$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: WVEGtiR6LbZFmTTX4WGiK2mC9CX+ybkXN2MDmYJVvV4= Subject key identifier: CB:64:79:DE:9D:A5:08:E3:DE:C1:46:AD:E4:0C:47:7C:66:57:71:A3 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 0986 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 097C Signing time: Mon 12 May 2025 19:58:56 +0000 Manifest this update: Mon 12 May 2025 19:58:55 +0000 Manifest next update: Mon 19 May 2025 19:58:55 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: 6bH0qFamZmeoP5JsEhPczH/OjnC3P/X1cGE9ieyhbSg=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: EW5gw++/Nv/7XkyhmrGAdJFCyCQBgQSX+Pdw0qIT5p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2438 (0x986) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: May 12 19:58:55 2025 GMT Not After : May 19 19:58:55 2025 GMT Subject: CN=68225300-5707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:51:af:43:6b:f1:c1:2b:f9:c7:2a:be:a3:56: ed:2e:6b:42:3a:09:11:35:72:b3:bc:f4:34:45:2f: dc:e5:85:25:b9:3e:31:38:59:62:fb:67:0b:e5:e9: 87:92:26:73:65:da:16:2a:03:ea:c4:67:dc:6e:3f: aa:9f:81:31:0a:db:d8:0b:42:16:68:a6:1c:89:15: d2:77:d8:08:64:e2:33:de:d4:3a:d2:44:61:10:55: e7:ca:4b:8d:37:1a:56:bc:71:a0:00:57:96:2a:5c: 3e:f9:e3:99:07:11:bc:85:c7:0a:09:ed:a3:9c:2a: 19:82:be:e4:a0:aa:bb:44:86:14:d7:5d:46:89:43: d8:87:8b:90:f6:13:eb:28:6e:f8:ca:3c:66:4f:95: a8:b4:35:dd:d2:4a:23:58:f9:bc:50:be:7d:9e:f3: 3c:ff:16:e3:a7:9d:42:97:a4:d0:39:0b:8f:c7:00: 59:9b:cb:51:9d:4c:7f:48:42:16:9b:2c:9a:6c:20: 3d:59:6b:67:61:16:e4:93:c1:01:f3:75:a1:57:89: 82:75:67:3b:6a:a4:c6:c9:99:85:19:d3:71:0b:8e: 5c:4e:31:88:17:1d:1c:8b:93:57:cf:ab:3f:5b:38: 88:54:b0:ce:50:76:e6:ad:e3:e5:9f:ce:e7:4a:7f: 4b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:64:79:DE:9D:A5:08:E3:DE:C1:46:AD:E4:0C:47:7C:66:57:71:A3 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:73:47:21:77:5d:9f:f5:09:c6:48:a7:cc:ac:3e:c9:c2:68: c2:ca:11:99:83:0a:b4:fd:56:08:85:be:f5:32:c2:60:e2:1c: 7b:0b:7d:14:15:44:3d:08:b8:ef:98:30:f3:ad:bf:d4:fd:bd: 6e:5f:3a:af:c8:71:79:66:7d:04:42:46:f6:44:5b:a8:5a:1c: 27:10:d8:ef:9f:65:7e:83:93:82:e0:18:b4:34:4b:e7:4b:09: 68:59:5f:95:f3:4e:1a:53:76:7e:04:29:56:29:49:2b:b6:99: 0f:72:31:fe:e0:71:48:83:fa:7d:d9:bf:b0:40:d1:0d:9b:2b: ca:87:d6:76:d9:5a:3a:e1:c8:d2:3f:71:93:7f:f8:e9:1e:e6: 97:00:7b:23:e5:7b:5e:9f:3c:63:e3:37:9c:66:1b:79:95:d4: 74:f9:09:7c:82:6c:8d:8c:a9:d9:2e:38:ac:d4:1e:e6:9b:c1: c2:8d:c2:e8:dc:ea:d4:a1:92:91:3d:d5:59:6f:da:4e:4d:ff: a8:ba:7b:1b:3a:30:3f:77:f7:55:0f:7a:ff:22:0f:d8:e8:6d: 3a:cd:7b:7a:be:41:b5:bf:af:71:cc:8e:2f:db:dd:65:6e:4f: 71:d3:6d:46:6a:10:b3:b2:3f:45:ad:de:7f:00:06:22:1c:f7: f0:df:4d:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjUwNTEyMTk1ODU1WhcNMjUwNTE5MTk1ODU1WjAYMRYwFAYD VQQDEw02ODIyNTMwMC01NzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVGvQ2vxwSv5xyq+o1btLmtCOgkRNXKzvPQ0RS/c5YUluT4xOFli+2cL5emH kiZzZdoWKgPqxGfcbj+qn4ExCtvYC0IWaKYciRXSd9gIZOIz3tQ60kRhEFXnykuN NxpWvHGgAFeWKlw++eOZBxG8hccKCe2jnCoZgr7koKq7RIYU111GiUPYh4uQ9hPr KG74yjxmT5WotDXd0kojWPm8UL59nvM8/xbjp51Cl6TQOQuPxwBZm8tRnUx/SEIW myyabCA9WWtnYRbkk8EB83WhV4mCdWc7aqTGyZmFGdNxC45cTjGIFx0ci5NXz6s/ WziIVLDOUHbmrePln87nSn9LQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtked6d pQjj3sFGreQMR3xmV3GjMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkc0chd12f9QnGSKfMrD7JwmjCyhGZgwq0/VYIhb71MsJg4hx7C30U FUQ9CLjvmDDzrb/U/b1uXzqvyHF5Zn0EQkb2RFuoWhwnENjvn2V+g5OC4Bi0NEvn SwloWV+V804aU3Z+BClWKUkrtpkPcjH+4HFIg/p92b+wQNENmyvKh9Z22Vo64cjS P3GTf/jpHuaXAHsj5Xtenzxj4zecZht5ldR0+Ql8gmyNjKnZLjis1B7mm8HCjcLo 3OrUoZKRPdVZb9pOTf+ounsbOjA/d/dVD3r/Ig/Y6G06zXt6vkG1v69xzI4v291l bk9x021GahCzsj9Frd5/AAYiHPfw302s -----END CERTIFICATE-----Generated at Wed May 14 18:34:01 2025 by rpki-client