$ rpki-client -vvf rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.mft File: 64EbFIiyDxJmTmSKgmJKMFBonyU.mft (raw, json) Hash identifier: /ayDzvFMotDIJL7+Gxcr1MOqcrxJNskGEBFl8lHD9f0= Subject key identifier: 3E:E3:3D:89:FB:A7:33:51:74:A3:95:FF:E0:77:02:37:1F:9F:FC:4C Authority key identifier: EB:81:1B:14:88:B2:0F:12:66:4E:64:8A:82:62:4A:30:50:68:9F:25 Certificate issuer: /CN=A913D30A/serialNumber=EB811B1488B20F12664E648A82624A3050689F25 Certificate serial: 0D73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.mft Manifest number: 0D49 Signing time: Fri 16 May 2025 18:15:50 +0000 Manifest this update: Fri 16 May 2025 18:15:50 +0000 Manifest next update: Fri 23 May 2025 18:15:50 +0000 Files and hashes: 1: 64EbFIiyDxJmTmSKgmJKMFBonyU.crl (hash: vpPagSsDizDez5QCydmr78ATW68qaE9cPXWl/pLZWGE=) 2: F67B28D0B86811EFB4FB3552C4F9AE02.roa (hash: yCxqzmWa893doOfv6hENPdTITWlM9j+UWoyn6s0IOuA=) 3: 9A1481AAB2F411EF9B46DC64C4F9AE02.roa (hash: Add7F0lhUmSvXDEdaWnBa/fqtGzEQ9y//LGpbHGkCZc=) 4: B48F5974897C11EB9D7AE318C4F9AE02.roa (hash: UjEhrY6BSDNfZnVVPw3EjbmEipeGvEYmxIV0JR9ypjw=) 5: C14E20B6B22511EFA8BCE16EC4F9AE02.roa (hash: qD/bOdMC/KVR6ezx0RF1Ije0zw5T1HsdyQmo2ReK3BE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.crl rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3443 (0xd73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D30A, serialNumber=EB811B1488B20F12664E648A82624A3050689F25 Validity Not Before: May 16 18:15:50 2025 GMT Not After : May 23 18:15:50 2025 GMT Subject: CN=682780d6-f4af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:28:02:78:c1:09:c1:1a:1d:a0:e8:e2:93:95: 86:0d:d5:1e:b4:32:57:4f:c6:b8:16:ca:a6:6b:25: 54:14:03:67:c7:38:f8:30:5b:0c:8b:e6:98:05:68: 3e:3b:31:7e:1e:88:b1:9a:af:23:5a:ab:c4:a9:43: c3:6d:62:32:05:72:ce:54:94:43:c8:f2:35:98:92: ab:38:1e:0f:58:a6:ce:89:61:6c:84:da:0e:77:b4: 9d:25:08:77:0c:27:50:2e:bd:1b:58:04:43:58:e1: 6c:ff:a2:7c:12:a0:04:04:39:47:48:0a:94:88:5f: 4a:80:35:21:08:a2:40:1a:70:46:88:bd:73:13:e8: 36:da:38:c4:ac:75:74:ae:bf:f0:9f:5f:16:a9:a2: b5:03:0b:2a:dd:40:6a:fb:0b:a2:f3:1f:69:dc:6f: cc:56:f7:98:95:e6:2e:c2:17:83:62:be:6c:ab:e7: 37:cb:08:5c:39:be:7a:27:19:4e:9f:77:d1:ee:c7: cc:1b:c6:4a:8a:e5:de:62:12:94:52:93:04:10:36: 87:02:1c:51:56:ef:40:49:63:52:8b:2f:2e:94:02: ec:e0:96:29:fc:2e:2e:a1:4e:a7:cd:3d:66:8b:64: bf:ee:99:2b:1b:c4:39:6b:37:c7:1a:e2:10:c5:82: 89:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E3:3D:89:FB:A7:33:51:74:A3:95:FF:E0:77:02:37:1F:9F:FC:4C X509v3 Authority Key Identifier: keyid:EB:81:1B:14:88:B2:0F:12:66:4E:64:8A:82:62:4A:30:50:68:9F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:e4:b6:de:fd:19:1a:6d:13:32:44:d0:3f:2f:df:9c:b6:36: bb:78:20:b8:e1:f6:dc:76:6a:ca:14:aa:62:25:46:6e:b2:7c: 70:86:f6:60:78:fc:7c:d4:14:67:16:c2:f6:4d:f0:1c:f2:31: 5e:8b:a9:93:2e:5e:38:5d:bc:fc:ad:37:70:58:c5:59:e7:05: 6f:af:2c:77:46:fc:90:65:d3:14:66:ad:b6:46:8c:e8:18:ff: 72:66:4a:3c:67:53:bd:39:6d:c5:40:e7:c8:32:85:eb:8e:f1: 82:80:ab:03:6e:9b:6c:0b:25:93:91:eb:5e:46:de:66:e5:59: 59:c3:76:2a:a4:42:ec:95:6f:88:01:9c:ae:14:7d:60:12:d5: 4c:27:fe:98:36:a4:0f:4d:9a:8d:e9:53:1e:17:1c:23:8a:3d: dd:9b:13:57:f7:a4:1d:b8:90:2d:0f:0d:55:66:49:ff:1d:95: 49:fb:bd:50:40:b4:b2:f0:28:5e:41:a9:84:f1:80:01:9e:8e: 26:83:39:e0:22:8f:7c:39:25:27:07:43:45:8f:2e:2b:cf:78: 94:5d:15:d0:72:51:c1:bd:27:89:c4:ec:28:37:45:b3:58:c7: 80:c4:94:81:c0:d2:8d:0e:c6:c3:33:45:41:3d:10:26:d7:c8: 22:58:dc:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QzMEExMTAvBgNVBAUTKEVCODExQjE0ODhCMjBGMTI2NjRFNjQ4QTgyNjI0QTMw NTA2ODlGMjUwHhcNMjUwNTE2MTgxNTUwWhcNMjUwNTIzMTgxNTUwWjAYMRYwFAYD VQQDEw02ODI3ODBkNi1mNGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7CgCeMEJwRodoOjik5WGDdUetDJXT8a4FsqmayVUFANnxzj4MFsMi+aYBWg+ OzF+Hoixmq8jWqvEqUPDbWIyBXLOVJRDyPI1mJKrOB4PWKbOiWFshNoOd7SdJQh3 DCdQLr0bWARDWOFs/6J8EqAEBDlHSAqUiF9KgDUhCKJAGnBGiL1zE+g22jjErHV0 rr/wn18WqaK1Awsq3UBq+wui8x9p3G/MVveYleYuwheDYr5sq+c3ywhcOb56JxlO n3fR7sfMG8ZKiuXeYhKUUpMEEDaHAhxRVu9ASWNSiy8ulALs4JYp/C4uoU6nzT1m i2S/7pkrG8Q5azfHGuIQxYKJKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7jPYn7 pzNRdKOV/+B3Ajcfn/xMMB8GA1UdIwQYMBaAFOuBGxSIsg8SZk5kioJiSjBQaJ8l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDMwQS9CODU0MjRGOEQ0 OTgxMUU5Qjk0NzQ3MzhDNEY5QUUwMi82NEViRklpeUR4Sm1UbVNLZ21KS01GQm9u eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RWJGSWl5RHhKbVRtU0tnbUpLTUZCb255VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDMwQS9CODU0MjRGOEQ0OTgxMUU5Qjk0NzQ3MzhDNEY5QUUwMi82NEViRklpeUR4 Sm1UbVNLZ21KS01GQm9ueVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG5Lbe/RkabRMyRNA/L9+ctja7eCC44fbcdmrKFKpiJUZusnxwhvZg ePx81BRnFsL2TfAc8jFei6mTLl44Xbz8rTdwWMVZ5wVvryx3RvyQZdMUZq22Rozo GP9yZko8Z1O9OW3FQOfIMoXrjvGCgKsDbptsCyWTketeRt5m5VlZw3YqpELslW+I AZyuFH1gEtVMJ/6YNqQPTZqN6VMeFxwjij3dmxNX96QduJAtDw1VZkn/HZVJ+71Q QLSy8CheQamE8YABno4mgzngIo98OSUnB0NFjy4rz3iUXRXQclHBvSeJxOwoN0Wz WMeAxJSBwNKNDsbDM0VBPRAm18giWNwM -----END CERTIFICATE-----Generated at Sun May 18 00:51:38 2025 by rpki-client