$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: x2h2DPLLKeePYbecOKLom5iXUP50b0UONXCQTCD5mYU= Subject key identifier: 4A:22:52:3F:8B:BB:FB:8E:61:7F:F2:00:80:76:7B:39:11:CF:D5:53 Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 03E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 03DF Signing time: Tue 13 May 2025 00:21:43 +0000 Manifest this update: Tue 13 May 2025 00:21:42 +0000 Manifest next update: Tue 20 May 2025 00:21:42 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: ZAXHloJQNofGzIKcq/FiWZps6CgxhHP5lAvPqcGBcF0=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: May 13 00:21:42 2025 GMT Not After : May 20 00:21:42 2025 GMT Subject: CN=68229097-ad24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bd:64:0f:15:4c:71:61:79:fd:03:40:3b:f6: 54:4a:d5:25:86:65:cb:40:b7:de:0b:92:40:74:a0: 9e:ad:ba:80:72:fa:a6:b8:a1:84:6a:4f:cb:68:21: f0:70:8f:e1:96:46:8a:f4:61:fc:0f:c8:c8:20:3f: 11:b4:14:fc:fa:80:10:be:02:19:ff:cd:0b:39:61: 7d:ce:a6:fe:04:75:53:a5:a1:1c:f4:c3:79:26:04: 8f:a7:ef:c2:63:d1:1f:5e:ec:ea:c6:67:90:3a:ab: 92:90:be:a6:75:8a:6e:54:20:86:ee:74:f1:f0:9c: 8e:ae:73:70:cb:1e:22:35:33:9c:d9:c5:8a:14:a0: 4c:62:88:23:f8:04:91:55:1a:ea:0e:ff:7e:e8:5a: d6:cc:e0:32:ea:4f:47:1b:24:57:c7:89:d4:80:cb: cf:f7:62:03:fc:45:fd:62:a4:fb:93:27:3b:b9:45: a9:ef:26:cf:27:15:ff:fb:f2:b7:1a:fd:24:67:0d: d1:61:a6:2e:6b:14:35:53:85:77:31:20:ba:65:d0: 0a:cd:fb:1b:89:63:29:89:eb:99:0f:4d:51:1d:40: ce:4d:94:84:a2:0e:e4:46:c1:31:12:da:9b:da:a9: cb:2e:9c:97:2b:56:08:6e:d7:83:31:e8:4d:e8:b2: ab:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:22:52:3F:8B:BB:FB:8E:61:7F:F2:00:80:76:7B:39:11:CF:D5:53 X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:80:f2:46:4f:52:aa:ae:41:07:cc:81:b7:a3:e5:70:f0:2e: 04:f8:1d:41:48:4c:fe:24:8e:b3:82:2e:53:9d:eb:54:50:7f: 76:76:68:c4:ce:f9:16:91:25:bc:ea:da:9c:f3:5a:01:d9:21: e5:ae:f2:b7:4f:08:99:ce:f1:31:f1:5f:d5:6c:b3:72:ee:42: aa:c8:72:20:1c:e1:4e:c2:71:db:b0:31:72:5d:81:1b:be:6c: c4:e2:ed:a6:c1:80:fc:98:76:bb:e4:f0:11:43:8a:1f:47:fe: 14:57:99:97:2f:91:73:07:8e:2e:57:28:1a:3a:3a:92:a7:dc: fd:28:b8:6a:a1:46:de:dd:39:26:25:fc:c9:b9:fb:c6:7f:26: d0:37:88:40:5e:45:ba:1f:0d:8f:36:df:9d:3d:20:2f:a2:3f: cb:0b:ff:6f:d8:79:a7:37:7a:05:e7:43:d8:5c:87:85:ff:64: 69:7b:d4:3d:48:c8:08:a1:94:c1:9a:ee:54:05:46:95:f5:53: 75:44:8e:91:fa:36:3b:9e:d7:77:76:76:9f:e1:c0:c9:8b:98: 16:65:31:36:0f:9f:fe:da:b6:0f:09:53:da:6b:db:c8:63:a8: 66:24:66:ff:f7:52:24:40:da:6c:c9:1c:a2:15:68:0b:a6:20: 1e:e1:66:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUwNTEzMDAyMTQyWhcNMjUwNTIwMDAyMTQyWjAYMRYwFAYD VQQDEw02ODIyOTA5Ny1hZDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsL1kDxVMcWF5/QNAO/ZUStUlhmXLQLfeC5JAdKCerbqAcvqmuKGEak/LaCHw cI/hlkaK9GH8D8jIID8RtBT8+oAQvgIZ/80LOWF9zqb+BHVTpaEc9MN5JgSPp+/C Y9EfXuzqxmeQOquSkL6mdYpuVCCG7nTx8JyOrnNwyx4iNTOc2cWKFKBMYogj+ASR VRrqDv9+6FrWzOAy6k9HGyRXx4nUgMvP92ID/EX9YqT7kyc7uUWp7ybPJxX/+/K3 Gv0kZw3RYaYuaxQ1U4V3MSC6ZdAKzfsbiWMpieuZD01RHUDOTZSEog7kRsExEtqb 2qnLLpyXK1YIbteDMehN6LKrPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoiUj+L u/uOYX/yAIB2ezkRz9VTMB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIgPJGT1KqrkEHzIG3o+Vw8C4E+B1BSEz+JI6zgi5TnetUUH92dmjE zvkWkSW86tqc81oB2SHlrvK3TwiZzvEx8V/VbLNy7kKqyHIgHOFOwnHbsDFyXYEb vmzE4u2mwYD8mHa75PARQ4ofR/4UV5mXL5FzB44uVygaOjqSp9z9KLhqoUbe3Tkm JfzJufvGfybQN4hAXkW6Hw2PNt+dPSAvoj/LC/9v2HmnN3oF50PYXIeF/2Rpe9Q9 SMgIoZTBmu5UBUaV9VN1RI6R+jY7ntd3dnaf4cDJi5gWZTE2D5/+2rYPCVPaa9vI Y6hmJGb/91IkQNpsyRyiFWgLpiAe4Wbb -----END CERTIFICATE-----Generated at Tue May 13 22:02:39 2025 by rpki-client