$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft File: o9c6Tp8QQ946v09e0Qhor20zW_Q.mft (raw, json) Hash identifier: tj/LkpKOgNGfphKq6O+N5sWEvpYx2LK8cCLkRxRmX14= Subject key identifier: DF:59:15:BC:BD:7F:82:BB:4F:B8:82:80:0F:7A:FB:B3:24:76:B1:21 Authority key identifier: A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 Certificate issuer: /CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Certificate serial: 03A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft Manifest number: 03A3 Signing time: Sat 17 May 2025 00:59:21 +0000 Manifest this update: Sat 17 May 2025 00:59:21 +0000 Manifest next update: Sat 24 May 2025 00:59:21 +0000 Files and hashes: 1: o9c6Tp8QQ946v09e0Qhor20zW_Q.crl (hash: d+xNnL1yAyzxfdfn5AXCRdKSANBeCS0qCJj9HE4Shf8=) 2: 59212E58955D11EC97EC0461C4F9AE02.roa (hash: 82bmKccqbBzTdNqrTXoGpBcJx8ypp4VeLlhE4Yo0df8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 00:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 935 (0x3a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A4A1, serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Validity Not Before: May 17 00:59:21 2025 GMT Not After : May 24 00:59:21 2025 GMT Subject: CN=6827df69-fdaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:06:17:76:01:09:4f:5f:c3:79:d3:da:15: 38:79:67:42:38:d9:a2:03:31:20:ac:6a:27:ad:c0: 0f:2b:05:e0:ac:3b:2e:9f:75:91:fc:34:b9:32:6c: 7b:5e:a9:8f:84:dc:4a:38:59:62:f9:5a:ae:1e:97: 0b:95:c3:3a:c0:42:99:22:8e:7e:c6:a9:5f:16:70: 70:f7:e6:36:c9:38:dd:be:6f:22:88:10:7e:00:ee: d9:33:7e:ca:42:d2:7b:3f:fb:aa:b5:da:a3:72:e0: a0:e4:66:b1:6d:39:6a:ae:e5:aa:c3:76:dc:7c:cf: c0:f2:c0:65:f2:6f:67:f0:b8:eb:03:8c:27:84:38: 88:3b:11:d6:e0:c7:4b:28:7b:dd:2c:84:3e:91:f2: 70:15:0b:66:ec:32:b0:9a:e9:74:4b:9a:8b:69:c0: 96:35:5a:bc:d6:22:ae:8c:6f:86:a7:2e:b5:a1:3a: f0:54:ca:6a:c7:96:e2:7f:28:5a:0d:c4:91:bf:95: 47:b3:99:46:62:78:9c:7e:b7:ae:41:c4:ca:72:17: 1f:d6:c7:00:86:f1:be:e1:35:88:44:1c:2c:63:9d: d3:72:72:c6:8f:f0:63:c8:37:d9:13:bd:ae:e3:be: 91:0f:8e:e5:fd:e5:a0:8c:9b:89:3b:3d:ff:d4:76: 5c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:59:15:BC:BD:7F:82:BB:4F:B8:82:80:0F:7A:FB:B3:24:76:B1:21 X509v3 Authority Key Identifier: keyid:A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:05:fb:4a:be:87:a4:f2:19:d3:17:fb:2b:60:03:33:78:c8: 98:b5:c6:f1:fa:5a:a9:b0:dc:63:5a:2d:26:b2:12:82:82:63: 60:4f:75:28:43:9b:4c:50:a5:1a:d4:bf:ae:7d:81:73:79:53: e6:9a:28:92:c2:f8:ae:c4:72:dd:a8:5f:5b:14:2a:c1:03:9e: e5:1e:e4:d9:e1:1b:c7:24:e2:a4:0f:b1:3b:ae:c0:4b:70:89: a4:61:88:20:7a:28:e5:9c:ea:c2:9e:21:9a:34:e2:c8:8c:11: 08:7e:2f:de:2c:a6:58:df:b5:19:1c:36:ac:49:53:d2:5b:35: be:d4:b8:7f:08:cc:b1:ad:0c:b6:21:69:da:96:2c:e3:ec:4f: 34:cb:54:8f:e7:b7:01:31:0b:eb:8e:fd:e8:88:41:af:6d:57: 7a:51:01:ff:0a:18:85:fb:be:88:17:9e:3e:b8:aa:3f:9b:f7: 73:29:28:b7:d7:1e:fd:6d:c7:b2:ac:37:ca:47:89:cb:b6:23: e2:22:35:3b:f7:18:b6:2f:60:e9:dd:23:13:b8:14:67:05:a9: d7:69:fe:cb:63:37:1c:07:f9:a6:41:e5:22:6a:a7:0e:14:4a: cf:b0:61:d7:ff:0b:8e:13:d2:78:7b:60:97:e8:fc:42:76:64: 1f:af:88:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0QTExMTAvBgNVBAUTKEEzRDczQTRFOUYxMDQzREUzQUJGNEY1RUQxMDg2OEFG NkQzMzVCRjQwHhcNMjUwNTE3MDA1OTIxWhcNMjUwNTI0MDA1OTIxWjAYMRYwFAYD VQQDEw02ODI3ZGY2OS1mZGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOIGF3YBCU9fw3nT2hU4eWdCONmiAzEgrGonrcAPKwXgrDsun3WR/DS5Mmx7 XqmPhNxKOFli+VquHpcLlcM6wEKZIo5+xqlfFnBw9+Y2yTjdvm8iiBB+AO7ZM37K QtJ7P/uqtdqjcuCg5GaxbTlqruWqw3bcfM/A8sBl8m9n8LjrA4wnhDiIOxHW4MdL KHvdLIQ+kfJwFQtm7DKwmul0S5qLacCWNVq81iKujG+Gpy61oTrwVMpqx5bifyha DcSRv5VHs5lGYnicfreuQcTKchcf1scAhvG+4TWIRBwsY53TcnLGj/BjyDfZE72u 476RD47l/eWgjJuJOz3/1HZcLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9ZFby9 f4K7T7iCgA96+7MkdrEhMB8GA1UdIwQYMBaAFKPXOk6fEEPeOr9PXtEIaK9tM1v0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTRBMS82OENFQzA5NDk1 NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5NDZ2MDllMFFob3IyMHpX X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285YzZUcDhRUTk0NnYwOWUwUWhvcjIweldfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTRBMS82OENFQzA5NDk1NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5 NDZ2MDllMFFob3IyMHpXX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnBftKvoek8hnTF/srYAMzeMiYtcbx+lqpsNxjWi0mshKCgmNgT3Uo Q5tMUKUa1L+ufYFzeVPmmiiSwviuxHLdqF9bFCrBA57lHuTZ4RvHJOKkD7E7rsBL cImkYYggeijlnOrCniGaNOLIjBEIfi/eLKZY37UZHDasSVPSWzW+1Lh/CMyxrQy2 IWnalizj7E80y1SP57cBMQvrjv3oiEGvbVd6UQH/ChiF+76IF54+uKo/m/dzKSi3 1x79bceyrDfKR4nLtiPiIjU79xi2L2Dp3SMTuBRnBanXaf7LYzccB/mmQeUiaqcO FErPsGHX/wuOE9J4e2CX6PxCdmQfr4gE -----END CERTIFICATE-----Generated at Sat May 17 06:59:29 2025 by rpki-client