$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: hxKgxWuMhAjegAA+iM7pMovGjNPdtWFO/EPGBCtb/rk= Subject key identifier: 7E:EF:5D:2D:B8:C4:D5:69:08:04:A1:5D:B9:2D:3C:6E:78:9E:B3:09 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0458 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 0445 Signing time: Mon 12 May 2025 17:03:32 +0000 Manifest this update: Mon 12 May 2025 17:03:32 +0000 Manifest next update: Mon 19 May 2025 17:03:32 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: Q4WuS6m0lTr3Eg2lfuLKh0K1vJE3N5RDkvfrHhz6s4E=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: BSTa7sI/Wxp7paF8iFEhYcOXczYzjvqpGs3tFatgPsE=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: EM7EONiwHXhiPFzyfONkaOBX/AROwU9rjV4ETvuVQDQ=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: TLiIvWlCkSUznKaCtTmASc45uAF4Q8KIvn7LhcKxI18=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HMDK7qPjAO3ncQEJzX6SKnODDt4e7glxidti8sfhV1k=) 6: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Z/SQA8GAHBj69mDXnfsLMK8qu+tlZ5LxlzdXDGduFGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: May 12 17:03:32 2025 GMT Not After : May 19 17:03:32 2025 GMT Subject: CN=682229e4-9458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:83:0a:b1:68:29:9c:fc:e6:eb:87:64:af: 43:fd:e3:f2:5a:d5:3b:8c:eb:01:3d:4e:d8:83:38: 60:a2:19:c2:12:b9:18:97:d9:e6:af:35:4c:0b:cf: 9c:6e:b3:45:f5:9e:b8:32:9c:d8:8d:64:b2:d8:31: bc:30:c0:b5:49:d6:af:e1:e9:12:76:c6:31:76:5d: dd:37:8f:72:b7:23:81:f5:e2:1b:e4:99:49:37:5d: a3:31:f9:80:6c:c7:6e:fa:35:a4:ab:a6:b2:69:86: 5b:43:bd:e4:43:c8:aa:02:36:88:66:5b:98:46:44: c4:c2:0a:6b:7b:5b:2d:2b:ae:ce:a5:f9:12:8b:73: 8a:45:e9:1b:c9:38:c2:37:62:12:6d:18:32:b4:47: 2b:9c:c5:af:ec:d3:59:67:5e:8c:a2:2d:61:a7:2d: 5d:31:42:69:cb:c2:b0:9c:9e:16:78:ac:08:24:6b: 91:ba:14:f9:7a:92:96:ba:8c:f0:b9:c2:d9:90:29: 73:11:cc:e5:3c:f4:fb:8a:e2:f3:77:ac:db:ac:81: 67:e1:87:b7:9e:b9:86:ec:61:7e:37:1e:aa:e2:c0: b8:7b:c8:22:f4:90:aa:60:cb:66:a9:68:bc:30:19: 59:7d:99:aa:cc:24:29:5b:79:9a:88:17:d8:9f:b4: 03:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EF:5D:2D:B8:C4:D5:69:08:04:A1:5D:B9:2D:3C:6E:78:9E:B3:09 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:1f:58:1f:cd:cc:71:40:e2:2d:aa:f4:06:e2:01:6a:d3:e0: 22:00:c9:78:d5:d2:3c:1a:3f:0e:cb:e5:10:04:d4:e9:9b:3f: 54:2d:2d:af:b9:21:06:c2:c5:8f:11:0d:94:5a:01:74:8f:a8: 8d:3b:88:ed:23:cf:91:29:d2:6d:1b:aa:c9:22:ec:3e:ca:c0: 54:52:e7:8b:21:6b:0e:ea:a4:c8:9f:34:8c:dc:a9:64:db:f5: 7b:27:f0:ff:ac:dd:c2:35:dd:70:aa:84:9e:7a:4e:1b:fe:c7: 7b:73:73:ec:21:1b:c0:bc:7a:f4:3b:9a:07:17:a3:87:fa:a3: 56:32:78:14:86:38:6d:00:d0:8e:9f:64:92:4a:35:31:2e:b8: fe:37:86:85:d6:3e:e5:eb:5d:ff:f8:fc:ca:64:2f:df:7c:da: 7b:9c:1d:0f:eb:d9:2c:0a:9e:1b:0f:25:5b:51:95:cb:84:fb: c5:ad:9b:df:48:dd:61:20:eb:a3:38:27:9a:86:b6:db:ab:7a: db:56:af:b2:e4:2a:38:28:e4:f0:b4:11:38:13:13:d7:db:ae: e1:8c:56:1a:e4:8c:6e:11:08:ad:5b:1f:1d:b1:4d:13:8e:13: 67:1e:6d:ab:ab:a7:28:82:ae:ae:95:33:09:a6:27:0c:1d:66: 2e:8c:a5:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUwNTEyMTcwMzMyWhcNMjUwNTE5MTcwMzMyWjAYMRYwFAYD VQQDEw02ODIyMjllNC05NDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4GDCrFoKZz85uuHZK9D/ePyWtU7jOsBPU7YgzhgohnCErkYl9nmrzVMC8+c brNF9Z64MpzYjWSy2DG8MMC1Sdav4ekSdsYxdl3dN49ytyOB9eIb5JlJN12jMfmA bMdu+jWkq6ayaYZbQ73kQ8iqAjaIZluYRkTEwgpre1stK67OpfkSi3OKRekbyTjC N2ISbRgytEcrnMWv7NNZZ16Moi1hpy1dMUJpy8KwnJ4WeKwIJGuRuhT5epKWuozw ucLZkClzEczlPPT7iuLzd6zbrIFn4Ye3nrmG7GF+Nx6q4sC4e8gi9JCqYMtmqWi8 MBlZfZmqzCQpW3maiBfYn7QDxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7vXS24 xNVpCAShXbktPG54nrMJMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuH1gfzcxxQOItqvQG4gFq0+AiAMl41dI8Gj8Oy+UQBNTpmz9ULS2v uSEGwsWPEQ2UWgF0j6iNO4jtI8+RKdJtG6rJIuw+ysBUUueLIWsO6qTInzSM3Klk 2/V7J/D/rN3CNd1wqoSeek4b/sd7c3PsIRvAvHr0O5oHF6OH+qNWMngUhjhtANCO n2SSSjUxLrj+N4aF1j7l613/+PzKZC/ffNp7nB0P69ksCp4bDyVbUZXLhPvFrZvf SN1hIOujOCeahrbbq3rbVq+y5Co4KOTwtBE4ExPX267hjFYa5IxuEQitWx8dsU0T jhNnHm2rq6cogq6ulTMJpicMHWYujKXr -----END CERTIFICATE-----Generated at Tue May 13 09:04:49 2025 by rpki-client