$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: Rk44ey9fFjjzU4wOj18GH0AaT74nxHPJQex5Wlm3iMU= Subject key identifier: FC:1D:10:CF:79:E3:6B:D7:DF:49:00:9F:75:74:E8:D8:08:68:61:63 Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0BCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0BC7 Signing time: Wed 14 May 2025 18:59:26 +0000 Manifest this update: Wed 14 May 2025 18:59:25 +0000 Manifest next update: Wed 21 May 2025 18:59:25 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: PcGNZ4kuzckpboZnRPkFGO+EHstweL3IkueaO38frBs=) 2: 2CD5AAF8060311EBBE15EA18C4F9AE02.roa (hash: mW8L1FLDXuwnCDk5B3rFgpB45GljzNSPgwbjM/e2Wu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3023 (0xbcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22, serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: May 14 18:59:25 2025 GMT Not After : May 21 18:59:25 2025 GMT Subject: CN=6824e80e-4b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6a:bb:d2:75:f9:d9:4d:d6:0c:e9:b6:df:6a: ea:44:df:32:ac:c0:c8:6c:24:73:4e:5c:1e:45:03: 41:3c:12:5d:e4:51:b6:01:68:f4:e6:03:33:aa:2d: d9:67:9a:7e:45:3d:4a:13:5b:11:5c:a3:4a:45:4d: 83:0c:93:37:f1:94:b3:d9:92:05:e4:fe:63:f9:7f: ad:e6:43:35:8d:ff:b7:70:74:78:85:c5:aa:90:08: 28:a7:36:ef:4c:05:54:49:2f:08:5f:e2:f0:67:58: b5:9f:4d:56:ad:53:c5:7e:31:87:66:36:39:3d:b2: 71:89:ef:5d:8f:db:c2:b2:a0:9c:1b:f9:4d:a2:16: 45:d5:b9:b6:a6:d4:64:54:9e:68:a8:87:2b:62:f1: c9:59:40:c4:89:04:18:9c:53:20:88:a9:07:48:f0: 05:67:eb:02:ec:f7:3b:e7:da:08:5d:c1:e8:32:40: 7b:e6:ff:21:57:c4:a6:ac:d9:e2:9c:65:a8:53:a1: 88:ae:7c:95:63:ca:87:69:7a:c4:31:f2:15:76:2c: 33:ff:b0:16:cc:31:56:19:c6:16:0a:9a:66:af:31: b9:fb:a0:01:f8:49:c9:98:4e:13:25:c7:8e:c6:eb: 50:df:b7:ae:4c:34:e9:a8:c4:65:c3:27:80:58:a2: 4e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:1D:10:CF:79:E3:6B:D7:DF:49:00:9F:75:74:E8:D8:08:68:61:63 X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8c:01:09:e1:36:40:ae:ba:16:34:7a:92:30:46:dd:87:58: 1c:19:ac:78:11:e7:91:13:66:a9:c2:93:7d:e8:98:da:50:27: fa:d8:fb:d2:87:36:29:6d:f3:d4:78:92:8c:dd:79:f1:a0:4a: ad:03:4a:a0:b1:3a:02:b4:7a:29:d0:63:3b:37:ac:56:10:80: ea:c7:b6:95:00:84:a7:84:46:28:38:6c:a0:ac:c9:9f:46:37: 9f:bc:18:97:d9:e2:ba:17:f2:ac:85:00:02:29:9e:43:e4:1f: f7:2b:85:5c:36:76:f7:b1:d3:7e:fe:38:92:a6:b4:40:b4:65: c0:bc:86:79:05:a7:60:da:f4:1c:00:da:0a:f1:1d:10:b7:1c: c6:8f:79:c8:63:8b:21:db:a5:f7:d4:16:49:54:08:64:03:10: ca:4e:e5:77:f3:56:d4:98:3a:af:be:2c:dc:3c:b5:d0:31:df: 3e:6e:3e:04:8f:84:2c:f6:d2:f4:e9:9c:2d:39:82:58:8d:76: 36:6f:bd:4a:d9:93:e4:91:9c:52:5e:b2:3b:53:d9:79:c5:38: 55:ee:83:be:ba:00:4b:72:9c:92:e8:84:8f:13:a8:4b:20:9d: ec:20:d9:f6:eb:bb:d6:eb:a6:0b:99:dd:9c:10:f5:88:7e:90: d2:fc:a7:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjUwNTE0MTg1OTI1WhcNMjUwNTIxMTg1OTI1WjAYMRYwFAYD VQQDEw02ODI0ZTgwZS00YjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomq70nX52U3WDOm232rqRN8yrMDIbCRzTlweRQNBPBJd5FG2AWj05gMzqi3Z Z5p+RT1KE1sRXKNKRU2DDJM38ZSz2ZIF5P5j+X+t5kM1jf+3cHR4hcWqkAgopzbv TAVUSS8IX+LwZ1i1n01WrVPFfjGHZjY5PbJxie9dj9vCsqCcG/lNohZF1bm2ptRk VJ5oqIcrYvHJWUDEiQQYnFMgiKkHSPAFZ+sC7Pc759oIXcHoMkB75v8hV8SmrNni nGWoU6GIrnyVY8qHaXrEMfIVdiwz/7AWzDFWGcYWCppmrzG5+6AB+EnJmE4TJceO xutQ37euTDTpqMRlwyeAWKJOZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwdEM95 42vX30kAn3V06NgIaGFjMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOjAEJ4TZArroWNHqSMEbdh1gcGax4EeeRE2apwpN96JjaUCf62PvS hzYpbfPUeJKM3XnxoEqtA0qgsToCtHop0GM7N6xWEIDqx7aVAISnhEYoOGygrMmf RjefvBiX2eK6F/KshQACKZ5D5B/3K4VcNnb3sdN+/jiSprRAtGXAvIZ5Badg2vQc ANoK8R0QtxzGj3nIY4sh26X31BZJVAhkAxDKTuV381bUmDqvvizcPLXQMd8+bj4E j4Qs9tL06ZwtOYJYjXY2b71K2ZPkkZxSXrI7U9l5xThV7oO+ugBLcpyS6ISPE6hL IJ3sINn267vW66YLmd2cEPWIfpDS/Kd0 -----END CERTIFICATE-----Generated at Fri May 16 02:40:52 2025 by rpki-client