$ rpki-client -vvf rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft File: AXJLovQFMrfgjXIPTAlmQbShyMQ.mft (raw, json) Hash identifier: v3tuXyCMQjkg9/D3l7k0fHuiQHI+wQ/eZhrtrvF8e+o= Subject key identifier: FF:D5:B3:5A:D9:AF:F5:1B:87:F2:68:C7:A7:4D:9D:90:8C:30:F2:69 Authority key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 Certificate issuer: /CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft Manifest number: 04D3 Signing time: Mon 12 May 2025 23:34:58 +0000 Manifest this update: Mon 12 May 2025 23:34:57 +0000 Manifest next update: Mon 19 May 2025 23:34:57 +0000 Files and hashes: 1: AXJLovQFMrfgjXIPTAlmQbShyMQ.crl (hash: gpMKVADQ/QSCjXP1qGQfdhmgLM3wCHNq2fy4bnGYxZ4=) 2: BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa (hash: ACAwTbWxAFnsJHmx19kYwRZ2kYaKIODFxQCzfuXITvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138271, serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Validity Not Before: May 12 23:34:57 2025 GMT Not After : May 19 23:34:57 2025 GMT Subject: CN=682285a1-f6bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f2:7c:9e:98:ae:dc:b0:38:63:e3:98:fb:df: ce:23:73:e2:97:52:08:8c:7d:6e:4f:ba:8c:6a:a3: 9f:d1:ea:97:58:00:87:59:35:e4:02:83:8d:a9:09: 4e:a6:9f:1b:b2:7f:7e:4b:03:1a:de:7d:7e:18:64: ef:c5:7c:9a:a9:97:ca:da:39:be:5a:38:c5:0f:f0: e5:c9:24:59:2d:13:c5:83:49:66:96:1c:df:3f:6d: fb:8d:84:1e:39:98:02:30:bd:10:58:27:35:c9:1d: e0:db:ad:2d:7c:f8:29:0d:08:fb:3b:d9:ff:80:a9: e6:a7:38:42:e1:4b:0e:34:07:c3:f8:41:a9:49:2a: fb:7f:af:80:0a:88:fa:ca:f4:78:b5:1a:0a:e7:7d: 07:af:6a:e7:e4:d0:41:ce:42:83:b1:aa:cd:ae:56: ff:d6:69:f0:0a:fe:38:71:93:6e:13:bd:53:27:8b: 17:60:47:a8:0b:5a:14:4b:03:a5:23:b9:b6:ea:9f: cc:90:51:23:6d:6a:4c:8e:d3:d7:b5:d3:db:fc:31: 92:28:bd:d9:09:01:d9:53:c5:a3:60:01:45:07:b5: 8b:6c:b7:33:6a:c7:0d:be:5f:5d:fd:6a:04:f2:8d: 9e:36:88:80:1f:2c:9d:81:de:35:90:f2:27:9e:05: 7a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D5:B3:5A:D9:AF:F5:1B:87:F2:68:C7:A7:4D:9D:90:8C:30:F2:69 X509v3 Authority Key Identifier: keyid:01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:cd:1d:d4:ef:8f:3f:f0:fd:4e:1b:f3:6b:0b:32:5e:d2:19: 76:9b:cd:1b:37:85:ed:11:6d:f2:c6:13:d1:9c:82:34:04:08: 5a:2a:bf:cf:f3:6d:f2:3a:c2:1e:b5:ae:9b:06:48:eb:eb:aa: 75:25:c2:34:6c:63:36:a4:b0:bd:0c:95:91:3c:c5:a2:4b:85: d2:74:e6:8a:b9:75:25:10:04:4f:1a:a5:3c:34:30:c8:88:a9: bf:5f:c7:35:71:83:8c:f0:40:6c:4a:65:f5:ea:1e:8c:55:4f: 5a:39:32:8f:00:01:29:c4:17:b3:43:80:05:6b:1a:17:2b:8a: aa:84:9e:8a:a6:3d:f9:a8:0c:7c:9b:7a:8a:d3:e6:a5:cd:43: 8e:0c:2a:ba:82:24:a6:78:8a:51:25:59:f4:c2:19:33:15:e8: 52:48:87:96:e6:89:f3:1b:2e:bd:e2:9d:3d:e6:05:1b:d7:b6: f8:0b:50:0b:e9:5a:24:71:44:90:81:a4:14:e4:af:95:f5:86: dd:b3:0e:af:35:44:e8:e0:0f:20:ef:02:c9:80:2c:4c:bc:94: 0c:fc:fd:37:69:5f:e0:f9:97:76:0a:20:f5:69:93:ad:47:b4: 86:b2:83:0a:4a:2c:54:5f:95:9c:2e:4d:f2:49:45:11:c9:a6: 7b:7b:1e:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgyNzExMTAvBgNVBAUTKDAxNzI0QkEyRjQwNTMyQjdFMDhENzIwRjRDMDk2NjQx QjRBMUM4QzQwHhcNMjUwNTEyMjMzNDU3WhcNMjUwNTE5MjMzNDU3WjAYMRYwFAYD VQQDEw02ODIyODVhMS1mNmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/J8npiu3LA4Y+OY+9/OI3Pil1IIjH1uT7qMaqOf0eqXWACHWTXkAoONqQlO pp8bsn9+SwMa3n1+GGTvxXyaqZfK2jm+WjjFD/DlySRZLRPFg0lmlhzfP237jYQe OZgCML0QWCc1yR3g260tfPgpDQj7O9n/gKnmpzhC4UsONAfD+EGpSSr7f6+ACoj6 yvR4tRoK530Hr2rn5NBBzkKDsarNrlb/1mnwCv44cZNuE71TJ4sXYEeoC1oUSwOl I7m26p/MkFEjbWpMjtPXtdPb/DGSKL3ZCQHZU8WjYAFFB7WLbLczascNvl9d/WoE 8o2eNoiAHyydgd41kPInngV6rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/Vs1rZ r/Ubh/Jox6dNnZCMMPJpMB8GA1UdIwQYMBaAFAFyS6L0BTK34I1yD0wJZkG0ocjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODI3MS84MUY5RTJEMDFD NDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1yZmdqWElQVEFsbVFiU2h5 TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYSkxvdlFGTXJmZ2pYSVBUQWxtUWJTaHlNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODI3MS84MUY5RTJEMDFDNDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1y ZmdqWElQVEFsbVFiU2h5TVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjzR3U748/8P1OG/NrCzJe0hl2m80bN4XtEW3yxhPRnII0BAhaKr/P 823yOsIeta6bBkjr66p1JcI0bGM2pLC9DJWRPMWiS4XSdOaKuXUlEARPGqU8NDDI iKm/X8c1cYOM8EBsSmX16h6MVU9aOTKPAAEpxBezQ4AFaxoXK4qqhJ6Kpj35qAx8 m3qK0+alzUOODCq6giSmeIpRJVn0whkzFehSSIeW5onzGy694p095gUb17b4C1AL 6VokcUSQgaQU5K+V9Ybdsw6vNUTo4A8g7wLJgCxMvJQM/P03aV/g+Zd2CiD1aZOt R7SGsoMKSixUX5WcLk3ySUURyaZ7ex6c -----END CERTIFICATE-----Generated at Wed May 14 03:41:10 2025 by rpki-client