$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft File: u3QQVrccdV0D-5zyFKQSTKTzdgw.mft (raw, json) Hash identifier: uRHfqHBAXbeDrqsBFcCyhTBGnXQwOJ2/xPTSGkyJg3w= Subject key identifier: E1:62:5B:77:03:D7:64:7D:08:19:2F:28:3A:73:DA:E1:98:87:5A:E9 Authority key identifier: BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C Certificate issuer: /CN=A916A0AA/serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Certificate serial: 0C0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft Manifest number: 0C05 Signing time: Wed 14 May 2025 18:49:23 +0000 Manifest this update: Wed 14 May 2025 18:49:22 +0000 Manifest next update: Wed 21 May 2025 18:49:22 +0000 Files and hashes: 1: u3QQVrccdV0D-5zyFKQSTKTzdgw.crl (hash: X7VKVPVl9AzdOJ15n7kh0qA5C0hJ+fNmicnJA4qqskE=) 2: 5AD6AAFE0F1111EA932F3E45C4F9AE02.roa (hash: fVpTiz95zT96q52Sv8C+QJmIZKHHi2b0N2xlEcRtgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3086 (0xc0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AA, serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Validity Not Before: May 14 18:49:22 2025 GMT Not After : May 21 18:49:22 2025 GMT Subject: CN=6824e5b3-535c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2e:c8:43:4b:2b:51:9b:5c:dd:e7:0b:f3:12: ef:fe:22:40:3d:70:71:04:c9:f9:f5:f6:cd:80:12: c0:df:c1:e8:68:0f:ea:44:5a:fd:eb:9e:8a:f0:94: 84:dc:c7:47:08:d5:44:65:50:8e:89:41:3d:43:ed: 86:58:b9:b7:8b:75:49:11:03:ec:22:7c:9d:87:df: 14:f5:fe:c1:6a:cb:89:8b:dd:3b:68:d3:d7:a1:4a: 3d:c1:08:dc:54:05:0e:d6:51:06:09:b0:0c:cd:d8: d2:17:b1:29:29:72:3e:8f:96:0f:b0:7e:d9:c9:d7: 36:94:dc:1b:92:a5:13:90:87:28:16:a7:12:34:f4: 9e:82:cf:8e:08:b6:54:9b:ff:c7:7a:5a:fd:10:0a: 65:64:bc:70:35:f3:de:3a:47:69:f8:4c:d6:fa:a1: 99:74:8b:00:4c:81:b5:bd:5a:28:ec:6e:2d:c4:ad: 98:04:76:b5:e2:d4:4b:65:be:d1:9e:0a:9b:6f:07: 94:e0:b6:7d:00:29:4d:19:56:4a:b9:13:3e:09:18: ab:d3:37:60:0e:50:02:92:d8:f6:f8:c2:b2:44:e7: 41:ed:48:c7:25:f6:f0:13:a3:57:b1:0d:4d:c7:9e: d9:a6:e8:1c:6e:27:2e:a6:c9:ea:cf:b2:04:9d:0e: ff:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:62:5B:77:03:D7:64:7D:08:19:2F:28:3A:73:DA:E1:98:87:5A:E9 X509v3 Authority Key Identifier: keyid:BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:d2:27:66:0d:18:65:94:b1:b3:f0:a4:fb:d1:bb:b8:89:c1: 86:d0:08:06:1d:eb:f8:a0:97:b2:39:10:27:26:1d:2d:70:0e: 04:4e:fb:c8:ef:a6:10:f8:58:ae:94:6c:27:67:63:08:8a:ec: fb:8c:25:69:fa:9f:31:15:1e:30:32:01:3c:75:68:52:fb:f8: 55:0e:01:7a:47:84:3c:ac:35:ed:3b:4c:63:84:69:3e:39:f6: 61:6e:10:f7:e3:58:da:d5:2d:80:51:85:79:84:a4:6c:76:e1: 33:cf:55:60:97:f9:11:ef:8e:e1:31:18:5a:2d:0f:bf:b8:46: e3:7b:11:8b:8d:5b:0c:27:ae:95:37:6e:ee:95:b0:0a:e3:ab: 69:c7:cb:3f:81:59:74:05:53:26:f6:1c:d3:6f:df:af:bd:fa: f7:a5:43:8f:f8:e3:e7:68:11:8e:de:28:ed:9b:ae:dc:ef:a0: e3:be:ab:7a:37:ef:da:7f:68:d7:c5:4a:4f:da:04:b8:83:7c: c9:90:f1:18:72:bd:d4:3e:ca:68:78:54:03:a8:43:19:ee:62: d1:bb:40:64:16:07:de:f2:37:f7:93:cc:d5:83:d9:d0:34:02: 1d:62:44:c2:e4:fe:8c:2d:5f:6e:1f:37:05:22:b4:93:d0:5f: ec:e0:5c:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUExMTAvBgNVBAUTKEJCNzQxMDU2QjcxQzc1NUQwM0ZCOUNGMjE0QTQxMjRD QTRGMzc2MEMwHhcNMjUwNTE0MTg0OTIyWhcNMjUwNTIxMTg0OTIyWjAYMRYwFAYD VQQDEw02ODI0ZTViMy01MzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC7IQ0srUZtc3ecL8xLv/iJAPXBxBMn59fbNgBLA38HoaA/qRFr9656K8JSE 3MdHCNVEZVCOiUE9Q+2GWLm3i3VJEQPsInydh98U9f7BasuJi907aNPXoUo9wQjc VAUO1lEGCbAMzdjSF7EpKXI+j5YPsH7Zydc2lNwbkqUTkIcoFqcSNPSegs+OCLZU m//Helr9EAplZLxwNfPeOkdp+EzW+qGZdIsATIG1vVoo7G4txK2YBHa14tRLZb7R ngqbbweU4LZ9AClNGVZKuRM+CRir0zdgDlACktj2+MKyROdB7UjHJfbwE6NXsQ1N x57Zpugcbicupsnqz7IEnQ7/wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFiW3cD 12R9CBkvKDpz2uGYh1rpMB8GA1UdIwQYMBaAFLt0EFa3HHVdA/uc8hSkEkyk83YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBQS82QTRGRkM3QTBG MTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RWMEQtNXp5RktRU1RLVHpk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzUVFWcmNjZFYwRC01enlGS1FTVEtUemRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBQS82QTRGRkM3QTBGMTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RW MEQtNXp5RktRU1RLVHpkZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc0idmDRhllLGz8KT70bu4icGG0AgGHev4oJeyORAnJh0tcA4ETvvI 76YQ+FiulGwnZ2MIiuz7jCVp+p8xFR4wMgE8dWhS+/hVDgF6R4Q8rDXtO0xjhGk+ OfZhbhD341ja1S2AUYV5hKRsduEzz1Vgl/kR747hMRhaLQ+/uEbjexGLjVsMJ66V N27ulbAK46tpx8s/gVl0BVMm9hzTb9+vvfr3pUOP+OPnaBGO3ijtm67c76Djvqt6 N+/af2jXxUpP2gS4g3zJkPEYcr3UPspoeFQDqEMZ7mLRu0BkFgfe8jf3k8zVg9nQ NAIdYkTC5P6MLV9uHzcFIrST0F/s4Fy8 -----END CERTIFICATE-----Generated at Wed May 14 20:40:37 2025 by rpki-client