$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft File: D96C0nlIVMmvzdhe-37-ScR9Lu4.mft (raw, json) Hash identifier: o6whwaHU29FZU1kjE9wj7GGBxEebelwSopwrVTauOPU= Subject key identifier: 92:44:C2:E5:88:4E:F8:4B:36:F0:83:7D:6E:5F:13:F2:0D:82:2D:65 Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0CDB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft Manifest number: 0CD0 Signing time: Mon 12 May 2025 15:33:36 +0000 Manifest this update: Mon 12 May 2025 15:33:36 +0000 Manifest next update: Mon 19 May 2025 15:33:36 +0000 Files and hashes: 1: D96C0nlIVMmvzdhe-37-ScR9Lu4.crl (hash: BgljTiXN10FMjAP89rqELQxnboJPe+B4jlLhgYX7j+M=) 2: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (hash: lu8oWRNPgJxFZ7Lozlet3TlMRukqbbGr2PrraLSuCsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:33:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3291 (0xcdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: May 12 15:33:36 2025 GMT Not After : May 19 15:33:36 2025 GMT Subject: CN=682214d0-abbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ac:18:4e:62:c2:c6:aa:d5:5e:a5:aa:19:7f: 7f:70:46:b9:e4:53:83:87:ee:a3:1e:17:c4:3e:06: 7e:ad:80:4a:b3:63:50:24:21:30:7e:35:57:97:7d: 62:ac:76:2f:1e:a0:8f:a7:9b:db:be:75:40:be:ff: f8:39:b2:20:96:04:c3:41:c5:b0:f6:af:2f:4c:92: df:53:c5:0c:0d:8d:70:be:33:17:3f:33:6d:0d:58: 28:f7:bb:65:93:a5:e9:3b:64:4c:99:8e:f0:a4:02: 39:50:67:15:ba:05:a2:78:52:d5:f5:8d:df:3d:08: ce:8a:bf:4e:2f:05:1e:a8:49:70:9a:d8:a7:d1:54: cf:30:33:5f:69:0d:cc:c9:80:ea:4c:48:c8:2b:ba: cd:e9:40:5e:ee:03:66:61:84:34:e3:de:ed:b2:7a: 2b:81:e2:05:07:56:0e:84:18:ed:fd:be:d1:6c:b1: 3c:0d:67:ed:86:e1:18:c1:b6:4c:4a:bd:9b:91:6e: 3b:af:d4:63:b4:83:20:e5:ee:1f:30:92:24:b3:f5: 3c:8e:ae:92:05:69:2a:ad:9c:c9:f2:ed:6a:cf:e6: cb:a9:13:12:f3:61:38:0d:75:c2:e5:da:ff:5f:f4: 06:c4:3a:3a:20:1f:f1:5e:3f:c5:b8:cd:58:c9:1c: bb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:44:C2:E5:88:4E:F8:4B:36:F0:83:7D:6E:5F:13:F2:0D:82:2D:65 X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:c1:01:48:be:b4:8d:40:8f:80:cd:20:1e:d0:00:a5:57:cd: 2f:32:91:7c:7e:7b:ae:92:64:87:41:f0:1b:22:20:76:6b:52: e9:13:3e:70:d1:84:f9:aa:d9:9b:dd:42:44:76:38:19:7a:de: 5f:b4:e5:64:ac:31:bc:2c:3c:ed:b1:07:c9:9f:2b:0d:d7:51: 14:1e:bd:0c:72:9c:51:17:9f:aa:f2:a6:23:47:f8:12:de:45: 80:c6:73:44:3f:cf:be:6a:aa:22:18:83:94:d4:92:07:62:36: fa:e1:72:4d:bf:73:65:24:0e:d1:11:04:24:75:a3:59:a6:79: 1c:d7:0a:b9:99:6c:83:7d:fe:2c:f9:dd:81:d9:69:0e:21:c6: 42:07:0e:66:76:63:71:00:db:ad:4a:ac:de:7e:40:dd:bb:e8: 08:5e:02:7f:21:cc:6e:0c:7c:bf:08:8f:db:7e:7e:64:07:f3: b4:f8:3f:27:1c:cb:5b:92:12:78:df:0f:c0:09:1a:6f:fe:a0: 82:e5:60:ac:16:93:59:8a:19:3c:f8:27:50:de:49:2b:26:22: f5:73:c2:42:40:85:89:80:ed:4f:19:9a:00:f1:8e:a6:c2:6e: 3d:7d:53:d9:3b:22:91:4f:62:db:c8:23:73:f4:49:95:b6:32: a6:2b:4e:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjUwNTEyMTUzMzM2WhcNMjUwNTE5MTUzMzM2WjAYMRYwFAYD VQQDEw02ODIyMTRkMC1hYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6wYTmLCxqrVXqWqGX9/cEa55FODh+6jHhfEPgZ+rYBKs2NQJCEwfjVXl31i rHYvHqCPp5vbvnVAvv/4ObIglgTDQcWw9q8vTJLfU8UMDY1wvjMXPzNtDVgo97tl k6XpO2RMmY7wpAI5UGcVugWieFLV9Y3fPQjOir9OLwUeqElwmtin0VTPMDNfaQ3M yYDqTEjIK7rN6UBe7gNmYYQ0497tsnorgeIFB1YOhBjt/b7RbLE8DWfthuEYwbZM Sr2bkW47r9RjtIMg5e4fMJIks/U8jq6SBWkqrZzJ8u1qz+bLqRMS82E4DXXC5dr/ X/QGxDo6IB/xXj/FuM1YyRy7QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJEwuWI TvhLNvCDfW5fE/INgi1lMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS84RjQ3QTlGQUU5N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZN bXZ6ZGhlLTM3LVNjUjlMdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnwQFIvrSNQI+AzSAe0AClV80vMpF8fnuukmSHQfAbIiB2a1LpEz5w 0YT5qtmb3UJEdjgZet5ftOVkrDG8LDztsQfJnysN11EUHr0McpxRF5+q8qYjR/gS 3kWAxnNEP8++aqoiGIOU1JIHYjb64XJNv3NlJA7REQQkdaNZpnkc1wq5mWyDff4s +d2B2WkOIcZCBw5mdmNxANutSqzefkDdu+gIXgJ/IcxuDHy/CI/bfn5kB/O0+D8n HMtbkhJ43w/ACRpv/qCC5WCsFpNZihk8+CdQ3kkrJiL1c8JCQIWJgO1PGZoA8Y6m wm49fVPZOyKRT2LbyCNz9EmVtjKmK06w -----END CERTIFICATE-----Generated at Mon May 12 23:50:43 2025 by rpki-client