$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: 3oz4msuYesT/UsTa4YgU3FxCMleZvmsnoeLEmiMTIjk= Subject key identifier: 9A:AC:23:B3:3E:D3:65:EB:48:48:79:C1:38:9E:3B:05:7A:DC:D5:4C Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 0256 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 0253 Signing time: Tue 13 May 2025 01:38:04 +0000 Manifest this update: Tue 13 May 2025 01:38:04 +0000 Manifest next update: Tue 20 May 2025 01:38:04 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: Tfk+PhPp6m5IlkPuCwQfmBT/pKLqqKR2xjHAgbBvBBk=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:38:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: May 13 01:38:04 2025 GMT Not After : May 20 01:38:04 2025 GMT Subject: CN=6822a27c-0b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e9:a5:cb:bc:4c:0d:b5:93:bf:a2:b9:74:ae: cd:92:2f:40:05:08:ba:e6:62:72:95:84:c5:e7:68: 44:74:79:89:09:cd:1b:9b:3b:fb:f4:01:b2:29:c3: 30:26:b0:81:1c:cb:64:ae:61:c0:b3:8c:26:71:92: 9d:72:29:40:00:54:ae:af:53:15:40:0f:65:92:ee: 66:70:0f:63:48:e7:69:cb:86:e3:c9:a3:e3:6d:10: 6a:f2:5a:e7:4d:ba:d1:26:fc:3d:3b:b0:f8:c2:ec: 0c:fa:c6:09:2f:af:ab:e0:a2:0a:70:be:47:dc:d1: ab:c3:89:a8:36:39:4b:1a:24:6a:59:de:ca:06:1f: 74:60:ed:a8:e7:48:9a:c6:a5:93:ac:e8:20:c7:14: 8e:c4:a1:91:c9:bf:46:7d:09:0b:d1:df:aa:24:02: d9:6a:83:d2:b3:e9:3e:f8:d8:fd:eb:bb:8f:bc:f0: 18:6a:6c:6c:2d:e6:ca:ea:68:63:af:f5:af:4a:67: 4e:42:ed:a9:c8:01:94:33:43:e7:2c:40:f8:35:b7: 86:0a:08:e8:3b:20:41:b0:3b:7f:ef:3a:17:15:b0: 79:41:5e:67:99:0d:00:a9:35:7b:1b:e9:75:fb:76: e5:9f:75:00:d6:d9:bb:47:fc:1b:b3:14:41:9d:af: d6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:AC:23:B3:3E:D3:65:EB:48:48:79:C1:38:9E:3B:05:7A:DC:D5:4C X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b5:79:f5:e1:f1:43:8d:53:1f:fd:36:76:0a:1e:6c:24:56: 25:c1:2d:5a:0d:38:22:7b:09:9f:a7:fa:fb:bd:9c:1c:4d:c8: 4f:44:f4:30:9e:e2:cd:b6:a1:3e:55:87:b8:5b:51:1a:99:2d: 51:4e:3d:6f:71:09:04:f1:50:9a:1e:c8:6e:5f:40:ac:57:a1: 34:82:2d:e3:9a:3b:26:4e:e3:34:09:b1:56:89:b6:f2:9b:6a: b0:3b:fe:5e:54:71:65:d6:db:8e:48:db:47:10:b3:fd:07:3f: 5e:7c:10:64:06:f4:8d:13:b2:96:02:2f:18:67:a4:9f:2d:92: 46:52:8f:05:32:78:8b:d9:29:02:ce:27:c8:09:15:f5:b1:a4: 62:80:82:1f:93:7d:77:2e:7d:bb:d6:fa:10:0f:95:77:bf:3e: b0:f1:8a:c5:3b:31:ee:08:61:68:f1:2e:d3:6d:80:f6:2a:65: ab:f2:3b:8a:b9:4c:59:a6:4d:80:91:0c:81:25:6f:ab:fa:83: b8:c2:da:7f:ad:e7:bf:fd:86:b5:e6:6d:5c:40:fc:5f:32:55: bd:bd:b5:5d:4a:5b:ff:94:86:bb:94:c8:e5:71:89:ad:e3:15: f0:c4:21:38:51:48:d2:bd:14:1b:83:78:0b:c5:a7:ae:07:d8: 3b:19:ac:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwNTEzMDEzODA0WhcNMjUwNTIwMDEzODA0WjAYMRYwFAYD VQQDEw02ODIyYTI3Yy0wYjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArumly7xMDbWTv6K5dK7Nki9ABQi65mJylYTF52hEdHmJCc0bmzv79AGyKcMw JrCBHMtkrmHAs4wmcZKdcilAAFSur1MVQA9lku5mcA9jSOdpy4bjyaPjbRBq8lrn TbrRJvw9O7D4wuwM+sYJL6+r4KIKcL5H3NGrw4moNjlLGiRqWd7KBh90YO2o50ia xqWTrOggxxSOxKGRyb9GfQkL0d+qJALZaoPSs+k++Nj967uPvPAYamxsLebK6mhj r/WvSmdOQu2pyAGUM0PnLED4NbeGCgjoOyBBsDt/7zoXFbB5QV5nmQ0AqTV7G+l1 +3bln3UA1tm7R/wbsxRBna/WGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqsI7M+ 02XrSEh5wTieOwV63NVMMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1tXn14fFDjVMf/TZ2Ch5sJFYlwS1aDTgiewmfp/r7vZwcTchPRPQw nuLNtqE+VYe4W1EamS1RTj1vcQkE8VCaHshuX0CsV6E0gi3jmjsmTuM0CbFWibby m2qwO/5eVHFl1tuOSNtHELP9Bz9efBBkBvSNE7KWAi8YZ6SfLZJGUo8FMniL2SkC zifICRX1saRigIIfk313Ln271voQD5V3vz6w8YrFOzHuCGFo8S7TbYD2KmWr8juK uUxZpk2AkQyBJW+r+oO4wtp/ree//Ya15m1cQPxfMlW9vbVdSlv/lIa7lMjlcYmt 4xXwxCE4UUjSvRQbg3gLxaeuB9g7GazO -----END CERTIFICATE-----Generated at Wed May 14 11:19:46 2025 by rpki-client