$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: vlia04SjqbsVrAayE4ONiafF2UtEXRGcIDjMxSr/Qgk= Subject key identifier: 66:10:44:98:03:F3:63:15:82:4A:49:14:52:C4:D5:6D:89:B5:66:67 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0D1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0D14 Signing time: Wed 14 May 2025 18:10:37 +0000 Manifest this update: Wed 14 May 2025 18:10:36 +0000 Manifest next update: Wed 21 May 2025 18:10:36 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: oc5riox8GBs61RQMhXFfVr3s2G8sqIzt5UcTZgV+Bjw=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: 5GX92aioe88puPmyzGflssCck3bnuW06XT8lCNmGXB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3357 (0xd1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: May 14 18:10:36 2025 GMT Not After : May 21 18:10:36 2025 GMT Subject: CN=6824dc9d-0c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c3:ef:20:0b:43:e8:83:06:92:0c:a1:58:fb: d8:e4:00:6e:05:f5:14:75:9f:4d:c7:1b:80:d3:3c: 04:b5:14:59:6a:59:e0:35:97:6d:bc:f0:37:28:48: 40:9b:59:5e:56:2c:55:a2:9b:dd:2c:1f:2d:66:8f: 04:c4:02:d6:88:8c:6a:9c:e0:c5:7e:b6:fe:ef:04: ac:36:9a:cf:d1:4e:55:f6:64:e2:c7:29:6c:7c:13: d2:fa:8d:43:c1:71:ff:28:ae:33:4c:73:5a:14:d8: 32:bc:e8:84:b6:f0:f2:40:d7:ba:de:84:b0:35:80: 98:b4:b4:f5:69:3e:43:d1:aa:4c:3b:30:a7:a7:05: 37:54:90:b4:92:eb:8a:5a:56:64:b4:1f:b2:c0:f9: 0b:83:20:3e:d1:70:c1:aa:3d:99:f9:5a:07:b3:c9: fd:9a:a2:83:48:34:dc:5b:3d:a3:ee:90:24:97:42: 20:96:3e:aa:90:55:d6:e8:be:72:b6:0d:60:13:e8: 6a:d5:d5:78:b2:8b:62:28:c1:16:7e:0f:82:20:83: 06:6a:18:2c:30:f7:a7:5d:aa:90:f3:07:da:e2:b0: 6d:db:36:43:b5:23:bc:60:d3:12:e1:9a:6f:51:9f: 61:de:0e:c7:e0:7d:e5:cb:f9:3c:e2:a8:87:0f:e0: b9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:10:44:98:03:F3:63:15:82:4A:49:14:52:C4:D5:6D:89:B5:66:67 X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:33:eb:47:30:97:13:92:2c:11:57:0f:9a:6a:52:cd:05:11: 98:7f:58:8c:f0:af:c8:35:06:30:47:81:36:aa:3b:70:98:a0: 4f:17:9b:75:18:3e:b5:72:f7:de:fd:3b:04:13:b2:45:15:ea: 52:9b:cf:59:fd:c8:a4:8c:35:05:5e:75:90:7a:d6:ea:ee:e7: 32:32:53:0c:7a:bf:11:bc:eb:a7:82:68:35:ac:4f:bc:b7:ba: 76:e3:60:42:b2:5d:a0:47:18:e1:95:b8:bf:23:2e:ec:94:36: f7:42:89:0b:ac:02:e1:f8:b5:70:e5:22:c8:b3:7a:e2:61:93: 5e:11:5b:58:15:40:b3:9c:1b:d3:8f:36:68:42:9a:c8:27:ad: 49:23:9c:bd:41:57:e2:a6:e2:7b:16:24:a0:21:69:a1:fa:6f: 8e:12:2b:29:eb:11:8d:ac:5f:01:ff:ca:37:3b:f2:33:9a:d2: e2:92:2a:3e:4d:f3:36:3d:fd:33:62:3b:00:56:93:e2:33:3e: 38:c4:3b:b9:02:2c:01:81:8f:59:ff:22:02:e8:db:be:d3:f6: 9f:7c:2c:64:5d:f6:0b:82:5e:fa:dc:65:7e:e8:b8:54:af:2f: a1:9a:35:53:ae:55:14:2d:3f:ec:47:e3:aa:b0:82:b4:f6:ab: f6:6d:89:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjUwNTE0MTgxMDM2WhcNMjUwNTIxMTgxMDM2WjAYMRYwFAYD VQQDEw02ODI0ZGM5ZC0wYzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMPvIAtD6IMGkgyhWPvY5ABuBfUUdZ9NxxuA0zwEtRRZalngNZdtvPA3KEhA m1leVixVopvdLB8tZo8ExALWiIxqnODFfrb+7wSsNprP0U5V9mTixylsfBPS+o1D wXH/KK4zTHNaFNgyvOiEtvDyQNe63oSwNYCYtLT1aT5D0apMOzCnpwU3VJC0kuuK WlZktB+ywPkLgyA+0XDBqj2Z+VoHs8n9mqKDSDTcWz2j7pAkl0Iglj6qkFXW6L5y tg1gE+hq1dV4sotiKMEWfg+CIIMGahgsMPenXaqQ8wfa4rBt2zZDtSO8YNMS4Zpv UZ9h3g7H4H3ly/k84qiHD+C5fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYQRJgD 82MVgkpJFFLE1W2JtWZnMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfM+tHMJcTkiwRVw+aalLNBRGYf1iM8K/INQYwR4E2qjtwmKBPF5t1 GD61cvfe/TsEE7JFFepSm89Z/cikjDUFXnWQetbq7ucyMlMMer8RvOungmg1rE+8 t7p242BCsl2gRxjhlbi/Iy7slDb3QokLrALh+LVw5SLIs3riYZNeEVtYFUCznBvT jzZoQprIJ61JI5y9QVfipuJ7FiSgIWmh+m+OEisp6xGNrF8B/8o3O/IzmtLikio+ TfM2Pf0zYjsAVpPiMz44xDu5AiwBgY9Z/yIC6Nu+0/affCxkXfYLgl763GV+6LhU ry+hmjVTrlUULT/sR+OqsIK09qv2bYn2 -----END CERTIFICATE-----Generated at Thu May 15 00:11:36 2025 by rpki-client