$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: h84k3ZI9zlMR0wA6tmmY7CjJB10DqTOYBs2JcRj70JY= Subject key identifier: 65:89:45:D2:A2:CE:C3:8F:0E:A5:CA:0C:02:99:8D:F5:60:46:67:E4 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0F61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0F4E Signing time: Mon 12 May 2025 17:30:47 +0000 Manifest this update: Mon 12 May 2025 17:30:47 +0000 Manifest next update: Mon 19 May 2025 17:30:47 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: y8IIl0JFP7KeLqsiulgnaP6M+90rIecjJkLhYuEuiCE=) 2: 12E476745E1A11EFB61C6844C4F9AE02.roa (hash: 3IAJ+9W9KeEq7QTVszcmLK1ObY/QRBXZfU+eVRZCpyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3937 (0xf61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: May 12 17:30:47 2025 GMT Not After : May 19 17:30:47 2025 GMT Subject: CN=68223047-13a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5e:58:0c:a7:ab:9a:f1:f9:e3:6b:03:5c:3f: d4:48:9b:d6:b6:4a:95:2c:7e:19:43:81:33:60:63: 3d:4c:4a:74:26:53:80:11:b0:fd:08:71:91:67:c5: 80:b2:a1:8e:61:58:86:1f:a4:5b:5e:58:93:d8:6a: 47:cd:6f:cf:d2:fb:51:e8:1f:6c:82:6b:30:45:a3: e4:f9:a5:41:32:1d:81:5e:a3:7c:ba:3f:19:19:9e: fd:95:d8:62:8d:a0:ed:ae:36:59:87:e7:7a:bf:31: d4:f4:a6:c0:91:a2:d8:fe:1c:8f:7f:b0:fd:c5:71: ee:1e:3c:1b:2f:bf:db:83:02:c2:dc:db:c2:2c:49: ae:26:00:6e:aa:ea:22:87:2b:d1:66:56:63:43:62: 1c:22:7a:df:b5:90:7b:91:a8:53:5f:e8:79:b6:8c: 81:50:39:ad:be:d4:4a:43:b0:de:59:2c:98:c3:20: ef:19:26:78:23:f2:91:1e:20:e3:6d:7d:a1:2d:27: c3:0b:60:39:47:b5:47:94:0e:8e:f4:be:76:5c:6d: 5f:38:73:cc:98:17:91:ca:f7:5d:66:e9:05:ff:21: c6:10:05:fb:7f:2c:2f:4e:16:bb:c6:ba:18:81:89: 59:81:ef:4b:63:d3:5c:ea:44:3a:46:ae:22:09:e1: 1f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:89:45:D2:A2:CE:C3:8F:0E:A5:CA:0C:02:99:8D:F5:60:46:67:E4 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:8f:1a:d8:89:5d:95:6a:25:77:b5:f3:22:88:34:21:a5:71: 4e:ac:de:8a:6b:33:66:71:88:18:d4:a9:80:60:a8:1c:12:b1: 51:d6:dc:7d:69:6b:de:5a:c3:1a:dc:eb:1f:a6:77:79:19:5b: 88:d3:40:a7:62:a1:6d:28:42:03:c4:c7:e0:a2:fc:50:30:72: 87:ae:94:3f:92:e2:41:80:20:2c:f4:cb:f2:d4:e2:a6:82:04: 78:f7:26:36:10:e3:7a:b4:1c:ac:f7:c5:de:cb:36:ab:20:85: 45:4d:4c:54:00:36:f1:1e:63:8c:88:62:24:92:31:66:b1:be: 18:e3:48:84:6f:2a:52:67:1f:f1:b3:e6:62:71:23:94:20:33: f3:ab:4a:11:22:a0:b7:7a:b6:f8:d4:79:9f:c8:78:2e:2f:7a: 2b:40:ea:45:59:0b:fe:36:69:4a:8b:4e:ac:33:90:fb:6f:db: fb:e1:1b:16:25:51:c6:52:11:ce:34:fd:18:f9:b8:d6:41:98: 6a:48:ed:a4:10:e6:11:c5:62:9a:d5:ac:58:d0:17:d9:70:d9: 1e:16:f8:1b:58:da:1b:58:71:47:d8:9f:e1:6b:ee:2e:b1:7e: a5:98:e5:aa:27:61:9a:a6:e7:1e:a7:60:b3:ad:56:02:02:41: 36:4e:82:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUwNTEyMTczMDQ3WhcNMjUwNTE5MTczMDQ3WjAYMRYwFAYD VQQDEw02ODIyMzA0Ny0xM2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0V5YDKermvH542sDXD/USJvWtkqVLH4ZQ4EzYGM9TEp0JlOAEbD9CHGRZ8WA sqGOYViGH6RbXliT2GpHzW/P0vtR6B9sgmswRaPk+aVBMh2BXqN8uj8ZGZ79ldhi jaDtrjZZh+d6vzHU9KbAkaLY/hyPf7D9xXHuHjwbL7/bgwLC3NvCLEmuJgBuquoi hyvRZlZjQ2IcInrftZB7kahTX+h5toyBUDmtvtRKQ7DeWSyYwyDvGSZ4I/KRHiDj bX2hLSfDC2A5R7VHlA6O9L52XG1fOHPMmBeRyvddZukF/yHGEAX7fywvTha7xroY gYlZge9LY9Nc6kQ6Rq4iCeEf/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWJRdKi zsOPDqXKDAKZjfVgRmfkMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/jxrYiV2VaiV3tfMiiDQhpXFOrN6KazNmcYgY1KmAYKgcErFR1tx9 aWveWsMa3Osfpnd5GVuI00CnYqFtKEIDxMfgovxQMHKHrpQ/kuJBgCAs9Mvy1OKm ggR49yY2EON6tBys98XeyzarIIVFTUxUADbxHmOMiGIkkjFmsb4Y40iEbypSZx/x s+ZicSOUIDPzq0oRIqC3erb41HmfyHguL3orQOpFWQv+NmlKi06sM5D7b9v74RsW JVHGUhHONP0Y+bjWQZhqSO2kEOYRxWKa1axY0BfZcNkeFvgbWNobWHFH2J/ha+4u sX6lmOWqJ2Gapucep2CzrVYCAkE2ToI2 -----END CERTIFICATE-----Generated at Tue May 13 12:38:09 2025 by rpki-client