$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: OSzo8sYlg9jqM1bt3yCRDmXzN9bXRIgqLPjwKJdN248= Subject key identifier: 44:7C:1E:1D:88:69:BB:EA:F6:5C:D6:E3:3D:15:0D:4F:DA:98:F7:9F Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0FB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0FAA Signing time: Mon 12 May 2025 17:26:46 +0000 Manifest this update: Mon 12 May 2025 17:26:45 +0000 Manifest next update: Mon 19 May 2025 17:26:45 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: pMKrc7UEvUf8hyhzFrXdTX5Sej91agZEJKe4Du7GLKk=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4022 (0xfb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: May 12 17:26:45 2025 GMT Not After : May 19 17:26:45 2025 GMT Subject: CN=68222f56-c5f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cc:cc:72:ef:17:c6:7e:ac:2c:02:49:33:0d: 94:75:2c:2c:2b:d3:fc:e0:4a:3e:5b:9a:dd:84:7b: 75:8a:79:4a:1c:78:26:49:f0:80:8a:90:58:c1:da: a4:4c:e0:7c:86:7e:c0:23:14:ed:1e:cc:0c:e2:be: 8f:4d:b1:53:76:e4:1c:37:af:55:25:45:da:88:6c: 0b:59:11:41:a3:e6:12:be:bf:01:02:cb:40:38:22: 48:6f:16:6f:aa:4b:15:54:91:d6:4c:da:32:ad:03: 62:51:5a:9c:e8:6e:39:79:ab:bf:1e:85:da:c3:fb: 61:db:19:3d:5e:6f:5f:35:d4:34:b7:cf:6a:1c:ac: a5:8a:56:f9:0a:24:87:45:75:7c:ab:7f:0e:56:fd: 51:f8:1d:8a:2d:38:64:c7:10:de:88:2b:b4:44:fc: a2:e2:37:ad:05:8e:4a:d5:5a:66:97:c2:e5:ba:f4: 18:e8:a3:8b:28:8b:88:d1:36:ae:06:cf:7b:16:5c: 4b:95:ac:09:da:54:65:a6:d3:2d:9e:e9:66:44:ad: f9:7c:bf:ab:26:3c:93:51:74:6f:39:ab:eb:68:df: a5:6e:f2:1a:15:92:23:3e:a5:a5:89:fb:5f:73:fb: 42:ab:5b:cb:96:38:a7:00:8e:34:89:6f:9a:6a:95: 95:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:7C:1E:1D:88:69:BB:EA:F6:5C:D6:E3:3D:15:0D:4F:DA:98:F7:9F X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:eb:80:37:85:28:96:c1:14:26:f3:f5:ff:5a:1a:c5:74:ca: b3:83:67:e2:a3:5d:f8:64:4d:e0:c7:28:32:4f:8a:ad:0c:24: c3:59:56:5f:64:47:e3:56:0d:5a:d2:4c:35:2a:9f:ef:b8:46: ed:d1:8f:30:c8:c0:67:7e:a2:5d:85:c6:7a:6f:4e:29:b5:6c: 1b:76:af:2e:0f:e6:fc:4c:dd:a0:9d:0f:be:03:48:6d:83:f3: 80:31:8a:d8:a0:11:6c:61:b0:05:8a:3c:a7:82:2b:9d:cd:8c: 9d:69:ac:6b:a5:89:1a:63:03:ab:3d:72:9e:9d:37:09:fc:ff: 32:70:35:82:6a:d2:2f:e1:76:81:92:b2:93:85:90:27:92:52: 2d:8f:bf:96:7e:8b:77:b0:6a:f0:7c:e3:c7:c7:42:cd:b4:e6: a2:ba:b7:d6:1e:cc:e7:99:1f:6b:10:15:1d:7d:30:6c:89:b8: c1:b5:28:fe:68:41:70:af:82:8f:64:b0:21:4e:b0:34:fc:74: 3a:ba:e6:d8:40:5d:70:e0:a6:8b:3d:cb:7d:f7:42:e4:8d:5d: 15:ef:b9:04:4e:ae:c6:50:e9:2c:15:5b:ed:99:f9:c6:e0:8a: 0b:fa:41:81:4d:05:c4:d8:02:ef:a8:0d:b1:0c:cb:83:87:fa: b2:a9:1b:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwNTEyMTcyNjQ1WhcNMjUwNTE5MTcyNjQ1WjAYMRYwFAYD VQQDEw02ODIyMmY1Ni1jNWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38zMcu8Xxn6sLAJJMw2UdSwsK9P84Eo+W5rdhHt1inlKHHgmSfCAipBYwdqk TOB8hn7AIxTtHswM4r6PTbFTduQcN69VJUXaiGwLWRFBo+YSvr8BAstAOCJIbxZv qksVVJHWTNoyrQNiUVqc6G45eau/HoXaw/th2xk9Xm9fNdQ0t89qHKylilb5CiSH RXV8q38OVv1R+B2KLThkxxDeiCu0RPyi4jetBY5K1Vpml8LluvQY6KOLKIuI0Tau Bs97FlxLlawJ2lRlptMtnulmRK35fL+rJjyTUXRvOavraN+lbvIaFZIjPqWliftf c/tCq1vLljinAI40iW+aapWVhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFER8Hh2I abvq9lzW4z0VDU/amPefMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+64A3hSiWwRQm8/X/WhrFdMqzg2fio134ZE3gxygyT4qtDCTDWVZf ZEfjVg1a0kw1Kp/vuEbt0Y8wyMBnfqJdhcZ6b04ptWwbdq8uD+b8TN2gnQ++A0ht g/OAMYrYoBFsYbAFijyngiudzYydaaxrpYkaYwOrPXKenTcJ/P8ycDWCatIv4XaB krKThZAnklItj7+Wfot3sGrwfOPHx0LNtOaiurfWHsznmR9rEBUdfTBsibjBtSj+ aEFwr4KPZLAhTrA0/HQ6uubYQF1w4KaLPct990LkjV0V77kETq7GUOksFVvtmfnG 4IoL+kGBTQXE2ALvqA2xDMuDh/qyqRsC -----END CERTIFICATE-----Generated at Tue May 13 11:37:22 2025 by rpki-client