$ rpki-client -vvf rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft File: mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft (raw, json) Hash identifier: DaE+FCebv8YlvIhTZ/BzO3I7HeID+2suunMLAf2Pzmo= Subject key identifier: 01:D4:1B:E0:AF:D1:BF:C2:0E:63:84:43:4D:7C:0F:AB:D5:07:D7:10 Authority key identifier: 99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9 Certificate issuer: /CN=A914B1DB/serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft Manifest number: 9B Signing time: Tue 13 May 2025 05:27:28 +0000 Manifest this update: Tue 13 May 2025 05:27:28 +0000 Manifest next update: Tue 20 May 2025 05:27:28 +0000 Files and hashes: 1: mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl (hash: Kc+BgeTt0u2LJLfxF28Yu3d5UG9u0hNW0Dmn2kAzCYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B1DB, serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9 Validity Not Before: May 13 05:27:28 2025 GMT Not After : May 20 05:27:28 2025 GMT Subject: CN=6822d840-93d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e1:fa:9c:7e:07:f5:d9:86:23:93:b2:49:50: 57:68:93:49:67:59:7e:16:10:73:fe:c0:f7:2a:72: 4c:62:c7:6c:fd:52:2c:d2:67:6c:d8:b9:dc:92:a4: dc:ff:4e:6d:54:7b:5e:da:24:a4:2a:ba:84:c2:48: 89:2e:4b:71:87:97:0d:02:63:de:34:4e:8a:3a:db: 62:1f:cb:58:4b:ce:a9:62:6a:2c:40:36:a7:aa:43: 81:42:0a:14:75:e1:9b:34:71:c8:6a:b5:e7:e9:03: 85:21:01:d1:89:3f:72:dd:cd:35:a9:47:16:dc:5c: 8d:d3:72:30:dc:ae:47:9e:ca:48:35:75:8c:63:b7: 05:a7:79:50:56:97:25:d1:7f:95:7c:9b:13:35:8a: ef:bc:6e:65:dd:cd:54:5d:a1:82:e5:a7:c4:26:bf: d8:b7:6b:8c:49:fc:b0:73:81:53:83:23:cf:76:c2: a6:e0:f4:db:7a:b2:6f:7b:45:7f:eb:1c:ad:6e:b0: ff:61:cb:36:b3:a4:d2:aa:28:d5:ae:b4:a2:ef:9e: 48:c5:cc:2c:0a:5c:fd:b6:56:5a:43:2e:7f:eb:a2: e6:c5:1b:55:07:d3:1b:3d:1c:ca:b9:c0:ba:5d:fd: 82:39:08:82:58:b1:db:6f:af:77:e2:61:46:0f:74: b5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D4:1B:E0:AF:D1:BF:C2:0E:63:84:43:4D:7C:0F:AB:D5:07:D7:10 X509v3 Authority Key Identifier: keyid:99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ed:f5:5b:b5:a3:3b:61:e2:c5:74:05:3e:3e:fc:2c:96:7a:1f: 79:aa:46:75:2b:64:96:47:d0:f6:e7:ed:bc:23:9e:7a:0d:43: cc:49:99:e4:72:0e:da:d3:5a:a0:f2:f6:1e:49:ab:3b:70:07: b8:5d:e3:51:5c:05:a1:d4:ed:f9:fe:90:d7:1d:00:d2:bc:ee: 72:b5:8b:f6:d8:aa:20:63:04:2b:53:45:f7:fb:f3:6e:4f:db: 06:85:76:9a:0b:b9:ae:4f:63:68:11:69:86:67:10:97:81:d1: c9:7d:e0:fa:e8:b4:e2:e6:c5:37:c8:d7:8e:27:71:e7:6b:fe: 6a:02:65:4f:4e:4a:a2:0b:b2:db:6f:63:0c:41:01:31:77:84: 55:4f:70:6a:10:3c:5f:fb:20:b2:66:a7:73:9c:05:a0:3b:a1: 09:c4:6f:3c:ef:35:c8:79:25:f3:bb:2e:3e:0a:1f:2b:e1:89: 92:ea:77:fa:fe:a8:6b:4c:27:f8:14:67:de:c7:ae:65:d2:2a: 1b:11:b1:91:a4:78:70:33:ab:3a:5e:71:c3:92:67:10:cb:06: bd:a4:e4:8e:0b:2c:e6:cf:c2:49:2a:56:e4:11:4b:6a:fe:f4: 40:f0:b7:ca:d6:90:a3:74:7c:26:37:53:57:fc:63:79:4e:63: d9:e1:3e:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxREIxMTAvBgNVBAUTKDk5QzEwNkU4N0ZFMUQ2NDExQUVDNzFGODAzOTQ2MjJD ODgxQUFBRDkwHhcNMjUwNTEzMDUyNzI4WhcNMjUwNTIwMDUyNzI4WjAYMRYwFAYD VQQDEw02ODIyZDg0MC05M2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OH6nH4H9dmGI5OySVBXaJNJZ1l+FhBz/sD3KnJMYsds/VIs0mds2LnckqTc /05tVHte2iSkKrqEwkiJLktxh5cNAmPeNE6KOttiH8tYS86pYmosQDanqkOBQgoU deGbNHHIarXn6QOFIQHRiT9y3c01qUcW3FyN03Iw3K5HnspINXWMY7cFp3lQVpcl 0X+VfJsTNYrvvG5l3c1UXaGC5afEJr/Yt2uMSfywc4FTgyPPdsKm4PTberJve0V/ 6xytbrD/Ycs2s6TSqijVrrSi755IxcwsClz9tlZaQy5/66LmxRtVB9MbPRzKucC6 Xf2COQiCWLHbb6934mFGD3S1ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHUG+Cv 0b/CDmOEQ018D6vVB9cQMB8GA1UdIwQYMBaAFJnBBuh/4dZBGuxx+AOUYiyIGqrZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjFEQi8zNjUxNDBFRTQz MTAxMUVGODY4QjJCODFDNEY5QUUwMi9tY0VHNkhfaDFrRWE3SEg0QTVSaUxJZ2Fx dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21jRUc2SF9oMWtFYTdISDRBNVJpTElnYXF0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjFEQi8zNjUxNDBFRTQzMTAxMUVGODY4QjJCODFDNEY5QUUwMi9tY0VHNkhfaDFr RWE3SEg0QTVSaUxJZ2FxdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDt9Vu1ozth4sV0BT4+/CyWeh95qkZ1K2SWR9D25+28I556DUPMSZnk cg7a01qg8vYeSas7cAe4XeNRXAWh1O35/pDXHQDSvO5ytYv22KogYwQrU0X3+/Nu T9sGhXaaC7muT2NoEWmGZxCXgdHJfeD66LTi5sU3yNeOJ3Hna/5qAmVPTkqiC7Lb b2MMQQExd4RVT3BqEDxf+yCyZqdznAWgO6EJxG887zXIeSXzuy4+Ch8r4YmS6nf6 /qhrTCf4FGfex65l0iobEbGRpHhwM6s6XnHDkmcQywa9pOSOCyzmz8JJKlbkEUtq /vRA8LfK1pCjdHwmN1NX/GN5TmPZ4T5x -----END CERTIFICATE-----Generated at Wed May 14 01:42:17 2025 by rpki-client