$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: tSFgHeOZCwzc4bssbtnGc70oEEdasT8FyEuZfA0pRgo= Subject key identifier: C3:F4:B1:75:C0:F8:01:38:78:90:1A:02:29:A5:78:2D:CF:82:59:EF Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 0140 Signing time: Tue 13 May 2025 03:33:37 +0000 Manifest this update: Tue 13 May 2025 03:33:36 +0000 Manifest next update: Tue 20 May 2025 03:33:36 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: 00hb7GcA9MSSzE1WW5S4/gelvRA9IXkgn3J2AkNSsiQ=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: May 13 03:33:36 2025 GMT Not After : May 20 03:33:36 2025 GMT Subject: CN=6822bd90-afff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:41:1e:b8:ff:b7:48:60:e1:b3:06:80:ec:24: a1:1f:6d:a5:1b:34:33:cf:1a:bc:cb:4d:60:d3:1f: 38:53:b8:59:07:2b:fd:48:28:07:9c:4d:fe:42:24: 13:25:c0:ca:c0:52:69:af:fb:f8:80:52:2f:1c:f8: ee:63:dc:0b:45:2a:eb:fc:a2:30:c7:e3:f2:0d:75: 9b:56:b9:7b:69:e2:50:40:d5:23:29:3c:50:60:2c: 0a:27:0d:27:41:0b:31:7f:12:08:86:2b:b2:ed:e2: f5:52:f4:4e:4a:34:0b:54:e6:42:60:30:1e:ce:81: 80:78:bf:5e:b0:82:08:f8:5f:49:45:b4:38:ae:c9: c6:79:72:4f:57:bb:7d:ee:29:30:19:25:5d:7a:a1: 09:33:1f:f9:e3:5a:3f:cf:6f:4f:da:7a:b5:00:25: fe:e3:92:31:5a:9e:ae:49:de:ee:dd:7f:6d:34:b1: c2:a5:b7:87:e5:47:52:b9:a6:61:1a:94:d1:a8:15: a6:63:79:de:f1:b3:05:d4:6b:86:45:0c:4a:bc:b1: 94:d2:56:13:c8:55:56:f5:30:28:fb:fa:91:73:1a: 5b:59:70:3e:d2:25:88:a5:e7:ec:37:1a:b2:15:d0: 84:bc:f2:5f:48:81:f8:7b:83:9e:f6:14:dd:60:fb: f2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F4:B1:75:C0:F8:01:38:78:90:1A:02:29:A5:78:2D:CF:82:59:EF X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:81:75:c7:e1:66:df:62:01:f5:c1:7b:47:95:93:66:ce:87: 50:5e:7c:f9:d3:80:bb:12:1f:f6:73:53:cc:4e:72:7d:67:a3: 73:80:e5:be:83:71:fd:ee:f4:14:57:19:18:6a:ab:7c:25:aa: a6:25:b2:5e:e0:64:20:1c:5d:a3:46:d3:c8:54:09:13:de:55: 58:a1:eb:73:0b:89:4a:a2:83:a8:8e:01:3d:30:df:78:fe:32: 50:06:e5:21:91:c5:9d:10:8c:2d:21:d6:5c:e1:dd:c2:1a:0a: 19:cf:4e:2c:10:00:f5:fc:f6:3e:f0:a9:d3:d1:fd:ec:2c:5c: 8d:8b:2a:72:14:10:da:c1:be:9a:df:99:fc:58:66:58:e1:7f: a1:6b:4c:05:cd:2a:75:80:7f:6d:23:13:b5:81:15:a4:33:15: 0b:60:ac:ad:34:65:7c:41:c8:af:0e:26:04:ff:27:e8:db:b3: f3:40:ee:79:6f:cf:81:07:cb:47:c7:b5:ac:2f:15:e8:d6:11: 1c:01:16:b5:24:d8:a5:9c:dd:4e:7b:f7:97:37:a5:66:d6:16: e4:c6:27:2b:2d:e9:21:4f:39:89:33:11:67:95:fe:5a:ff:27: c6:94:d4:8e:9e:f9:b7:d9:74:5f:ea:06:7a:38:ac:e9:45:8c: ee:44:76:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjUwNTEzMDMzMzM2WhcNMjUwNTIwMDMzMzM2WjAYMRYwFAYD VQQDEw02ODIyYmQ5MC1hZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0EeuP+3SGDhswaA7CShH22lGzQzzxq8y01g0x84U7hZByv9SCgHnE3+QiQT JcDKwFJpr/v4gFIvHPjuY9wLRSrr/KIwx+PyDXWbVrl7aeJQQNUjKTxQYCwKJw0n QQsxfxIIhiuy7eL1UvROSjQLVOZCYDAezoGAeL9esIII+F9JRbQ4rsnGeXJPV7t9 7ikwGSVdeqEJMx/541o/z29P2nq1ACX+45IxWp6uSd7u3X9tNLHCpbeH5UdSuaZh GpTRqBWmY3ne8bMF1GuGRQxKvLGU0lYTyFVW9TAo+/qRcxpbWXA+0iWIpefsNxqy FdCEvPJfSIH4e4Oe9hTdYPvy9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMP0sXXA +AE4eJAaAimleC3PglnvMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZgXXH4WbfYgH1wXtHlZNmzodQXnz504C7Eh/2c1PMTnJ9Z6NzgOW+ g3H97vQUVxkYaqt8JaqmJbJe4GQgHF2jRtPIVAkT3lVYoetzC4lKooOojgE9MN94 /jJQBuUhkcWdEIwtIdZc4d3CGgoZz04sEAD1/PY+8KnT0f3sLFyNiypyFBDawb6a 35n8WGZY4X+ha0wFzSp1gH9tIxO1gRWkMxULYKytNGV8QcivDiYE/yfo27PzQO55 b8+BB8tHx7WsLxXo1hEcARa1JNilnN1Oe/eXN6Vm1hbkxicrLekhTzmJMxFnlf5a /yfGlNSOnvm32XRf6gZ6OKzpRYzuRHbX -----END CERTIFICATE-----Generated at Wed May 14 21:58:41 2025 by rpki-client