$ rpki-client -vvf rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.mft File: r1E53KFl4oTVSmzvYft6CRaJGw8.mft (raw, json) Hash identifier: OCNaD8RfxOYsY2xNIRF8YrUo08Om8qFc0VXxHsK6tjg= Subject key identifier: 2B:24:70:52:F3:A0:7F:FB:9B:1D:5C:66:BE:31:76:E4:AC:09:C2:66 Authority key identifier: AF:51:39:DC:A1:65:E2:84:D5:4A:6C:EF:61:FB:7A:09:16:89:1B:0F Certificate issuer: /CN=A918379F/serialNumber=AF5139DCA165E284D54A6CEF61FB7A0916891B0F Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1E53KFl4oTVSmzvYft6CRaJGw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.mft Manifest number: 01ED Signing time: Thu 15 May 2025 02:04:20 +0000 Manifest this update: Thu 15 May 2025 02:04:20 +0000 Manifest next update: Thu 22 May 2025 02:04:20 +0000 Files and hashes: 1: r1E53KFl4oTVSmzvYft6CRaJGw8.crl (hash: urAqJOTgDnnTiN8JYLpMe53EYFdJavttkXoI/fnk2EY=) 2: 0B237586453311ED9A3F7844C4F9AE02.roa (hash: mEyvOlDX3kJHouKS9DLhCAJ43welizBv5m5kUTWRzII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.crl rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1E53KFl4oTVSmzvYft6CRaJGw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918379F, serialNumber=AF5139DCA165E284D54A6CEF61FB7A0916891B0F Validity Not Before: May 15 02:04:20 2025 GMT Not After : May 22 02:04:20 2025 GMT Subject: CN=68254ba4-4cbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a4:70:6a:07:01:d8:7c:f2:29:5f:a1:0a:ed: 64:19:fa:31:ef:9d:04:9c:32:6a:97:2b:b2:24:55: 63:cd:82:db:2f:87:e0:10:cc:ef:b5:71:86:d7:64: f4:53:55:7a:e0:05:f8:14:be:3c:27:25:1f:99:7a: 77:1c:78:13:e3:07:15:82:1a:27:0c:82:27:c1:27: c1:7d:15:21:ef:26:ef:8b:48:61:e5:9b:95:14:b3: 26:c9:57:54:e4:39:b2:ae:bd:a3:de:b3:fe:e4:59: e2:d1:be:8d:35:de:e5:2b:dd:1c:05:8d:52:ee:f5: ae:47:60:53:db:08:92:e5:a8:e8:63:30:3d:b1:40: a5:d5:63:98:4f:15:4e:b4:b9:49:5e:39:96:80:54: d0:28:47:3a:f3:f1:52:45:22:a3:87:36:08:ba:d2: 4b:29:ac:cb:b6:67:97:42:19:bc:09:87:11:0a:3a: 4b:04:7d:25:63:c3:ec:c8:a3:a1:03:b0:76:49:28: 3f:f7:65:b0:ea:ae:ba:44:33:3f:95:2a:c6:a8:c3: f7:7b:cd:ec:cc:f5:fe:f4:b9:7c:cc:5a:23:30:03: 43:63:c0:97:e2:eb:1c:97:fb:8e:54:20:ec:f1:2b: 26:32:e1:5a:89:88:7e:c6:97:56:d8:8f:6f:0b:91: 15:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:24:70:52:F3:A0:7F:FB:9B:1D:5C:66:BE:31:76:E4:AC:09:C2:66 X509v3 Authority Key Identifier: keyid:AF:51:39:DC:A1:65:E2:84:D5:4A:6C:EF:61:FB:7A:09:16:89:1B:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1E53KFl4oTVSmzvYft6CRaJGw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d0:cb:b3:a0:15:97:55:46:26:fb:de:dd:12:9c:55:1e:98: ee:4e:f3:47:63:60:4c:7e:56:dd:d0:29:7a:a5:4e:37:a7:b2: 3d:2a:ba:67:83:17:9c:cc:49:32:ea:af:b5:ba:42:c2:5b:e2: 61:f5:cb:f7:9a:98:bd:25:a1:3a:2f:c4:a0:6a:6e:02:de:bd: c8:d0:2f:46:e4:38:e4:f0:fa:eb:a5:ae:2c:4a:ef:f3:e5:fe: f0:b9:10:4d:4a:80:3d:13:b3:6b:60:f9:70:7f:b2:39:a7:1c: 6c:a7:eb:a4:00:16:37:98:62:22:d2:c9:69:fb:4a:9a:b7:be: c0:f8:04:5c:24:35:f6:65:a1:71:71:21:a9:be:69:35:c4:67: b1:27:05:cf:b6:54:3d:75:47:48:3f:8e:d3:4c:c6:9c:c6:99: 87:0b:42:9a:63:a4:41:73:a7:83:7c:bb:b9:d9:06:55:0d:ee: 8b:6d:09:a6:2d:f5:24:f9:8c:65:aa:25:27:de:21:e6:62:61: 33:01:ae:a4:4a:ee:15:bc:ad:9f:d5:d2:44:2c:67:6b:81:95: fe:83:9d:ff:42:bf:5f:af:c3:0f:a9:ff:7a:9d:8a:f9:43:b9: 98:d0:f6:30:d7:bc:f4:c6:b8:e8:e3:f7:73:eb:0b:d6:ee:55: c4:54:43:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3OUYxMTAvBgNVBAUTKEFGNTEzOURDQTE2NUUyODRENTRBNkNFRjYxRkI3QTA5 MTY4OTFCMEYwHhcNMjUwNTE1MDIwNDIwWhcNMjUwNTIyMDIwNDIwWjAYMRYwFAYD VQQDEw02ODI1NGJhNC00Y2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKRwagcB2HzyKV+hCu1kGfox750EnDJqlyuyJFVjzYLbL4fgEMzvtXGG12T0 U1V64AX4FL48JyUfmXp3HHgT4wcVghonDIInwSfBfRUh7ybvi0hh5ZuVFLMmyVdU 5Dmyrr2j3rP+5Fni0b6NNd7lK90cBY1S7vWuR2BT2wiS5ajoYzA9sUCl1WOYTxVO tLlJXjmWgFTQKEc68/FSRSKjhzYIutJLKazLtmeXQhm8CYcRCjpLBH0lY8PsyKOh A7B2SSg/92Ww6q66RDM/lSrGqMP3e83szPX+9Ll8zFojMANDY8CX4uscl/uOVCDs 8SsmMuFaiYh+xpdW2I9vC5EVaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCskcFLz oH/7mx1cZr4xduSsCcJmMB8GA1UdIwQYMBaAFK9ROdyhZeKE1Ups72H7egkWiRsP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc5Ri83NUNFMjcyODQy MTMxMUVEQkUwMTQzMjFDNEY5QUUwMi9yMUU1M0tGbDRvVFZTbXp2WWZ0NkNSYUpH dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IxRTUzS0ZsNG9UVlNtenZZZnQ2Q1JhSkd3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc5Ri83NUNFMjcyODQyMTMxMUVEQkUwMTQzMjFDNEY5QUUwMi9yMUU1M0tGbDRv VFZTbXp2WWZ0NkNSYUpHdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC0MuzoBWXVUYm+97dEpxVHpjuTvNHY2BMflbd0Cl6pU43p7I9Krpn gxeczEky6q+1ukLCW+Jh9cv3mpi9JaE6L8Sgam4C3r3I0C9G5Djk8Prrpa4sSu/z 5f7wuRBNSoA9E7NrYPlwf7I5pxxsp+ukABY3mGIi0slp+0qat77A+ARcJDX2ZaFx cSGpvmk1xGexJwXPtlQ9dUdIP47TTMacxpmHC0KaY6RBc6eDfLu52QZVDe6LbQmm LfUk+YxlqiUn3iHmYmEzAa6kSu4VvK2f1dJELGdrgZX+g53/Qr9fr8MPqf96nYr5 Q7mY0PYw17z0xrjo4/dz6wvW7lXEVEPn -----END CERTIFICATE-----Generated at Fri May 16 09:42:11 2025 by rpki-client