$ rpki-client -vvf rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft File: -r3gfSxVjb3PPDIAdre1X9-gR0A.mft (raw, json) Hash identifier: jKZClLXrtF+LLNfYyFYmCAkfQOPp2IsG9BFANc2ZPxo= Subject key identifier: 0D:8A:30:D6:94:66:C2:39:7F:A3:8D:21:BC:5F:6C:C4:19:7E:88:5A Authority key identifier: FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 Certificate issuer: /CN=A918143E/serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Certificate serial: 09EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft Manifest number: 09E8 Signing time: Wed 14 May 2025 20:01:03 +0000 Manifest this update: Wed 14 May 2025 20:01:02 +0000 Manifest next update: Wed 21 May 2025 20:01:02 +0000 Files and hashes: 1: -r3gfSxVjb3PPDIAdre1X9-gR0A.crl (hash: 47bJhZPVw3++36vOS+0iyyCKZmtNDEt6XV3vUs3lXZc=) 2: 7E4ED0E4798B11EA90252969C4F9AE02.roa (hash: zi/2a7j2lYedIWZB1ZQVEfFe/URKlsQ3C6l5x+UUMmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2543 (0x9ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918143E, serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Validity Not Before: May 14 20:01:02 2025 GMT Not After : May 21 20:01:02 2025 GMT Subject: CN=6824f67f-4593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d6:70:cf:e8:5b:0d:70:67:33:fa:6e:c8:68: 53:76:d3:eb:7d:1c:44:dc:46:85:0d:72:e3:10:95: 9b:fd:98:9b:78:e3:0d:64:ce:d5:29:fd:2b:cf:19: 50:0c:61:61:a8:29:c2:be:93:f8:ef:5b:b2:4a:f1: ee:b6:e4:0c:e7:5d:6a:67:51:89:88:7d:fe:54:7c: 71:63:a5:22:31:ae:c1:90:9c:d8:5d:a9:f7:14:22: 5c:c3:58:ee:c6:e9:cc:3a:60:42:19:fb:c5:d7:90: 36:d4:19:20:2b:a8:41:d4:27:c2:11:50:f7:10:d3: 09:11:35:5a:96:73:ba:d1:fa:76:12:47:16:34:3b: d2:7b:ab:7d:6c:f0:0d:4e:82:c8:a7:0c:d0:2d:6e: 93:d1:71:83:53:41:17:de:ea:c0:b5:5a:57:cc:62: df:46:48:61:9d:bf:d3:23:56:c9:72:b1:ae:58:5d: ae:6e:69:28:8a:39:02:f3:5b:e3:ba:1a:ca:94:ce: ae:fa:2d:2a:26:00:f2:a4:25:38:e9:d7:fd:1e:e9: 0b:f2:14:00:f7:cd:9a:10:00:ee:a4:20:41:b9:26: f6:d0:45:e4:80:2a:fb:e9:e0:d6:10:0d:fd:79:c0: 72:bf:8d:b2:b3:5f:82:6e:7e:87:f3:88:a1:1e:5f: 82:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8A:30:D6:94:66:C2:39:7F:A3:8D:21:BC:5F:6C:C4:19:7E:88:5A X509v3 Authority Key Identifier: keyid:FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:01:bd:e1:6c:1b:b1:f5:93:98:4d:6a:e4:3d:34:6e:8b:c8: 19:84:7d:de:68:be:e6:38:fc:64:7d:53:63:ee:a5:6c:ba:4c: 32:b2:0e:d7:75:30:2f:02:6b:b2:77:db:b1:c9:3b:84:9b:fa: 80:af:51:c7:04:9b:da:0b:d6:43:19:b1:d6:62:dc:35:36:ef: 1f:b6:34:60:b9:b7:01:23:4c:20:eb:a6:a2:2f:df:fb:99:0d: b7:dd:ae:13:d5:53:7e:b7:94:93:0f:29:e0:bb:ca:a5:f0:4e: 04:29:2b:89:a5:53:6a:b1:13:78:49:ed:fd:57:19:00:37:60: a8:80:62:7d:de:01:d7:71:be:1e:4e:87:ba:56:43:47:8e:4d: a7:e4:5f:ce:c2:4d:d5:b9:2d:4c:52:7c:b0:7b:19:b0:10:8e: 79:35:77:a6:a0:4b:05:b5:74:1d:07:2c:e2:b4:91:04:9d:94: f6:f2:aa:df:91:89:b9:ea:4a:6d:b5:62:7a:f1:b2:30:6d:63: c5:cd:0e:b3:17:1c:96:67:fd:32:22:51:6e:48:cd:3a:6c:ad: ef:b7:aa:d8:6a:cf:22:82:7c:7b:f0:c2:de:38:25:5b:73:1b: 17:f1:96:56:cb:22:cf:2c:dd:47:d0:68:ff:48:34:77:e5:72: 51:14:ad:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0M0UxMTAvBgNVBAUTKEZBQkRFMDdEMkM1NThEQkRDRjNDMzIwMDc2QjdCNTVG REZBMDQ3NDAwHhcNMjUwNTE0MjAwMTAyWhcNMjUwNTIxMjAwMTAyWjAYMRYwFAYD VQQDEw02ODI0ZjY3Zi00NTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NZwz+hbDXBnM/puyGhTdtPrfRxE3EaFDXLjEJWb/ZibeOMNZM7VKf0rzxlQ DGFhqCnCvpP471uySvHutuQM511qZ1GJiH3+VHxxY6UiMa7BkJzYXan3FCJcw1ju xunMOmBCGfvF15A21BkgK6hB1CfCEVD3ENMJETValnO60fp2EkcWNDvSe6t9bPAN ToLIpwzQLW6T0XGDU0EX3urAtVpXzGLfRkhhnb/TI1bJcrGuWF2ubmkoijkC81vj uhrKlM6u+i0qJgDypCU46df9HukL8hQA982aEADupCBBuSb20EXkgCr76eDWEA39 ecByv42ys1+Cbn6H84ihHl+CNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2KMNaU ZsI5f6ONIbxfbMQZfohaMB8GA1UdIwQYMBaAFPq94H0sVY29zzwyAHa3tV/foEdA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTQzRS9BM0MwN0I4Njc5 ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4VmpiM1BQRElBZHJlMVg5LWdS MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1yM2dmU3hWamIzUFBESUFkcmUxWDktZ1IwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTQzRS9BM0MwN0I4Njc5ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4Vmpi M1BQRElBZHJlMVg5LWdSMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhAb3hbBux9ZOYTWrkPTRui8gZhH3eaL7mOPxkfVNj7qVsukwysg7X dTAvAmuyd9uxyTuEm/qAr1HHBJvaC9ZDGbHWYtw1Nu8ftjRgubcBI0wg66aiL9/7 mQ233a4T1VN+t5STDyngu8ql8E4EKSuJpVNqsRN4Se39VxkAN2CogGJ93gHXcb4e Toe6VkNHjk2n5F/Owk3VuS1MUnywexmwEI55NXemoEsFtXQdByzitJEEnZT28qrf kYm56kpttWJ68bIwbWPFzQ6zFxyWZ/0yIlFuSM06bK3vt6rYas8ignx78MLeOCVb cxsX8ZZWyyLPLN1H0Gj/SDR35XJRFK17 -----END CERTIFICATE-----Generated at Thu May 15 22:36:25 2025 by rpki-client