$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft File: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json) Hash identifier: Rw+pV0bsHa1uKbdDDGOwjMivUNmng+Sj1hqhyNfHZIg= Subject key identifier: E0:4E:7F:9F:D0:FB:AC:3F:7C:E1:9B:1C:49:81:6D:DE:EE:E1:A8:3B Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft Manifest number: 0148 Signing time: Sun 11 May 2025 03:08:49 +0000 Manifest this update: Sun 11 May 2025 03:08:49 +0000 Manifest next update: Sun 18 May 2025 03:08:49 +0000 Files and hashes: 1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: wV9+MqWa/cUytfpCeH4oTh+qGU5DauS+VEXohVPcrMI=) 2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: YBS7N1V85GEsKAdkA8SgTeGUq7xGqu6t+13xBrFpNlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1, serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: May 11 03:08:49 2025 GMT Not After : May 18 03:08:49 2025 GMT Subject: CN=682014c1-35cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:53:32:32:53:66:ae:65:8b:ed:27:50:38:86: 4b:e2:a3:b8:d5:e9:b6:c3:df:a1:c4:57:2f:29:a2: 26:a5:60:51:23:85:4a:90:55:5d:c2:9f:d0:69:98: 79:e4:62:b5:e4:67:46:0f:e8:9e:01:52:f1:0e:1b: 3b:82:31:f1:d6:b7:24:d4:92:da:b4:d3:aa:ae:27: f2:95:39:d9:0a:ae:f0:63:b1:47:2a:cc:01:18:93: 92:c7:fe:48:2b:bb:a2:88:a8:ea:5d:99:f3:4f:4b: 00:b9:1a:a3:bf:a6:a2:0d:fb:5b:87:b0:18:c2:44: e5:5c:3e:f8:6b:4d:83:96:21:65:0e:ae:d1:66:c4: 29:31:2b:e1:3a:ee:f2:52:e4:71:2f:b9:20:5b:09: 0a:7f:71:0e:1f:1b:6e:21:65:d9:90:e9:67:f6:df: 18:e6:9b:34:b3:01:c1:00:bc:46:9c:34:fe:2a:d5: c3:18:56:d4:9b:ce:ad:60:e8:2e:7f:88:53:2e:8e: d7:34:5a:07:5c:88:e2:33:d7:a1:99:fa:9c:bd:b7: 72:6e:90:2d:97:93:2f:aa:9d:3d:6f:33:e1:81:b0: 99:24:6f:85:71:88:90:b8:59:75:21:c7:64:ea:15: c2:e1:eb:27:45:3a:0d:dd:f5:e6:35:60:96:b8:57: 1f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4E:7F:9F:D0:FB:AC:3F:7C:E1:9B:1C:49:81:6D:DE:EE:E1:A8:3B X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:9a:00:8c:df:01:5a:66:ec:c8:7b:14:17:f2:44:03:f5:05: ef:cc:45:70:25:c1:1f:8f:77:80:c4:62:18:46:0b:78:73:a8: 42:95:8a:38:d3:3c:ba:04:f2:31:56:d5:6c:43:59:be:b5:e4: c9:f6:81:8d:11:1e:fc:d6:a0:e2:0c:fe:7c:0c:b8:ec:d4:22: e5:c3:0f:37:af:84:ca:2d:70:a5:e5:8f:d2:1b:69:6b:c0:e4: 9a:bf:36:1c:76:94:48:0d:6e:e7:d4:bc:11:c4:05:ea:6c:b6: 8d:e1:d8:94:b7:f9:4b:a6:5f:4d:54:8c:64:2c:e7:8a:72:12: 2c:af:b0:8b:51:87:ea:12:13:c2:2f:45:73:11:c9:69:cb:ef: d9:8f:4a:20:15:23:38:4e:6b:a3:f8:96:14:d7:6e:92:63:20: 5f:62:14:d1:e1:19:2f:93:2f:3b:12:2a:a5:8f:3f:a3:7b:c2: e4:5b:91:42:ee:30:50:35:e5:4f:93:64:dc:e0:05:45:a2:c6: a6:fb:3f:d2:16:3d:48:cd:f9:61:8d:9e:ed:79:c9:ac:70:1b: e6:fe:3b:69:68:8a:ee:48:31:2b:10:6d:0a:3a:47:9a:f1:49: af:83:4b:a6:3c:a0:0b:01:29:28:c5:56:73:e7:1f:7d:75:e8: 62:1a:3e:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FERDExMTAvBgNVBAUTKDc2NTJBMjJGQzI1MEZBQUFFM0FCMkMwQzJBRkREMDRF MzA0N0U1MDcwHhcNMjUwNTExMDMwODQ5WhcNMjUwNTE4MDMwODQ5WjAYMRYwFAYD VQQDEw02ODIwMTRjMS0zNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlMyMlNmrmWL7SdQOIZL4qO41em2w9+hxFcvKaImpWBRI4VKkFVdwp/QaZh5 5GK15GdGD+ieAVLxDhs7gjHx1rck1JLatNOqrifylTnZCq7wY7FHKswBGJOSx/5I K7uiiKjqXZnzT0sAuRqjv6aiDftbh7AYwkTlXD74a02DliFlDq7RZsQpMSvhOu7y UuRxL7kgWwkKf3EOHxtuIWXZkOln9t8Y5ps0swHBALxGnDT+KtXDGFbUm86tYOgu f4hTLo7XNFoHXIjiM9ehmfqcvbdybpAtl5Mvqp09bzPhgbCZJG+FcYiQuFl1Icdk 6hXC4esnRToN3fXmNWCWuFcf+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBOf5/Q +6w/fOGbHEmBbd7u4ag7MB8GA1UdIwQYMBaAFHZSoi/CUPqq46ssDCr90E4wR+UH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUREMS9EMDA2QzBERTM3 RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1xcmpxeXdNS3YzUVRqQkg1 UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1x cmpxeXdNS3YzUVRqQkg1UWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCImgCM3wFaZuzIexQX8kQD9QXvzEVwJcEfj3eAxGIYRgt4c6hClYo4 0zy6BPIxVtVsQ1m+teTJ9oGNER781qDiDP58DLjs1CLlww83r4TKLXCl5Y/SG2lr wOSavzYcdpRIDW7n1LwRxAXqbLaN4diUt/lLpl9NVIxkLOeKchIsr7CLUYfqEhPC L0VzEclpy+/Zj0ogFSM4Tmuj+JYU126SYyBfYhTR4Rkvky87Eiqljz+je8LkW5FC 7jBQNeVPk2Tc4AVFosam+z/SFj1IzflhjZ7tecmscBvm/jtpaIruSDErEG0KOkea 8Umvg0umPKALASkoxVZz5x99dehiGj57 -----END CERTIFICATE-----Generated at Sun May 11 16:59:02 2025 by rpki-client