$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: mTVxq8uJNRBROkJ+hQeejiBOEbvLz+2sTgJO10Bj498= Subject key identifier: 86:15:4F:77:9B:4C:02:08:8C:5C:35:C5:5A:14:EE:B1:AD:B3:C0:CA Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0BFE Signing time: Wed 14 May 2025 18:53:38 +0000 Manifest this update: Wed 14 May 2025 18:53:37 +0000 Manifest next update: Wed 21 May 2025 18:53:37 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: LMv0AHHpMi0v4BG0mLnQcLqLtgOS98O93BBz+8aU0G8=) 2: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: dn3kZoWooSddDB41uptssOk+YJNXq/e4qX48GOTMtT4=) 3: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: 8Ead/6roCcIWAO/F6fTJ08XA18GUuGo77XaTq8IG4j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: May 14 18:53:37 2025 GMT Not After : May 21 18:53:37 2025 GMT Subject: CN=6824e6b1-f4dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d6:96:2c:cf:5b:f4:1e:89:0e:b6:dd:e4:28: 67:46:d4:11:e8:d1:1b:54:42:49:a9:1a:0c:b8:c4: 27:89:58:35:36:7a:73:3a:7a:2a:b6:bf:86:c5:97: 93:39:e4:ab:e3:34:25:27:56:97:d8:d2:be:91:fd: 39:e8:ae:d3:0d:77:3f:ef:46:48:b8:89:9a:f0:70: dd:27:29:88:87:b7:8d:18:2c:8e:6a:e3:57:af:2c: 8d:25:67:0e:66:23:19:22:53:34:38:82:e8:ba:ac: 6c:a8:2d:d9:3c:37:7a:6f:02:9a:a3:2d:c1:8b:21: 28:ef:17:27:aa:d5:74:08:01:8c:bf:b8:15:a5:2a: 04:bd:ef:51:31:2b:9f:4a:e2:70:f3:12:97:1c:3a: 55:7f:26:ab:7b:13:df:33:4c:2f:55:e6:3f:c9:4a: ea:ed:25:62:ac:e7:2b:a9:ea:52:c7:2c:e4:b5:5c: 40:61:f6:7a:95:c4:0e:2a:39:c9:5a:3b:b2:bf:10: 35:98:c8:7c:99:56:4c:70:d2:09:db:23:b6:01:7d: 28:33:e5:28:08:eb:7d:f2:cc:0d:3f:34:1c:70:45: 12:23:d4:6b:cb:37:7a:0f:ef:e4:84:41:91:01:17: b7:f3:9f:99:04:58:28:99:93:a4:06:70:79:ec:40: d3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:15:4F:77:9B:4C:02:08:8C:5C:35:C5:5A:14:EE:B1:AD:B3:C0:CA X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c0:f4:58:d9:cc:c5:22:28:be:14:dd:1d:98:4e:a3:7f:0c: a5:cd:8e:d7:bf:15:c0:b0:78:c4:14:a7:70:64:f6:55:af:1b: 4b:09:b3:15:2c:83:05:1e:fc:d3:c2:3c:c7:33:85:58:21:ad: ee:54:53:05:2d:98:4c:5e:c5:70:1e:73:c1:70:86:f0:f3:8a: 33:b0:f7:83:ad:72:95:f9:3a:99:ec:86:94:25:99:83:34:39: 8a:26:36:65:45:4b:32:08:a9:d8:da:c7:75:6a:08:3c:2f:f7: 20:fc:d0:fa:3a:54:68:d5:ba:7a:fe:62:b2:8a:49:28:64:c9: f1:09:35:44:89:c3:b3:9f:8d:f8:d2:48:9a:a2:e4:cd:07:35: 6c:2c:c5:18:03:c8:2d:52:1e:99:5e:c1:67:20:ea:12:b3:9c: ed:4a:10:4e:9c:fe:1f:45:cd:f1:53:d9:4e:8f:e2:a4:55:fd: 89:6e:b5:68:32:21:34:9d:05:dd:52:e9:e5:c9:33:e7:4d:63: 39:57:71:bc:28:35:07:96:a4:90:95:82:fd:dc:af:84:9c:fa: ef:8a:8e:93:71:0f:a5:f5:76:d2:27:51:7d:98:de:da:4d:1b: 85:16:a4:45:37:b3:f1:30:08:01:de:41:2c:55:f6:2c:58:27: a1:b6:ec:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUwNTE0MTg1MzM3WhcNMjUwNTIxMTg1MzM3WjAYMRYwFAYD VQQDEw02ODI0ZTZiMS1mNGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtaWLM9b9B6JDrbd5ChnRtQR6NEbVEJJqRoMuMQniVg1NnpzOnoqtr+GxZeT OeSr4zQlJ1aX2NK+kf056K7TDXc/70ZIuIma8HDdJymIh7eNGCyOauNXryyNJWcO ZiMZIlM0OILouqxsqC3ZPDd6bwKaoy3BiyEo7xcnqtV0CAGMv7gVpSoEve9RMSuf SuJw8xKXHDpVfyarexPfM0wvVeY/yUrq7SVirOcrqepSxyzktVxAYfZ6lcQOKjnJ WjuyvxA1mMh8mVZMcNIJ2yO2AX0oM+UoCOt98swNPzQccEUSI9Rryzd6D+/khEGR ARe385+ZBFgomZOkBnB57EDTPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYVT3eb TAIIjFw1xVoU7rGts8DKMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfwPRY2czFIii+FN0dmE6jfwylzY7XvxXAsHjEFKdwZPZVrxtLCbMV LIMFHvzTwjzHM4VYIa3uVFMFLZhMXsVwHnPBcIbw84ozsPeDrXKV+TqZ7IaUJZmD NDmKJjZlRUsyCKnY2sd1agg8L/cg/ND6OlRo1bp6/mKyikkoZMnxCTVEicOzn434 0kiaouTNBzVsLMUYA8gtUh6ZXsFnIOoSs5ztShBOnP4fRc3xU9lOj+KkVf2JbrVo MiE0nQXdUunlyTPnTWM5V3G8KDUHlqSQlYL93K+EnPrvio6TcQ+l9XbSJ1F9mN7a TRuFFqRFN7PxMAgB3kEsVfYsWCehtuw9 -----END CERTIFICATE-----Generated at Fri May 16 17:55:13 2025 by rpki-client