$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft File: T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft (raw, json) Hash identifier: IyeYD+BBCeEA/YX8YEq05Bq3uTnyRAihte3SUvxgmX8= Subject key identifier: 0B:3B:A7:37:98:5C:B3:0E:F6:29:6E:D7:E9:2B:2D:F7:F3:A5:26:CA Authority key identifier: 4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 Certificate issuer: /CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Certificate serial: 07C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft Manifest number: 13B1 Signing time: Sat 10 May 2025 18:30:48 +0000 Manifest this update: Sat 10 May 2025 18:30:47 +0000 Manifest next update: Sat 17 May 2025 18:30:47 +0000 Files and hashes: 1: T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl (hash: jtxT6004uM4LvNDhAznMTX1hy+6211UB67MkV54eW0s=) 2: 81A55E3629E711F08823E620C4F9AE02.roa (hash: KfN4zxeodpsFIbSyhLtkJmMGq5059ian7Q/W7KRDS8k=) 3: 3C73210E29E711F0AB5EBA80C4F9AE02.roa (hash: LZ/NW4Ul+FvSw/YC7i7jRWtLnsARm09vDsPHML7acmQ=) 4: F4075E7CF28611EF976CB83AC4F9AE02.roa (hash: vQI57o5020OkGxEigG4Zf/nYbRzTA4H4J4BJInGUUoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:30:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDDF, serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Validity Not Before: May 10 18:30:47 2025 GMT Not After : May 17 18:30:47 2025 GMT Subject: CN=681f9b58-6c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:cd:c6:fd:68:b3:b0:46:bc:9d:34:48:25:29: c5:97:12:1e:3e:20:8e:db:0e:c2:9a:e9:07:59:4a: a7:24:be:a7:b0:9e:df:a4:90:ab:19:09:fe:17:6c: fc:b5:4b:8b:c4:2d:6f:f6:39:e0:97:61:f7:45:6b: 3d:cd:a2:59:c6:55:f7:f2:71:1d:f7:c0:d0:f9:93: 40:28:d2:5e:c4:0c:32:7e:89:10:bb:0b:cb:68:5b: f3:f8:15:60:c8:f4:54:8b:c5:9a:38:7e:97:3f:33: e1:9a:91:d0:b1:33:b7:8b:da:27:0c:c9:c3:a3:4c: 4d:86:ca:1e:a6:b2:cc:c8:da:4b:09:a3:02:aa:a8: 83:1a:b8:65:86:7c:a4:3b:7c:1b:29:7c:46:26:cd: 2e:65:69:ea:8a:ae:9a:66:bb:bc:d6:71:ce:ce:c0: 00:ab:7a:d1:df:c8:7a:89:d1:1e:23:98:83:28:ea: ec:5d:42:6a:4f:c0:d9:25:98:c4:69:09:20:9b:c5: 09:3c:70:d2:71:bb:f6:86:82:76:42:93:88:a1:89: 11:33:ca:27:8a:4b:e3:98:21:0d:63:28:a8:42:36: 74:ff:de:0a:29:6e:3a:b6:b2:5f:d5:d2:63:3a:30: 17:c9:aa:a5:87:46:b7:87:52:5f:2b:7f:25:74:b9: 5a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:3B:A7:37:98:5C:B3:0E:F6:29:6E:D7:E9:2B:2D:F7:F3:A5:26:CA X509v3 Authority Key Identifier: keyid:4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:36:fc:94:b6:a0:5f:68:23:ad:33:fe:3e:f7:20:67:fc:6e: 7d:72:1f:fc:32:6e:4d:aa:33:a4:3c:73:5c:68:e9:9c:ea:6c: d7:88:5a:11:ed:5b:ff:98:40:6e:2e:e7:a0:9b:ae:ce:bc:b3: 81:04:34:ea:e5:a0:61:09:c9:97:bd:38:ed:5b:4a:ea:45:fb: 2f:19:f1:60:fb:43:20:54:77:51:5c:2b:cd:40:46:2c:e9:db: f9:ef:a5:5c:b9:ff:b0:c9:a4:57:69:3d:32:d0:ff:92:05:10: 12:60:cd:ec:0e:aa:8c:d3:f0:cd:c1:68:99:7a:9e:33:99:ac: 59:6b:c9:57:f8:dc:be:68:fb:22:65:e8:60:f8:96:12:33:53: 81:8c:4b:b2:b0:ee:4d:b3:af:59:c4:ab:22:5b:c0:40:ee:13: a1:16:5f:33:3d:31:1f:6a:c7:33:f0:bf:9d:7e:62:ff:7a:43: 32:1b:08:93:1e:04:9f:4f:6c:84:5b:48:f2:71:d8:86:28:21: 1c:e2:ec:59:cc:81:50:ab:5e:6e:d2:e1:ec:24:50:02:12:93: 6b:64:74:1d:c0:b7:4c:8c:02:f3:67:bd:82:a0:01:39:9d:f4: b2:36:f8:7e:c2:85:61:65:45:44:69:5e:bd:99:34:d7:b4:1d: d1:a9:4c:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNEREYxMTAvBgNVBAUTKDRGRkE1MjhDNkU0NjdFRDQ1OEY1MzVGQzVDNkREOURC RUQwQ0U3MzcwHhcNMjUwNTEwMTgzMDQ3WhcNMjUwNTE3MTgzMDQ3WjAYMRYwFAYD VQQDEw02ODFmOWI1OC02Yzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9s3G/WizsEa8nTRIJSnFlxIePiCO2w7CmukHWUqnJL6nsJ7fpJCrGQn+F2z8 tUuLxC1v9jngl2H3RWs9zaJZxlX38nEd98DQ+ZNAKNJexAwyfokQuwvLaFvz+BVg yPRUi8WaOH6XPzPhmpHQsTO3i9onDMnDo0xNhsoeprLMyNpLCaMCqqiDGrhlhnyk O3wbKXxGJs0uZWnqiq6aZru81nHOzsAAq3rR38h6idEeI5iDKOrsXUJqT8DZJZjE aQkgm8UJPHDScbv2hoJ2QpOIoYkRM8onikvjmCENYyioQjZ0/94KKW46trJf1dJj OjAXyaqlh0a3h1JfK38ldLlaiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAs7pzeY XLMO9ilu1+krLffzpSbKMB8GA1UdIwQYMBaAFE/6UoxuRn7UWPU1/Fxt2dvtDOc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0RERi8yNjYwOEQ0NjEw NzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0Ulk5VFg4WEczWjItME01 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfcFNqRzVHZnRSWTlUWDhYRzNaMi0wTTV6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0RERi8yNjYwOEQ0NjEwNzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0 Ulk5VFg4WEczWjItME01emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0NvyUtqBfaCOtM/4+9yBn/G59ch/8Mm5NqjOkPHNcaOmc6mzXiFoR 7Vv/mEBuLuegm67OvLOBBDTq5aBhCcmXvTjtW0rqRfsvGfFg+0MgVHdRXCvNQEYs 6dv576Vcuf+wyaRXaT0y0P+SBRASYM3sDqqM0/DNwWiZep4zmaxZa8lX+Ny+aPsi Zehg+JYSM1OBjEuysO5Ns69ZxKsiW8BA7hOhFl8zPTEfascz8L+dfmL/ekMyGwiT HgSfT2yEW0jycdiGKCEc4uxZzIFQq15u0uHsJFACEpNrZHQdwLdMjALzZ72CoAE5 nfSyNvh+woVhZUVEaV69mTTXtB3RqUyn -----END CERTIFICATE-----Generated at Mon May 12 15:41:40 2025 by rpki-client