certificate issuer: /CN=A9134C3E/serialNumber=0C0B1DD5F6AB644C570781A429E448050218E9EB Certificate serial: 0539 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft Manifest number: 0535 Signing time: Sat 10 May 2025 23:04:15 +0000 Manifest this update: Sat 10 May 2025 23:04:14 +0000 Manifest next update: Sat 17 May 2025 23:04:14 +0000 Files and hashes: 1: DAsd1farZExXB4GkKeRIBQIY6es.crl (hash: 2TBlSFYk8WKD0ppW4Y7UGRU45sE9fJW5xBzXrnBsDNA=) 2: 9222BEB4F42811EB93675638C4F9AE02.roa (hash: 5ctxZQMCBBanRgJSVxk2lsTuco//bC5Osf3fvZWriiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.crl rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1337 (0x539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134C3E, serialNumber=0C0B1DD5F6AB644C570781A429E448050218E9EB Validity Not Before: May 10 23:04:14 2025 GMT Not After : May 17 23:04:14 2025 GMT Subject: CN=681fdb6e-aaa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0d:49:ca:1b:ca:85:1a:51:59:72:80:10:b9: a4:81:e6:ff:2f:88:01:7a:b8:35:b4:01:5d:c8:c7: 2e:af:06:c9:0c:bc:ec:e0:5a:2f:9e:23:be:5b:56: fb:a9:3f:2c:eb:ae:cf:06:de:af:e6:ed:42:e0:b2: 94:dc:db:6f:aa:58:c2:ca:1d:55:66:01:c2:4a:6f: 25:38:43:a9:66:4d:8a:52:f7:ba:3d:79:db:2d:63: a8:a6:f0:11:35:2c:2c:90:d8:29:fe:28:ec:15:a9: b3:40:cd:cf:12:06:01:2f:c0:1d:0a:c4:fb:d2:6b: 5b:2c:3d:06:68:c1:0f:b3:41:b0:53:b4:be:a3:6e: 97:53:b8:59:e9:3a:39:e2:e2:cc:39:04:0a:00:98: 6b:a0:fd:47:03:7e:66:f7:35:ef:c4:be:e7:45:c0: 02:23:2a:04:e1:e2:16:0b:9e:1a:f5:56:b9:96:a5: d3:a6:a9:cc:c1:27:d5:c3:18:a9:dd:49:d5:05:e2: df:c5:c9:87:ff:0d:cb:77:9f:b9:ef:05:97:3b:3b: 45:f1:9b:07:dc:83:8e:bc:1a:61:c2:a6:ae:be:98: c3:b6:9c:38:f5:9c:5d:30:69:06:f7:e4:4a:4a:fe: e6:7d:1c:8d:f7:4f:a2:29:98:b6:72:95:ff:73:1d: 49:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:29:D6:85:83:7C:24:F8:6D:17:C0:4A:E6:46:BB:05:39:31:C5:21 X509v3 Authority Key Identifier: keyid:0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e6:11:84:96:6d:d4:90:bb:e0:38:42:be:07:05:5f:e7:32: db:e0:54:d6:94:c8:ba:4a:62:35:6e:14:08:9b:f5:98:25:9a: a5:2a:30:4f:aa:2e:50:24:38:5a:27:08:c5:de:67:de:0f:35: fe:9d:dc:ea:ee:80:14:53:80:2b:17:02:0a:ad:23:9b:d4:8f: 00:0e:26:e0:ef:1f:29:d4:91:f9:b2:6b:52:53:8c:53:21:94: 82:c0:8e:41:22:9f:80:14:97:de:c8:8f:7f:c4:73:c5:75:d2: bd:24:44:37:b9:1b:0e:72:82:2b:1a:b4:f6:e8:64:ef:2d:73: b3:5f:bb:d0:61:a6:98:f6:b9:25:26:d1:dd:18:dd:78:74:ed: 1b:46:cd:1b:00:e7:35:50:64:2e:05:36:62:47:ba:c6:2c:14: f6:e8:2d:45:09:1c:95:ed:bb:fb:af:28:28:40:0a:7e:1e:95: 93:15:e5:ae:79:9c:18:3e:5e:a6:4a:cd:52:fe:97:0c:92:a8: c2:4c:39:05:3c:f8:1d:35:0d:30:d9:95:b2:5d:4f:92:55:be: a1:6a:d7:fa:04:a2:93:82:04:7e:8a:b0:13:00:df:7f:77:d5: a6:91:e1:47:4d:58:7f:b7:40:16:52:29:a2:26:e6:8f:57:81: 54:6d:4f:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRDM0UxMTAvBgNVBAUTKDBDMEIxREQ1RjZBQjY0NEM1NzA3ODFBNDI5RTQ0ODA1 MDIxOEU5RUIwHhcNMjUwNTEwMjMwNDE0WhcNMjUwNTE3MjMwNDE0WjAYMRYwFAYD VQQDEw02ODFmZGI2ZS1hYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQ1JyhvKhRpRWXKAELmkgeb/L4gBerg1tAFdyMcurwbJDLzs4FovniO+W1b7 qT8s667PBt6v5u1C4LKU3NtvqljCyh1VZgHCSm8lOEOpZk2KUve6PXnbLWOopvAR NSwskNgp/ijsFamzQM3PEgYBL8AdCsT70mtbLD0GaMEPs0GwU7S+o26XU7hZ6To5 4uLMOQQKAJhroP1HA35m9zXvxL7nRcACIyoE4eIWC54a9Va5lqXTpqnMwSfVwxip 3UnVBeLfxcmH/w3Ld5+57wWXOztF8ZsH3IOOvBphwqauvpjDtpw49ZxdMGkG9+RK Sv7mfRyN90+iKZi2cpX/cx1JZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMop1oWD fCT4bRfASuZGuwU5McUhMB8GA1UdIwQYMBaAFAwLHdX2q2RMVweBpCnkSAUCGOnr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEMzRS9BODA3QzFDOEY0 MjUxMUVCQkRFODdFMzRDNEY5QUUwMi9EQXNkMWZhclpFeFhCNEdrS2VSSUJRSVk2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBc2QxZmFyWkV4WEI0R2tLZVJJQlFJWTZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEMzRS9BODA3QzFDOEY0MjUxMUVCQkRFODdFMzRDNEY5QUUwMi9EQXNkMWZhclpF eFhCNEdrS2VSSUJRSVk2ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB35hGElm3UkLvgOEK+BwVf5zLb4FTWlMi6SmI1bhQIm/WYJZqlKjBP qi5QJDhaJwjF3mfeDzX+ndzq7oAUU4ArFwIKrSOb1I8ADibg7x8p1JH5smtSU4xT IZSCwI5BIp+AFJfeyI9/xHPFddK9JEQ3uRsOcoIrGrT26GTvLXOzX7vQYaaY9rkl JtHdGN14dO0bRs0bAOc1UGQuBTZiR7rGLBT26C1FCRyV7bv7rygoQAp+HpWTFeWu eZwYPl6mSs1S/pcMkqjCTDkFPPgdNQ0w2ZWyXU+SVb6hatf6BKKTggR+irATAN9/ d9WmkeFHTVh/t0AWUimiJuaPV4FUbU8P -----END CERTIFICATE-----Generated at Sun May 11 22:51:26 2025 by rpki-client