$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: xnTxjAjgfUTKkmQtCWYnIYA2hw2GGo0n8UgCGawv5OQ= Subject key identifier: 9D:D0:DD:65:BA:44:73:7F:27:73:3D:00:A1:E7:94:F8:CF:99:96:56 Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 01BC Signing time: Sun 11 May 2025 02:14:53 +0000 Manifest this update: Sun 11 May 2025 02:14:53 +0000 Manifest next update: Sun 18 May 2025 02:14:53 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: A5jnlg5hSppie8SrvcDsVB0spsIsRPiEDJcCRD+8Ox0=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: JxIG0aTCU82q7umurfAFtEVJNKacWC+8NM/ekdYlO24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: May 11 02:14:53 2025 GMT Not After : May 18 02:14:53 2025 GMT Subject: CN=6820081d-e86f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:21:61:4c:a4:34:22:01:5b:20:be:9b:5e:05: 3f:d0:56:74:1a:15:cc:83:80:73:28:b7:82:7d:6a: 20:32:01:d3:2f:43:c0:4e:83:f9:a4:9f:03:0c:6b: 7d:28:c4:3b:78:b7:3a:87:10:e0:e1:44:f2:10:ad: d9:42:b0:ed:db:6d:a7:ec:f2:55:96:f6:aa:bc:06: 19:af:d1:54:83:db:6e:21:d6:dd:b5:a1:07:6b:75: c1:50:7f:19:c2:7b:31:7e:94:2c:f1:a3:ff:ce:04: 2a:ee:f9:05:80:e6:5c:5d:2c:5b:c7:42:3c:8c:32: 6d:4e:45:a2:c4:2b:f0:35:7f:d6:90:f5:77:80:93: a9:76:62:17:99:22:78:41:cb:ff:17:85:67:f8:3b: f0:45:78:d2:49:0e:ec:96:6b:52:11:04:87:b2:6a: 3c:11:24:60:e1:15:2a:83:fc:0e:88:92:43:bc:b7: 34:5a:a3:ea:a9:93:0c:69:1c:cb:4f:db:94:db:67: 04:d1:71:95:90:57:dd:37:e7:49:6d:f5:31:46:4e: 56:56:e3:bc:da:17:ed:25:58:7d:50:da:3f:df:b5: e3:9b:13:f1:22:ae:fc:18:55:c1:b3:b4:75:bd:15: de:88:25:fc:23:3f:64:6b:08:d3:1b:ed:92:6f:21: 99:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D0:DD:65:BA:44:73:7F:27:73:3D:00:A1:E7:94:F8:CF:99:96:56 X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:c0:2e:17:ed:81:26:b8:3d:7e:91:9c:df:47:8c:0f:2b:c6: 79:c0:d5:4b:77:9d:ba:84:c5:95:4a:ce:df:f8:35:6b:c8:0b: 77:08:03:ca:4c:35:61:ce:a0:2f:60:fa:d8:32:ef:f1:3d:0c: 4a:a1:2b:96:7f:81:8b:d7:51:f5:d7:41:d5:96:b0:27:2b:0f: 61:36:e8:50:e0:1a:a8:f7:db:03:e6:74:94:ad:d4:ef:2d:9a: 4f:be:43:cf:f7:66:84:1a:8a:18:80:88:c4:ea:61:f7:a4:82: 6a:4a:fa:94:e8:41:70:8e:fd:85:47:b6:d1:3b:77:04:b4:28: 8a:4c:0f:8b:2e:73:20:aa:b7:ea:6c:92:99:0c:68:1e:48:5e: d8:51:d3:1e:75:a1:5d:87:96:a6:ac:39:53:49:84:fb:c8:76: e8:b3:5b:0a:43:c7:7e:3a:3b:92:1a:c3:16:16:92:9e:e2:db: 9e:da:b8:29:35:cd:9e:93:3b:7e:ca:08:87:66:9d:a2:58:0d: b9:f7:47:6d:b9:d8:6c:48:6e:27:30:9f:42:7f:b7:94:d0:07: da:fd:1e:bf:4f:7d:96:9d:9f:81:b2:e7:3d:09:b1:a0:1a:b6: dc:df:86:e0:6f:8d:9b:6a:3a:59:e7:5d:88:ae:00:6f:d7:e9: 8e:b2:af:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUwNTExMDIxNDUzWhcNMjUwNTE4MDIxNDUzWjAYMRYwFAYD VQQDEw02ODIwMDgxZC1lODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSFhTKQ0IgFbIL6bXgU/0FZ0GhXMg4BzKLeCfWogMgHTL0PAToP5pJ8DDGt9 KMQ7eLc6hxDg4UTyEK3ZQrDt222n7PJVlvaqvAYZr9FUg9tuIdbdtaEHa3XBUH8Z wnsxfpQs8aP/zgQq7vkFgOZcXSxbx0I8jDJtTkWixCvwNX/WkPV3gJOpdmIXmSJ4 Qcv/F4Vn+DvwRXjSSQ7slmtSEQSHsmo8ESRg4RUqg/wOiJJDvLc0WqPqqZMMaRzL T9uU22cE0XGVkFfdN+dJbfUxRk5WVuO82hftJVh9UNo/37XjmxPxIq78GFXBs7R1 vRXeiCX8Iz9kawjTG+2SbyGZzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3Q3WW6 RHN/J3M9AKHnlPjPmZZWMB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSwC4X7YEmuD1+kZzfR4wPK8Z5wNVLd526hMWVSs7f+DVryAt3CAPK TDVhzqAvYPrYMu/xPQxKoSuWf4GL11H110HVlrAnKw9hNuhQ4Bqo99sD5nSUrdTv LZpPvkPP92aEGooYgIjE6mH3pIJqSvqU6EFwjv2FR7bRO3cEtCiKTA+LLnMgqrfq bJKZDGgeSF7YUdMedaFdh5amrDlTSYT7yHbos1sKQ8d+OjuSGsMWFpKe4tue2rgp Nc2ekzt+ygiHZp2iWA2590dtudhsSG4nMJ9Cf7eU0Afa/R6/T32WnZ+Bsuc9CbGg Grbc34bgb42bajpZ512IrgBv1+mOsq8+ -----END CERTIFICATE-----Generated at Mon May 12 23:18:35 2025 by rpki-client