$ rpki-client -vvf rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft File: j4RQ6hjtZj3XYxNayPnBormb2W0.mft (raw, json) Hash identifier: qcQ86+RPpH2Pbhdv4CjWFE7an3DWeTndLUhTXUjN8VI= Subject key identifier: FB:60:22:3D:3E:54:BF:2C:21:1B:EC:E6:E0:82:1D:53:53:C5:DB:5C Authority key identifier: 8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D Certificate issuer: /CN=A913D9CB/serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Certificate serial: 084B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft Manifest number: 0845 Signing time: Mon 12 May 2025 20:33:55 +0000 Manifest this update: Mon 12 May 2025 20:33:54 +0000 Manifest next update: Mon 19 May 2025 20:33:54 +0000 Files and hashes: 1: j4RQ6hjtZj3XYxNayPnBormb2W0.crl (hash: H1Jmt1qa5TFALo0+ewbqXB2VaKpdKttvt8a4jp1iwaY=) 2: D6CE2DE4CA3C11EAB3604C46C4F9AE02.roa (hash: Pre6mj3qji68nWX5VPNZNIBmXlVK+D7mKmGk/F/UT7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D9CB, serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Validity Not Before: May 12 20:33:54 2025 GMT Not After : May 19 20:33:54 2025 GMT Subject: CN=68225b32-f2a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:74:60:bc:c5:e8:49:5b:27:3b:a0:a6:fe:87: 07:b4:4b:3e:59:7d:26:90:7d:0a:f7:00:b8:31:fc: 7b:76:fd:e7:33:ea:96:f3:0d:2c:b7:05:a0:78:68: 15:59:ce:9f:38:2f:98:e5:b7:72:e0:c6:39:bf:59: f3:4b:3f:72:1d:f8:b2:8d:ee:a7:56:48:99:0f:f5: 3e:4c:bf:32:38:7e:ee:ad:3c:59:5e:08:8c:a0:71: 70:27:75:6a:ac:71:5c:ce:20:23:89:93:cf:6d:3e: 73:be:0b:4f:98:b5:3e:aa:f0:47:e9:34:c3:8a:07: 03:6d:20:1c:5d:cb:2a:db:d9:0e:49:46:8c:3d:da: b6:2e:72:47:83:78:6b:59:f8:dd:29:71:0b:46:14: 6a:59:09:76:01:0b:da:87:13:69:57:f5:7f:8b:85: 26:09:49:f0:b4:80:2e:58:78:fb:30:4d:57:1c:1e: b6:b5:11:e5:1a:b2:ca:b1:cb:72:f0:4f:d4:9d:fc: 53:4c:3e:e3:2b:0b:52:ef:fb:22:b0:b1:fd:17:b9: be:bb:50:fc:b5:42:f0:e6:78:c5:57:a2:0f:7c:33: e0:bd:e8:b9:25:85:e5:22:ed:bb:48:88:ca:60:f6: 99:42:ea:a3:84:2d:85:ed:37:89:48:d2:b5:44:25: a5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:60:22:3D:3E:54:BF:2C:21:1B:EC:E6:E0:82:1D:53:53:C5:DB:5C X509v3 Authority Key Identifier: keyid:8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e5:b2:be:fd:f3:f9:a3:6f:da:35:4d:c9:7a:38:ae:a3:d8: ce:a5:bd:eb:11:d1:d8:74:bd:64:1c:5d:6c:c1:c1:dd:4c:c3: 34:0f:b2:1f:4e:95:d6:7c:50:64:0e:44:b6:d9:63:c5:9b:18: 86:e0:ae:b7:53:cf:86:17:e9:a1:ea:d2:15:a7:66:6c:42:ab: 67:c5:52:cf:db:af:9a:90:42:36:69:cf:5e:d4:a9:04:a8:a9: 17:45:e7:2a:fa:fa:c5:2d:0e:a8:e2:c1:bb:32:3a:ca:31:b1: ab:2d:85:70:83:77:4b:01:96:e6:14:7c:4a:b3:8a:2a:b1:41: 29:30:a1:29:51:58:67:72:fb:da:19:43:8f:f8:2d:b4:81:95: 33:42:82:07:ad:3b:43:a1:7f:0b:31:8a:41:45:c6:a1:b8:1b: a2:71:d9:66:5b:48:01:37:13:35:d0:3f:0c:49:67:ea:18:35: 64:9e:27:d2:1b:5c:bc:83:cc:a1:d4:07:8e:3b:71:93:51:80: e2:81:8c:81:d4:c2:b5:5f:1c:de:36:38:b9:a3:a0:96:b4:26: c3:f3:11:1b:be:0f:80:85:b0:d1:22:25:af:3c:01:91:c1:ee: ad:8a:5b:3c:98:01:6c:06:84:96:06:99:39:38:4c:43:46:0b: c6:2c:26:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q5Q0IxMTAvBgNVBAUTKDhGODQ1MEVBMThFRDY2M0RENzYzMTM1QUM4RjlDMUEy Qjk5QkQ5NkQwHhcNMjUwNTEyMjAzMzU0WhcNMjUwNTE5MjAzMzU0WjAYMRYwFAYD VQQDEw02ODIyNWIzMi1mMmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHRgvMXoSVsnO6Cm/ocHtEs+WX0mkH0K9wC4Mfx7dv3nM+qW8w0stwWgeGgV Wc6fOC+Y5bdy4MY5v1nzSz9yHfiyje6nVkiZD/U+TL8yOH7urTxZXgiMoHFwJ3Vq rHFcziAjiZPPbT5zvgtPmLU+qvBH6TTDigcDbSAcXcsq29kOSUaMPdq2LnJHg3hr WfjdKXELRhRqWQl2AQvahxNpV/V/i4UmCUnwtIAuWHj7ME1XHB62tRHlGrLKscty 8E/UnfxTTD7jKwtS7/sisLH9F7m+u1D8tULw5njFV6IPfDPgvei5JYXlIu27SIjK YPaZQuqjhC2F7TeJSNK1RCWl2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtgIj0+ VL8sIRvs5uCCHVNTxdtcMB8GA1UdIwQYMBaAFI+EUOoY7WY912MTWsj5waK5m9lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDlDQi8zRkQyRDlDNENB MkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpqM1hZeE5heVBuQm9ybWIy VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o0UlE2aGp0WmozWFl4TmF5UG5Cb3JtYjJXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDlDQi8zRkQyRDlDNENBMkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpq M1hZeE5heVBuQm9ybWIyVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu5bK+/fP5o2/aNU3Jejiuo9jOpb3rEdHYdL1kHF1swcHdTMM0D7If TpXWfFBkDkS22WPFmxiG4K63U8+GF+mh6tIVp2ZsQqtnxVLP26+akEI2ac9e1KkE qKkXRecq+vrFLQ6o4sG7MjrKMbGrLYVwg3dLAZbmFHxKs4oqsUEpMKEpUVhncvva GUOP+C20gZUzQoIHrTtDoX8LMYpBRcahuBuicdlmW0gBNxM10D8MSWfqGDVknifS G1y8g8yh1AeOO3GTUYDigYyB1MK1XxzeNji5o6CWtCbD8xEbvg+AhbDRIiWvPAGR we6tils8mAFsBoSWBpk5OExDRgvGLCb+ -----END CERTIFICATE-----Generated at Wed May 14 18:17:17 2025 by rpki-client