$ rpki-client -vvf rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft File: d6E036eiOU7SRHU58T_kqNHgVsk.mft (raw, json) Hash identifier: KQVFoVVQudzybJujpXuehLWE3AFmrWqe6tI2Z5mdxbY= Subject key identifier: 6C:AB:66:C0:A9:81:2E:53:9E:06:B3:6E:E0:1E:4C:D1:D9:40:26:E9 Authority key identifier: 77:A1:34:DF:A7:A2:39:4E:D2:44:75:39:F1:3F:E4:A8:D1:E0:56:C9 Certificate issuer: /CN=A915A821/serialNumber=77A134DFA7A2394ED2447539F13FE4A8D1E056C9 Certificate serial: 0A4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft Manifest number: 0A48 Signing time: Mon 12 May 2025 19:32:36 +0000 Manifest this update: Mon 12 May 2025 19:32:36 +0000 Manifest next update: Mon 19 May 2025 19:32:36 +0000 Files and hashes: 1: d6E036eiOU7SRHU58T_kqNHgVsk.crl (hash: o0KrFiEU2SsNINcocpSBy4BNMBSZpTQtyq0yhccDD6g=) 2: 4B2AAC20660211EA83A76342C4F9AE02.roa (hash: VubdDr6jpnctpYE2M5QsaGv87QGAE8y0LNTwoL81fa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.crl rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2638 (0xa4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A821, serialNumber=77A134DFA7A2394ED2447539F13FE4A8D1E056C9 Validity Not Before: May 12 19:32:36 2025 GMT Not After : May 19 19:32:36 2025 GMT Subject: CN=68224cd4-cc28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:43:a9:2f:dd:e5:1a:14:81:9e:e8:52:c2:4c: 70:13:93:da:50:78:bf:7a:0c:21:4e:08:2b:ae:62: e1:f0:fb:8e:c8:13:7d:39:24:cd:78:f5:be:a8:62: 12:29:77:64:69:51:35:68:72:8c:98:7d:69:af:b9: 36:f2:77:31:f6:73:1b:be:01:e5:73:31:0d:9b:e2: 83:27:35:f0:91:7e:01:04:5a:cc:aa:b9:e2:78:88: 1a:b7:6b:17:e7:dd:5a:93:1a:a0:df:a9:1c:e1:85: 91:4f:b1:b5:b8:21:cb:f9:9c:ff:96:f3:7c:3c:c5: 25:bd:2e:93:ab:ac:ee:37:a7:ed:e8:54:5a:51:ba: 03:67:60:36:51:bf:66:f5:2c:3c:09:ca:61:a5:ec: 33:11:cc:e2:f5:8b:a8:de:b5:a3:39:b2:07:a1:d9: e7:2f:12:17:fb:45:5f:58:bb:6d:2b:b9:fe:55:b0: eb:c4:e9:95:68:20:79:33:1f:e2:b0:78:35:f1:63: 2d:aa:58:fd:90:a5:5c:5b:4e:ff:30:be:4b:4d:ca: 01:9b:8c:f3:74:1a:55:1b:48:cc:ea:48:ec:44:d1: ed:6a:d5:cf:8b:e2:35:e2:b9:b8:85:5d:4b:8a:54: 02:78:e2:b2:5e:18:0b:d8:68:d5:36:a2:30:83:59: 8f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:AB:66:C0:A9:81:2E:53:9E:06:B3:6E:E0:1E:4C:D1:D9:40:26:E9 X509v3 Authority Key Identifier: keyid:77:A1:34:DF:A7:A2:39:4E:D2:44:75:39:F1:3F:E4:A8:D1:E0:56:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:85:b4:cc:2b:48:bc:81:68:20:b8:38:6a:7c:f4:d2:60:34: b5:ae:5e:8a:4a:94:de:a2:33:96:94:0c:e6:21:ad:2b:a7:bd: db:a5:17:ae:c5:43:b6:54:6c:f2:33:3b:bc:75:2a:d8:2a:cc: 23:0d:6c:6e:cb:56:89:7d:84:61:a4:21:92:c1:34:40:39:57: b1:0b:6c:89:b6:b9:f4:19:ab:6f:81:5f:1c:fa:19:ba:11:8a: 8a:2f:ac:78:1b:02:69:07:33:70:02:2f:06:26:30:e7:ee:b5: c0:c3:9b:a3:9b:ad:2b:da:47:52:5c:9b:f5:47:44:6c:3a:7e: 86:0a:fc:87:b0:c6:a3:4f:b8:64:1e:03:8e:f6:69:a5:90:fb: e9:67:a5:d5:3c:5c:22:aa:2d:7b:f8:b1:bf:f5:d1:ef:b2:ed: dc:91:48:87:b1:14:f5:bd:68:80:76:38:1d:46:68:ac:41:99: ae:39:81:4c:db:00:a4:82:a5:60:4d:4e:40:3b:8d:f3:ef:4c: d9:ee:cf:e6:d5:f5:04:15:e8:a9:0e:59:ef:f6:47:8e:db:3a: 31:44:49:56:71:a5:d5:5e:0e:61:68:fd:22:a1:33:92:a8:ca: 00:c6:5e:9f:14:4b:a3:35:f9:58:c8:ba:86:92:6d:3c:b2:1b: d0:7e:88:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE4MjExMTAvBgNVBAUTKDc3QTEzNERGQTdBMjM5NEVEMjQ0NzUzOUYxM0ZFNEE4 RDFFMDU2QzkwHhcNMjUwNTEyMTkzMjM2WhcNMjUwNTE5MTkzMjM2WjAYMRYwFAYD VQQDEw02ODIyNGNkNC1jYzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0OpL93lGhSBnuhSwkxwE5PaUHi/egwhTggrrmLh8PuOyBN9OSTNePW+qGIS KXdkaVE1aHKMmH1pr7k28ncx9nMbvgHlczENm+KDJzXwkX4BBFrMqrnieIgat2sX 591akxqg36kc4YWRT7G1uCHL+Zz/lvN8PMUlvS6Tq6zuN6ft6FRaUboDZ2A2Ub9m 9Sw8CcphpewzEczi9Yuo3rWjObIHodnnLxIX+0VfWLttK7n+VbDrxOmVaCB5Mx/i sHg18WMtqlj9kKVcW07/ML5LTcoBm4zzdBpVG0jM6kjsRNHtatXPi+I14rm4hV1L ilQCeOKyXhgL2GjVNqIwg1mP6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyrZsCp gS5TngazbuAeTNHZQCbpMB8GA1UdIwQYMBaAFHehNN+nojlO0kR1OfE/5KjR4FbJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTgyMS8yMzlCRkM2NDY2 MDExMUVBQkVFQTA3NDFDNEY5QUUwMi9kNkUwMzZlaU9VN1NSSFU1OFRfa3FOSGdW c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2RTAzNmVpT1U3U1JIVTU4VF9rcU5IZ1Zzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTgyMS8yMzlCRkM2NDY2MDExMUVBQkVFQTA3NDFDNEY5QUUwMi9kNkUwMzZlaU9V N1NSSFU1OFRfa3FOSGdWc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPhbTMK0i8gWgguDhqfPTSYDS1rl6KSpTeojOWlAzmIa0rp73bpReu xUO2VGzyMzu8dSrYKswjDWxuy1aJfYRhpCGSwTRAOVexC2yJtrn0GatvgV8c+hm6 EYqKL6x4GwJpBzNwAi8GJjDn7rXAw5ujm60r2kdSXJv1R0RsOn6GCvyHsMajT7hk HgOO9mmlkPvpZ6XVPFwiqi17+LG/9dHvsu3ckUiHsRT1vWiAdjgdRmisQZmuOYFM 2wCkgqVgTU5AO43z70zZ7s/m1fUEFeipDlnv9keO2zoxRElWcaXVXg5haP0ioTOS qMoAxl6fFEujNflYyLqGkm08shvQfogS -----END CERTIFICATE-----Generated at Tue May 13 18:23:04 2025 by rpki-client