$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft File: vHDzdLcox7cRwkpoJ_dHekKyKk0.mft (raw, json) Hash identifier: WesoR1FL7yMZeL6CJCD5cMAdEtQIOMkoltRDEcPP6ao= Subject key identifier: A1:DE:AB:6A:51:37:5A:79:F2:13:6E:EE:C3:1D:71:A3:87:37:70:4A Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft Manifest number: 29 Signing time: Tue 13 May 2025 06:57:52 +0000 Manifest this update: Tue 13 May 2025 06:57:52 +0000 Manifest next update: Tue 20 May 2025 06:57:52 +0000 Files and hashes: 1: vHDzdLcox7cRwkpoJ_dHekKyKk0.crl (hash: KNoOtZzMe8oKTc5FThg7/KJfBZUPpxIi5BluknJarjs=) 2: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (hash: g53LMcn3iRdJAKtGtiImyfZixGirZg93i3IYIo94JAU=) 3: 6BD4BB16F83111EFBA64911FC4F9AE02.roa (hash: XvWuI1YoEga2y2ypcrjG1/r0tc+yszPXr1W996sUaXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: May 13 06:57:52 2025 GMT Not After : May 20 06:57:52 2025 GMT Subject: CN=6822ed70-2f47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d8:8d:2e:2a:f2:42:d1:2f:f7:04:e5:f2:f7: 6b:87:90:b6:a9:06:ce:85:71:6d:95:47:e7:2c:18: ef:10:a0:91:41:ed:b1:35:60:1f:e2:d1:10:e4:38: 17:14:09:49:ec:43:ac:18:b0:20:8f:7b:e7:9f:32: 5e:95:35:8d:da:cb:ca:c0:03:18:b2:ae:ce:04:26: 33:f8:78:d1:82:74:0f:33:84:81:40:4a:9d:1d:95: f0:d2:1e:3a:0f:65:b0:5e:ac:93:25:7a:4f:81:7f: b9:4f:b9:8b:c1:f6:fb:ca:e3:a5:d1:be:1c:45:7a: e2:92:33:75:20:5d:24:94:db:42:da:9c:a7:fe:82: 78:0f:da:5f:19:a2:01:0b:83:f3:47:cc:38:78:df: 52:47:57:80:38:23:5e:71:16:00:a5:5e:33:38:3d: 62:15:d6:b3:a9:5b:b2:02:68:3a:37:88:68:79:95: 1b:e2:0c:d5:84:e2:c9:38:7e:78:10:94:eb:41:11: 13:ef:e7:1b:3e:26:14:5f:e7:64:d6:1a:80:d9:7f: 87:07:1e:6a:f6:ca:59:f1:b1:f3:fa:b6:17:70:5b: 62:bf:80:95:f7:2f:04:16:b7:b3:fe:d2:3f:fc:e8: 53:99:8f:5f:79:6a:b5:17:56:87:8f:30:ea:df:a7: 4a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:DE:AB:6A:51:37:5A:79:F2:13:6E:EE:C3:1D:71:A3:87:37:70:4A X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:6f:6a:5a:2a:87:5d:ee:fc:3f:00:63:e7:4b:fe:70:8b:cc: 8d:c1:f3:52:22:30:d5:bd:f1:16:27:0f:a2:b0:33:25:4d:a0: 2b:03:5b:f7:29:7e:cf:fa:5b:24:23:38:e1:ab:e1:ad:6a:81: 3f:fc:ca:27:cc:3c:d2:e2:d5:bc:b8:6c:dc:04:6b:50:4e:bd: f0:42:0f:c7:a0:43:c3:95:d1:27:39:9f:66:3c:81:47:bb:52: 6e:9a:da:06:ff:bf:e0:d2:54:bb:eb:11:6f:64:33:b2:10:ae: b7:dd:0c:f5:be:9a:a0:96:f9:e6:38:33:ab:d0:f3:eb:b5:de: 90:4a:56:e0:63:69:33:ab:23:a5:fa:0d:e2:c9:bf:bd:62:f4: cb:e4:2a:b9:0e:a8:56:ca:41:bc:8d:50:0d:f3:ad:a2:ef:33: 9d:de:7b:d3:09:4a:c4:02:9e:83:d1:67:b4:87:66:2e:c0:0b: c8:ae:f4:38:1f:43:3c:c6:28:b6:fb:da:6d:f4:fc:21:ed:72: 97:79:69:57:16:a0:3e:fe:31:65:82:e4:b0:00:9b:4d:71:c8: ef:29:99:2c:27:38:48:11:11:c5:89:67:e4:98:59:45:49:56: c3:a3:bd:dc:57:de:df:0b:4a:6a:1e:a4:ac:2a:77:2e:10:fb: 0c:26:29:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkE3NTExMC8GA1UEBRMoQkM3MEYzNzRCNzI4QzdCNzExQzI0QTY4MjdGNzQ3N0E0 MkIyMkE0RDAeFw0yNTA1MTMwNjU3NTJaFw0yNTA1MjAwNjU3NTJaMBgxFjAUBgNV BAMTDTY4MjJlZDcwLTJmNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC22I0uKvJC0S/3BOXy92uHkLapBs6FcW2VR+csGO8QoJFB7bE1YB/i0RDkOBcU CUnsQ6wYsCCPe+efMl6VNY3ay8rAAxiyrs4EJjP4eNGCdA8zhIFASp0dlfDSHjoP ZbBerJMlek+Bf7lPuYvB9vvK46XRvhxFeuKSM3UgXSSU20LanKf+gngP2l8ZogEL g/NHzDh431JHV4A4I15xFgClXjM4PWIV1rOpW7ICaDo3iGh5lRviDNWE4sk4fngQ lOtBERPv5xs+JhRf52TWGoDZf4cHHmr2ylnxsfP6thdwW2K/gJX3LwQWt7P+0j/8 6FOZj195arUXVoePMOrfp0qhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUod6ralE3 WnnyE27uwx1xo4c3cEowHwYDVR0jBBgwFoAUvHDzdLcox7cRwkpoJ/dHekKyKk0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyQTc1L0VGNUNENkRBRjUz OTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtr MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkhEemRMY294N2NSd2twb0pfZEhla0t5S2swLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy QTc1L0VGNUNENkRBRjUzOTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdj UndrcG9KX2RIZWtLeUtrMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGdvaloqh13u/D8AY+dL/nCLzI3B81IiMNW98RYnD6KwMyVNoCsDW/cp fs/6WyQjOOGr4a1qgT/8yifMPNLi1by4bNwEa1BOvfBCD8egQ8OV0Sc5n2Y8gUe7 Um6a2gb/v+DSVLvrEW9kM7IQrrfdDPW+mqCW+eY4M6vQ8+u13pBKVuBjaTOrI6X6 DeLJv71i9MvkKrkOqFbKQbyNUA3zraLvM53ee9MJSsQCnoPRZ7SHZi7AC8iu9Dgf QzzGKLb72m30/CHtcpd5aVcWoD7+MWWC5LAAm01xyO8pmSwnOEgREcWJZ+SYWUVJ VsOjvdxX3t8LSmoepKwqdy4Q+wwmKXo= -----END CERTIFICATE-----Generated at Wed May 14 01:38:56 2025 by rpki-client