$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft File: SC1I47aWHxIIwGcVJOCOkDOV9lk.mft (raw, json) Hash identifier: eQwJEBKdWaUAL+2kTGzMXyOim/KZ3chRwsU3z8QV4zA= Subject key identifier: 8A:AD:88:FF:C8:02:78:28:DF:70:5B:46:BD:7B:89:B6:52:9C:CA:9A Authority key identifier: 48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 Certificate issuer: /CN=A915BCE2/serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft Manifest number: 0105 Signing time: Mon 05 May 2025 03:55:19 +0000 Manifest this update: Mon 05 May 2025 03:55:18 +0000 Manifest next update: Mon 12 May 2025 03:55:18 +0000 Files and hashes: 1: SC1I47aWHxIIwGcVJOCOkDOV9lk.crl (hash: p3/CeJlUnKEBV3c++e70INLNe5Iu8tuJ78ZI6JY4a4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 03:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCE2, serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Validity Not Before: May 5 03:55:18 2025 GMT Not After : May 12 03:55:18 2025 GMT Subject: CN=681836a7-38b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:25:fd:a7:f4:43:61:4b:a1:8b:26:bd:87:81: 45:c8:82:ac:3d:80:b4:40:d4:4a:ec:c4:48:e2:5e: 05:95:e7:d9:cb:02:a3:f2:61:f9:c9:e2:86:69:af: bf:f3:f4:c5:fa:82:54:ff:33:6e:c2:b7:73:cc:c1: e3:92:29:39:20:c1:bf:7c:ef:09:0d:27:41:1a:00: 9b:bd:57:81:5b:70:5e:f0:ae:ea:fc:2d:92:36:0c: d2:fc:13:7b:20:39:9a:c0:06:85:97:0d:36:af:e0: 2b:2e:78:60:90:4e:12:47:f9:17:93:e3:eb:63:00: 39:c3:af:03:61:d0:48:b0:6a:ca:3a:b6:2c:e6:d6: f2:49:61:75:4c:eb:f0:86:56:50:34:d0:60:86:46: 8d:62:c9:c3:02:b2:12:0a:21:17:0c:ac:1a:a5:1d: 4b:11:36:a3:92:20:9b:e4:42:30:e9:05:dd:89:59: 23:80:8c:ad:5f:fa:28:f8:99:bb:fa:6a:f8:ad:11: 58:28:b4:62:54:33:d9:54:47:ca:05:8a:56:8b:5a: 40:58:8d:54:f2:6c:f2:34:c3:8c:14:86:a2:6b:ac: 55:45:b6:3f:06:bf:91:20:70:8b:6e:5a:e1:ed:b1: e0:7d:e2:2a:65:c0:a7:ad:b7:10:3b:ae:09:a7:22: bb:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:AD:88:FF:C8:02:78:28:DF:70:5B:46:BD:7B:89:B6:52:9C:CA:9A X509v3 Authority Key Identifier: keyid:48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:bf:64:cc:dc:7b:9a:f1:f7:ab:ee:15:93:2f:c8:bd:b1:a8: ad:70:20:7d:af:51:2c:a9:0e:95:92:51:70:8d:8a:98:7a:60: 21:28:77:44:e3:4c:b4:54:fe:cc:3d:a1:24:10:91:b8:d0:a8: 32:3d:4e:a9:10:4f:c3:37:d9:8a:29:32:7c:91:90:03:53:87: cf:8e:fc:d2:1a:3c:b1:33:65:34:92:b2:f5:85:91:e7:46:b5: 52:b3:31:81:c6:b8:e5:c5:8d:9c:16:59:e0:8b:d4:57:54:30: 3e:03:d9:78:56:47:aa:bf:28:de:99:8f:9c:35:f8:df:f7:04: ac:d6:1e:8a:7c:70:de:6b:36:ad:03:18:31:b6:3f:90:8b:e2: c4:ac:73:dc:fa:5e:9c:33:56:d8:e3:e4:d0:b4:15:c6:0d:5d: e2:3d:81:08:6b:34:03:d0:64:c1:52:58:06:9f:73:46:2d:da: 62:77:03:37:13:0d:1c:17:1a:be:b2:8b:9c:3c:4a:a6:05:a9: e0:be:d5:29:59:4b:51:42:f3:8c:85:e6:c2:f1:32:76:cd:85: 54:52:b0:0c:f3:c7:37:89:63:6e:62:65:c7:b6:6d:34:c8:a4: f7:4a:18:55:40:0a:80:b5:b7:c4:da:88:e5:e7:2f:06:ec:64: 83:a2:75:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDRTIxMTAvBgNVBAUTKDQ4MkQ0OEUzQjY5NjFGMTIwOEMwNjcxNTI0RTA4RTkw MzM5NUY2NTkwHhcNMjUwNTA1MDM1NTE4WhcNMjUwNTEyMDM1NTE4WjAYMRYwFAYD VQQDEw02ODE4MzZhNy0zOGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryX9p/RDYUuhiya9h4FFyIKsPYC0QNRK7MRI4l4FlefZywKj8mH5yeKGaa+/ 8/TF+oJU/zNuwrdzzMHjkik5IMG/fO8JDSdBGgCbvVeBW3Be8K7q/C2SNgzS/BN7 IDmawAaFlw02r+ArLnhgkE4SR/kXk+PrYwA5w68DYdBIsGrKOrYs5tbySWF1TOvw hlZQNNBghkaNYsnDArISCiEXDKwapR1LETajkiCb5EIw6QXdiVkjgIytX/oo+Jm7 +mr4rRFYKLRiVDPZVEfKBYpWi1pAWI1U8mzyNMOMFIaia6xVRbY/Br+RIHCLblrh 7bHgfeIqZcCnrbcQO64JpyK7NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqtiP/I Ango33BbRr17ibZSnMqaMB8GA1UdIwQYMBaAFEgtSOO2lh8SCMBnFSTgjpAzlfZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNFMi8yNEY3RTI3RTk3 QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4SUl3R2NWSk9DT2tET1Y5 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDMUk0N2FXSHhJSXdHY1ZKT0NPa0RPVjlsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkNFMi8yNEY3RTI3RTk3QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4 SUl3R2NWSk9DT2tET1Y5bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChv2TM3Hua8fer7hWTL8i9saitcCB9r1EsqQ6VklFwjYqYemAhKHdE 40y0VP7MPaEkEJG40KgyPU6pEE/DN9mKKTJ8kZADU4fPjvzSGjyxM2U0krL1hZHn RrVSszGBxrjlxY2cFlngi9RXVDA+A9l4VkeqvyjemY+cNfjf9wSs1h6KfHDeazat Axgxtj+Qi+LErHPc+l6cM1bY4+TQtBXGDV3iPYEIazQD0GTBUlgGn3NGLdpidwM3 Ew0cFxq+soucPEqmBangvtUpWUtRQvOMhebC8TJ2zYVUUrAM88c3iWNuYmXHtm00 yKT3ShhVQAqAtbfE2ojl5y8G7GSDonWt -----END CERTIFICATE-----Generated at Mon May 5 12:20:45 2025 by rpki-client