$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: RycZ9bFjsYQRWeQkrDu1w8MFG1sOFX6kDSVqIixBkCg= Subject key identifier: 75:82:75:8E:16:EC:AF:F0:68:4E:1B:A6:2D:D6:A4:E4:45:AA:3A:DF Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 0510 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 0509 Signing time: Sat 10 May 2025 23:15:04 +0000 Manifest this update: Sat 10 May 2025 23:15:04 +0000 Manifest next update: Sat 17 May 2025 23:15:04 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: VW4M4sZqMbvVOAOOb2XxsNo3CnFRf5ZspZezmHWXsC4=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1296 (0x510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: May 10 23:15:04 2025 GMT Not After : May 17 23:15:04 2025 GMT Subject: CN=681fddf8-f080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:83:22:b7:9a:67:3a:6c:53:cc:59:74:0e:5a: 7a:36:d4:f2:cd:63:08:b7:ad:d4:90:8b:4b:98:d7: a8:71:80:1e:6e:0f:64:d2:ed:26:31:d9:5c:2b:7e: e0:39:20:b1:a3:30:e7:62:78:3c:ea:a7:a9:25:b9: fc:3c:6e:df:22:d3:d6:af:59:f9:4b:30:66:d9:73: 13:4a:28:6d:e1:c7:a5:c3:b9:34:32:1a:0d:77:59: 03:83:64:80:e9:d6:94:2d:6f:ec:cd:bc:5f:89:47: 08:da:90:1e:0c:6e:f6:e3:fc:88:c3:9e:c8:9c:42: 4c:eb:73:17:bf:51:d2:4d:71:8a:7e:52:f3:b7:a0: 41:58:8d:b3:4d:cb:f7:4d:f2:92:47:e4:ce:04:fb: 74:e1:7c:c4:08:7e:ba:dc:40:9a:ac:70:f4:42:3d: 75:08:db:5b:b3:b5:e2:82:62:27:40:c7:34:46:36: d1:b9:ec:c3:81:bc:dc:6a:e4:30:8b:b5:d3:9d:12: 68:f6:ce:d4:0b:c1:9a:3e:9b:eb:47:00:8c:de:77: 78:b1:aa:6f:06:67:fd:7b:15:f1:9e:02:5a:23:35: b5:57:b5:a8:60:07:a3:39:87:21:8e:f5:3e:86:4f: 8e:82:52:26:67:5d:13:d4:1b:d8:11:f5:e2:0e:19: bb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:82:75:8E:16:EC:AF:F0:68:4E:1B:A6:2D:D6:A4:E4:45:AA:3A:DF X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:ec:38:49:69:b7:fb:07:b8:04:4c:42:b9:51:4c:f9:c8:f9: a0:b0:85:9c:5a:a0:77:19:f2:91:53:b4:7a:fc:c4:3b:04:08: 9a:af:7a:9d:97:e0:fe:f8:f0:13:2b:fe:4f:34:bd:54:d7:1d: 30:f1:04:2b:e8:48:7a:f0:bf:26:3d:46:64:c7:b9:d1:a8:cc: 03:29:98:3f:fb:64:79:41:70:a3:3a:db:2d:ff:b0:94:8e:bf: b4:af:36:53:2e:a4:ee:a6:b0:ea:c1:86:24:1e:e6:f4:2c:21: 58:2d:09:5f:fe:7f:97:83:02:ad:f5:6b:83:57:4a:6a:ef:8b: f9:f8:5f:16:9f:db:e1:14:dd:3f:51:d8:87:3d:cc:0c:67:0b: b4:2b:7c:13:44:7d:99:e6:24:b0:b2:cc:d3:be:b4:e0:9c:e2: c0:b9:55:12:17:db:86:0d:6d:3e:c8:78:84:3d:7a:5d:cd:67: ba:84:09:c4:c8:5d:28:56:88:2c:ed:95:1f:33:ec:d0:3e:dc: b0:f6:cb:c7:d7:6a:9d:07:62:3e:22:b5:dc:6a:8c:c5:b7:c3: 44:eb:93:55:50:6c:22:2e:78:0b:b1:e9:ba:5e:71:35:11:4c: 00:18:fb:ff:f8:94:83:21:d2:13:a8:03:94:44:35:fd:ed:94: 21:3b:e1:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUwNTEwMjMxNTA0WhcNMjUwNTE3MjMxNTA0WjAYMRYwFAYD VQQDEw02ODFmZGRmOC1mMDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoMit5pnOmxTzFl0Dlp6NtTyzWMIt63UkItLmNeocYAebg9k0u0mMdlcK37g OSCxozDnYng86qepJbn8PG7fItPWr1n5SzBm2XMTSiht4celw7k0MhoNd1kDg2SA 6daULW/szbxfiUcI2pAeDG724/yIw57InEJM63MXv1HSTXGKflLzt6BBWI2zTcv3 TfKSR+TOBPt04XzECH663ECarHD0Qj11CNtbs7XigmInQMc0RjbRuezDgbzcauQw i7XTnRJo9s7UC8GaPpvrRwCM3nd4sapvBmf9exXxngJaIzW1V7WoYAejOYchjvU+ hk+OglImZ10T1BvYEfXiDhm7zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWCdY4W 7K/waE4bpi3WpORFqjrfMB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo7DhJabf7B7gETEK5UUz5yPmgsIWcWqB3GfKRU7R6/MQ7BAiar3qd l+D++PATK/5PNL1U1x0w8QQr6Eh68L8mPUZkx7nRqMwDKZg/+2R5QXCjOtst/7CU jr+0rzZTLqTuprDqwYYkHub0LCFYLQlf/n+XgwKt9WuDV0pq74v5+F8Wn9vhFN0/ UdiHPcwMZwu0K3wTRH2Z5iSwsszTvrTgnOLAuVUSF9uGDW0+yHiEPXpdzWe6hAnE yF0oVogs7ZUfM+zQPtyw9svH12qdB2I+IrXcaozFt8NE65NVUGwiLngLsem6XnE1 EUwAGPv/+JSDIdITqAOURDX97ZQhO+EM -----END CERTIFICATE-----Generated at Sun May 11 09:06:30 2025 by rpki-client