$ rpki-client -vvf rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft File: _ksuVPGAyAmvHsmemnx-JzLZ3aY.mft (raw, json) Hash identifier: h/8sSB2AFQQlgJ/6R7+tC882Na9QgOUcPUacpiV5x+8= Subject key identifier: BD:05:4A:26:65:C9:39:11:87:2E:37:4A:E6:E1:BE:43:98:BC:6E:85 Authority key identifier: FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 Certificate issuer: /CN=A914BE96/serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Certificate serial: 0FCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft Manifest number: 0FC0 Signing time: Wed 14 May 2025 17:37:42 +0000 Manifest this update: Wed 14 May 2025 17:37:42 +0000 Manifest next update: Wed 21 May 2025 17:37:41 +0000 Files and hashes: 1: _ksuVPGAyAmvHsmemnx-JzLZ3aY.crl (hash: tffhmjAzJxFTN+3j68YYZurCzs2QpM4rNoKBWQ969bs=) 2: 8F75257455E911E9AE112D6CC4F9AE02.roa (hash: ADwuiMuCXWdbcH0qjtPSZ/UoUy9O3h+eNA26nMvAOHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4046 (0xfce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BE96, serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Validity Not Before: May 14 17:37:42 2025 GMT Not After : May 21 17:37:41 2025 GMT Subject: CN=6824d4e6-25cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b7:e4:75:30:22:13:e8:01:c2:8b:90:21:27: 28:a8:3e:29:35:3a:bb:2a:9e:11:b9:38:4f:30:32: 2e:4b:e4:a0:fe:0d:9f:cd:24:1b:55:e3:44:6c:dd: a8:1f:d2:a4:df:f3:d9:fc:51:49:5d:d5:6c:45:a8: 1b:56:14:28:74:65:c4:67:66:0c:c8:ad:89:01:bd: db:e4:45:57:d5:95:11:d0:40:04:6c:42:3f:63:18: 3d:f2:5c:30:f1:e6:fb:0f:ac:63:49:fc:03:25:e2: ed:40:89:0f:a0:5d:fb:5e:43:32:f9:a3:bb:06:90: c9:9b:3e:3a:4f:1d:92:cb:d2:91:92:9c:53:d8:4b: bf:e6:eb:ee:1f:c4:d5:33:bf:80:bf:9d:e1:ae:a5: fe:16:fe:3d:7b:d5:03:37:8b:26:ed:a9:ff:61:39: 99:90:26:19:0d:0f:e9:9f:ab:c6:2b:bd:1f:a8:94: 6f:04:bd:94:4d:29:6d:30:34:c9:18:75:c5:72:50: 1b:a0:63:3b:ce:74:9a:cf:b4:7b:f1:5a:72:64:7a: 32:58:74:c9:bd:63:1e:d6:c5:3d:db:dc:9a:73:8b: a7:44:df:e3:0b:91:f5:57:e2:6d:9a:a7:8c:c5:a3: 3a:eb:0d:b4:49:d6:f5:e7:2d:49:a9:8c:1d:4f:37: ca:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:05:4A:26:65:C9:39:11:87:2E:37:4A:E6:E1:BE:43:98:BC:6E:85 X509v3 Authority Key Identifier: keyid:FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:13:59:56:40:ba:83:b6:a4:1b:ff:50:b5:13:1c:84:3c:67: 4e:78:5d:27:33:71:7b:c4:e5:84:5d:53:33:bc:3f:07:d1:bc: 0c:90:74:5b:d0:af:73:40:af:a8:d9:f0:7f:39:e1:01:53:0c: 3d:b9:9d:94:43:13:23:e4:46:3b:b5:08:d1:37:0c:b7:be:3c: 36:b1:6b:83:5e:5d:69:24:ac:57:48:b3:6f:42:5b:96:4d:04: d4:2a:d7:12:15:a6:ab:32:f0:57:50:a7:fd:7f:09:be:56:cc: 04:88:00:47:cb:ee:cd:10:90:0d:8d:25:37:73:50:80:9f:3d: bd:d1:b7:b7:81:21:2b:41:5e:4d:11:8a:99:7b:0e:d6:82:93: 92:2b:93:fe:2e:a7:10:cf:a5:9c:1b:42:26:81:43:87:81:ad: 68:9b:d3:9b:02:5b:9a:04:3b:89:2f:bd:79:12:b9:03:3c:7c: 18:a3:68:4e:a2:9f:b4:89:fb:d4:0c:38:30:b6:2b:70:f5:3b: 66:a5:8c:1e:ac:67:03:dd:80:f7:e2:ec:71:a9:46:f7:b5:cb: 9f:4e:1d:da:2d:25:bc:90:16:45:ef:e4:ef:a5:95:51:79:ee: 4f:d4:0e:1d:f7:d1:11:47:2d:89:4d:41:f8:67:a5:d4:6d:43: 1c:3a:47:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJFOTYxMTAvBgNVBAUTKEZFNEIyRTU0RjE4MEM4MDlBRjFFQzk5RTlBN0M3RTI3 MzJEOUREQTYwHhcNMjUwNTE0MTczNzQyWhcNMjUwNTIxMTczNzQxWjAYMRYwFAYD VQQDEw02ODI0ZDRlNi0yNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rfkdTAiE+gBwouQIScoqD4pNTq7Kp4RuThPMDIuS+Sg/g2fzSQbVeNEbN2o H9Kk3/PZ/FFJXdVsRagbVhQodGXEZ2YMyK2JAb3b5EVX1ZUR0EAEbEI/Yxg98lww 8eb7D6xjSfwDJeLtQIkPoF37XkMy+aO7BpDJmz46Tx2Sy9KRkpxT2Eu/5uvuH8TV M7+Av53hrqX+Fv49e9UDN4sm7an/YTmZkCYZDQ/pn6vGK70fqJRvBL2UTSltMDTJ GHXFclAboGM7znSaz7R78VpyZHoyWHTJvWMe1sU929yac4unRN/jC5H1V+JtmqeM xaM66w20Sdb15y1JqYwdTzfK+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0FSiZl yTkRhy43SubhvkOYvG6FMB8GA1UdIwQYMBaAFP5LLlTxgMgJrx7Jnpp8ficy2d2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkU5Ni9FREE2NUFDNDU1 RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlBbXZIc21lbW54LUp6TFoz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rc3VWUEdBeUFtdkhzbWVtbngtSnpMWjNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkU5Ni9FREE2NUFDNDU1RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlB bXZIc21lbW54LUp6TFozYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeE1lWQLqDtqQb/1C1ExyEPGdOeF0nM3F7xOWEXVMzvD8H0bwMkHRb 0K9zQK+o2fB/OeEBUww9uZ2UQxMj5EY7tQjRNwy3vjw2sWuDXl1pJKxXSLNvQluW TQTUKtcSFaarMvBXUKf9fwm+VswEiABHy+7NEJANjSU3c1CAnz290be3gSErQV5N EYqZew7WgpOSK5P+LqcQz6WcG0ImgUOHga1om9ObAluaBDuJL715ErkDPHwYo2hO op+0ifvUDDgwtitw9TtmpYwerGcD3YD34uxxqUb3tcufTh3aLSW8kBZF7+TvpZVR ee5P1A4d99ERRy2JTUH4Z6XUbUMcOkcE -----END CERTIFICATE-----Generated at Wed May 14 19:45:26 2025 by rpki-client