$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: ZjQ6s7yI/KIcX45QjO1nj6PXvswc6iEPgt9j7SeeHPk= Subject key identifier: 9B:00:EF:22:59:FA:72:D9:4A:5E:D4:4C:AD:2D:5D:15:E2:4E:09:0F Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0DF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0DE0 Signing time: Wed 14 May 2025 18:00:34 +0000 Manifest this update: Wed 14 May 2025 18:00:33 +0000 Manifest next update: Wed 21 May 2025 18:00:33 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: /wTSUpgYFGi5PqPxJrKaJzKZHRPxkCgyQrEXOuvG0eY=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: QoxSmZFkmxLXEXsdlg7AEo5bS3bmundbYECPlf6m84c=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: Hd+fGLIKcj2CGWAhoQMpGvllKlGgq3bRAKOqU9WwZus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3574 (0xdf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: May 14 18:00:33 2025 GMT Not After : May 21 18:00:33 2025 GMT Subject: CN=6824da42-2d04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:89:69:83:45:b9:37:e9:c4:30:9b:af:81:87: 63:03:db:62:77:dd:11:ae:7c:da:06:08:92:fe:f3: 0e:7c:2b:68:fd:14:1f:88:dd:b5:e1:ca:68:62:a2: 26:c7:83:17:77:d7:db:b4:4b:a2:a9:bc:7c:0c:6d: cf:ce:f9:09:9c:34:08:d7:0d:e1:85:90:c1:9a:51: 77:9a:ea:6b:ee:1f:82:08:6a:2a:ed:87:0e:38:99: 19:e4:66:63:34:1e:76:0d:68:7f:7f:08:c0:12:4c: 1c:63:0b:71:98:4c:50:70:93:b4:45:e6:7e:7d:c9: c4:f1:2d:17:4a:9b:4e:6a:1c:48:28:d0:12:b7:ca: 13:1e:79:a6:13:72:be:70:96:e2:30:d2:07:cc:ee: 0b:f6:36:ed:1e:5a:32:30:ae:a9:f4:06:6a:0f:c7: 3f:f5:7c:25:eb:a9:f2:9c:f5:9a:3c:03:ec:c7:fa: 80:a9:2f:6b:44:45:01:7b:ec:69:b1:0e:81:58:a7: b0:db:4a:15:f5:49:62:aa:85:cd:47:8d:58:65:fc: 8e:96:4a:7b:ad:b4:f7:b9:a1:4e:e8:a9:c3:ce:4e: 82:84:0c:be:cf:c9:b6:06:41:46:53:b4:5b:00:62: 70:3d:73:c5:2f:a5:1d:b3:98:82:d0:de:4b:de:38: 27:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:00:EF:22:59:FA:72:D9:4A:5E:D4:4C:AD:2D:5D:15:E2:4E:09:0F X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:fe:cf:e0:ef:05:33:91:a8:e7:ca:42:5e:09:64:ed:52:a8: b7:f4:97:02:33:79:21:a5:fa:fb:bb:cf:81:b5:79:45:13:7c: b8:18:53:fb:2c:f6:2b:07:ab:c4:4e:54:37:2e:6a:d4:3c:82: a0:27:a0:c6:44:c0:9a:ce:be:31:c8:30:d2:1d:94:31:5a:32: 7b:2b:39:40:54:78:62:ad:c5:94:30:98:e3:4c:00:e0:16:b2: 4d:52:7d:0d:d4:de:e3:79:49:6c:36:37:27:8b:7e:49:9c:53: d7:a8:d3:6c:65:c1:4c:1a:7f:c1:d1:5e:d4:ee:e3:0b:d8:0b: 63:d4:c4:42:d1:4d:b4:e8:22:d3:1c:b5:7f:7c:72:32:e4:5c: 67:b8:c4:b4:e8:b2:1f:ab:f5:49:95:88:58:15:ff:4a:db:4a: aa:7f:6f:13:e9:fe:07:e8:ad:d4:37:8e:9c:5f:d8:38:f4:b9: 85:d8:57:b2:60:db:aa:60:4b:68:f7:df:5d:bb:7d:c4:e6:c5: fe:a6:75:00:0d:ba:d7:ad:37:ca:3d:57:82:3e:57:61:22:95: 51:55:95:0b:2e:35:2c:dc:fa:71:e7:ed:73:61:0f:8b:fd:7e: f1:76:22:64:b6:18:45:34:f9:8e:b9:3a:02:61:c7:38:d3:10: 1f:a8:94:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUwNTE0MTgwMDMzWhcNMjUwNTIxMTgwMDMzWjAYMRYwFAYD VQQDEw02ODI0ZGE0Mi0yZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Ilpg0W5N+nEMJuvgYdjA9tid90RrnzaBgiS/vMOfCto/RQfiN214cpoYqIm x4MXd9fbtEuiqbx8DG3PzvkJnDQI1w3hhZDBmlF3mupr7h+CCGoq7YcOOJkZ5GZj NB52DWh/fwjAEkwcYwtxmExQcJO0ReZ+fcnE8S0XSptOahxIKNASt8oTHnmmE3K+ cJbiMNIHzO4L9jbtHloyMK6p9AZqD8c/9Xwl66nynPWaPAPsx/qAqS9rREUBe+xp sQ6BWKew20oV9UliqoXNR41YZfyOlkp7rbT3uaFO6KnDzk6ChAy+z8m2BkFGU7Rb AGJwPXPFL6Uds5iC0N5L3jgnewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsA7yJZ +nLZSl7UTK0tXRXiTgkPMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm/s/g7wUzkajnykJeCWTtUqi39JcCM3khpfr7u8+BtXlFE3y4GFP7 LPYrB6vETlQ3LmrUPIKgJ6DGRMCazr4xyDDSHZQxWjJ7KzlAVHhircWUMJjjTADg FrJNUn0N1N7jeUlsNjcni35JnFPXqNNsZcFMGn/B0V7U7uML2Atj1MRC0U206CLT HLV/fHIy5FxnuMS06LIfq/VJlYhYFf9K20qqf28T6f4H6K3UN46cX9g49LmF2Fey YNuqYEto999du33E5sX+pnUADbrXrTfKPVeCPldhIpVRVZULLjUs3Ppx5+1zYQ+L /X7xdiJkthhFNPmOuToCYcc40xAfqJR9 -----END CERTIFICATE-----Generated at Fri May 16 09:30:20 2025 by rpki-client