$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft File: 2o28OwmXQtOr0qiV3RM5iTuaj18.mft (raw, json) Hash identifier: YY3VnJsn1MwSpbSdjWE+iZBTK/cQW6h6ncOfC/DRhzw= Subject key identifier: D6:3A:F5:B4:64:E2:62:09:8F:1F:3F:7F:57:26:AA:6D:C6:A0:05:4B Authority key identifier: DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F Certificate issuer: /CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Certificate serial: 0B72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft Manifest number: 320F Signing time: Mon 12 May 2025 15:39:18 +0000 Manifest this update: Mon 12 May 2025 15:39:18 +0000 Manifest next update: Mon 19 May 2025 15:39:18 +0000 Files and hashes: 1: 2o28OwmXQtOr0qiV3RM5iTuaj18.crl (hash: KUH6b6PdzJ5X8Efy4014y5P5WMAUehoUdsJ7LVuRdCo=) 2: 0B6054BA851E11EA86E0DF24C4F9AE02.roa (hash: MgTUngCCzikGCV51wBox1XfJC+wHmw6xDYqUAEuxnEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2930 (0xb72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3, serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Validity Not Before: May 12 15:39:18 2025 GMT Not After : May 19 15:39:18 2025 GMT Subject: CN=68221626-755a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d9:cd:6f:83:75:e5:6d:28:f9:83:16:11:71: fb:76:cb:79:bb:69:34:7c:0a:9b:87:20:eb:3f:4e: 57:e9:2b:87:1e:df:6f:97:bc:14:1a:e3:a4:24:de: 81:57:9c:c8:0f:45:78:85:65:ff:71:95:85:ca:fa: d3:5f:23:d1:bd:23:36:35:74:2c:eb:1c:ad:33:c6: b7:8b:9e:b0:a2:75:51:36:6b:ba:e3:f3:2e:c3:cb: a9:29:ec:22:fe:24:12:89:80:f1:37:99:8a:9a:b5: 49:24:fa:6d:c8:f3:96:20:f7:ae:a7:dc:e6:6d:2d: 41:b9:78:f8:c1:2e:cc:d4:5e:34:c3:8e:b5:44:75: 00:f0:06:41:cb:e0:91:f9:b9:72:2f:af:d3:68:3e: 0b:bf:78:a2:a5:30:42:1f:fc:18:a4:ba:a8:97:01: 6d:3a:27:22:26:bb:ac:cc:24:43:c3:81:27:84:9e: d7:fa:92:20:65:16:21:b7:49:9c:b8:e5:dd:05:5b: 0a:59:0f:67:5f:70:df:9a:ee:62:84:2b:b9:d6:34: 9f:51:2e:90:d5:62:b6:3d:af:46:8e:8f:f1:68:6c: af:22:35:0b:10:06:01:b8:19:61:3d:b0:bc:45:5f: cd:c3:0d:87:23:c4:56:9b:77:e6:f8:f3:3e:03:d8: 5b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3A:F5:B4:64:E2:62:09:8F:1F:3F:7F:57:26:AA:6D:C6:A0:05:4B X509v3 Authority Key Identifier: keyid:DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:8f:45:f5:24:ad:ae:59:68:1c:0f:1f:91:fe:57:4a:33:4e: 0c:1e:e7:00:3d:44:a6:5e:38:b7:1e:98:0a:d2:b1:f8:28:66: ec:a3:70:54:68:7a:c0:a7:66:8b:ce:18:b6:1b:5c:90:69:dc: c7:6b:ac:a6:93:46:bc:31:99:90:4f:71:c6:f9:6d:3c:ed:2f: 18:d6:ec:9c:86:de:60:ec:8a:02:43:ac:e3:78:85:36:05:e7: 4c:f4:64:99:30:79:92:c2:55:f0:07:80:9b:e0:c3:fe:b2:1c: 2e:63:83:4d:96:e1:e7:a7:e1:5b:70:14:19:73:6c:31:1a:ac: 27:e4:93:64:44:bc:cf:6e:92:2d:6e:d9:86:f8:fe:4d:8d:bd: 78:65:84:4b:dc:b2:44:eb:02:3c:c8:1f:7b:3e:da:7c:4a:0f: fa:72:9f:69:cc:0b:f7:57:be:a9:8d:46:cd:60:00:e0:1a:df: 36:fb:08:64:89:a5:10:12:0a:d4:fc:d4:1b:d0:12:20:53:f5: 56:95:81:ba:2b:97:8e:65:43:71:81:9a:39:5b:7d:58:e5:90: 44:2b:43:e0:e5:bf:aa:2b:49:ec:2f:38:32:66:09:e2:e3:3d: 98:e7:22:c8:0b:2f:2d:86:36:82:4f:63:68:b4:93:7d:8d:39: 42:4a:56:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKERBOERCQzNCMDk5NzQyRDNBQkQyQTg5NUREMTMzOTg5 M0I5QThGNUYwHhcNMjUwNTEyMTUzOTE4WhcNMjUwNTE5MTUzOTE4WjAYMRYwFAYD VQQDEw02ODIyMTYyNi03NTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdnNb4N15W0o+YMWEXH7dst5u2k0fAqbhyDrP05X6SuHHt9vl7wUGuOkJN6B V5zID0V4hWX/cZWFyvrTXyPRvSM2NXQs6xytM8a3i56wonVRNmu64/Muw8upKewi /iQSiYDxN5mKmrVJJPptyPOWIPeup9zmbS1BuXj4wS7M1F40w461RHUA8AZBy+CR +blyL6/TaD4Lv3iipTBCH/wYpLqolwFtOiciJruszCRDw4EnhJ7X+pIgZRYht0mc uOXdBVsKWQ9nX3Dfmu5ihCu51jSfUS6Q1WK2Pa9Gjo/xaGyvIjULEAYBuBlhPbC8 RV/Nww2HI8RWm3fm+PM+A9hbgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNY69bRk 4mIJjx8/f1cmqm3GoAVLMB8GA1UdIwQYMBaAFNqNvDsJl0LTq9Kold0TOYk7mo9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0T3IwcWlWM1JNNWlUdWFq MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJvMjhPd21YUXRPcjBxaVYzUk01aVR1YWoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBBMy83MUFERTFGRUQ4MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0 T3IwcWlWM1JNNWlUdWFqMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBj0X1JK2uWWgcDx+R/ldKM04MHucAPUSmXji3HpgK0rH4KGbso3BU aHrAp2aLzhi2G1yQadzHa6ymk0a8MZmQT3HG+W087S8Y1uycht5g7IoCQ6zjeIU2 BedM9GSZMHmSwlXwB4Cb4MP+shwuY4NNluHnp+FbcBQZc2wxGqwn5JNkRLzPbpIt btmG+P5Njb14ZYRL3LJE6wI8yB97Ptp8Sg/6cp9pzAv3V76pjUbNYADgGt82+whk iaUQEgrU/NQb0BIgU/VWlYG6K5eOZUNxgZo5W31Y5ZBEK0Pg5b+qK0nsLzgyZgni 4z2Y5yLICy8thjaCT2NotJN9jTlCSlaG -----END CERTIFICATE-----Generated at Tue May 13 04:53:24 2025 by rpki-client