$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: Uu2b8LH4RonHS2SDqAftB1cQe/Z7LnGp/08CYSmpH4M= Subject key identifier: C0:F7:A7:33:81:87:AB:64:DB:9A:CB:14:1E:27:0E:4C:33:69:35:8C Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 018A Signing time: Tue 13 May 2025 02:50:54 +0000 Manifest this update: Tue 13 May 2025 02:50:54 +0000 Manifest next update: Tue 20 May 2025 02:50:54 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: 92YfUrSWoxjG1UJxyavuWwQR0DAHhFtQ8OPU1T0JtQA=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: May 13 02:50:54 2025 GMT Not After : May 20 02:50:54 2025 GMT Subject: CN=6822b38e-6a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f2:b1:39:78:24:36:3a:3b:cf:9d:59:12:38: 36:37:a1:99:6b:25:17:70:54:b5:d0:65:94:e1:f3: c3:1e:8f:90:79:f2:5b:f6:43:3f:a3:a8:89:36:53: 3b:96:9b:85:7a:ad:b1:9e:f0:90:dd:db:60:3e:f5: be:13:b8:9f:92:41:96:ed:11:0f:50:ed:e4:d8:63: eb:15:7d:bd:db:47:a1:48:b2:5d:9f:32:81:35:9b: a6:fe:75:c6:59:a5:45:fc:67:b6:c2:f2:ef:51:f6: b2:eb:e6:02:23:95:04:1d:a5:1f:9a:93:ec:c8:77: 15:6f:80:d3:6d:f4:3c:a2:70:8f:d2:a2:a2:62:e3: 2d:ec:6f:3c:b9:19:ec:79:bd:b9:b8:87:82:d1:65: 5b:2a:13:cd:db:4e:07:70:a9:b6:57:b8:ab:ce:d4: 16:b6:75:b9:2a:dc:71:39:4e:0e:a4:7f:4d:e6:b7: 3e:50:be:e3:14:4a:52:e0:99:d4:46:3f:80:57:a3: 71:54:e4:cf:11:ba:a3:fe:fa:55:c0:b6:d2:e6:af: b4:65:a0:78:33:65:81:c1:47:ad:aa:62:85:9f:22: 1d:a8:52:42:a9:b5:b9:f5:c1:cc:8f:8f:d1:d3:d0: 7b:db:ba:7a:5d:58:35:a5:d2:65:b3:77:3e:4a:45: 78:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F7:A7:33:81:87:AB:64:DB:9A:CB:14:1E:27:0E:4C:33:69:35:8C X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d8:26:f5:0a:35:13:f7:f5:6d:70:15:3b:52:3e:7c:5f:98: 2f:e8:be:8c:ab:3e:1e:96:72:9e:cd:24:fb:62:7f:8b:23:9b: 74:a8:73:36:44:fe:e2:29:17:27:0e:1a:b8:43:59:01:9d:9a: 25:7a:ae:65:f7:13:de:87:48:25:5b:3f:77:43:6d:64:3f:cf: 8c:a3:5e:12:18:a8:2e:a9:98:2b:57:3c:92:fb:5b:43:bf:4a: fb:32:0f:c4:c7:ae:be:67:89:3b:ec:f8:5e:3b:3f:2e:e0:6f: 9d:62:c3:4b:c3:ed:6b:b4:63:7c:5b:91:21:fb:09:f1:6e:d2: 4b:dc:e2:9f:bc:25:c5:76:e8:34:b1:2e:32:ed:b8:73:c2:99: 27:c7:44:4f:c7:08:e2:34:1d:95:44:b3:b4:0f:87:8b:de:b7: dd:ae:55:56:fd:ed:ee:00:3f:88:30:07:e0:a5:89:18:5e:6e: 28:f7:29:2c:70:55:d8:b7:66:cb:2e:b1:9f:5e:03:2f:73:74: e3:61:29:fe:69:74:c5:8c:ed:70:11:28:ae:bf:45:6d:51:e3: 67:40:d9:dc:68:02:04:f7:ee:1e:f6:f8:c6:26:78:30:fc:0d: 62:10:4d:c5:60:80:1c:f4:6f:79:db:73:b0:3d:6f:eb:0b:18: 34:fd:57:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwNTEzMDI1MDU0WhcNMjUwNTIwMDI1MDU0WjAYMRYwFAYD VQQDEw02ODIyYjM4ZS02YTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/KxOXgkNjo7z51ZEjg2N6GZayUXcFS10GWU4fPDHo+QefJb9kM/o6iJNlM7 lpuFeq2xnvCQ3dtgPvW+E7ifkkGW7REPUO3k2GPrFX2920ehSLJdnzKBNZum/nXG WaVF/Ge2wvLvUfay6+YCI5UEHaUfmpPsyHcVb4DTbfQ8onCP0qKiYuMt7G88uRns eb25uIeC0WVbKhPN204HcKm2V7irztQWtnW5KtxxOU4OpH9N5rc+UL7jFEpS4JnU Rj+AV6NxVOTPEbqj/vpVwLbS5q+0ZaB4M2WBwUetqmKFnyIdqFJCqbW59cHMj4/R 09B727p6XVg1pdJls3c+SkV4GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMD3pzOB h6tk25rLFB4nDkwzaTWMMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe2Cb1CjUT9/VtcBU7Uj58X5gv6L6Mqz4elnKezST7Yn+LI5t0qHM2 RP7iKRcnDhq4Q1kBnZoleq5l9xPeh0glWz93Q21kP8+Mo14SGKguqZgrVzyS+1tD v0r7Mg/Ex66+Z4k77PheOz8u4G+dYsNLw+1rtGN8W5Eh+wnxbtJL3OKfvCXFdug0 sS4y7bhzwpknx0RPxwjiNB2VRLO0D4eL3rfdrlVW/e3uAD+IMAfgpYkYXm4o9yks cFXYt2bLLrGfXgMvc3TjYSn+aXTFjO1wESiuv0VtUeNnQNncaAIE9+4e9vjGJngw /A1iEE3FYIAc9G9523OwPW/rCxg0/VeC -----END CERTIFICATE-----Generated at Wed May 14 20:31:37 2025 by rpki-client