$ rpki-client -vvf rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft File: Aul8r2u1VIcberzm6NeDIOuURpE.mft (raw, json) Hash identifier: pV09IniHaRaVWnHu1Z8wPhvdv8yh8Z5PEHvNy7I/vj8= Subject key identifier: DB:41:44:5F:12:C7:82:C4:E6:BA:A6:B5:1F:39:A6:43:47:DF:9D:B6 Authority key identifier: 02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 Certificate issuer: /CN=A917A47E/serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Certificate serial: 23DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft Manifest number: 23C7 Signing time: Sat 10 May 2025 15:45:45 +0000 Manifest this update: Sat 10 May 2025 15:45:45 +0000 Manifest next update: Sat 17 May 2025 15:45:45 +0000 Files and hashes: 1: Aul8r2u1VIcberzm6NeDIOuURpE.crl (hash: IeOEj5xA0PLsAobmRVs/UrQV4GZUIFLbiklUA78npzU=) 2: 0B72CFAC049211EBB8144531C4F9AE02.roa (hash: HoemRN9Bqh3dS3wFw1CGTUnb1f4mFjxNW0+qSLr4eCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9180 (0x23dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A47E, serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Validity Not Before: May 10 15:45:45 2025 GMT Not After : May 17 15:45:45 2025 GMT Subject: CN=681f74a9-51cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:d2:c3:08:a3:13:ca:6e:dc:bd:d8:2a:87: 57:2d:56:50:0e:83:6d:77:a8:df:3d:34:ff:21:c9: 16:ec:c1:7e:d9:22:56:16:bd:7f:a0:16:ec:e3:e8: ed:51:e5:1e:4a:32:cb:02:e1:7d:40:f0:79:25:44: 32:13:34:f3:b5:27:2d:3d:ff:70:77:82:37:f5:8c: c3:21:5f:f0:24:ed:d4:e7:2e:26:0b:0f:d0:b1:59: 89:1c:d5:96:a5:fb:ad:3c:7f:93:a1:40:89:5d:81: 58:91:2f:c2:1f:90:13:d1:95:58:52:07:74:9c:f1: 35:cd:c4:71:37:0f:87:6a:fb:48:ee:36:14:98:e2: 5e:83:5b:93:b5:04:14:03:f0:b6:c6:d7:f3:06:49: cd:68:cb:2a:ef:52:fd:d5:67:31:fa:f4:6a:82:25: 2c:ba:a8:97:3f:cf:8f:26:e1:95:ec:cd:06:4c:d6: 35:5f:be:c9:ad:1e:fa:56:0a:71:be:d3:e2:5b:63: 47:0f:e9:34:a4:ae:7d:01:11:07:ed:13:cd:06:f2: 56:78:b4:06:fb:b8:52:f8:47:f9:73:1a:10:6f:af: 08:86:35:c6:59:ae:10:a9:b5:c5:08:f1:2c:af:7b: 53:be:a7:9e:3d:d3:1c:8e:d2:9d:c6:ba:21:e8:d6: e1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:41:44:5F:12:C7:82:C4:E6:BA:A6:B5:1F:39:A6:43:47:DF:9D:B6 X509v3 Authority Key Identifier: keyid:02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:5f:98:b7:31:29:46:ba:eb:e5:43:18:14:28:d6:1b:ea:66: 22:f3:66:71:ea:48:78:be:32:22:52:8b:3f:97:b9:2a:90:11: 34:c5:a1:38:d2:70:8f:fb:fb:31:44:b6:0d:9b:88:7c:9f:80: 0d:2f:0a:15:cc:53:27:53:4b:e7:db:58:0c:78:67:78:26:ac: c9:d8:b9:be:3d:5b:b5:89:0f:dc:2a:b1:a4:50:21:6a:fc:b1: af:68:40:01:0c:a9:25:20:41:71:89:63:7a:2a:d0:a2:2d:da: c9:f5:ee:2c:32:4e:46:f5:e6:00:f5:23:72:e0:a2:91:94:64: 96:e8:11:85:0e:3e:dd:95:f9:45:5c:3c:91:9b:1f:c3:f4:7b: b5:34:25:75:ac:f7:b6:15:f1:95:45:8f:02:8e:fe:e9:82:49: b2:66:a9:65:55:34:2e:3d:21:c6:7b:38:44:ba:0c:f2:ab:9b: 39:bd:7f:49:cf:6e:8e:cf:bd:17:99:88:7d:78:7c:ed:1b:38: 71:be:6b:41:bb:81:15:ba:c4:6e:c3:fa:fb:a0:33:90:71:4d: 34:48:c2:c8:e3:f0:ec:a0:ce:72:c5:08:df:0b:40:27:8b:cf: 9c:54:1d:bf:38:63:c1:28:c5:a5:05:78:1b:14:09:5c:0f:98: e4:24:f4:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0N0UxMTAvBgNVBAUTKDAyRTk3Q0FGNkJCNTU0ODcxQjdBQkNFNkU4RDc4MzIw RUI5NDQ2OTEwHhcNMjUwNTEwMTU0NTQ1WhcNMjUwNTE3MTU0NTQ1WjAYMRYwFAYD VQQDEw02ODFmNzRhOS01MWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtanSwwijE8pu3L3YKodXLVZQDoNtd6jfPTT/IckW7MF+2SJWFr1/oBbs4+jt UeUeSjLLAuF9QPB5JUQyEzTztSctPf9wd4I39YzDIV/wJO3U5y4mCw/QsVmJHNWW pfutPH+ToUCJXYFYkS/CH5AT0ZVYUgd0nPE1zcRxNw+HavtI7jYUmOJeg1uTtQQU A/C2xtfzBknNaMsq71L91Wcx+vRqgiUsuqiXP8+PJuGV7M0GTNY1X77JrR76Vgpx vtPiW2NHD+k0pK59AREH7RPNBvJWeLQG+7hS+Ef5cxoQb68IhjXGWa4QqbXFCPEs r3tTvqeePdMcjtKdxroh6Nbh+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtBRF8S x4LE5rqmtR85pkNH3522MB8GA1UdIwQYMBaAFALpfK9rtVSHG3q85ujXgyDrlEaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ3RS8zRTZCRUM1NjY5 MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJY2JlcnptNk5lRElPdVVS cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F1bDhyMnUxVkljYmVyem02TmVESU91VVJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTQ3RS8zRTZCRUM1NjY5MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJ Y2JlcnptNk5lRElPdVVScEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqX5i3MSlGuuvlQxgUKNYb6mYi82Zx6kh4vjIiUos/l7kqkBE0xaE4 0nCP+/sxRLYNm4h8n4ANLwoVzFMnU0vn21gMeGd4JqzJ2Lm+PVu1iQ/cKrGkUCFq /LGvaEABDKklIEFxiWN6KtCiLdrJ9e4sMk5G9eYA9SNy4KKRlGSW6BGFDj7dlflF XDyRmx/D9Hu1NCV1rPe2FfGVRY8Cjv7pgkmyZqllVTQuPSHGezhEugzyq5s5vX9J z26Oz70XmYh9eHztGzhxvmtBu4EVusRuw/r7oDOQcU00SMLI4/DsoM5yxQjfC0An i8+cVB2/OGPBKMWlBXgbFAlcD5jkJPS3 -----END CERTIFICATE-----Generated at Sun May 11 04:14:37 2025 by rpki-client