$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: 10Go9r8ZwsoDhIJU0yp5VJe5rAYoYWPy4o/gnYG2CJg= Subject key identifier: B8:3A:EB:6F:86:EB:2D:ED:AE:E4:27:C2:B0:54:7F:53:33:D2:83:D0 Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0AB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0AB2 Signing time: Sun 04 May 2025 19:17:59 +0000 Manifest this update: Sun 04 May 2025 19:17:59 +0000 Manifest next update: Sun 11 May 2025 19:17:59 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: giY9YQtEibnAQ85tYw8QINaGgIX1KnlRUaQtxwl3FZI=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 19:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2745 (0xab9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: May 4 19:17:59 2025 GMT Not After : May 11 19:17:59 2025 GMT Subject: CN=6817bd67-a7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b9:5c:70:f8:26:e8:93:81:94:7a:08:81:51: b2:8f:97:d0:2a:06:35:e0:37:80:db:0e:03:df:91: 7f:d1:d1:ec:6c:d0:40:fa:f1:00:bc:13:28:27:d3: cf:e9:c0:ff:ce:2e:ac:aa:47:9f:9d:28:8b:08:b4: 16:f6:f8:1e:70:09:88:20:43:bd:15:c8:e1:40:d2: 28:70:7f:1f:f7:cf:26:d8:c1:b0:b9:53:eb:d3:ab: 33:16:22:5b:4e:07:b6:e7:ce:2f:75:f3:ab:fc:01: 73:67:c9:0a:65:4c:ca:fb:18:6c:d4:ea:f0:aa:59: 6e:9a:79:14:1a:8c:e3:b1:7b:e6:dd:70:bb:75:cd: 11:e4:3b:01:cc:fe:7f:b1:5a:fb:a9:46:42:37:2c: ce:35:4f:b4:44:b1:18:2a:5a:c2:86:4e:e6:2b:d3: 05:f7:f0:64:65:d4:45:1f:04:d6:7a:8c:de:09:b6: 18:a7:ec:b6:0e:66:e8:95:d4:f6:92:f8:27:2b:1e: 54:2b:5d:ec:18:0f:bf:bc:17:ef:14:83:cb:8e:2a: 89:b6:40:59:e7:e2:8e:9e:f5:7e:a7:9b:94:6a:e2: 8e:f9:24:70:3f:81:4a:84:27:4e:3d:6f:ee:25:fa: 96:e0:6e:8c:c8:0e:fc:3d:19:6b:a8:33:19:34:8b: 42:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:3A:EB:6F:86:EB:2D:ED:AE:E4:27:C2:B0:54:7F:53:33:D2:83:D0 X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:94:27:a2:36:43:da:8a:c7:03:4c:29:53:68:8a:93:f2:b1: 1d:06:78:4f:28:83:a4:06:db:e2:34:c3:ea:ee:a6:1a:6b:5c: e1:e1:f9:db:64:e6:c6:03:26:5d:11:9d:1b:79:80:58:dc:16: 13:15:88:00:5c:9a:5c:f8:83:3d:4c:79:9d:f9:a9:ce:88:07: 32:fd:bf:63:08:6c:72:2e:4c:09:df:35:35:7b:5d:54:8e:8a: 98:34:1b:22:24:32:0a:10:41:80:99:48:f5:37:0b:27:86:48: 6b:58:55:49:bc:ac:36:9e:fc:b4:dc:eb:da:e1:01:d0:32:40: e5:b4:7a:1c:0b:a8:7b:73:b8:42:a8:cc:d7:5c:11:4b:85:88: 7a:49:b6:bb:ab:b1:46:46:b8:56:10:a7:49:9b:48:52:45:17: 5d:8e:57:1b:66:6d:d3:65:44:64:6c:bf:97:01:0f:ee:54:2c: 66:e7:ac:21:0b:7e:d2:4d:ec:5e:3a:24:2d:03:e0:df:2f:f0: de:02:dc:fa:7b:6f:4f:2c:9f:85:76:31:dd:4c:99:e5:64:58: b9:5a:1d:33:0a:23:1a:f1:8a:26:f1:31:28:ea:5a:e2:0c:c1: 0c:4a:3b:5b:05:30:8d:5c:ab:1c:fd:e7:16:48:1e:25:10:73: 17:a1:82:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjUwNTA0MTkxNzU5WhcNMjUwNTExMTkxNzU5WjAYMRYwFAYD VQQDEw02ODE3YmQ2Ny1hN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLlccPgm6JOBlHoIgVGyj5fQKgY14DeA2w4D35F/0dHsbNBA+vEAvBMoJ9PP 6cD/zi6sqkefnSiLCLQW9vgecAmIIEO9FcjhQNIocH8f988m2MGwuVPr06szFiJb Tge2584vdfOr/AFzZ8kKZUzK+xhs1OrwqllumnkUGozjsXvm3XC7dc0R5DsBzP5/ sVr7qUZCNyzONU+0RLEYKlrChk7mK9MF9/BkZdRFHwTWeozeCbYYp+y2DmboldT2 kvgnKx5UK13sGA+/vBfvFIPLjiqJtkBZ5+KOnvV+p5uUauKO+SRwP4FKhCdOPW/u JfqW4G6MyA78PRlrqDMZNItCyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLg662+G 6y3truQnwrBUf1Mz0oPQMB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnlCeiNkPaiscDTClTaIqT8rEdBnhPKIOkBtviNMPq7qYaa1zh4fnb ZObGAyZdEZ0beYBY3BYTFYgAXJpc+IM9THmd+anOiAcy/b9jCGxyLkwJ3zU1e11U joqYNBsiJDIKEEGAmUj1NwsnhkhrWFVJvKw2nvy03Ova4QHQMkDltHocC6h7c7hC qMzXXBFLhYh6Sba7q7FGRrhWEKdJm0hSRRddjlcbZm3TZURkbL+XAQ/uVCxm56wh C37STexeOiQtA+DfL/DeAtz6e29PLJ+FdjHdTJnlZFi5Wh0zCiMa8Yom8TEo6lri DMEMSjtbBTCNXKsc/ecWSB4lEHMXoYLo -----END CERTIFICATE-----Generated at Mon May 5 03:30:24 2025 by rpki-client