$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: ytYz/61zCYFBW6e/s2QKTHnxERxNUEwZzOTCNkX9GkE= Subject key identifier: 48:82:D2:51:47:7C:D0:2F:9F:2E:B5:A7:5B:82:63:77:9E:9C:56:38 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: A0 Signing time: Tue 13 May 2025 05:25:05 +0000 Manifest this update: Tue 13 May 2025 05:25:04 +0000 Manifest next update: Tue 20 May 2025 05:25:04 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: zw+nDuO51ZbrurIFQT+LTGAP+zghSPxouGOqylmRcMI=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: LrQNetWX/kWMMJz247yWUJ25L5V6W9haJZqldtz3j0Y=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: KlwexvDGFQzb3abuiXQPF43ztld2Pg+xYp8Fr2ZD2ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:25:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: May 13 05:25:04 2025 GMT Not After : May 20 05:25:04 2025 GMT Subject: CN=6822d7b1-d7b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f4:d5:33:22:38:40:2c:5a:44:4a:c0:1b:2f: 7f:82:19:d6:b4:7e:51:59:ee:7a:53:36:fb:70:2d: cb:43:b0:0c:45:8e:a8:d7:30:62:09:27:1e:ac:c2: 1e:df:20:2b:7c:c8:0c:ac:f2:2b:15:de:9a:37:b8: 0a:c7:b8:3a:97:2e:f8:06:41:ff:b7:64:3f:93:28: 0d:d9:54:9d:dd:47:11:52:d8:5c:3f:9f:de:75:7f: a1:bf:99:5b:5f:3d:1e:f5:5f:35:63:6a:fd:86:bb: 10:46:c9:d9:00:fa:f7:f7:1e:8d:bd:41:cd:8a:a1: ac:f8:3b:b0:19:1a:6d:df:ad:87:19:7e:85:73:41: 02:2a:00:c6:79:bc:e2:ad:8d:11:e9:cd:93:52:cb: fa:93:1d:e9:90:57:7a:9e:d2:22:22:b6:f8:db:ac: 92:9d:94:1f:68:c5:4f:b5:03:38:6b:75:06:e9:75: 95:ab:dd:9c:79:25:84:2c:46:04:ab:9a:d0:64:6c: cc:d9:4e:0e:04:9b:06:30:3e:c4:6a:81:cb:e8:6a: 0e:31:2a:2a:0b:74:90:93:9c:a5:0a:19:b7:d0:ec: 6c:e9:27:42:dc:80:9e:68:8e:2c:db:e6:07:a5:97: 9d:4b:87:e2:f7:65:58:09:4c:f9:20:a7:56:43:67: 19:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:82:D2:51:47:7C:D0:2F:9F:2E:B5:A7:5B:82:63:77:9E:9C:56:38 X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:18:1f:4e:30:8a:a9:f7:a7:20:2e:06:82:06:1e:1f:9d:d6: 55:a5:d2:37:b8:b3:ba:69:bc:c4:36:c1:50:e0:f4:4c:ce:14: fd:5e:c7:23:15:f7:49:05:b6:2f:3e:9b:7f:b6:a2:2a:19:22: f8:a5:9b:22:f4:e3:72:6a:70:85:ab:76:a2:f7:85:80:1d:ee: 93:6f:1f:50:c8:cd:4b:2e:b7:10:28:c2:bf:b3:64:06:f4:c8: be:95:0d:9f:69:a7:12:bd:b9:99:0b:3d:72:fa:ee:30:b7:21: b5:5a:42:47:44:48:9e:05:b7:6c:ed:21:76:0f:d0:aa:16:c0: 9a:3f:b0:b5:98:4f:33:3a:d0:0b:22:c6:d2:7a:a3:9e:10:83: c9:ed:ac:64:ae:9c:4f:bf:b8:e8:b2:d0:0d:a3:56:6b:58:ce: 91:4b:fe:d8:83:78:c4:c1:da:0a:8c:1a:bb:2a:53:81:51:4f: 9e:42:7e:66:83:5c:f8:1e:bc:f2:d3:67:ab:ee:37:59:20:df: 82:93:23:3e:bd:9e:b7:71:4a:34:68:79:88:20:9f:5e:26:21: f2:dd:87:2c:56:ad:f8:b4:80:44:59:74:77:c9:fc:ce:5e:d2: 9e:68:c5:0b:0c:b1:7f:91:18:02:9f:36:8b:a1:8c:3d:d9:f0: 4a:29:31:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUwNTEzMDUyNTA0WhcNMjUwNTIwMDUyNTA0WjAYMRYwFAYD VQQDEw02ODIyZDdiMS1kN2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/TVMyI4QCxaRErAGy9/ghnWtH5RWe56Uzb7cC3LQ7AMRY6o1zBiCScerMIe 3yArfMgMrPIrFd6aN7gKx7g6ly74BkH/t2Q/kygN2VSd3UcRUthcP5/edX+hv5lb Xz0e9V81Y2r9hrsQRsnZAPr39x6NvUHNiqGs+DuwGRpt362HGX6Fc0ECKgDGebzi rY0R6c2TUsv6kx3pkFd6ntIiIrb426ySnZQfaMVPtQM4a3UG6XWVq92ceSWELEYE q5rQZGzM2U4OBJsGMD7EaoHL6GoOMSoqC3SQk5ylChm30Oxs6SdC3ICeaI4s2+YH pZedS4fi92VYCUz5IKdWQ2cZbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiC0lFH fNAvny61p1uCY3eenFY4MB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbGB9OMIqp96cgLgaCBh4fndZVpdI3uLO6abzENsFQ4PRMzhT9Xscj FfdJBbYvPpt/tqIqGSL4pZsi9ONyanCFq3ai94WAHe6Tbx9QyM1LLrcQKMK/s2QG 9Mi+lQ2faacSvbmZCz1y+u4wtyG1WkJHREieBbds7SF2D9CqFsCaP7C1mE8zOtAL IsbSeqOeEIPJ7axkrpxPv7jostANo1ZrWM6RS/7Yg3jEwdoKjBq7KlOBUU+eQn5m g1z4Hrzy02er7jdZIN+CkyM+vZ63cUo0aHmIIJ9eJiHy3YcsVq34tIBEWXR3yfzO XtKeaMULDLF/kRgCnzaLoYw92fBKKTHv -----END CERTIFICATE-----Generated at Wed May 14 08:15:33 2025 by rpki-client