$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: FJI472sWeBOCtGtdb6NWnymixWHzzKihtyLliER0jCM= Subject key identifier: 6C:1D:F5:A9:9D:A8:45:27:09:60:49:32:A7:76:F6:13:CC:FF:6C:66 Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 03 Signing time: Sat 03 May 2025 07:30:30 +0000 Manifest this update: Sat 03 May 2025 07:30:29 +0000 Manifest next update: Sat 10 May 2025 07:30:29 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: IFTBTvsagTJDPP323GVRpBfpQZAJoi49DArr8pbpL9w=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 07:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: May 3 07:30:29 2025 GMT Not After : May 10 07:30:29 2025 GMT Subject: CN=6815c615-a78a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:51:94:f6:42:97:9c:b8:96:d1:5b:a4:87:59: f9:a4:09:5d:55:64:d9:81:a7:84:65:6a:9d:ce:20: 72:4b:16:ac:4e:36:01:e1:53:19:ae:35:d0:8e:da: ba:66:01:cb:b8:2a:ab:93:62:34:6e:37:30:19:e2: 4a:4d:62:96:4c:01:ae:6f:76:69:3e:b6:3c:27:8e: 1c:b3:29:96:fd:ae:ec:5f:df:d6:08:99:67:5b:27: de:e0:39:ca:57:90:df:d7:24:99:d8:d1:55:e0:4a: e4:15:0a:ce:c8:98:6d:d6:46:e1:8d:28:54:c5:4b: bf:db:87:08:a9:d7:59:89:dd:97:94:f1:56:22:1d: 2e:94:47:64:f7:f0:77:bb:ab:43:06:a0:91:c7:1a: cd:9d:a8:ae:2a:66:73:92:02:ca:ed:d2:10:0f:d2: bf:92:ad:55:3b:45:3b:74:84:76:85:98:78:0c:e1: ce:19:88:f9:7a:7d:95:f4:05:c9:b6:78:00:18:9d: d7:25:42:54:d8:3b:e4:88:d9:9b:92:1a:c3:bc:6f: 36:91:5e:d4:22:d2:5b:46:1a:b3:f5:c4:52:81:f2: 5a:24:d9:19:ab:9e:1b:3e:42:1b:3a:f3:a8:14:a2: f1:ce:2e:36:c3:ae:6c:ca:3f:6e:79:c1:3c:b1:f8: 1c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:1D:F5:A9:9D:A8:45:27:09:60:49:32:A7:76:F6:13:CC:FF:6C:66 X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:a9:79:d6:6b:7c:09:99:a0:94:77:13:cb:65:c0:4e:b2:32: 05:d4:a7:a2:51:a4:d7:4c:3d:9f:7d:96:97:26:1d:ce:28:90: 12:df:e5:a3:71:bd:ec:01:c8:1c:31:1d:69:0a:fb:d5:80:8f: 5c:b7:15:ff:c1:37:70:72:31:e5:d3:09:2c:79:67:6e:fc:57: 67:77:55:d1:b5:af:14:88:bd:8a:66:7f:5f:65:d1:44:50:c9: f0:39:10:dd:80:0d:79:5d:9d:3f:e1:63:59:44:bc:47:fc:18: 05:2b:cd:39:6f:50:c9:ec:66:f5:75:70:8b:5b:21:1e:86:a0: f1:de:47:df:fc:f2:4e:e6:6e:93:20:3a:76:31:d8:fb:e0:f1: ab:bb:28:25:3b:2d:18:ba:ec:56:51:89:6a:32:bf:43:80:3c: 6c:2d:d0:86:25:0e:a4:8c:92:da:fa:2f:ed:ab:e6:61:b4:85: 99:14:ed:7a:7c:8e:01:46:e8:cc:05:ee:09:b1:35:43:fd:88: 98:0e:9f:86:69:12:56:2e:a3:25:b6:5c:31:dd:d0:0d:d1:2e: 6a:8d:0d:91:04:ce:66:cf:fe:31:be:0c:ef:6c:29:6d:21:c6: 1c:e4:ac:f7:8c:b7:87:22:33:32:a9:8f:25:c0:57:76:7d:9b: 85:66:b8:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTA1MDMwNzMwMjlaFw0yNTA1MTAwNzMwMjlaMBgxFjAUBgNV BAMTDTY4MTVjNjE1LWE3OGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyUZT2QpecuJbRW6SHWfmkCV1VZNmBp4Rlap3OIHJLFqxONgHhUxmuNdCO2rpm Acu4KquTYjRuNzAZ4kpNYpZMAa5vdmk+tjwnjhyzKZb9ruxf39YImWdbJ97gOcpX kN/XJJnY0VXgSuQVCs7ImG3WRuGNKFTFS7/bhwip11mJ3ZeU8VYiHS6UR2T38He7 q0MGoJHHGs2dqK4qZnOSAsrt0hAP0r+SrVU7RTt0hHaFmHgM4c4ZiPl6fZX0Bcm2 eAAYndclQlTYO+SI2ZuSGsO8bzaRXtQi0ltGGrP1xFKB8lok2Rmrnhs+Qhs686gU ovHOLjbDrmzKP255wTyx+BwTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbB31qZ2o RScJYEkyp3b2E8z/bGYwHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMWpedZrfAmZoJR3E8tlwE6yMgXUp6JRpNdMPZ99lpcmHc4okBLf5aNx vewByBwxHWkK+9WAj1y3Ff/BN3ByMeXTCSx5Z278V2d3VdG1rxSIvYpmf19l0URQ yfA5EN2ADXldnT/hY1lEvEf8GAUrzTlvUMnsZvV1cItbIR6GoPHeR9/88k7mbpMg OnYx2Pvg8au7KCU7LRi67FZRiWoyv0OAPGwt0IYlDqSMktr6L+2r5mG0hZkU7Xp8 jgFG6MwF7gmxNUP9iJgOn4ZpElYuoyW2XDHd0A3RLmqNDZEEzmbP/jG+DO9sKW0h xhzkrPeMt4ciMzKpjyXAV3Z9m4VmuA8= -----END CERTIFICATE-----Generated at Mon May 5 03:32:28 2025 by rpki-client