$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft File: B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft (raw, json) Hash identifier: RGVLJVrfJm0ydo7hyJoelkqLc8+g3aXMn0yS7B8PY1A= Subject key identifier: 5A:B2:A2:D6:DA:EC:83:32:9D:D4:40:61:CB:C9:FA:7C:D1:88:E7:70 Authority key identifier: 07:53:2C:F6:D2:BC:4C:A9:D9:27:F3:07:D0:E6:B8:28:77:D8:EE:4D Certificate issuer: /CN=A915D1F2/serialNumber=07532CF6D2BC4CA9D927F307D0E6B82877D8EE4D Certificate serial: 117C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft Manifest number: 1173 Signing time: Mon 12 May 2025 17:10:15 +0000 Manifest this update: Mon 12 May 2025 17:10:14 +0000 Manifest next update: Mon 19 May 2025 17:10:14 +0000 Files and hashes: 1: B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl (hash: OznDs1u2cCqKtBf1uh9416NzqmHduCvO9kw6tnOjozw=) 2: 9467361CFEAA11E89E73E75BC4F9AE02.roa (hash: GyMFJG7vpXHHpv3BwX4n2XQfqCBxAhnBsVULLZ+wmKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4476 (0x117c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1F2, serialNumber=07532CF6D2BC4CA9D927F307D0E6B82877D8EE4D Validity Not Before: May 12 17:10:14 2025 GMT Not After : May 19 17:10:14 2025 GMT Subject: CN=68222b77-5389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:42:14:a4:7a:79:9d:6f:b5:ae:3c:24:d0:21: b7:78:a2:2a:6e:3d:56:ae:f9:fe:38:45:4b:fb:3d: 2c:ad:bf:98:e8:6e:a3:c8:c5:36:d0:42:b6:16:cd: 2d:d3:d3:69:7f:67:a3:fa:3e:3c:d8:2d:69:37:0d: d2:e1:64:16:f5:48:c7:74:1b:11:b9:37:ca:5f:88: d1:2f:33:7a:cc:73:27:ab:c6:5d:f1:21:00:b0:cd: 0c:5d:14:aa:4c:40:12:45:28:92:9a:8c:8a:77:11: 49:c2:db:96:ad:d0:db:83:ea:cf:0b:d2:1a:99:b7: 12:31:2e:f4:7f:2a:d5:16:26:b1:b7:c0:12:a0:fa: 14:c5:be:10:76:63:ae:55:75:e5:1c:a5:7a:17:b3: d6:4d:e1:f7:f9:ce:e4:47:6c:2d:d6:f0:b4:69:07: a3:c1:7c:49:e4:31:d7:cf:77:f8:db:07:cd:85:58: d9:c4:37:4b:65:06:ef:b7:74:81:fd:27:32:a8:c8: dc:25:32:3d:e9:fa:f4:d0:0c:55:37:62:1a:18:b2: 3f:74:64:65:49:f3:a6:55:99:6a:aa:eb:4d:9c:9f: cf:93:fc:86:26:22:54:c7:e4:a2:cf:77:1d:7f:1f: 85:02:37:5e:ef:20:c3:0b:c9:84:a3:29:90:74:f2: 05:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B2:A2:D6:DA:EC:83:32:9D:D4:40:61:CB:C9:FA:7C:D1:88:E7:70 X509v3 Authority Key Identifier: keyid:07:53:2C:F6:D2:BC:4C:A9:D9:27:F3:07:D0:E6:B8:28:77:D8:EE:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:0a:b6:68:ac:6a:b0:06:3b:a6:e6:6d:3d:32:13:41:39:7d: 84:8b:56:6c:1f:14:61:13:e5:52:50:f5:97:b1:0c:5c:5b:1a: 53:ee:2a:2a:1e:2a:88:0c:be:3a:6d:5d:a8:a9:31:f0:cb:ca: 57:bd:d7:c3:78:8b:5e:30:08:d5:25:d0:e9:22:7b:6a:5b:e1: 1a:f6:d8:26:51:e5:42:22:6d:de:30:e2:0d:dd:60:57:5e:29: 50:f8:f3:cd:5f:cc:d1:62:8d:56:f4:68:32:31:12:13:ca:74: 33:65:74:f4:83:73:f3:ea:50:4a:a7:85:55:8e:ef:cb:db:08: 53:7b:88:0c:a9:2c:17:78:9e:de:07:af:a2:1a:8b:9a:cf:93: ec:96:c0:ce:ca:29:33:82:a2:30:65:f2:0f:93:35:e2:98:7b: 16:d5:93:10:cd:8c:e1:31:dd:fb:6d:d6:23:06:2a:1b:82:9e: 62:38:38:95:b3:7b:cd:99:04:83:09:35:14:c0:fa:1d:dc:72: 50:0e:57:58:e8:2c:a2:90:25:e0:82:37:5e:78:54:34:5a:8e: 5a:f5:b6:2c:28:fe:76:61:00:14:d4:9b:49:c0:d8:d9:2d:f2: 21:45:18:c5:a5:82:54:3b:b5:fd:29:49:48:c4:3f:7e:70:5e: b5:05:1d:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxRjIxMTAvBgNVBAUTKDA3NTMyQ0Y2RDJCQzRDQTlEOTI3RjMwN0QwRTZCODI4 NzdEOEVFNEQwHhcNMjUwNTEyMTcxMDE0WhcNMjUwNTE5MTcxMDE0WjAYMRYwFAYD VQQDEw02ODIyMmI3Ny01Mzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20IUpHp5nW+1rjwk0CG3eKIqbj1Wrvn+OEVL+z0srb+Y6G6jyMU20EK2Fs0t 09Npf2ej+j482C1pNw3S4WQW9UjHdBsRuTfKX4jRLzN6zHMnq8Zd8SEAsM0MXRSq TEASRSiSmoyKdxFJwtuWrdDbg+rPC9IambcSMS70fyrVFiaxt8ASoPoUxb4QdmOu VXXlHKV6F7PWTeH3+c7kR2wt1vC0aQejwXxJ5DHXz3f42wfNhVjZxDdLZQbvt3SB /ScyqMjcJTI96fr00AxVN2IaGLI/dGRlSfOmVZlqqutNnJ/Pk/yGJiJUx+Siz3cd fx+FAjde7yDDC8mEoymQdPIFVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqyotba 7IMyndRAYcvJ+nzRiOdwMB8GA1UdIwQYMBaAFAdTLPbSvEyp2SfzB9DmuCh32O5N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFGMi9BRjMyMUQzQ0ZF N0MxMUU4ODY4OUM2NTVDNEY5QUUwMi9CMU1zOXRLOFRLblpKX01IME9hNEtIZlk3 azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IxTXM5dEs4VEtuWkpfTUgwT2E0S0hmWTdrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFGMi9BRjMyMUQzQ0ZFN0MxMUU4ODY4OUM2NTVDNEY5QUUwMi9CMU1zOXRLOFRL blpKX01IME9hNEtIZlk3azAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaCrZorGqwBjum5m09MhNBOX2Ei1ZsHxRhE+VSUPWXsQxcWxpT7ioq HiqIDL46bV2oqTHwy8pXvdfDeIteMAjVJdDpIntqW+Ea9tgmUeVCIm3eMOIN3WBX XilQ+PPNX8zRYo1W9GgyMRITynQzZXT0g3Pz6lBKp4VVju/L2whTe4gMqSwXeJ7e B6+iGouaz5PslsDOyikzgqIwZfIPkzXimHsW1ZMQzYzhMd37bdYjBiobgp5iODiV s3vNmQSDCTUUwPod3HJQDldY6CyikCXggjdeeFQ0Wo5a9bYsKP52YQAU1JtJwNjZ LfIhRRjFpYJUO7X9KUlIxD9+cF61BR2e -----END CERTIFICATE-----Generated at Mon May 12 22:04:21 2025 by rpki-client