$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: Et82H6IVwq+riUlR5+TVJc1BHrVTCogikNqaB6kwbdo= Subject key identifier: F7:64:4E:C5:D9:90:DC:CB:82:E4:5C:C7:A8:F3:59:3D:0F:F4:F9:EB Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D03 Signing time: Sat 10 May 2025 17:55:38 +0000 Manifest this update: Sat 10 May 2025 17:55:37 +0000 Manifest next update: Sat 17 May 2025 17:55:37 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: nZy+SroPfJhlSVpoiJQyJD9a+7P2SebvYHB1V4GfT5Y=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3345 (0xd11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: May 10 17:55:37 2025 GMT Not After : May 17 17:55:37 2025 GMT Subject: CN=681f9319-c6f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1e:9a:0f:bc:3b:e0:83:ec:6f:09:e2:a3:95: a0:28:41:17:8b:30:6d:02:21:ef:aa:84:32:47:88: 8e:3a:0c:50:40:ac:6a:86:51:06:c7:8a:e0:ea:6d: 57:ae:75:44:25:0e:99:ff:cd:12:06:bc:e6:73:54: 3c:9a:4c:5b:89:4e:26:04:e4:b5:fd:8f:7e:c1:b5: 56:79:ed:b8:74:87:5a:11:a4:30:48:a9:71:02:cf: 8f:ba:9c:b9:b5:4b:8c:4b:48:76:cb:7b:14:93:bc: 45:f8:08:18:ba:6e:98:aa:a6:7b:9e:67:62:42:83: 2c:85:b4:c8:66:00:41:0c:f8:d0:28:1b:09:df:fd: a9:b3:eb:da:42:a3:55:8b:d3:1f:24:c8:f8:a8:45: 75:ae:85:ce:53:b3:a0:a9:ab:10:08:f1:0f:48:23: 95:18:87:a1:89:a7:75:94:4e:81:41:a1:be:f4:1e: c3:31:5c:7e:45:20:c5:70:2d:6f:dc:6d:bb:91:85: f6:12:76:75:a0:3d:38:73:cb:69:45:70:9b:aa:06: 9c:46:3d:c5:7c:5e:8c:7b:5d:06:a4:9e:a3:f1:86: 3c:74:93:a9:f9:fb:c0:92:29:7f:5b:32:d3:a9:86: 34:75:d9:c9:02:10:f5:ab:7e:6f:ac:d8:64:c4:7c: 80:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:64:4E:C5:D9:90:DC:CB:82:E4:5C:C7:A8:F3:59:3D:0F:F4:F9:EB X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:36:37:c3:f3:8d:da:64:33:f0:d8:24:08:73:82:18:62:db: d2:ad:ae:d6:f2:05:e3:a2:9c:5a:be:cc:fe:a5:93:f0:fc:dd: cc:1f:d8:15:e1:32:28:94:f3:b3:e0:49:a0:81:26:62:4b:01: d5:41:27:6c:43:79:33:cc:c8:c9:6b:f0:1b:26:5b:72:5a:59: 27:af:d5:41:70:2c:e8:90:a0:f0:67:9c:f4:cd:66:4d:77:e1: bf:d7:9f:90:bf:49:b4:ab:94:cb:0d:8b:9c:ed:b3:ef:91:fd: 0b:1e:84:91:d9:c1:8c:8a:63:bf:2c:00:99:0b:61:2b:1c:ca: 98:b2:36:65:75:c0:a7:13:aa:a3:dc:d7:16:b9:19:4e:51:f3: 8b:80:3f:76:cc:8f:54:3c:2e:2d:ec:8d:b3:c2:bd:ea:0c:2f: ad:1e:57:8f:47:bc:0d:bb:ab:a3:45:56:15:54:49:58:97:2c: aa:02:e9:8b:d3:5c:ff:84:5c:f6:05:a0:fc:19:d1:14:0b:79: b7:a0:00:a1:8c:00:58:26:09:05:c4:02:68:e7:cf:dc:9c:7f: f0:22:91:6d:c0:3d:c6:52:a9:dd:05:be:58:ad:a4:4f:07:b7: e7:e7:a1:f7:63:52:6c:67:d1:07:d8:5d:3b:ee:2d:38:6e:f4: 08:23:7f:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUwNTEwMTc1NTM3WhcNMjUwNTE3MTc1NTM3WjAYMRYwFAYD VQQDEw02ODFmOTMxOS1jNmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzx6aD7w74IPsbwnio5WgKEEXizBtAiHvqoQyR4iOOgxQQKxqhlEGx4rg6m1X rnVEJQ6Z/80SBrzmc1Q8mkxbiU4mBOS1/Y9+wbVWee24dIdaEaQwSKlxAs+Pupy5 tUuMS0h2y3sUk7xF+AgYum6YqqZ7nmdiQoMshbTIZgBBDPjQKBsJ3/2ps+vaQqNV i9MfJMj4qEV1roXOU7OgqasQCPEPSCOVGIehiad1lE6BQaG+9B7DMVx+RSDFcC1v 3G27kYX2EnZ1oD04c8tpRXCbqgacRj3FfF6Me10GpJ6j8YY8dJOp+fvAkil/WzLT qYY0ddnJAhD1q35vrNhkxHyAzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdkTsXZ kNzLguRcx6jzWT0P9PnrMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmNjfD843aZDPw2CQIc4IYYtvSra7W8gXjopxavsz+pZPw/N3MH9gV 4TIolPOz4EmggSZiSwHVQSdsQ3kzzMjJa/AbJltyWlknr9VBcCzokKDwZ5z0zWZN d+G/15+Qv0m0q5TLDYuc7bPvkf0LHoSR2cGMimO/LACZC2ErHMqYsjZldcCnE6qj 3NcWuRlOUfOLgD92zI9UPC4t7I2zwr3qDC+tHlePR7wNu6ujRVYVVElYlyyqAumL 01z/hFz2BaD8GdEUC3m3oAChjABYJgkFxAJo58/cnH/wIpFtwD3GUqndBb5YraRP B7fn56H3Y1JsZ9EH2F077i04bvQII3/t -----END CERTIFICATE-----Generated at Mon May 12 19:07:21 2025 by rpki-client