$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: MimRMaI8P8QoDOEom/wxdWyZRQ27NpbPby9xNiExtYY= Subject key identifier: CD:49:77:09:5F:DD:1C:DD:A9:4A:D6:61:22:3D:3C:82:2E:B3:D2:16 Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 047F Signing time: Sat 10 May 2025 16:27:42 +0000 Manifest this update: Sat 10 May 2025 16:27:41 +0000 Manifest next update: Sat 17 May 2025 16:27:41 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: 4azHeSevLxhqQ8u6Rkt64CaCKuVl61hX3Ttg8VsqTXs=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: v+UfHJBNUMJhgU+Hq/Ni7UlIWeTPSw4kY7gKtnOeoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: May 10 16:27:41 2025 GMT Not After : May 17 16:27:41 2025 GMT Subject: CN=681f7e7e-abe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:35:f3:60:1b:17:1c:09:ca:e6:e0:23:d9:17: d9:1f:20:96:d2:c1:7f:43:11:be:27:e7:e2:09:c7: f3:8b:0c:d5:75:93:35:0f:e9:e9:e9:eb:05:c3:68: 8f:84:97:5b:a4:a2:39:f8:08:5a:d9:1d:61:3a:d7: d2:90:b0:fa:26:a3:2a:02:39:5b:d4:ef:65:38:e3: d3:de:2c:9a:85:f4:ce:fe:43:ef:bd:5e:cd:d6:89: 8f:15:ea:c9:8a:a4:85:37:05:f5:07:2d:11:8a:e6: 3f:05:a3:f8:93:40:f0:fe:60:87:b1:42:74:aa:08: 9a:ba:97:a7:b0:ad:da:b1:a7:9e:b3:3c:74:3d:f6: 62:1c:ec:5b:3a:9e:40:43:75:03:24:73:c2:7b:02: 70:05:fa:dc:1f:b2:53:4e:fd:86:a6:af:ff:d4:e7: b6:f1:b4:c1:7c:3b:5e:59:be:c3:18:0e:cc:48:20: f1:b6:56:18:18:af:ad:3e:b6:3e:d8:bf:76:86:97: ad:dc:d8:0b:e9:2f:ff:1c:55:fc:90:7c:3e:a3:0e: 95:ef:6c:c3:cb:27:f1:d0:e1:c8:13:95:b9:96:aa: 41:0e:5d:d7:3b:24:2c:3b:20:d0:0e:7a:8b:34:36: 6e:e4:7d:e8:13:d1:13:9f:a0:d5:c9:c2:dc:7d:71: fa:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:49:77:09:5F:DD:1C:DD:A9:4A:D6:61:22:3D:3C:82:2E:B3:D2:16 X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:19:6d:9b:5f:1b:12:41:f1:b9:b4:35:42:6d:e8:e9:02:7b: 5d:ae:94:1f:b9:2d:cd:8c:da:75:19:3b:2f:42:b4:16:53:8a: ea:ed:c9:55:42:d2:8b:9c:c6:95:f2:03:8c:98:77:f6:c2:7f: 45:1a:53:7c:00:06:2e:38:31:4c:f8:5e:1d:b0:57:4a:43:7f: b6:f9:d8:7f:ca:bb:25:35:8a:25:36:6b:72:75:cf:51:13:16: 46:e6:a2:35:b9:33:34:d5:5e:44:ae:79:56:99:aa:fb:9c:05: 1f:4e:9e:77:59:7f:b9:d3:0a:07:b0:eb:df:b2:68:82:34:65: 9a:c5:a9:66:91:8e:e2:67:4e:99:21:3c:90:31:34:b9:58:6d: 5f:a7:f8:be:dc:9d:91:61:2f:9c:e7:01:27:cf:94:0a:85:f5: ed:ff:30:1f:24:d7:7e:9f:2e:38:b7:71:97:35:60:d9:18:51: 4b:2a:04:9f:16:27:48:1e:a2:8e:b4:43:e9:9f:30:4e:1b:d4: 67:49:ba:2f:6e:0a:39:27:1b:07:c4:b5:c1:ad:d6:74:7d:a9: 57:dc:fc:ac:1d:9f:2e:ad:59:eb:ec:ab:7d:92:ad:b6:aa:79: ae:f7:12:b0:67:32:d7:8c:f8:64:0d:51:64:dd:42:bf:b2:5c: f5:86:54:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjUwNTEwMTYyNzQxWhcNMjUwNTE3MTYyNzQxWjAYMRYwFAYD VQQDEw02ODFmN2U3ZS1hYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTXzYBsXHAnK5uAj2RfZHyCW0sF/QxG+J+fiCcfziwzVdZM1D+np6esFw2iP hJdbpKI5+Aha2R1hOtfSkLD6JqMqAjlb1O9lOOPT3iyahfTO/kPvvV7N1omPFerJ iqSFNwX1By0RiuY/BaP4k0Dw/mCHsUJ0qgiaupensK3asaeeszx0PfZiHOxbOp5A Q3UDJHPCewJwBfrcH7JTTv2Gpq//1Oe28bTBfDteWb7DGA7MSCDxtlYYGK+tPrY+ 2L92hpet3NgL6S//HFX8kHw+ow6V72zDyyfx0OHIE5W5lqpBDl3XOyQsOyDQDnqL NDZu5H3oE9ETn6DVycLcfXH60QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1Jdwlf 3RzdqUrWYSI9PIIus9IWMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANGW2bXxsSQfG5tDVCbejpAntdrpQfuS3NjNp1GTsvQrQWU4rq7clV QtKLnMaV8gOMmHf2wn9FGlN8AAYuODFM+F4dsFdKQ3+2+dh/yrslNYolNmtydc9R ExZG5qI1uTM01V5ErnlWmar7nAUfTp53WX+50woHsOvfsmiCNGWaxalmkY7iZ06Z ITyQMTS5WG1fp/i+3J2RYS+c5wEnz5QKhfXt/zAfJNd+ny44t3GXNWDZGFFLKgSf FidIHqKOtEPpnzBOG9RnSbovbgo5JxsHxLXBrdZ0falX3PysHZ8urVnr7Kt9kq22 qnmu9xKwZzLXjPhkDVFk3UK/slz1hlTG -----END CERTIFICATE-----Generated at Sat May 10 22:11:41 2025 by rpki-client