$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: y7+alsXyqloJdL/aCdeue7+I1c+1MkOvdG0UY8qi/FA= Subject key identifier: 53:03:26:24:15:A1:67:56:19:3E:19:CE:EB:57:B7:61:A7:D4:C1:34 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 34D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 34B2 Signing time: Sun 04 May 2025 14:26:27 +0000 Manifest this update: Sun 04 May 2025 14:26:27 +0000 Manifest next update: Sun 11 May 2025 14:26:27 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: jWt0hKXtQJts6fKXMB5CeGF3wCCOendEiphqJnlEO0g=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: /HE0+/UKz944jtczmVdL8xtwz3w/VhqI3+iHS/siDT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 14:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13528 (0x34d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: May 4 14:26:27 2025 GMT Not After : May 11 14:26:27 2025 GMT Subject: CN=68177913-55a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c2:94:e4:a9:1f:e1:91:0a:b3:27:15:43:99: 7e:60:3f:0d:5f:bc:c4:98:e1:f0:56:89:39:40:84: 97:c6:02:cf:a1:1b:12:d1:1e:c5:f8:bb:e5:08:d0: a7:a8:da:c0:2a:68:46:5e:60:4f:7f:9d:52:33:1b: c4:23:93:64:d4:33:71:e6:28:2e:e6:50:90:82:06: d6:5c:c0:8d:2a:b7:a8:a7:6d:5e:e0:5a:82:5d:2c: a2:ce:98:c7:ff:4d:ab:86:6a:6d:b1:6a:4f:0f:a4: 8c:f3:48:cb:2b:57:ec:8a:9a:cc:b2:84:53:67:4d: 7d:7e:b7:b7:9c:6c:f5:6f:c7:bc:fb:74:db:86:8d: 85:69:df:9c:dc:2a:01:be:51:0c:7f:6d:19:34:d7: 72:07:c5:93:16:14:d7:85:99:e1:8a:c4:dd:8a:cf: 54:20:99:ee:91:ae:b9:8a:15:3c:8d:67:ed:9d:7c: 1a:47:8c:0e:9b:cd:3a:77:bd:be:3a:3c:0e:db:89: 81:6d:e1:63:18:15:af:9c:6c:1f:57:44:9e:88:16: 76:59:cd:73:14:6b:2f:fb:c0:80:bd:b4:7b:d6:ca: 2b:2c:ee:2b:57:3d:af:b5:53:b4:40:f2:a2:e1:5a: 81:7f:74:e5:5c:07:51:54:2d:33:1b:b1:5c:33:56: 16:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:03:26:24:15:A1:67:56:19:3E:19:CE:EB:57:B7:61:A7:D4:C1:34 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:4a:ee:89:23:89:f8:ec:d7:33:3f:c1:d3:27:a0:bb:2e:35: 44:c9:64:83:37:26:d2:26:ca:13:6b:38:0a:a1:4a:88:42:49: 11:c0:be:9f:cb:fd:46:3f:f1:eb:a7:bf:e7:3b:86:ff:87:ac: 8a:e0:f7:36:ce:72:21:04:f2:95:af:e6:21:71:cc:ef:7b:9f: d3:db:0a:bf:91:45:e8:11:83:2f:28:20:51:05:94:ce:0d:3f: a7:04:8d:6a:b6:ca:75:a8:67:7c:f1:2c:d2:60:f1:af:86:29: 1d:24:e8:65:3e:89:30:9d:54:22:74:5e:f3:df:f7:6a:ed:0a: d8:b8:92:1f:ab:3d:0d:07:e3:90:29:d1:39:6b:6d:4a:e1:1c: d8:d8:a0:f5:60:d5:77:81:59:62:8d:be:22:23:6d:12:79:ae: 63:61:74:99:1d:81:75:31:dc:5b:1c:ef:fb:f4:4b:f8:db:1e: f6:22:32:0c:1c:69:9d:e0:03:a1:cc:40:9e:ef:86:df:4c:73: d8:72:47:74:de:df:99:33:75:f1:78:75:3e:7c:be:5e:74:7c: 3a:d1:07:80:7f:f4:c9:46:62:fd:74:39:5d:a0:48:a0:e7:1a: 00:1b:cd:13:5f:5a:73:40:81:1e:6b:73:05:22:b2:7e:8f:48: bf:56:a3:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUwNTA0MTQyNjI3WhcNMjUwNTExMTQyNjI3WjAYMRYwFAYD VQQDEw02ODE3NzkxMy01NWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8KU5Kkf4ZEKsycVQ5l+YD8NX7zEmOHwVok5QISXxgLPoRsS0R7F+LvlCNCn qNrAKmhGXmBPf51SMxvEI5Nk1DNx5igu5lCQggbWXMCNKreop21e4FqCXSyizpjH /02rhmptsWpPD6SM80jLK1fsiprMsoRTZ019fre3nGz1b8e8+3Tbho2Fad+c3CoB vlEMf20ZNNdyB8WTFhTXhZnhisTdis9UIJnuka65ihU8jWftnXwaR4wOm806d72+ OjwO24mBbeFjGBWvnGwfV0SeiBZ2Wc1zFGsv+8CAvbR71sorLO4rVz2vtVO0QPKi 4VqBf3TlXAdRVC0zG7FcM1YWdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMDJiQV oWdWGT4ZzutXt2Gn1ME0MB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRSu6JI4n47NczP8HTJ6C7LjVEyWSDNybSJsoTazgKoUqIQkkRwL6f y/1GP/Hrp7/nO4b/h6yK4Pc2znIhBPKVr+Yhcczve5/T2wq/kUXoEYMvKCBRBZTO DT+nBI1qtsp1qGd88SzSYPGvhikdJOhlPokwnVQidF7z3/dq7QrYuJIfqz0NB+OQ KdE5a21K4RzY2KD1YNV3gVlijb4iI20Sea5jYXSZHYF1MdxbHO/79Ev42x72IjIM HGmd4AOhzECe74bfTHPYckd03t+ZM3XxeHU+fL5edHw60QeAf/TJRmL9dDldoEig 5xoAG80TX1pzQIEea3MFIrJ+j0i/VqMm -----END CERTIFICATE-----Generated at Mon May 5 03:20:28 2025 by rpki-client