$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: 5NDQsdh/0gsfXyKB4syRq61pkPEdiVid2vhfFwBOO1U= Subject key identifier: E7:24:CC:47:CE:AB:05:60:82:0D:BD:53:78:1C:C0:60:F5:70:F8:A5 Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B03 Signing time: Sat 10 May 2025 19:04:45 +0000 Manifest this update: Sat 10 May 2025 19:04:44 +0000 Manifest next update: Sat 17 May 2025 19:04:44 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: 0jNiX+R8PX5nV86oXmXOpsUDnQr5tZ+PcF0aiGRaOR4=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: May 10 19:04:44 2025 GMT Not After : May 17 19:04:44 2025 GMT Subject: CN=681fa34d-2482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bc:51:de:4d:71:17:d2:67:5f:1e:1e:62:45: d7:e6:d5:be:6b:19:b3:64:a0:b1:68:3b:b6:2e:bd: 2a:ed:76:0f:fa:64:56:a3:29:5b:4c:63:da:83:19: b8:09:60:28:55:ed:fa:7f:ff:88:d8:70:f3:d1:9e: d0:fd:4e:59:02:7b:da:c5:2e:fa:7d:34:24:0c:fb: 18:18:78:6f:30:9b:ec:3b:6a:a5:9f:f6:fe:b4:a7: 5a:a5:3d:47:6e:7b:65:ba:50:8e:11:1d:19:ba:1a: 50:c4:0a:bd:2d:57:67:6f:3c:39:92:77:0e:3d:45: c5:8c:01:8a:16:63:74:ee:d8:32:80:76:d3:7f:16: 5c:2b:b7:79:a9:e0:61:b4:7d:37:3e:66:79:9e:81: 88:04:e8:51:6e:e1:b4:18:dd:6c:82:ab:7c:cf:a0: 13:36:ca:2c:fa:b8:72:fd:6b:eb:75:b2:95:e6:da: bb:81:3e:a5:c4:2c:5a:1d:cf:70:da:92:27:0c:f3: 3f:27:1b:38:9b:cb:4c:af:bd:06:96:ad:89:cd:2e: a8:31:73:f7:79:ce:0a:12:51:4b:b4:48:6a:95:e0: af:8f:9d:70:aa:a6:54:d3:8e:ab:45:e4:f4:bd:6c: e8:f3:af:70:c8:46:dd:ea:66:30:92:75:9e:8f:17: d4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:24:CC:47:CE:AB:05:60:82:0D:BD:53:78:1C:C0:60:F5:70:F8:A5 X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ff:7b:55:e5:aa:f2:a5:a0:15:d2:5c:3d:79:1d:af:2b:04: e2:2a:66:9f:50:d0:5e:ea:a1:35:50:41:9c:97:09:ed:36:32: 22:4e:88:9f:53:19:73:a9:08:d3:0c:55:df:22:58:4c:96:7e: be:18:1a:31:ab:8b:91:ce:d8:3f:54:57:33:2a:8c:33:3d:22: b6:41:12:45:db:44:0f:de:c4:67:c5:1e:13:d8:42:a8:4a:43: 06:95:a1:73:eb:dc:e4:a5:31:a3:ba:ff:12:75:36:a6:45:1f: 16:06:73:dc:c8:db:4b:53:65:87:6c:14:41:2c:e4:bd:af:74: 30:89:eb:ee:ce:89:d4:fc:b3:ae:8e:11:e0:cf:9b:34:c7:98: 79:86:ba:69:84:cd:a1:0d:51:b4:e9:29:df:32:07:19:f4:90: 96:ed:d7:21:6c:9c:a5:46:04:f0:b3:d4:00:59:68:18:cc:16: 2f:3c:b6:42:e0:3f:c0:fb:a5:3d:df:89:53:0c:51:5c:7b:50: c1:6d:ac:8b:8d:7f:17:ba:4c:cf:56:aa:e6:27:5e:04:24:86: 71:cf:d7:50:ca:9c:60:f1:fa:02:ec:c7:2c:56:7d:b9:ae:dc: 86:fd:71:3b:56:4e:29:3c:76:4d:d0:89:5f:b5:c8:41:6d:97: 85:10:a5:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUwNTEwMTkwNDQ0WhcNMjUwNTE3MTkwNDQ0WjAYMRYwFAYD VQQDEw02ODFmYTM0ZC0yNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrxR3k1xF9JnXx4eYkXX5tW+axmzZKCxaDu2Lr0q7XYP+mRWoylbTGPagxm4 CWAoVe36f/+I2HDz0Z7Q/U5ZAnvaxS76fTQkDPsYGHhvMJvsO2qln/b+tKdapT1H bntlulCOER0ZuhpQxAq9LVdnbzw5kncOPUXFjAGKFmN07tgygHbTfxZcK7d5qeBh tH03PmZ5noGIBOhRbuG0GN1sgqt8z6ATNsos+rhy/WvrdbKV5tq7gT6lxCxaHc9w 2pInDPM/Jxs4m8tMr70Glq2JzS6oMXP3ec4KElFLtEhqleCvj51wqqZU046rReT0 vWzo869wyEbd6mYwknWejxfUcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOckzEfO qwVggg29U3gcwGD1cPilMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc/3tV5arypaAV0lw9eR2vKwTiKmafUNBe6qE1UEGclwntNjIiToif UxlzqQjTDFXfIlhMln6+GBoxq4uRztg/VFczKowzPSK2QRJF20QP3sRnxR4T2EKo SkMGlaFz69zkpTGjuv8SdTamRR8WBnPcyNtLU2WHbBRBLOS9r3QwievuzonU/LOu jhHgz5s0x5h5hrpphM2hDVG06SnfMgcZ9JCW7dchbJylRgTws9QAWWgYzBYvPLZC 4D/A+6U934lTDFFce1DBbayLjX8XukzPVqrmJ14EJIZxz9dQypxg8foC7McsVn25 rtyG/XE7Vk4pPHZN0IlftchBbZeFEKXR -----END CERTIFICATE-----Generated at Mon May 12 04:04:17 2025 by rpki-client