$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: 0TeujwgqpRNo3CxlfXCch4/LuanahpZI6EnDtimEmoI= Subject key identifier: 7B:98:69:73:E4:99:DB:E7:EB:16:6C:75:07:B0:28:E0:37:FC:03:0C Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 024A Signing time: Thu 15 May 2025 01:51:29 +0000 Manifest this update: Thu 15 May 2025 01:51:28 +0000 Manifest next update: Thu 22 May 2025 01:51:28 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: X7TmlS7nCz6FKqZ8k3nSRrtuB8X1A3nxyTZ5pgBENvo=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: omp1fXUs+vDBv/MaKIuGTrmCJ5TEGYnfoKG3I8GKsAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: May 15 01:51:28 2025 GMT Not After : May 22 01:51:28 2025 GMT Subject: CN=682548a0-932c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e1:c6:ce:eb:0c:fb:83:a2:02:1a:a3:70:8d: 02:8b:24:ce:39:75:5d:75:40:45:16:84:4a:07:0d: ef:aa:81:18:1a:1d:cc:69:15:56:27:67:bc:82:a7: 30:4f:e9:20:0f:c3:72:95:b8:87:05:69:2b:04:40: 89:a3:ab:fb:8a:80:d7:1c:08:5a:a0:39:11:b3:73: 13:54:cb:80:8f:1f:da:e5:d9:92:f1:c5:f8:48:34: 45:98:4d:17:86:2b:6b:dd:d6:40:c6:8c:d5:34:a4: ed:02:2a:40:68:f6:72:a4:e9:bd:c7:e3:02:59:72: c5:8e:d0:4c:57:32:9e:d7:a3:58:13:c1:c3:c8:e9: 47:68:d2:b3:d0:cb:1d:7b:f3:87:10:05:ae:7b:45: 39:d5:35:b6:0c:d9:30:4f:d6:f0:8e:e2:b3:b1:55: af:7f:fd:e7:c4:f8:70:68:09:2b:b9:fb:76:d5:b8: de:b1:92:38:27:ac:91:7c:f3:18:eb:5f:c6:d4:a3: 68:32:fc:03:a5:38:63:c7:ad:e0:3c:8b:a3:3f:8a: 48:a9:48:e3:2d:f4:b7:0a:5a:8f:cd:5d:ed:a1:a7: e7:76:98:07:bd:38:70:ab:1f:4b:93:e2:de:05:ed: 14:52:5f:ab:ea:40:d8:b3:dc:5c:26:f3:1d:17:69: fc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:98:69:73:E4:99:DB:E7:EB:16:6C:75:07:B0:28:E0:37:FC:03:0C X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:5e:26:31:0f:ce:4e:91:e9:5c:c2:ff:3f:4e:d5:f6:0d:c9: 58:69:5d:18:ad:6a:99:a1:c4:03:b2:56:c4:c7:b1:54:5c:a3: 52:1d:9d:2f:74:11:95:3e:f6:5f:4f:8a:53:5a:44:59:a5:a9: 5a:d0:cc:9c:b0:e1:2e:71:54:98:5d:90:32:3a:eb:e1:1d:f7: 12:cf:8c:d6:fa:88:7e:38:a5:d3:6e:85:a7:b9:38:8b:c6:ed: 77:53:d8:17:76:b9:1d:63:da:ed:bf:a8:39:9d:da:a0:9b:95: 2a:35:e8:73:f8:dc:75:4a:93:fa:c0:6d:e0:2a:e7:2a:9e:b7: ab:03:a6:31:97:32:2f:06:60:22:c6:59:0c:21:70:8d:09:b7: ad:c6:b1:6a:47:39:23:bb:40:0e:d2:1d:f0:23:d5:f1:b6:41: c4:b3:f3:3e:d3:22:50:80:52:c4:e8:b3:cd:a3:0c:dc:ef:8f: 2e:5d:f9:cb:fa:54:00:ad:ef:e3:ed:ec:7e:37:8e:87:94:31: d8:c8:f5:f1:ce:c8:9c:58:de:69:49:d3:98:67:e7:c4:30:81: 7e:61:3a:99:8a:9b:80:0c:d2:fb:37:9c:f4:1b:3d:ea:f6:a3: 77:d9:0c:d0:e6:4e:5c:ce:6a:03:c2:6d:83:24:02:fc:47:22: 3d:31:75:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUwNTE1MDE1MTI4WhcNMjUwNTIyMDE1MTI4WjAYMRYwFAYD VQQDEw02ODI1NDhhMC05MzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeHGzusM+4OiAhqjcI0CiyTOOXVddUBFFoRKBw3vqoEYGh3MaRVWJ2e8gqcw T+kgD8NylbiHBWkrBECJo6v7ioDXHAhaoDkRs3MTVMuAjx/a5dmS8cX4SDRFmE0X hitr3dZAxozVNKTtAipAaPZypOm9x+MCWXLFjtBMVzKe16NYE8HDyOlHaNKz0Msd e/OHEAWue0U51TW2DNkwT9bwjuKzsVWvf/3nxPhwaAkruft21bjesZI4J6yRfPMY 61/G1KNoMvwDpThjx63gPIujP4pIqUjjLfS3ClqPzV3toafndpgHvThwqx9Lk+Le Be0UUl+r6kDYs9xcJvMdF2n8gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuYaXPk mdvn6xZsdQewKOA3/AMMMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARXiYxD85Okelcwv8/TtX2DclYaV0YrWqZocQDslbEx7FUXKNSHZ0v dBGVPvZfT4pTWkRZpala0MycsOEucVSYXZAyOuvhHfcSz4zW+oh+OKXTboWnuTiL xu13U9gXdrkdY9rtv6g5ndqgm5UqNehz+Nx1SpP6wG3gKucqnrerA6YxlzIvBmAi xlkMIXCNCbetxrFqRzkju0AO0h3wI9XxtkHEs/M+0yJQgFLE6LPNowzc748uXfnL +lQAre/j7ex+N46HlDHYyPXxzsicWN5pSdOYZ+fEMIF+YTqZipuADNL7N5z0Gz3q 9qN32QzQ5k5czmoDwm2DJAL8RyI9MXWK -----END CERTIFICATE-----Generated at Fri May 16 11:52:45 2025 by rpki-client