$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft File: e9PkPRNOUjXpdgPOi6lIa2KpseY.mft (raw, json) Hash identifier: 2rIqwAHMnxtVwqftnvZdaqxK8fxaUa76us4jrbKA6FI= Subject key identifier: 14:70:90:6E:9F:87:12:34:9A:91:86:9F:98:0F:43:E4:3B:F3:F3:F5 Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Certificate serial: 0323 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft Manifest number: 030F Signing time: Sun 11 May 2025 00:51:53 +0000 Manifest this update: Sun 11 May 2025 00:51:52 +0000 Manifest next update: Sun 18 May 2025 00:51:52 +0000 Files and hashes: 1: e9PkPRNOUjXpdgPOi6lIa2KpseY.crl (hash: hL32WppvkS6RSmd3CHy3PK+4HrcWWniBiD8YoCAC2FM=) 2: 63F05DE02F1D11EDA3E29B09C4F9AE02.roa (hash: 7ge7oc+Q12aZ6z9y4wrsw9dW7SCxd3kpwR7gaglsC78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C631, serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Validity Not Before: May 11 00:51:52 2025 GMT Not After : May 18 00:51:52 2025 GMT Subject: CN=681ff4a8-f1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d1:6e:57:97:b1:2f:21:4b:69:1c:28:16:c5: c2:53:75:5e:38:a8:f6:fd:ca:52:72:e2:40:d1:a0: bd:ba:97:fd:de:b4:12:b8:e6:8d:75:e5:c0:00:21: b7:42:3f:89:0c:3c:6b:24:a8:67:fa:5a:47:5f:60: 3b:f8:67:fc:9b:1e:29:34:f8:8e:77:7a:e1:ea:cc: 63:15:61:ca:12:40:94:ae:2c:87:26:df:dd:e0:22: 36:73:27:b1:39:ab:9d:e2:54:19:a5:ca:2e:3f:e6: 0d:77:e6:24:dc:cb:4f:a4:5f:55:90:bf:c8:9c:b9: 3f:0c:b4:11:36:b3:33:26:46:57:f2:c5:d2:d0:d9: 63:d5:8c:4b:ae:7c:e6:a1:73:1b:c8:6f:c3:b3:c4: 12:0e:ad:ef:2d:7c:b9:94:95:7d:ea:e3:16:eb:db: c2:77:e8:07:c2:2e:ff:cb:b6:1d:83:6c:0a:ad:7e: b5:7c:ef:89:54:5e:3e:0b:41:7a:64:dc:55:aa:11: b6:30:d6:8d:35:7c:e9:a6:bf:33:cf:31:96:d6:55: a9:ad:d2:88:c4:6a:df:73:c8:29:36:cd:66:3a:f1: 91:af:c5:46:e5:c4:0a:bc:0a:94:5c:5f:f5:26:87: cb:24:89:6d:59:e8:64:60:89:3e:97:d1:2e:dc:7f: 1e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:70:90:6E:9F:87:12:34:9A:91:86:9F:98:0F:43:E4:3B:F3:F3:F5 X509v3 Authority Key Identifier: keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:6e:90:b0:65:bd:00:c1:86:9e:98:5b:ef:8a:92:5d:eb:30: c8:81:26:33:9a:2f:91:2e:9a:94:42:f7:ef:05:03:3d:ca:cf: 72:46:2a:4d:1d:9d:93:ff:09:9b:6b:d2:fb:74:75:29:7d:1b: 41:1f:34:50:2a:a8:59:c2:eb:54:09:e3:6e:6c:95:21:01:4b: 7a:a5:21:26:b2:e6:b1:af:fa:23:94:79:4e:27:a2:05:29:92: 4a:45:9d:cf:36:74:b2:0e:82:c0:5f:27:ee:32:ab:8c:28:68: 94:c3:d0:57:44:c0:69:79:8a:49:33:25:95:ae:bf:b4:89:d5: 65:9d:dd:5c:58:90:0e:02:c7:ae:14:d9:2d:7a:f0:b1:a3:98: 80:b1:2d:1d:92:62:3f:8a:d1:0e:5f:e6:15:19:68:4a:f2:49: 40:f3:06:fe:58:ce:a7:94:3c:1f:5a:8a:20:ef:fd:9e:46:91: 68:62:d3:01:73:ab:94:4d:0f:dd:ab:ba:8e:d7:75:de:9a:6e: 24:9b:02:5c:d7:98:49:55:da:2c:b1:7e:23:0d:95:ad:32:28: bf:33:51:89:db:e6:85:b9:38:45:44:e2:7c:8c:2e:13:93:42: 0b:fb:8c:25:61:dd:bd:2a:7e:6c:91:ed:d3:cf:dd:c9:99:97: b9:af:62:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC NjJBOUIxRTYwHhcNMjUwNTExMDA1MTUyWhcNMjUwNTE4MDA1MTUyWjAYMRYwFAYD VQQDEw02ODFmZjRhOC1mMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NFuV5exLyFLaRwoFsXCU3VeOKj2/cpScuJA0aC9upf93rQSuOaNdeXAACG3 Qj+JDDxrJKhn+lpHX2A7+Gf8mx4pNPiOd3rh6sxjFWHKEkCUriyHJt/d4CI2cyex Oaud4lQZpcouP+YNd+Yk3MtPpF9VkL/InLk/DLQRNrMzJkZX8sXS0Nlj1YxLrnzm oXMbyG/Ds8QSDq3vLXy5lJV96uMW69vCd+gHwi7/y7Ydg2wKrX61fO+JVF4+C0F6 ZNxVqhG2MNaNNXzppr8zzzGW1lWprdKIxGrfc8gpNs1mOvGRr8VG5cQKvAqUXF/1 JofLJIltWehkYIk+l9Eu3H8eMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRwkG6f hxI0mpGGn5gPQ+Q78/P1MB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYzMS8zOUU0RDdBOERDNzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1Vq WHBkZ1BPaTZsSWEyS3BzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6bpCwZb0AwYaemFvvipJd6zDIgSYzmi+RLpqUQvfvBQM9ys9yRipN HZ2T/wmba9L7dHUpfRtBHzRQKqhZwutUCeNubJUhAUt6pSEmsuaxr/ojlHlOJ6IF KZJKRZ3PNnSyDoLAXyfuMquMKGiUw9BXRMBpeYpJMyWVrr+0idVlnd1cWJAOAseu FNktevCxo5iAsS0dkmI/itEOX+YVGWhK8klA8wb+WM6nlDwfWoog7/2eRpFoYtMB c6uUTQ/dq7qO13Xemm4kmwJc15hJVdossX4jDZWtMii/M1GJ2+aFuThFROJ8jC4T k0IL+4wlYd29Kn5ske3Tz93JmZe5r2LD -----END CERTIFICATE-----Generated at Sun May 11 22:52:35 2025 by rpki-client