$ rpki-client -vvf rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft File: AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft (raw, json) Hash identifier: nh9ENXnBd6QPVGE0f3N2Zj2lvQogj4wC/u5ythAnJ4g= Subject key identifier: BA:35:8C:1A:AD:B1:5D:3A:4E:E2:B7:19:F6:E5:78:62:39:05:35:CA Authority key identifier: 00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 Certificate issuer: /CN=A915E678/serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft Manifest number: 0125 Signing time: Tue 13 May 2025 03:57:01 +0000 Manifest this update: Tue 13 May 2025 03:57:00 +0000 Manifest next update: Tue 20 May 2025 03:57:00 +0000 Files and hashes: 1: AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl (hash: t7PtqtdYx3ILN7iFmHgjWcFbxAaWobc9yE5ApfrVTfY=) 2: D39B04847C4B11EEB4EA3632C4F9AE02.roa (hash: VkMCaNU7sXjTR/CQAkH/z8BpEQbO8jbw+1o8r2q8dPA=) 3: 5694D344791B11EEA64C016BC4F9AE02.roa (hash: cg93R23INGR8fe5V8I1v0XqkWQVYbzGg1oKwaVZnx2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E678, serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Validity Not Before: May 13 03:57:00 2025 GMT Not After : May 20 03:57:00 2025 GMT Subject: CN=6822c30d-4843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:54:f8:6a:a0:94:9d:e1:00:c6:ba:e8:8e:05: f1:e5:2c:c3:99:b7:4f:4f:ec:33:94:14:8d:3a:a9: f3:56:82:ca:c8:8d:ed:1d:e8:c1:61:7b:33:b8:4d: b5:4b:93:a4:e9:54:e7:3b:ad:12:f6:54:20:dc:0e: c1:72:3e:09:f6:a1:d3:a8:42:bd:77:13:29:1c:77: 16:7a:34:73:87:45:87:87:0d:a4:9c:9f:35:aa:e0: b2:ef:8b:71:65:93:1a:fc:ed:c7:2d:29:9c:5a:e6: b5:68:e4:3f:d7:90:8f:43:e6:cb:83:1d:1b:08:8f: ab:9b:27:26:43:02:81:f9:71:6a:56:f6:10:0b:3c: d8:27:90:3c:8e:e4:b7:a2:ad:d4:07:30:5d:77:29: 36:12:d6:6e:06:13:95:f2:f4:89:ec:10:91:45:c4: f0:e1:08:31:5c:be:24:28:c6:0c:b2:4b:03:d2:9a: a9:fd:c9:48:fb:ef:0d:17:f8:e3:de:21:03:b5:6e: 1d:8a:d1:1a:51:5e:d4:08:f6:0f:19:4b:7e:8c:75: 50:74:bf:ec:bd:3a:0c:2f:08:ac:dc:01:96:11:20: c9:5b:55:89:a6:ae:60:7b:10:18:fe:31:5f:79:20: c7:b0:54:5f:82:20:0a:9d:ed:b1:cf:7d:0b:a8:ad: 57:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:35:8C:1A:AD:B1:5D:3A:4E:E2:B7:19:F6:E5:78:62:39:05:35:CA X509v3 Authority Key Identifier: keyid:00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:62:70:65:c1:3a:46:94:43:99:58:7e:40:4a:f5:87:bf:7b: dd:d0:f5:b2:ab:ac:57:39:5a:ed:8e:53:1a:cf:72:7b:d8:28: 6a:b2:f6:26:0b:2b:24:1b:dd:4f:6a:d0:f9:22:5f:fc:73:b5: 4c:ce:a9:7e:7f:51:4b:9c:47:bf:4f:0e:9a:03:64:26:de:93: cd:23:53:5d:1b:3c:5c:25:1b:5c:00:da:29:ac:57:c0:ac:36: 4c:5c:10:22:94:4d:ad:64:9e:ae:2a:e9:93:b4:44:98:bc:40: bc:92:0a:43:4e:bd:76:7c:c8:ff:67:34:2e:58:10:8c:40:67: eb:8a:5b:d5:04:32:83:d4:62:a2:b5:a2:a5:47:2e:08:a0:3f: d4:18:10:ed:12:6b:9b:e9:0c:56:ea:8f:5b:19:3f:80:55:92: 54:d5:47:7b:08:60:ab:dc:63:b7:93:cf:d3:f3:d4:88:8d:2c: a2:2c:c2:4f:8c:69:11:30:c3:e5:24:99:5d:b0:47:e0:e5:0d: 72:d6:85:86:c8:33:a7:1b:60:cc:fc:dc:de:ac:ae:d9:97:da: 82:73:6a:4c:91:5e:60:54:5a:e1:5c:10:58:01:7f:24:73:cc: 6a:b9:73:df:a3:40:d2:c0:2f:ba:b8:a5:46:9e:f9:8c:f9:24: 85:0a:2c:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU2NzgxMTAvBgNVBAUTKDAwOEY1RDA2RjBGRUZDNDBGRDgzMEIyNkNENzY2MEEz ODMxMTBDOTEwHhcNMjUwNTEzMDM1NzAwWhcNMjUwNTIwMDM1NzAwWjAYMRYwFAYD VQQDEw02ODIyYzMwZC00ODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1T4aqCUneEAxrrojgXx5SzDmbdPT+wzlBSNOqnzVoLKyI3tHejBYXszuE21 S5Ok6VTnO60S9lQg3A7Bcj4J9qHTqEK9dxMpHHcWejRzh0WHhw2knJ81quCy74tx ZZMa/O3HLSmcWua1aOQ/15CPQ+bLgx0bCI+rmycmQwKB+XFqVvYQCzzYJ5A8juS3 oq3UBzBddyk2EtZuBhOV8vSJ7BCRRcTw4QgxXL4kKMYMsksD0pqp/clI++8NF/jj 3iEDtW4ditEaUV7UCPYPGUt+jHVQdL/svToMLwis3AGWESDJW1WJpq5gexAY/jFf eSDHsFRfgiAKne2xz30LqK1XnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLo1jBqt sV06TuK3GfbleGI5BTXKMB8GA1UdIwQYMBaAFACPXQbw/vxA/YMLJs12YKODEQyR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTY3OC83QUVFRDg2Mjc5 MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9FRDlnd3NtelhaZ280TVJE SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJOWRCdkQtX0VEOWd3c216WFpnbzRNUkRKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTY3OC83QUVFRDg2Mjc5MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9F RDlnd3NtelhaZ280TVJESkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8YnBlwTpGlEOZWH5ASvWHv3vd0PWyq6xXOVrtjlMaz3J72ChqsvYm CyskG91PatD5Il/8c7VMzql+f1FLnEe/Tw6aA2Qm3pPNI1NdGzxcJRtcANoprFfA rDZMXBAilE2tZJ6uKumTtESYvEC8kgpDTr12fMj/ZzQuWBCMQGfrilvVBDKD1GKi taKlRy4IoD/UGBDtEmub6QxW6o9bGT+AVZJU1Ud7CGCr3GO3k8/T89SIjSyiLMJP jGkRMMPlJJldsEfg5Q1y1oWGyDOnG2DM/NzerK7Zl9qCc2pMkV5gVFrhXBBYAX8k c8xquXPfo0DSwC+6uKVGnvmM+SSFCize -----END CERTIFICATE-----Generated at Wed May 14 14:58:26 2025 by rpki-client