$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft File: Ae2EH7lRqvolkYDvkpnk02_ffD0.mft (raw, json) Hash identifier: P86LE9fyUmQWyqirr6azjJ6qmX4DdcQCukE3bfqhCas= Subject key identifier: D2:FF:4C:F2:82:83:CD:03:55:A8:9A:4D:39:28:F6:B7:4F:EE:72:CE Authority key identifier: 01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D Certificate issuer: /CN=A913D125/serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft Manifest number: 42 Signing time: Sun 11 May 2025 06:10:26 +0000 Manifest this update: Sun 11 May 2025 06:10:25 +0000 Manifest next update: Sun 18 May 2025 06:10:25 +0000 Files and hashes: 1: Ae2EH7lRqvolkYDvkpnk02_ffD0.crl (hash: SG0kaOpsm0+itlPQQssqssqt1l607XbndODYUP0oCUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125, serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Validity Not Before: May 11 06:10:25 2025 GMT Not After : May 18 06:10:25 2025 GMT Subject: CN=68203f52-0211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1e:13:ad:55:db:68:43:23:a5:c7:f2:7a:99: 71:3b:e4:18:0b:4d:10:26:8e:8b:00:f0:e5:8a:f1: c2:63:71:51:d9:bf:7e:ee:12:31:4e:80:2f:15:80: c9:4a:45:43:1d:9d:b0:59:ea:f7:c6:2d:55:16:3f: ff:cf:02:b7:0f:d2:b5:ed:3f:e8:f2:b6:28:87:eb: 08:84:3c:be:8b:2e:ad:23:c9:86:32:bb:d4:1d:5e: 9e:14:f5:af:20:46:97:e2:35:08:ed:a6:99:e4:63: bc:f9:ae:0d:3d:22:99:7a:0e:a0:90:bd:c1:4e:d5: ae:1c:f7:68:73:25:83:71:64:e1:3a:da:a8:16:25: b8:f2:22:27:bb:de:54:00:f6:8c:eb:30:e1:2f:9e: 80:f6:53:fc:41:55:7d:12:20:ac:f1:21:90:66:7e: a3:8d:01:33:29:ae:f7:4c:18:45:9f:ec:b5:78:80: a2:e9:c6:e7:af:5d:09:f2:1e:4d:46:d3:d0:1e:20: 98:b9:7e:cb:08:f5:b6:37:51:95:34:00:57:51:c9: c7:24:5f:f2:f2:8f:ef:a2:0a:96:a5:73:e2:e6:4e: 13:a7:9f:84:78:c3:51:a6:83:ed:4b:22:34:f1:4d: 60:81:d5:da:4d:4d:3c:18:89:7e:1b:41:c3:2e:bb: 98:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FF:4C:F2:82:83:CD:03:55:A8:9A:4D:39:28:F6:B7:4F:EE:72:CE X509v3 Authority Key Identifier: keyid:01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d3:9c:dd:b9:5d:7e:ee:27:ea:ac:53:80:46:dc:16:fb:e9: e0:b1:71:c7:95:d8:3f:fb:8d:e7:c0:64:f7:81:f0:80:5b:88: 4e:ce:af:5d:5b:e6:2f:71:5a:16:65:13:30:09:e9:16:61:b7: 53:52:f3:fe:88:2b:19:f2:94:0e:70:7b:c7:f4:f7:cd:60:6a: b4:dc:52:7e:ec:ec:bb:46:5e:b3:37:c0:2c:5d:a8:24:7c:d3: bf:fb:61:89:aa:74:0a:a2:1e:93:c7:19:93:fe:83:b3:94:5a: 9f:87:4c:5f:86:d3:52:33:de:d3:c9:89:0f:03:97:c1:ad:9c: 6e:93:40:17:fb:ca:de:1c:08:3c:a3:d2:c4:d8:aa:83:5f:16: a2:fb:a4:f9:91:e9:c7:26:7a:6f:00:bd:5e:1d:9c:8f:cf:59: cb:47:24:be:2d:11:be:00:37:89:b5:58:06:f6:bb:1a:fa:7d: 51:52:32:f9:2d:ab:8d:c4:14:b8:f4:5b:b0:a1:61:41:af:d3: ea:ae:9a:32:73:66:d6:5c:ea:03:a6:ad:da:94:9b:39:d1:be: fc:d8:bc:0a:01:46:80:60:f9:92:23:bb:42:0f:71:6c:ec:df: 46:68:f5:0f:97:5e:af:a9:82:0e:8e:2c:94:14:c4:31:be:fa: 92:95:2c:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDEyNTExMC8GA1UEBRMoMDFFRDg0MUZCOTUxQUFGQTI1OTE4MEVGOTI5OUU0RDM2 RkRGN0MzRDAeFw0yNTA1MTEwNjEwMjVaFw0yNTA1MTgwNjEwMjVaMBgxFjAUBgNV BAMTDTY4MjAzZjUyLTAyMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRHhOtVdtoQyOlx/J6mXE75BgLTRAmjosA8OWK8cJjcVHZv37uEjFOgC8VgMlK RUMdnbBZ6vfGLVUWP//PArcP0rXtP+jytiiH6wiEPL6LLq0jyYYyu9QdXp4U9a8g RpfiNQjtppnkY7z5rg09Ipl6DqCQvcFO1a4c92hzJYNxZOE62qgWJbjyIie73lQA 9ozrMOEvnoD2U/xBVX0SIKzxIZBmfqONATMprvdMGEWf7LV4gKLpxuevXQnyHk1G 09AeIJi5fssI9bY3UZU0AFdRycckX/Lyj++iCpalc+LmThOnn4R4w1Gmg+1LIjTx TWCB1dpNTTwYiX4bQcMuu5jrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0v9M8oKD zQNVqJpNOSj2t0/ucs4wHwYDVR0jBBgwFoAUAe2EH7lRqvolkYDvkpnk02/ffD0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMTI1L0ZFNzc4RUM4Q0Mx MDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZvbGtZRHZrcG5rMDJfZmZE MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWUyRUg3bFJxdm9sa1lEdmtwbmswMl9mZkQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE MTI1L0ZFNzc4RUM4Q0MxMDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZv bGtZRHZrcG5rMDJfZmZEMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAvTnN25XX7uJ+qsU4BG3Bb76eCxcceV2D/7jefAZPeB8IBbiE7Or11b 5i9xWhZlEzAJ6RZht1NS8/6IKxnylA5we8f0981garTcUn7s7LtGXrM3wCxdqCR8 07/7YYmqdAqiHpPHGZP+g7OUWp+HTF+G01Iz3tPJiQ8Dl8GtnG6TQBf7yt4cCDyj 0sTYqoNfFqL7pPmR6ccmem8AvV4dnI/PWctHJL4tEb4AN4m1WAb2uxr6fVFSMvkt q43EFLj0W7ChYUGv0+qumjJzZtZc6gOmrdqUmznRvvzYvAoBRoBg+ZIju0IPcWzs 30Zo9Q+XXq+pgg6OLJQUxDG++pKVLHA= -----END CERTIFICATE-----Generated at Mon May 12 15:59:43 2025 by rpki-client