$ rpki-client -vvf rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft File: B-7MRCaowz1FkLzaEtl1DEkEhX0.mft (raw, json) Hash identifier: kLnDlLooY+zJOoTWwLjE4jG4Uk2lPRvvEOBimR/WuQI= Subject key identifier: 7B:62:7B:AD:AC:37:38:42:74:81:E9:22:70:FC:52:AE:08:98:27:7F Authority key identifier: 07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D Certificate issuer: /CN=A914C90B/serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft Manifest number: D9 Signing time: Sat 17 May 2025 05:07:05 +0000 Manifest this update: Sat 17 May 2025 05:07:05 +0000 Manifest next update: Sat 24 May 2025 05:07:05 +0000 Files and hashes: 1: B-7MRCaowz1FkLzaEtl1DEkEhX0.crl (hash: 0pmhbcAXnx53ahXgj3W82q83wJh6xVeMugjWYLBABfs=) 2: 52BD65B4E7D511EE8C353D2AC4F9AE02.roa (hash: v7bT+lzlhBzHYXIgxw7CXDLlyYjEfCYhNYxtpgDCkMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 05:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C90B, serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Validity Not Before: May 17 05:07:05 2025 GMT Not After : May 24 05:07:05 2025 GMT Subject: CN=68281979-e58c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fc:c9:a2:d3:50:38:24:32:18:6b:fb:db:9b: eb:2b:bd:15:0b:b2:ab:2e:2b:66:57:86:75:f3:d6: 89:99:91:31:f1:5f:f9:ea:f2:8e:56:de:ec:41:c2: 6e:56:22:e7:84:0c:f3:ba:6d:4f:43:9d:61:64:1f: b7:eb:85:72:c9:b3:a9:78:1d:a6:a9:ea:63:22:cf: d4:1e:44:cc:3a:60:8e:4c:f6:ed:81:fd:37:e9:2d: e6:76:b0:b5:14:ae:af:8f:05:db:65:03:54:e7:58: 13:65:17:aa:46:1d:3e:f2:90:a4:de:26:88:13:d6: 3b:b8:d3:d3:56:cd:67:f6:8b:01:65:d2:01:93:c9: 71:3b:82:68:75:02:a9:34:da:67:84:61:cc:67:fd: 9f:08:54:ac:55:25:cb:32:a8:b3:75:29:f3:08:7d: 86:4a:99:02:35:73:c9:bd:f8:fe:c9:4e:d5:bd:38: c8:57:b2:dd:52:65:df:d5:72:04:b0:85:ca:ab:ca: 38:1e:62:30:7f:84:e8:03:f0:39:ff:1d:02:5f:94: 87:42:22:48:6b:b2:f2:4b:40:4b:57:ae:61:6c:86: 89:d7:d2:48:10:ba:d7:71:af:7d:3d:9f:d0:5e:e1: 6a:b1:72:84:67:32:eb:3a:4e:a0:14:36:ec:5a:05: 33:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:62:7B:AD:AC:37:38:42:74:81:E9:22:70:FC:52:AE:08:98:27:7F X509v3 Authority Key Identifier: keyid:07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:09:0a:b6:d0:7c:7a:a8:52:12:16:6d:11:54:44:8f:72:23: 52:04:45:f9:0f:4a:1b:af:4e:54:d2:ee:f7:b9:0d:cf:ff:f7: 2e:67:c0:5e:c3:5b:ed:b9:60:79:12:fd:8a:73:6e:ea:90:c2: b6:f0:c0:de:bd:90:e7:b7:f2:3d:1a:d1:97:bc:59:d7:fd:56: 7b:6c:bb:c0:c6:58:a1:74:18:f3:f9:32:3f:e0:d8:70:5f:5b: 0f:44:ad:ad:c3:e4:f3:ef:8f:bd:c4:ba:36:6a:bb:58:19:b6: 97:ca:cd:d4:1c:eb:fb:2d:94:2d:d6:b5:da:db:b1:bd:2e:ae: c1:ce:03:6f:78:b5:e4:77:00:fc:7e:f4:fb:68:76:bf:1d:3d: d9:f4:fd:a2:54:ac:00:c5:38:e3:1d:ee:f4:58:99:49:64:de: 7a:ed:ea:8b:7f:a9:1c:ab:c1:0c:17:b9:9a:92:aa:38:ca:52: 9b:4d:17:4e:9e:c7:39:44:30:55:4b:d2:33:44:ec:55:4a:56: 19:ad:e3:65:a3:78:79:72:33:c7:42:d8:a8:0b:6b:c6:21:44: e7:65:07:46:fb:8f:7b:b8:d6:e8:67:28:22:67:03:75:6d:c4: 10:85:cb:0d:a8:5d:72:dd:56:0c:2b:ce:63:b5:f1:a2:88:70: c9:43:4f:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM5MEIxMTAvBgNVBAUTKDA3RUVDQzQ0MjZBOEMzM0Q0NTkwQkNEQTEyRDk3NTBD NDkwNDg1N0QwHhcNMjUwNTE3MDUwNzA1WhcNMjUwNTI0MDUwNzA1WjAYMRYwFAYD VQQDEw02ODI4MTk3OS1lNThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/zJotNQOCQyGGv725vrK70VC7KrLitmV4Z189aJmZEx8V/56vKOVt7sQcJu ViLnhAzzum1PQ51hZB+364VyybOpeB2mqepjIs/UHkTMOmCOTPbtgf036S3mdrC1 FK6vjwXbZQNU51gTZReqRh0+8pCk3iaIE9Y7uNPTVs1n9osBZdIBk8lxO4JodQKp NNpnhGHMZ/2fCFSsVSXLMqizdSnzCH2GSpkCNXPJvfj+yU7VvTjIV7LdUmXf1XIE sIXKq8o4HmIwf4ToA/A5/x0CX5SHQiJIa7LyS0BLV65hbIaJ19JIELrXca99PZ/Q XuFqsXKEZzLrOk6gFDbsWgUz6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtie62s NzhCdIHpInD8Uq4ImCd/MB8GA1UdIwQYMBaAFAfuzEQmqMM9RZC82hLZdQxJBIV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzkwQi85Mjg0MjcwMkU3 MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6MUZrTHphRXRsMURFa0Vo WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItN01SQ2Fvd3oxRmtMemFFdGwxREVrRWhYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzkwQi85Mjg0MjcwMkU3MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6 MUZrTHphRXRsMURFa0VoWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdCQq20Hx6qFISFm0RVESPciNSBEX5D0obr05U0u73uQ3P//cuZ8Be w1vtuWB5Ev2Kc27qkMK28MDevZDnt/I9GtGXvFnX/VZ7bLvAxlihdBjz+TI/4Nhw X1sPRK2tw+Tz74+9xLo2artYGbaXys3UHOv7LZQt1rXa27G9Lq7BzgNveLXkdwD8 fvT7aHa/HT3Z9P2iVKwAxTjjHe70WJlJZN567eqLf6kcq8EMF7makqo4ylKbTRdO nsc5RDBVS9IzROxVSlYZreNlo3h5cjPHQtioC2vGIUTnZQdG+497uNboZygiZwN1 bcQQhcsNqF1y3VYMK85jtfGiiHDJQ0+x -----END CERTIFICATE-----Generated at Sat May 17 11:20:28 2025 by rpki-client