$ rpki-client -vvf rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft File: 909zX9xaW5M28yTDLLpVjrvSjZc.mft (raw, json) Hash identifier: Bxr45SHovBb+gqmecDzkbeR6nQv7ojWL0uY5SRR9pCU= Subject key identifier: 59:2D:66:7A:92:F8:1A:95:9E:47:7C:E1:F7:28:C6:19:2B:BF:70:78 Authority key identifier: F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 Certificate issuer: /CN=A915123C/serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Certificate serial: 126D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft Manifest number: 126D Signing time: Mon 12 May 2025 17:02:35 +0000 Manifest this update: Mon 12 May 2025 17:02:34 +0000 Manifest next update: Mon 19 May 2025 17:02:34 +0000 Files and hashes: 1: 909zX9xaW5M28yTDLLpVjrvSjZc.crl (hash: xdyHLS8jweJMx3MQsgkfdnSvCEeZnZDyRlvFNdgl9uA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4717 (0x126d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915123C, serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Validity Not Before: May 12 17:02:34 2025 GMT Not After : May 19 17:02:34 2025 GMT Subject: CN=682229aa-9ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fe:6a:df:a9:ca:0c:44:9c:44:c7:e2:12:12: bb:5e:91:d9:83:7b:e9:3b:4f:a8:03:ec:20:6e:d7: 58:f3:cc:98:f5:bf:94:dc:65:b5:95:e1:ae:a7:77: 82:93:b2:53:12:31:6a:20:bc:6d:39:3a:89:73:85: 88:30:41:d5:be:81:60:01:73:00:eb:f1:e2:13:df: 68:e1:05:6a:32:31:fb:45:28:68:3a:06:58:f2:ea: ef:eb:9a:2c:53:e8:bc:ff:3c:48:a0:e5:76:37:c8: bf:8e:a5:19:dd:70:da:4e:90:da:67:92:a7:cf:16: 9d:6e:9d:d6:28:8d:34:f9:13:3a:b4:0c:ba:68:21: 5e:61:01:4d:e9:44:bf:c4:f8:e3:5d:e2:ca:aa:57: 60:f2:d6:8a:1e:22:d2:35:d5:0f:8e:3b:c8:2c:8e: fc:89:8b:d3:b0:c3:8d:61:fe:57:e6:7c:ea:35:86: ec:0a:88:a8:1a:e7:15:27:bf:6f:51:ee:aa:d4:74: de:54:03:2b:af:b5:f2:35:ee:08:64:1a:46:f7:08: 09:c8:23:e8:97:67:29:e5:2f:a1:d3:a1:36:75:45: ae:c2:7d:64:a0:0f:76:21:bc:0f:99:06:e9:b1:95: 7b:99:f8:9f:bc:62:53:1d:c7:b4:6b:c6:0f:a9:db: c2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:2D:66:7A:92:F8:1A:95:9E:47:7C:E1:F7:28:C6:19:2B:BF:70:78 X509v3 Authority Key Identifier: keyid:F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:26:48:62:ad:c2:f8:32:a3:ce:50:67:a3:4d:2d:c4:43:5f: eb:80:00:41:57:2c:b7:79:65:e5:9b:e4:75:60:ee:5c:20:6b: 56:75:7c:14:bc:b8:7a:79:98:15:c3:41:4e:ce:32:e7:73:85: fb:08:80:2b:55:e5:ac:7d:2a:9d:3f:1a:f4:8c:41:f8:a7:73: 7d:04:03:e6:9d:52:de:41:dc:da:8b:1a:0c:1c:4a:09:90:1a: 9b:7a:43:98:20:0c:b1:40:78:95:03:18:1c:69:af:bb:f1:ad: bd:aa:d5:5a:a8:55:ab:3f:9f:13:84:e4:0d:36:2e:7f:80:68: 98:ae:61:5b:4b:cf:dc:01:59:cf:55:1c:6d:ca:8c:a3:d8:83: d3:30:e4:d5:6a:30:e3:d8:1f:1a:26:48:af:ac:ea:55:8f:11: b4:44:be:3c:e1:bf:13:e8:cd:df:02:5c:e1:59:63:30:0e:2e: 10:7a:3c:8a:25:9c:24:24:c4:46:e4:c8:03:7d:47:96:d9:9b: 0e:63:48:93:76:9c:a2:b6:9f:f0:fc:fb:1b:55:e9:c2:7b:6e: 08:80:f3:46:7a:a1:79:f6:58:67:42:9e:04:bc:e3:26:6a:bc: 29:94:01:78:5e:2f:e1:10:63:6b:d7:f2:ad:5f:a1:87:df:2e: ef:5b:30:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyM0MxMTAvBgNVBAUTKEY3NEY3MzVGREM1QTVCOTMzNkYzMjRDMzJDQkE1NThF QkJEMjhEOTcwHhcNMjUwNTEyMTcwMjM0WhcNMjUwNTE5MTcwMjM0WjAYMRYwFAYD VQQDEw02ODIyMjlhYS05YWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqf5q36nKDEScRMfiEhK7XpHZg3vpO0+oA+wgbtdY88yY9b+U3GW1leGup3eC k7JTEjFqILxtOTqJc4WIMEHVvoFgAXMA6/HiE99o4QVqMjH7RShoOgZY8urv65os U+i8/zxIoOV2N8i/jqUZ3XDaTpDaZ5Knzxadbp3WKI00+RM6tAy6aCFeYQFN6US/ xPjjXeLKqldg8taKHiLSNdUPjjvILI78iYvTsMONYf5X5nzqNYbsCoioGucVJ79v Ue6q1HTeVAMrr7XyNe4IZBpG9wgJyCPol2cp5S+h06E2dUWuwn1koA92IbwPmQbp sZV7mfifvGJTHce0a8YPqdvCrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFktZnqS +BqVnkd84fcoxhkrv3B4MB8GA1UdIwQYMBaAFPdPc1/cWluTNvMkwyy6VY670o2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTIzQy82OEY1M0YzMkNC M0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1TTI4eVRETExwVmpydlNq WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkwOXpYOXhhVzVNMjh5VERMTHBWanJ2U2paYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTIzQy82OEY1M0YzMkNCM0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1 TTI4eVRETExwVmpydlNqWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHJkhircL4MqPOUGejTS3EQ1/rgABBVyy3eWXlm+R1YO5cIGtWdXwU vLh6eZgVw0FOzjLnc4X7CIArVeWsfSqdPxr0jEH4p3N9BAPmnVLeQdzaixoMHEoJ kBqbekOYIAyxQHiVAxgcaa+78a29qtVaqFWrP58ThOQNNi5/gGiYrmFbS8/cAVnP VRxtyoyj2IPTMOTVajDj2B8aJkivrOpVjxG0RL484b8T6M3fAlzhWWMwDi4QejyK JZwkJMRG5MgDfUeW2ZsOY0iTdpyitp/w/PsbVenCe24IgPNGeqF59lhnQp4EvOMm arwplAF4Xi/hEGNr1/KtX6GH3y7vWzCL -----END CERTIFICATE-----Generated at Tue May 13 07:54:43 2025 by rpki-client