$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: JAYbnUKeN8ak+Uq9b3HS68r2vyS/1XpeT0qq6Pht8N0= Subject key identifier: A5:0B:A8:3F:78:61:93:04:90:53:EF:FC:65:36:69:FF:14:E3:9E:49 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 1068 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 105F Signing time: Mon 12 May 2025 17:18:29 +0000 Manifest this update: Mon 12 May 2025 17:18:29 +0000 Manifest next update: Mon 19 May 2025 17:18:28 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: YEjJjYtwH9lpz7g9IGshGbYZzFN8VaInXPWSznu89L0=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: E3ZTe2bEAycjBIVFstyPiPS8lw3hN6h/g285ab56Ew4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4200 (0x1068) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: May 12 17:18:29 2025 GMT Not After : May 19 17:18:28 2025 GMT Subject: CN=68222d65-aa8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a1:ec:63:72:28:05:fa:1e:ec:9d:2e:da:bb: 5f:90:ca:cc:86:83:b1:a6:07:e7:ef:83:60:82:49: 4c:eb:67:c4:f6:40:73:e5:26:ed:b5:ee:0d:e9:ad: a5:09:55:1f:f9:d0:d5:7a:05:85:10:de:6b:1a:19: 3f:7f:cb:60:8d:28:37:72:73:79:01:50:b6:01:28: ad:02:00:ad:12:d3:ac:af:b6:3f:78:14:29:12:34: 05:d6:25:5b:9c:51:d6:0c:9f:26:fd:1a:9c:b0:2e: 53:13:da:ff:29:80:fa:22:2a:33:74:ea:6e:24:7a: b8:69:a4:90:fd:5c:95:06:d5:6f:c6:08:b5:8a:c6: a0:61:bf:a3:98:51:b4:19:ec:6f:88:1e:71:f3:41: f8:4c:7b:07:91:c3:c5:2e:98:cd:a4:b1:ba:eb:e0: d7:74:4e:34:8c:04:26:22:12:60:64:74:84:70:95: 21:bc:e7:39:e4:b1:79:1d:5e:f3:41:96:66:df:9d: ec:ab:34:9f:52:54:59:91:fa:dc:76:ce:55:8d:ba: c9:a8:83:4c:73:f5:32:d3:b3:a1:78:9f:ef:4b:60: a8:65:c3:c4:0a:bb:d2:bb:34:fe:70:30:aa:89:ce: ac:c9:d0:28:07:f1:9e:05:a2:c9:68:78:06:e0:9a: 1a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0B:A8:3F:78:61:93:04:90:53:EF:FC:65:36:69:FF:14:E3:9E:49 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:8a:05:34:c9:93:15:a6:88:be:d6:6b:1f:d3:ef:7a:da:77: 3d:74:8d:b1:cb:87:c1:8c:65:f4:a4:c2:85:07:fc:75:f8:bb: 5d:ec:d8:1e:65:92:22:31:6e:dc:60:54:b0:a3:16:b6:9b:3b: ba:c2:85:8b:03:c9:77:76:50:12:c2:f0:d2:a5:42:4f:ad:dc: e5:e5:44:ed:d6:10:fa:4d:4d:0c:7a:8c:c6:6e:ca:b0:f1:4c: c7:ea:9b:f2:21:13:62:f5:cf:17:77:de:c5:fd:e6:82:e8:44: 84:a0:64:23:23:3d:89:56:9c:a8:18:2c:94:9a:24:31:50:06: 50:f5:4c:ce:3c:34:cd:3f:26:e6:7d:3e:a3:d5:0c:9f:19:c5: af:41:85:5c:c9:a3:89:20:c3:94:6c:3e:32:6f:68:24:4f:fe: 39:25:59:1c:20:66:20:d5:66:f9:39:ec:eb:48:bf:f3:9c:56: 3d:6f:94:2d:c0:d8:97:7a:1e:98:74:5f:e3:3a:e7:54:3b:3f: a3:b6:fa:8b:86:02:09:a8:bd:bc:8c:e4:62:72:28:6c:72:bb: a9:07:08:65:6e:b3:9b:81:90:00:50:bf:dc:b4:f7:f3:30:62: e8:4e:c4:9c:01:03:f4:3c:ef:fe:25:8d:e6:dc:b4:73:1e:2b: 1a:4d:0d:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwNTEyMTcxODI5WhcNMjUwNTE5MTcxODI4WjAYMRYwFAYD VQQDEw02ODIyMmQ2NS1hYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6HsY3IoBfoe7J0u2rtfkMrMhoOxpgfn74NggklM62fE9kBz5Sbtte4N6a2l CVUf+dDVegWFEN5rGhk/f8tgjSg3cnN5AVC2ASitAgCtEtOsr7Y/eBQpEjQF1iVb nFHWDJ8m/RqcsC5TE9r/KYD6IiozdOpuJHq4aaSQ/VyVBtVvxgi1isagYb+jmFG0 GexviB5x80H4THsHkcPFLpjNpLG66+DXdE40jAQmIhJgZHSEcJUhvOc55LF5HV7z QZZm353sqzSfUlRZkfrcds5VjbrJqINMc/Uy07OheJ/vS2CoZcPECrvSuzT+cDCq ic6sydAoB/GeBaLJaHgG4JoaaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKULqD94 YZMEkFPv/GU2af8U455JMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHigU0yZMVpoi+1msf0+962nc9dI2xy4fBjGX0pMKFB/x1+Ltd7Nge ZZIiMW7cYFSwoxa2mzu6woWLA8l3dlASwvDSpUJPrdzl5UTt1hD6TU0MeozGbsqw 8UzH6pvyIRNi9c8Xd97F/eaC6ESEoGQjIz2JVpyoGCyUmiQxUAZQ9UzOPDTNPybm fT6j1QyfGcWvQYVcyaOJIMOUbD4yb2gkT/45JVkcIGYg1Wb5OezrSL/znFY9b5Qt wNiXeh6YdF/jOudUOz+jtvqLhgIJqL28jORicihscrupBwhlbrObgZAAUL/ctPfz MGLoTsScAQP0PO/+JY3m3LRzHisaTQ3n -----END CERTIFICATE-----Generated at Wed May 14 06:39:09 2025 by rpki-client