$ rpki-client -vvf rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft File: t0SkTltlPmx6kM9gNOANz9iUfWA.mft (raw, json) Hash identifier: QpKIRjzkgQkAVBycG4wllP5Ej8PXAOTfdMMZ475Lox0= Subject key identifier: 74:B9:C9:EA:85:EB:AA:15:4A:40:3A:4A:FE:A6:05:67:EB:1D:7F:A6 Authority key identifier: B7:44:A4:4E:5B:65:3E:6C:7A:90:CF:60:34:E0:0D:CF:D8:94:7D:60 Certificate issuer: /CN=A914EBE5/serialNumber=B744A44E5B653E6C7A90CF6034E00DCFD8947D60 Certificate serial: 185A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft Manifest number: 1849 Signing time: Fri 16 May 2025 16:43:35 +0000 Manifest this update: Fri 16 May 2025 16:43:34 +0000 Manifest next update: Fri 23 May 2025 16:43:34 +0000 Files and hashes: 1: t0SkTltlPmx6kM9gNOANz9iUfWA.crl (hash: KcezZdQPQAHmKog1w5dIN/WhunpWFS6lj+Fisgew39I=) 2: 253B1382106C11F08D824C19C4F9AE02.roa (hash: k9TDuPE5aOqFzmvoIPDe+G9DbuyOrQuREAeCHC4kW88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.crl rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 16:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6234 (0x185a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EBE5, serialNumber=B744A44E5B653E6C7A90CF6034E00DCFD8947D60 Validity Not Before: May 16 16:43:34 2025 GMT Not After : May 23 16:43:34 2025 GMT Subject: CN=68276b37-6c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f6:19:f7:9c:b5:6e:ef:9e:31:31:ff:00:cd: 17:9e:e5:d9:f2:3f:45:27:14:21:80:18:15:1c:f4: f1:1e:81:bf:7c:89:57:77:b8:cf:02:d0:c4:ba:14: 61:ad:09:69:be:85:e8:18:c3:ab:d2:a9:37:1b:c6: 90:55:a9:9e:33:d7:bc:70:3b:5a:54:54:be:eb:0a: f9:4e:88:a1:d0:53:5a:d8:b0:a5:05:53:59:c8:22: 57:bb:aa:b1:99:36:0a:c8:2f:2b:fb:b4:10:ed:65: 82:16:00:c2:94:50:a8:0f:b5:f8:41:a4:9e:b9:a8: 0c:35:44:ba:c4:f6:c6:b7:0d:09:86:7f:91:8c:01: 05:19:3e:77:0b:26:a9:f1:c4:af:c9:f8:b9:f0:c4: 15:3d:48:03:77:aa:e0:46:4f:78:44:67:40:76:09: 97:50:ac:0a:2d:c3:b8:98:8f:83:fa:18:21:07:82: 37:c9:29:50:3b:6a:bc:6f:bc:9a:27:0d:f8:a0:30: 63:de:04:7a:6b:6b:2c:8a:08:08:8e:ae:08:34:4f: 3c:48:0c:9b:3f:f0:35:7d:16:fe:fb:d4:4c:83:19: 53:f4:09:f1:48:8d:1d:d8:80:d2:55:df:e6:f7:db: 62:67:47:4e:f2:53:d0:5d:6f:c9:6d:3e:dc:d1:d2: 1e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B9:C9:EA:85:EB:AA:15:4A:40:3A:4A:FE:A6:05:67:EB:1D:7F:A6 X509v3 Authority Key Identifier: keyid:B7:44:A4:4E:5B:65:3E:6C:7A:90:CF:60:34:E0:0D:CF:D8:94:7D:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a8:72:3b:9f:5d:bc:a2:6a:40:d2:66:eb:62:bc:cf:d9:ec: 01:7d:b6:9e:00:c6:4d:b7:a9:3d:7b:8a:83:91:86:31:2c:65: 6b:1a:ab:db:40:5f:8e:67:22:64:c5:ae:e0:0e:4d:7b:18:60: f9:7b:ac:60:6c:a7:75:c8:b4:d5:e7:66:a0:8e:f0:54:4e:82: 17:31:9c:67:cb:93:d9:74:02:51:20:2b:24:7c:58:be:8e:f4: f5:94:03:c1:4d:11:21:8b:7e:65:88:a5:6e:ff:b5:bc:2a:32: 1f:bc:71:af:e4:5b:23:10:77:99:87:da:d2:94:8a:b4:49:f5: d0:12:78:47:eb:a9:62:d0:c1:0b:d4:3a:03:53:da:df:a3:38: 28:be:c8:b2:f2:19:28:da:dc:d4:73:61:41:6a:56:34:00:bc: 4a:fe:7a:94:2e:e6:78:f4:3c:69:67:b1:ad:b7:ca:d4:b2:da: b0:dd:74:a6:d6:2f:32:d4:23:06:82:06:fd:5b:b1:13:f7:8c: 31:42:1a:d0:33:77:81:a4:51:80:97:ac:a7:37:55:13:65:28: 21:0e:75:ae:30:6d:60:1b:26:00:bb:d9:28:d8:92:50:0e:cd: 31:7a:71:51:42:a9:ee:8e:75:92:13:1a:2a:dc:14:ce:51:ef: 11:e7:ad:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCRTUxMTAvBgNVBAUTKEI3NDRBNDRFNUI2NTNFNkM3QTkwQ0Y2MDM0RTAwRENG RDg5NDdENjAwHhcNMjUwNTE2MTY0MzM0WhcNMjUwNTIzMTY0MzM0WjAYMRYwFAYD VQQDEw02ODI3NmIzNy02YzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufYZ95y1bu+eMTH/AM0XnuXZ8j9FJxQhgBgVHPTxHoG/fIlXd7jPAtDEuhRh rQlpvoXoGMOr0qk3G8aQVameM9e8cDtaVFS+6wr5Toih0FNa2LClBVNZyCJXu6qx mTYKyC8r+7QQ7WWCFgDClFCoD7X4QaSeuagMNUS6xPbGtw0Jhn+RjAEFGT53Cyap 8cSvyfi58MQVPUgDd6rgRk94RGdAdgmXUKwKLcO4mI+D+hghB4I3ySlQO2q8b7ya Jw34oDBj3gR6a2ssiggIjq4INE88SAybP/A1fRb++9RMgxlT9AnxSI0d2IDSVd/m 99tiZ0dO8lPQXW/JbT7c0dIerQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHS5yeqF 66oVSkA6Sv6mBWfrHX+mMB8GA1UdIwQYMBaAFLdEpE5bZT5sepDPYDTgDc/YlH1g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUJFNS82NEM1MjcwOEE5 NUYxMUU3OUFENEU3MzRDNEY5QUUwMi90MFNrVGx0bFBteDZrTTlnTk9BTno5aVVm V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QwU2tUbHRsUG14NmtNOWdOT0FOejlpVWZXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUJFNS82NEM1MjcwOEE5NUYxMUU3OUFENEU3MzRDNEY5QUUwMi90MFNrVGx0bFBt eDZrTTlnTk9BTno5aVVmV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8qHI7n128ompA0mbrYrzP2ewBfbaeAMZNt6k9e4qDkYYxLGVrGqvb QF+OZyJkxa7gDk17GGD5e6xgbKd1yLTV52agjvBUToIXMZxny5PZdAJRICskfFi+ jvT1lAPBTREhi35liKVu/7W8KjIfvHGv5FsjEHeZh9rSlIq0SfXQEnhH66li0MEL 1DoDU9rfozgovsiy8hko2tzUc2FBalY0ALxK/nqULuZ49DxpZ7Gtt8rUstqw3XSm 1i8y1CMGggb9W7ET94wxQhrQM3eBpFGAl6ynN1UTZSghDnWuMG1gGyYAu9ko2JJQ Ds0xenFRQqnujnWSExoq3BTOUe8R560e -----END CERTIFICATE-----Generated at Sat May 17 15:39:13 2025 by rpki-client