$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: CN5nwPSuRvGFpREH/+kKMAyvgVMou2XlWCPhw4k4HcM= Subject key identifier: 16:E7:83:40:B3:04:EB:35:99:E2:18:2B:68:8F:77:E3:E5:0B:85:8C Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 02F1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 02EE Signing time: Tue 13 May 2025 00:46:19 +0000 Manifest this update: Tue 13 May 2025 00:46:18 +0000 Manifest next update: Tue 20 May 2025 00:46:18 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: SX/GRXEMw76pp+W9JEFsWFLv9QSavFhk2jcKBlSaMio=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: PU6naooXvRoDV33LBTNRBxRANbQSj2Y43wiSsnkhFEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 753 (0x2f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: May 13 00:46:18 2025 GMT Not After : May 20 00:46:18 2025 GMT Subject: CN=6822965a-6fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1c:2a:58:60:05:f5:d4:dc:57:85:65:9e:ad: ce:e2:b4:4e:4a:17:01:e3:31:ee:aa:08:63:04:c4: b2:c7:24:21:6e:8a:89:13:50:a4:8e:29:b5:3b:7d: 23:85:d1:b0:21:03:4e:d3:b3:40:9b:00:f2:e7:1d: 9d:79:00:2a:d4:23:e3:0c:9a:42:c6:24:a5:59:a4: dc:f6:da:c2:38:58:54:45:4f:ef:e7:c8:82:a3:85: 2c:a6:de:e5:fb:38:cc:e9:ae:9c:dc:33:e8:33:74: b2:02:26:13:c4:c5:00:38:43:6b:ee:4b:a4:07:b4: 11:d1:48:e8:ca:62:ad:0c:52:19:7e:2e:c5:ef:df: f3:3a:db:ac:65:a3:d4:0d:bb:4e:d2:2a:87:f7:66: 42:90:76:60:33:1f:72:59:68:bd:94:95:9d:19:94: fe:90:21:60:37:5e:ff:55:db:be:3a:cb:d0:20:bf: d0:29:09:11:f4:87:03:56:d0:58:8b:4a:be:8d:0e: 6a:c7:51:3e:91:50:3a:48:61:a8:96:e4:7b:10:b1: 67:78:ff:9f:a7:a7:01:48:9e:45:7a:45:e2:9e:72: b1:d5:a9:8f:47:ab:cb:e9:68:7e:15:24:97:72:02: d0:ec:84:00:d7:38:c4:28:bd:6f:ce:fe:ee:85:33: 37:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E7:83:40:B3:04:EB:35:99:E2:18:2B:68:8F:77:E3:E5:0B:85:8C X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:88:64:80:42:97:73:de:d0:33:be:a4:dd:22:db:18:c3:8a: 10:98:b0:8e:80:32:39:2e:2b:fb:48:17:98:7f:f9:fd:1f:ac: c8:1e:14:71:79:04:b5:0d:81:07:09:7f:d2:85:17:6f:81:5b: 1b:e7:f1:ec:0c:2e:22:de:c7:85:b1:c0:98:27:38:4e:90:19: ca:e5:b0:e5:37:35:aa:06:8e:59:27:44:8d:18:98:78:71:8a: 1d:8a:14:36:d6:92:ae:95:09:0a:2f:58:9f:7b:a2:dd:e8:b9: c0:75:1f:e7:20:d7:17:e5:ca:9a:26:82:9a:0d:07:eb:62:84: f7:41:2e:28:71:1e:ca:86:09:a2:16:e8:b2:14:50:8a:ed:0f: 2f:bd:3c:86:bd:1b:6d:4f:ed:65:70:45:2c:a2:f4:4e:b4:aa: a9:42:4f:91:8c:1a:b4:45:85:5a:66:d3:a8:bf:ce:f2:83:4f: 25:61:79:19:3d:bd:54:6d:04:09:90:3b:14:9b:c4:33:1d:7f: a6:ee:4f:03:14:8b:a0:a2:97:d7:54:46:4e:9a:95:95:be:c6: 18:56:a7:be:e2:eb:6f:96:dd:08:ad:be:78:94:05:4b:d5:22: 34:4c:c8:b1:66:8e:c8:a6:8c:9c:fc:69:e1:10:5e:4e:81:5b: 20:95:fb:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjUwNTEzMDA0NjE4WhcNMjUwNTIwMDA0NjE4WjAYMRYwFAYD VQQDEw02ODIyOTY1YS02ZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhwqWGAF9dTcV4Vlnq3O4rROShcB4zHuqghjBMSyxyQhboqJE1Ckjim1O30j hdGwIQNO07NAmwDy5x2deQAq1CPjDJpCxiSlWaTc9trCOFhURU/v58iCo4Uspt7l +zjM6a6c3DPoM3SyAiYTxMUAOENr7kukB7QR0UjoymKtDFIZfi7F79/zOtusZaPU DbtO0iqH92ZCkHZgMx9yWWi9lJWdGZT+kCFgN17/Vdu+OsvQIL/QKQkR9IcDVtBY i0q+jQ5qx1E+kVA6SGGoluR7ELFneP+fp6cBSJ5FekXinnKx1amPR6vL6Wh+FSSX cgLQ7IQA1zjEKL1vzv7uhTM3pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbng0Cz BOs1meIYK2iPd+PlC4WMMB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJiGSAQpdz3tAzvqTdItsYw4oQmLCOgDI5Liv7SBeYf/n9H6zIHhRx eQS1DYEHCX/ShRdvgVsb5/HsDC4i3seFscCYJzhOkBnK5bDlNzWqBo5ZJ0SNGJh4 cYodihQ21pKulQkKL1ife6Ld6LnAdR/nINcX5cqaJoKaDQfrYoT3QS4ocR7Khgmi FuiyFFCK7Q8vvTyGvRttT+1lcEUsovROtKqpQk+RjBq0RYVaZtOov87yg08lYXkZ Pb1UbQQJkDsUm8QzHX+m7k8DFIugopfXVEZOmpWVvsYYVqe+4utvlt0Irb54lAVL 1SI0TMixZo7Ipoyc/GnhEF5OgVsglftN -----END CERTIFICATE-----Generated at Wed May 14 23:51:27 2025 by rpki-client