$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: on+BEnp0o4RnmYK134zMHkjab6YrgiYtBAFI7y4uNHQ= Subject key identifier: 1D:71:63:4B:8B:9D:50:DA:7D:24:F3:A1:82:1A:65:1B:EC:2E:9A:EB Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0CA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0C61 Signing time: Sat 10 May 2025 18:17:53 +0000 Manifest this update: Sat 10 May 2025 18:17:52 +0000 Manifest next update: Sat 17 May 2025 18:17:52 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: wWpa9VlDURxfbXbIfbkPDCX8y5l3ZLl2mEmXZlOPcPw=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 5: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3234 (0xca2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: May 10 18:17:52 2025 GMT Not After : May 17 18:17:52 2025 GMT Subject: CN=681f9851-c834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:71:45:c0:e3:6a:de:0b:1a:99:1d:41:b0:f2: 3f:ba:fd:dd:c8:96:03:a5:1a:65:44:c4:0d:33:9c: 5d:1a:86:26:14:a7:a6:ed:15:83:14:36:b6:9e:66: 12:31:6c:ec:9a:cb:d7:cf:af:60:e8:81:98:89:79: 93:8f:df:01:b4:ca:b6:ac:4d:5e:80:8e:60:59:b0: 12:e9:a8:ac:19:1b:ef:62:85:30:89:4d:93:7f:ad: 92:15:2d:b0:7e:92:a0:1a:da:a1:ca:fd:60:b2:5f: 1e:5e:73:84:3f:7e:4b:f9:d0:96:a3:c2:d1:6e:19: 7e:84:ac:b3:66:1d:20:35:a2:8b:b0:6f:d3:6d:f5: 0c:75:cb:5d:7d:3a:0e:d4:11:a7:ba:b1:9d:25:1c: 0d:29:d1:8b:04:4e:9d:00:b8:91:a8:9b:ac:1a:a2: 4f:24:39:fb:4d:89:f8:60:8b:53:80:83:2d:97:99: d2:6b:16:9a:a1:f7:b4:db:5c:a3:68:f1:83:ec:fe: 61:27:fc:82:a6:1d:6d:fc:f9:d4:4a:47:98:ab:58: ce:b5:f6:89:6b:93:9f:82:b4:d8:90:b9:e3:4b:eb: 7b:8a:ae:d2:ce:46:56:93:dd:b2:19:cc:f0:b8:b7: 4a:0a:c2:a0:86:87:2c:a4:15:82:3b:26:32:25:c8: c6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:71:63:4B:8B:9D:50:DA:7D:24:F3:A1:82:1A:65:1B:EC:2E:9A:EB X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:a9:46:e5:83:67:ae:c8:b7:d8:c9:2c:4e:db:dd:5c:d2:a3: 06:ce:94:72:77:1d:e4:22:fb:19:0a:98:9c:00:aa:4a:5b:e7: d7:fb:26:3f:5a:4b:94:b9:b4:8d:10:84:37:d6:1d:55:63:c0: fd:29:b0:81:27:28:fe:be:6d:0c:ac:0c:68:ab:81:c9:e3:c3: 9c:10:5a:bc:85:72:5d:c7:e6:cf:a7:f5:90:ad:be:db:19:7c: fe:ba:bf:70:5e:81:14:f2:11:30:30:a3:53:2c:28:c4:76:58: 6e:82:79:18:76:a0:4e:53:43:b1:b5:22:b9:2a:41:59:8e:56: e1:3c:6e:cb:97:ee:bc:8d:05:23:b1:3f:cf:3b:da:ad:a6:43: 89:88:6c:75:16:06:91:aa:e2:9c:36:60:01:4b:6d:4c:da:e7: 00:1e:a0:c4:ee:1d:66:05:87:1b:63:e5:66:2f:e6:ad:8c:8b: ad:db:c6:51:6d:b7:26:92:49:c0:0c:9f:b5:c0:2e:26:d7:71: fe:4f:fb:9f:41:00:34:fb:f2:d0:f7:99:6f:1e:a6:0e:93:4d: 9c:8c:e9:eb:27:13:42:17:f1:06:ed:7c:29:f2:85:cb:d4:d8: 77:e0:5c:c1:6a:c3:5a:37:d7:3d:32:b2:4b:fb:1b:83:df:ed: fd:a5:41:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUwNTEwMTgxNzUyWhcNMjUwNTE3MTgxNzUyWjAYMRYwFAYD VQQDEw02ODFmOTg1MS1jODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3FFwONq3gsamR1BsPI/uv3dyJYDpRplRMQNM5xdGoYmFKem7RWDFDa2nmYS MWzsmsvXz69g6IGYiXmTj98BtMq2rE1egI5gWbAS6aisGRvvYoUwiU2Tf62SFS2w fpKgGtqhyv1gsl8eXnOEP35L+dCWo8LRbhl+hKyzZh0gNaKLsG/TbfUMdctdfToO 1BGnurGdJRwNKdGLBE6dALiRqJusGqJPJDn7TYn4YItTgIMtl5nSaxaaofe021yj aPGD7P5hJ/yCph1t/PnUSkeYq1jOtfaJa5OfgrTYkLnjS+t7iq7SzkZWk92yGczw uLdKCsKghocspBWCOyYyJcjGFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1xY0uL nVDafSTzoYIaZRvsLprrMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/qUblg2euyLfYySxO291c0qMGzpRydx3kIvsZCpicAKpKW+fX+yY/ WkuUubSNEIQ31h1VY8D9KbCBJyj+vm0MrAxoq4HJ48OcEFq8hXJdx+bPp/WQrb7b GXz+ur9wXoEU8hEwMKNTLCjEdlhugnkYdqBOU0OxtSK5KkFZjlbhPG7Ll+68jQUj sT/PO9qtpkOJiGx1FgaRquKcNmABS21M2ucAHqDE7h1mBYcbY+VmL+atjIut28ZR bbcmkknADJ+1wC4m13H+T/ufQQA0+/LQ95lvHqYOk02cjOnrJxNCF/EG7Xwp8oXL 1Nh34FzBasNaN9c9MrJL+xuD3+39pUEq -----END CERTIFICATE-----Generated at Mon May 12 19:12:53 2025 by rpki-client