$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft File: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft (raw, json) Hash identifier: 60YVe06lAkkFxWUtEu4R8YG3IPFb+S5VVh6qz7ZsTAg= Subject key identifier: D0:C0:B4:97:51:37:C1:94:DB:26:5D:51:E8:BF:9E:CC:F0:9A:DA:FB Authority key identifier: EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 Certificate issuer: /CN=A917ACF1/serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Certificate serial: 038F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft Manifest number: 0388 Signing time: Tue 13 May 2025 00:40:26 +0000 Manifest this update: Tue 13 May 2025 00:40:25 +0000 Manifest next update: Tue 20 May 2025 00:40:25 +0000 Files and hashes: 1: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl (hash: xs4kQ5Yzjs7le0WvVs2SJb7ExUbJ1W3blv4l4+cMBuM=) 2: 5895821AB62611ECB410C81DC4F9AE02.roa (hash: hC/jX3h+m4kRJTL+3r4qE/OapWO5r8a4N2e8hzVBff0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 911 (0x38f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACF1, serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Validity Not Before: May 13 00:40:25 2025 GMT Not After : May 20 00:40:25 2025 GMT Subject: CN=682294f9-de33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:20:e6:5d:14:32:79:03:dd:d2:1c:2c:a8:8b: f2:34:bc:c2:f7:ba:86:cf:73:fb:f1:21:97:26:26: ad:0c:cd:c4:68:6e:74:d6:7f:4c:e5:81:a1:b0:49: 16:f6:ca:12:89:ed:f6:d2:90:24:f6:72:11:c0:42: 1d:e3:d9:4b:8c:b0:a5:c8:6c:d2:70:9b:0d:40:f8: bb:fe:4c:f1:7a:8b:fe:42:d3:b2:71:40:ff:27:b0: 33:76:a4:a5:26:16:57:14:65:a1:5c:5a:3f:fe:cc: 8d:ec:b6:46:6c:e4:a4:90:9b:11:57:6a:e6:b2:2d: 66:a3:19:2e:7c:5f:44:08:e4:40:2f:72:63:87:d7: 1f:ab:59:44:0d:31:aa:9c:6c:be:02:23:c6:17:4a: 9d:aa:b3:b0:41:01:c8:27:55:ab:e8:ff:f3:04:16: 09:ed:d4:ee:07:cd:57:eb:b9:2b:8f:3e:77:bc:c0: ad:5f:5a:44:6c:44:78:2e:8d:21:c7:06:68:d7:e2: de:e5:06:12:df:ce:1a:da:7f:26:1b:1f:ee:84:9f: 02:40:80:8d:e9:64:a0:95:ba:91:22:b7:4c:a7:85: 8e:1e:11:7b:90:cc:78:10:19:de:ba:34:cf:c5:42: ce:e4:97:c9:57:9e:fc:10:8f:3d:c7:a4:16:98:ea: c1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C0:B4:97:51:37:C1:94:DB:26:5D:51:E8:BF:9E:CC:F0:9A:DA:FB X509v3 Authority Key Identifier: keyid:EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:09:54:c9:41:04:0b:e8:e9:e3:76:bf:02:d4:02:3b:49:f6: 0f:c8:79:c6:6b:04:68:37:9f:4d:d2:fe:c2:65:3a:c8:80:10: d4:99:c0:6d:62:79:a5:35:e6:7b:6c:98:82:08:02:44:21:11: 0d:79:89:26:33:90:99:c4:fb:17:cc:14:d1:4a:0b:fd:fa:ab: 7c:ba:1a:94:75:01:d4:52:92:12:16:19:66:41:85:1a:dd:d9: fa:b6:84:2b:7a:47:c0:c8:9a:e3:10:16:e4:4d:85:60:41:a9: e5:cf:06:ee:4e:9a:e6:b0:97:65:0a:af:43:e6:73:3b:3a:de: 65:47:e6:5a:ed:0b:2e:30:da:f4:88:a6:c3:20:ae:a0:62:1a: dc:c8:6e:34:25:f8:63:56:d7:89:2b:88:53:de:12:c2:13:e0: 04:9d:b4:a3:2d:c0:66:ee:8a:2d:c7:e7:3b:c9:a8:0b:48:70: d0:41:c2:fa:da:95:03:af:d8:89:19:14:22:74:d7:40:e9:04: 9c:d3:f7:2b:a0:e1:6c:0b:6e:81:cb:f0:30:48:d1:68:d2:fc: d0:75:e8:da:27:d9:39:c0:6d:79:4e:57:59:f7:93:37:55:b9: d8:f8:2e:09:50:2e:ef:7c:f4:ed:18:91:97:2c:a2:59:82:8d: 49:09:5d:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDRjExMTAvBgNVBAUTKEVDODRENjBGNzk2QkY0MTZGOEY4MUQxOEJBREEyRkZG ODdDMTVGMjYwHhcNMjUwNTEzMDA0MDI1WhcNMjUwNTIwMDA0MDI1WjAYMRYwFAYD VQQDEw02ODIyOTRmOS1kZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSDmXRQyeQPd0hwsqIvyNLzC97qGz3P78SGXJiatDM3EaG501n9M5YGhsEkW 9soSie320pAk9nIRwEId49lLjLClyGzScJsNQPi7/kzxeov+QtOycUD/J7AzdqSl JhZXFGWhXFo//syN7LZGbOSkkJsRV2rmsi1moxkufF9ECORAL3Jjh9cfq1lEDTGq nGy+AiPGF0qdqrOwQQHIJ1Wr6P/zBBYJ7dTuB81X67krjz53vMCtX1pEbER4Lo0h xwZo1+Le5QYS384a2n8mGx/uhJ8CQICN6WSglbqRIrdMp4WOHhF7kMx4EBneujTP xULO5JfJV578EI89x6QWmOrBdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDAtJdR N8GU2yZdUei/nszwmtr7MB8GA1UdIwQYMBaAFOyE1g95a/QW+PgdGLraL/+HwV8m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNGMS84NjgzNTUwNkEw MzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlCYjQtQjBZdXRvdl80ZkJY eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdJVFdEM2xyOUJiNC1CMFl1dG92XzRmQlh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNGMS84NjgzNTUwNkEwMzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlC YjQtQjBZdXRvdl80ZkJYeVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeCVTJQQQL6Onjdr8C1AI7SfYPyHnGawRoN59N0v7CZTrIgBDUmcBt YnmlNeZ7bJiCCAJEIRENeYkmM5CZxPsXzBTRSgv9+qt8uhqUdQHUUpISFhlmQYUa 3dn6toQrekfAyJrjEBbkTYVgQanlzwbuTprmsJdlCq9D5nM7Ot5lR+Za7QsuMNr0 iKbDIK6gYhrcyG40JfhjVteJK4hT3hLCE+AEnbSjLcBm7ootx+c7yagLSHDQQcL6 2pUDr9iJGRQidNdA6QSc0/croOFsC26By/AwSNFo0vzQdejaJ9k5wG15TldZ95M3 VbnY+C4JUC7vfPTtGJGXLKJZgo1JCV0u -----END CERTIFICATE-----Generated at Wed May 14 16:19:33 2025 by rpki-client