$ rpki-client -vvf rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft File: 9MBkE3SXWli1TsAsEElzLsinCss.mft (raw, json) Hash identifier: msONHSY0fKbNVfmmD8z/IbWvHHRfB5DQ5HdyI11L2bM= Subject key identifier: 56:DA:A1:C1:97:49:A6:F8:4D:D2:99:9B:F7:4F:39:DC:3D:56:F4:5A Authority key identifier: F4:C0:64:13:74:97:5A:58:B5:4E:C0:2C:10:49:73:2E:C8:A7:0A:CB Certificate issuer: /CN=A914EF21/serialNumber=F4C0641374975A58B54EC02C1049732EC8A70ACB Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft Manifest number: 0631 Signing time: Sat 10 May 2025 23:12:36 +0000 Manifest this update: Sat 10 May 2025 23:12:36 +0000 Manifest next update: Sat 17 May 2025 23:12:36 +0000 Files and hashes: 1: 9MBkE3SXWli1TsAsEElzLsinCss.crl (hash: a+P1PVWn4RskkrLk3EitoU67i6SU7s7vn6qyHA/DTnw=) 2: 7740AE687F8A11EE89807F7CC4F9AE02.roa (hash: fvo1aPGM+n05nvJm6qW9Z2hmGhNw4J6QEIdDkjbjrFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.crl rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EF21, serialNumber=F4C0641374975A58B54EC02C1049732EC8A70ACB Validity Not Before: May 10 23:12:36 2025 GMT Not After : May 17 23:12:36 2025 GMT Subject: CN=681fdd64-787c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c8:6c:ab:0c:38:35:e5:21:14:d1:f2:92:68: d3:6c:18:fa:8b:04:d8:ca:89:35:65:93:e5:1b:34: a5:7e:06:ce:44:7f:61:06:ab:90:8d:9c:55:a6:66: bf:bb:50:c1:d0:cf:a9:71:05:da:06:42:4f:a6:9e: 72:44:8e:8d:d7:ea:89:53:5d:e2:de:a2:43:d4:3d: a4:39:ed:50:27:58:0b:ab:b5:64:e5:7b:3e:c9:f6: 67:27:22:23:64:90:87:c6:9b:ff:49:ae:77:cf:9d: 8b:22:8c:c5:49:51:19:f5:74:1a:f3:9c:60:a8:14: 38:f1:d9:da:7d:8d:08:e2:92:3d:9d:f9:67:ab:a7: fb:b5:7d:f2:d9:a5:17:76:21:29:56:a4:fd:4f:45: 41:c3:78:b9:16:f9:e2:40:98:c4:e8:b5:00:a9:ff: a8:b6:9a:ee:fb:3d:4e:9d:ef:76:37:1e:3c:55:5f: 1a:d0:54:cc:55:5b:1f:2d:92:a0:ee:27:6f:b4:2b: be:bc:88:88:73:2b:eb:9f:6d:21:cf:90:a8:ad:0f: 30:fd:7c:a4:22:e8:11:b7:13:37:59:c0:b2:0f:27: 63:41:a1:c9:59:e6:2a:83:5e:a0:96:79:40:26:b2: 54:a6:3c:f6:41:62:44:91:b2:e1:71:35:9e:1b:d7: c2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DA:A1:C1:97:49:A6:F8:4D:D2:99:9B:F7:4F:39:DC:3D:56:F4:5A X509v3 Authority Key Identifier: keyid:F4:C0:64:13:74:97:5A:58:B5:4E:C0:2C:10:49:73:2E:C8:A7:0A:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:db:ec:3b:ec:56:d6:e5:62:fb:2a:cd:a6:bc:61:81:8a:8b: dc:0b:15:f1:11:3f:18:60:1c:1c:68:51:cc:d1:94:86:bd:36: 68:05:4d:83:11:71:d1:51:bb:5c:5a:39:71:16:c6:dc:b9:21: cc:3d:f3:71:8f:b5:24:c8:8a:0d:fd:9d:1d:08:eb:8f:a0:a4: c0:6a:51:1b:73:94:65:a2:7a:86:fa:6c:25:91:e8:2b:5c:45: 26:91:1b:a6:2c:03:27:cb:f2:f3:52:8b:dd:15:ac:20:6c:86: 64:c2:1d:13:42:7d:7f:1a:f0:b3:86:12:32:5d:62:f1:4e:6b: 65:cc:89:e1:c5:10:6f:32:b1:6c:06:fc:d6:d9:1d:b2:c5:9a: 99:6f:35:5d:53:89:b0:b3:5c:3d:b2:74:93:19:7b:4a:8b:07: 4b:33:a0:47:0e:0f:39:f2:60:9a:ee:19:62:55:35:7d:ed:c0: c3:bd:38:c9:7d:1a:7f:b3:6b:90:09:08:4e:d5:70:e4:4f:1d: d5:73:d1:b1:38:9a:55:7d:6a:0d:99:76:dd:41:2b:4f:ad:f1: b1:b1:27:9f:88:16:75:48:9d:23:4a:0d:35:bc:c8:98:7b:85: 5a:33:1b:23:e1:49:31:c1:6d:a2:13:66:41:b5:57:73:53:4a: 3a:a7:c1:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVGMjExMTAvBgNVBAUTKEY0QzA2NDEzNzQ5NzVBNThCNTRFQzAyQzEwNDk3MzJF QzhBNzBBQ0IwHhcNMjUwNTEwMjMxMjM2WhcNMjUwNTE3MjMxMjM2WjAYMRYwFAYD VQQDEw02ODFmZGQ2NC03ODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkchsqww4NeUhFNHykmjTbBj6iwTYyok1ZZPlGzSlfgbORH9hBquQjZxVpma/ u1DB0M+pcQXaBkJPpp5yRI6N1+qJU13i3qJD1D2kOe1QJ1gLq7Vk5Xs+yfZnJyIj ZJCHxpv/Sa53z52LIozFSVEZ9XQa85xgqBQ48dnafY0I4pI9nflnq6f7tX3y2aUX diEpVqT9T0VBw3i5FvniQJjE6LUAqf+otpru+z1One92Nx48VV8a0FTMVVsfLZKg 7idvtCu+vIiIcyvrn20hz5CorQ8w/XykIugRtxM3WcCyDydjQaHJWeYqg16glnlA JrJUpjz2QWJEkbLhcTWeG9fC0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbaocGX Sab4TdKZm/dPOdw9VvRaMB8GA1UdIwQYMBaAFPTAZBN0l1pYtU7ALBBJcy7IpwrL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUYyMS9FQURCQjQxMjAx ODMxMUVDQjU2NDE2MjlDNEY5QUUwMi85TUJrRTNTWFdsaTFUc0FzRUVsekxzaW5D c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNQmtFM1NYV2xpMVRzQXNFRWx6THNpbkNzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUYyMS9FQURCQjQxMjAxODMxMUVDQjU2NDE2MjlDNEY5QUUwMi85TUJrRTNTWFds aTFUc0FzRUVsekxzaW5Dc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB82+w77FbW5WL7Ks2mvGGBiovcCxXxET8YYBwcaFHM0ZSGvTZoBU2D EXHRUbtcWjlxFsbcuSHMPfNxj7UkyIoN/Z0dCOuPoKTAalEbc5RlonqG+mwlkegr XEUmkRumLAMny/LzUovdFawgbIZkwh0TQn1/GvCzhhIyXWLxTmtlzInhxRBvMrFs BvzW2R2yxZqZbzVdU4mws1w9snSTGXtKiwdLM6BHDg858mCa7hliVTV97cDDvTjJ fRp/s2uQCQhO1XDkTx3Vc9GxOJpVfWoNmXbdQStPrfGxsSefiBZ1SJ0jSg01vMiY e4VaMxsj4UkxwW2iE2ZBtVdzU0o6p8H0 -----END CERTIFICATE-----Generated at Sun May 11 09:38:49 2025 by rpki-client