$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft File: 0AZhDr1oKXhFffitopEQATORAZI.mft (raw, json) Hash identifier: fxLM2tJr+yBvP8N70hX8ctsOkpGZBoOtyY4Forw6CbE= Subject key identifier: 1C:94:5A:96:0B:06:15:E1:CC:CF:DB:C7:99:26:E2:AA:73:9D:09:95 Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0E76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft Manifest number: 0E69 Signing time: Mon 12 May 2025 17:38:02 +0000 Manifest this update: Mon 12 May 2025 17:38:01 +0000 Manifest next update: Mon 19 May 2025 17:38:01 +0000 Files and hashes: 1: 0AZhDr1oKXhFffitopEQATORAZI.crl (hash: SFio7VzJJbY+VT3jKlr2B4L+Z1p2xUb1ecDgra4pkR0=) 2: CBD704945F5F11EFB99ABA76C4F9AE02.roa (hash: 8S2L4PIf85V9FtE2NxlTWF91adX1vQpLiZaP3LriZvM=) 3: 42431FFC8FF711EEA0FC990FC4F9AE02.roa (hash: dBVxIuxXi1IfubYTqCooyEf06bco+4CSqK6CVlwkBZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3702 (0xe76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E, serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: May 12 17:38:01 2025 GMT Not After : May 19 17:38:01 2025 GMT Subject: CN=682231fa-3224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f1:21:31:7b:16:e1:ba:ff:a7:db:53:dc:be: a1:12:c5:42:fd:bd:68:fb:ed:39:a9:d8:89:e7:4c: 21:8d:f8:eb:9b:99:3a:24:b2:a8:be:8b:0f:3a:7c: ba:17:04:ff:59:36:95:4f:4b:94:57:69:81:8e:53: 8e:90:54:7e:00:14:23:e7:ae:b2:8d:21:9e:ca:a7: b3:d1:a0:af:62:7e:6b:81:49:c4:57:ee:1d:b0:a8: 60:df:93:73:06:e6:b6:c7:2f:70:b8:c3:dc:a6:d8: f0:6b:2c:e1:6d:b4:2a:9e:11:c7:57:bf:53:6f:d0: f4:27:9e:9a:f9:56:66:f4:92:25:1c:a1:16:49:a5: f9:65:58:1e:0b:5b:83:a5:e0:d1:ed:10:bc:ba:cb: 6d:8d:2b:45:c5:3a:81:32:23:a8:1b:60:85:8b:14: 7e:e8:eb:dc:c8:89:43:55:f0:2a:57:b4:0c:98:68: 55:7e:f1:3c:80:d9:6b:8a:39:ee:0a:47:d6:cb:b7: 5f:34:71:90:84:dc:5c:2a:5e:a0:d2:10:af:12:1b: 5a:d5:f9:1c:fa:24:02:ed:22:65:5c:54:39:de:c8: 12:58:ac:2f:bf:cf:6c:61:7e:a1:48:7e:63:47:ba: 72:ff:80:59:12:7c:78:bf:4b:60:d9:f0:34:f1:c3: 93:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:94:5A:96:0B:06:15:E1:CC:CF:DB:C7:99:26:E2:AA:73:9D:09:95 X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:4d:7b:65:b8:0a:62:9b:4e:10:0b:30:2d:72:57:84:5c:27: f5:98:c3:eb:57:c1:c4:bc:2b:d0:6b:8f:11:ed:3a:bd:a9:bb: 0f:87:e2:db:74:fb:b2:d0:00:ab:4d:6a:c1:4d:74:05:db:dd: bf:24:bb:89:6c:41:40:24:fa:1d:af:45:16:44:ae:19:b0:94: 4e:92:09:05:d3:eb:8c:ec:7a:3c:fc:bc:3f:a3:08:c8:06:94: 91:5e:a2:b4:2e:7e:de:1d:5e:65:9d:9a:f1:5b:68:79:f8:f0: c7:ee:27:ce:6b:fd:63:a2:1e:73:f3:71:4f:33:8d:94:09:f9: 29:93:0f:8a:67:88:c1:bd:06:cc:6e:11:26:fd:26:4e:0d:0f: 57:d0:5f:ff:55:b6:97:07:db:0a:ee:bb:f7:1b:7d:52:5c:a9: 68:7c:e3:0d:0e:8e:e4:e0:82:1c:6b:c7:d2:7b:d4:cd:11:6e: dd:53:ec:1a:fb:37:64:07:1c:02:a7:27:12:00:5d:84:3a:a0: 9f:56:9d:f5:db:ee:c4:38:37:80:10:f0:ef:21:56:e7:0c:03: 5f:52:fb:a8:f4:cd:f6:aa:7c:79:0f:00:b0:5d:ee:89:d1:95: ac:cc:a8:09:a4:92:f9:38:51:d8:c9:a4:b6:ae:9d:12:5b:9a: 2a:5c:2c:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjUwNTEyMTczODAxWhcNMjUwNTE5MTczODAxWjAYMRYwFAYD VQQDEw02ODIyMzFmYS0zMjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/EhMXsW4br/p9tT3L6hEsVC/b1o++05qdiJ50whjfjrm5k6JLKovosPOny6 FwT/WTaVT0uUV2mBjlOOkFR+ABQj566yjSGeyqez0aCvYn5rgUnEV+4dsKhg35Nz Bua2xy9wuMPcptjwayzhbbQqnhHHV79Tb9D0J56a+VZm9JIlHKEWSaX5ZVgeC1uD peDR7RC8usttjStFxTqBMiOoG2CFixR+6OvcyIlDVfAqV7QMmGhVfvE8gNlrijnu CkfWy7dfNHGQhNxcKl6g0hCvEhta1fkc+iQC7SJlXFQ53sgSWKwvv89sYX6hSH5j R7py/4BZEnx4v0tg2fA08cOTcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByUWpYL BhXhzM/bx5km4qpznQmVMB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0E2RS83OUVDRTgzODk4QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tY aEZmZml0b3BFUUFUT1JBWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCATXtluApim04QCzAtcleEXCf1mMPrV8HEvCvQa48R7Tq9qbsPh+Lb dPuy0ACrTWrBTXQF292/JLuJbEFAJPodr0UWRK4ZsJROkgkF0+uM7Ho8/Lw/owjI BpSRXqK0Ln7eHV5lnZrxW2h5+PDH7ifOa/1joh5z83FPM42UCfkpkw+KZ4jBvQbM bhEm/SZODQ9X0F//VbaXB9sK7rv3G31SXKlofOMNDo7k4IIca8fSe9TNEW7dU+wa +zdkBxwCpycSAF2EOqCfVp312+7EODeAEPDvIVbnDANfUvuo9M32qnx5DwCwXe6J 0ZWszKgJpJL5OFHYyaS2rp0SW5oqXCwl -----END CERTIFICATE-----Generated at Wed May 14 01:31:03 2025 by rpki-client