$ rpki-client -vvf rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft File: 0DLgYUkj9KWCM463Y2w5aErtUe0.mft (raw, json) Hash identifier: nCNet1SFW9gd09FheJjLzbs5YOcC8FJN31FOoNNyFyA= Subject key identifier: 14:B6:BF:FA:36:57:CB:43:8C:06:0B:D1:E4:AC:EE:14:29:1C:DB:9A Authority key identifier: D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED Certificate issuer: /CN=A913559B/serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Certificate serial: 1064 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft Manifest number: 1059 Signing time: Fri 16 May 2025 17:36:58 +0000 Manifest this update: Fri 16 May 2025 17:36:58 +0000 Manifest next update: Fri 23 May 2025 17:36:58 +0000 Files and hashes: 1: 0DLgYUkj9KWCM463Y2w5aErtUe0.crl (hash: yp3JZHpfmiyG0ZppO/+NIAAcMX7vCTNl4gvrnEuQqMI=) 2: DBC08AD4457911E9BA84DA51C4F9AE02.roa (hash: 3uEvau4LmZq2DpE2z3DPriV9G2TAsCRZC5hyBAIi04A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4196 (0x1064) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913559B, serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Validity Not Before: May 16 17:36:58 2025 GMT Not After : May 23 17:36:58 2025 GMT Subject: CN=682777ba-2d55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:43:05:75:33:29:66:e1:85:9f:79:a6:88: 6a:4e:a5:73:4e:56:ba:fa:bd:f2:fe:8d:e4:04:d2: 9d:cd:fc:43:f6:95:8b:aa:9a:a5:0d:9d:9a:b6:0c: c4:1b:ff:60:c1:b0:a9:9f:54:9c:1c:96:ee:79:b9: 15:33:f9:d4:f0:65:b5:30:cf:53:78:84:68:1d:90: 70:86:4d:55:eb:9d:d7:c1:b6:8e:5d:2c:11:5e:f0: a1:b2:25:ad:74:df:98:a8:5c:ca:73:07:04:2d:27: 5d:d9:dd:2a:d2:00:4a:4e:b9:49:d5:2f:20:99:68: 67:3d:b9:01:11:3e:b7:4d:d4:c0:2e:e4:63:1e:83: 87:92:00:e7:bf:de:f3:92:c7:f8:b2:98:36:a5:2e: e0:6f:b4:c7:ba:44:b8:02:7f:9c:aa:87:82:e0:ca: 53:06:03:d0:35:9e:77:2d:3a:60:a0:ba:c5:6c:9c: 0d:6f:56:e6:22:58:d5:ac:fa:b1:f2:93:15:ef:8a: 26:7a:82:e2:3b:77:0f:c9:90:74:52:53:24:c5:da: 51:e1:e1:b3:22:e4:aa:5f:bb:eb:0c:6b:c7:b6:75: 63:f2:4f:57:6d:d4:ff:16:3a:89:f4:7c:97:93:20: 98:17:05:db:2d:f4:62:11:5c:6e:6f:8f:e8:4f:8d: 92:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B6:BF:FA:36:57:CB:43:8C:06:0B:D1:E4:AC:EE:14:29:1C:DB:9A X509v3 Authority Key Identifier: keyid:D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:12:3a:56:80:e2:db:56:48:b8:8b:93:a0:57:85:31:b2:49: ce:3e:e0:2b:8e:6c:b8:d6:31:33:e1:1a:af:92:2b:1e:87:12: ac:9a:9d:50:b1:dd:a7:aa:68:21:bc:c7:7f:12:b3:64:10:86: 40:e1:0b:9e:6a:ba:94:d7:0f:d3:57:92:cb:07:40:04:74:85: b3:b2:80:06:86:7e:76:9d:f7:45:7b:8f:a4:42:ff:df:6e:19: af:de:2d:15:f7:1d:10:13:a9:76:2d:45:5a:68:04:9b:89:96: ca:9c:d1:cc:e9:64:ed:ed:c7:10:1d:04:8c:a0:f2:68:59:08: 75:4f:44:76:51:cd:84:43:01:e2:bb:a8:b0:e2:1d:69:d8:3e: 2d:5c:8f:56:6a:38:ed:c7:59:54:1f:66:a7:4c:f7:93:82:23: dc:07:c9:ba:6e:01:09:67:74:a1:6d:ba:6a:5b:d3:ed:85:79: 75:bf:68:72:75:6d:e9:d2:41:3d:cd:4b:98:cd:15:52:85:c2: 1e:af:5d:b3:4f:bb:57:9c:58:07:d2:4a:94:98:62:95:3b:d4: af:dd:dc:29:ff:f1:7f:fe:66:ea:63:a5:9b:3c:8c:8b:26:65: 43:b7:e7:d8:6c:84:e6:f9:57:0d:60:aa:03:ff:20:44:3f:67: a1:d2:74:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU1OUIxMTAvBgNVBAUTKEQwMzJFMDYxNDkyM0Y0QTU4MjMzOEVCNzYzNkMzOTY4 NEFFRDUxRUQwHhcNMjUwNTE2MTczNjU4WhcNMjUwNTIzMTczNjU4WjAYMRYwFAYD VQQDEw02ODI3NzdiYS0yZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqFDBXUzKWbhhZ95pohqTqVzTla6+r3y/o3kBNKdzfxD9pWLqpqlDZ2atgzE G/9gwbCpn1ScHJbuebkVM/nU8GW1MM9TeIRoHZBwhk1V653XwbaOXSwRXvChsiWt dN+YqFzKcwcELSdd2d0q0gBKTrlJ1S8gmWhnPbkBET63TdTALuRjHoOHkgDnv97z ksf4spg2pS7gb7THukS4An+cqoeC4MpTBgPQNZ53LTpgoLrFbJwNb1bmIljVrPqx 8pMV74omeoLiO3cPyZB0UlMkxdpR4eGzIuSqX7vrDGvHtnVj8k9XbdT/FjqJ9HyX kyCYFwXbLfRiEVxub4/oT42S9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBS2v/o2 V8tDjAYL0eSs7hQpHNuaMB8GA1UdIwQYMBaAFNAy4GFJI/SlgjOOt2NsOWhK7VHt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTU5Qi82QzFBMEVGQTM2 N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlLV0NNNDYzWTJ3NWFFcnRV ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBETGdZVWtqOUtXQ000NjNZMnc1YUVydFVlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTU5Qi82QzFBMEVGQTM2N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlL V0NNNDYzWTJ3NWFFcnRVZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtEjpWgOLbVki4i5OgV4UxsknOPuArjmy41jEz4RqvkisehxKsmp1Q sd2nqmghvMd/ErNkEIZA4QuearqU1w/TV5LLB0AEdIWzsoAGhn52nfdFe4+kQv/f bhmv3i0V9x0QE6l2LUVaaASbiZbKnNHM6WTt7ccQHQSMoPJoWQh1T0R2Uc2EQwHi u6iw4h1p2D4tXI9Wajjtx1lUH2anTPeTgiPcB8m6bgEJZ3ShbbpqW9PthXl1v2hy dW3p0kE9zUuYzRVShcIer12zT7tXnFgH0kqUmGKVO9Sv3dwp//F//mbqY6WbPIyL JmVDt+fYbITm+VcNYKoD/yBEP2eh0nQS -----END CERTIFICATE-----Generated at Fri May 16 22:24:03 2025 by rpki-client