$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: rKtbFnPlT+lrcwz4aHR40bJCsEZM7XOXQobB4VlDJqc= Subject key identifier: B1:5B:BD:A7:A4:5B:C3:7E:CA:2C:47:0D:A0:A5:1D:3B:2A:D7:8F:4C Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 347A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 347A Signing time: Sat 10 May 2025 14:56:45 +0000 Manifest this update: Sat 10 May 2025 14:56:44 +0000 Manifest next update: Sat 17 May 2025 14:56:44 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: wIYiTyR5Qg8oMq0fhBme0dZYWme2eFJRlondPIYPWEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13434 (0x347a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: May 10 14:56:44 2025 GMT Not After : May 17 14:56:44 2025 GMT Subject: CN=681f692d-34fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:75:92:a9:17:29:5d:a5:fa:cd:99:96:d1:77: b6:06:7a:78:34:8e:90:20:ea:34:f6:58:87:c0:32: b4:90:20:c6:0e:b7:8f:c4:8c:3c:a3:e9:0d:32:6d: 6c:3c:04:c1:0f:a4:bc:c5:8a:6a:3c:b8:34:9b:1a: 52:5e:8c:fc:9c:20:08:ac:21:0f:ed:e9:a6:97:45: 72:da:40:c4:5f:87:64:25:20:c4:60:83:bf:f0:09: 22:ad:79:34:23:37:c1:68:18:a9:0f:42:2e:31:4a: 5c:16:95:e1:98:83:19:b4:7c:3d:83:6a:3e:e0:ee: 79:20:fb:b5:e4:6c:dc:78:36:21:4c:af:65:c4:1f: 1a:0d:84:c8:8b:1f:d5:e2:81:ab:54:77:24:89:69: 7a:65:87:dd:00:a2:85:51:a9:38:ac:c3:33:08:c9: 8a:9e:2b:e4:4e:84:5b:10:66:48:c3:df:30:73:1c: 3a:ed:f2:47:3c:f2:50:c8:52:1a:a3:8f:ad:6d:5a: 5f:f6:84:58:d8:de:68:e1:28:0d:02:86:4d:3d:0d: 29:a8:7d:89:45:c1:61:a6:a4:4c:41:43:f5:a6:f6: 9d:41:44:86:7c:6b:15:19:71:9b:80:10:45:16:63: 2b:3d:bd:23:1e:c0:c8:93:40:ae:8e:d2:00:45:9b: c5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5B:BD:A7:A4:5B:C3:7E:CA:2C:47:0D:A0:A5:1D:3B:2A:D7:8F:4C X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:7c:26:9f:16:c4:55:98:cf:a7:f6:f7:c8:c6:80:a9:a9:a6: 80:82:38:8e:55:ed:b4:c1:a1:69:a0:ca:12:e9:97:67:5a:0c: dd:15:15:3f:34:0f:42:c9:18:2d:0a:30:d4:57:bc:7f:3c:7d: 39:b1:98:9a:1b:1f:e5:a7:72:4a:3f:46:26:79:a4:96:ad:8c: 7c:76:cc:13:0a:f3:eb:87:25:b5:22:4d:f3:54:58:95:ca:97: 10:f6:d8:c9:a8:66:e7:be:af:fc:6d:bd:4e:52:66:4a:78:0d: 44:86:b5:00:b8:b7:62:48:10:ef:a7:be:15:37:9d:05:6d:73: 8e:cf:fb:5d:ab:8e:b9:2a:91:2f:e7:2b:1f:10:5c:96:73:a2: 66:c9:3f:d5:fa:62:94:ac:3b:7d:35:4d:1b:86:75:f8:92:3a: 7f:e6:e5:de:2f:90:fb:23:76:23:b5:5d:be:d4:7d:a5:af:2d: 18:17:7c:f8:65:5e:6a:bb:21:5c:2e:08:ac:b3:92:6f:ff:4b: 3d:8e:33:ec:57:d6:25:b3:fc:da:8d:f5:b4:f5:94:3e:af:a5: 7f:b4:f5:a7:53:3f:c8:69:e0:7d:ff:70:b5:06:08:00:cc:c3: 32:bf:25:d6:02:83:1e:5b:10:d0:3c:69:11:ea:25:1a:bf:01: 29:65:b3:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUwNTEwMTQ1NjQ0WhcNMjUwNTE3MTQ1NjQ0WjAYMRYwFAYD VQQDEw02ODFmNjkyZC0zNGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3WSqRcpXaX6zZmW0Xe2Bnp4NI6QIOo09liHwDK0kCDGDrePxIw8o+kNMm1s PATBD6S8xYpqPLg0mxpSXoz8nCAIrCEP7emml0Vy2kDEX4dkJSDEYIO/8AkirXk0 IzfBaBipD0IuMUpcFpXhmIMZtHw9g2o+4O55IPu15GzceDYhTK9lxB8aDYTIix/V 4oGrVHckiWl6ZYfdAKKFUak4rMMzCMmKnivkToRbEGZIw98wcxw67fJHPPJQyFIa o4+tbVpf9oRY2N5o4SgNAoZNPQ0pqH2JRcFhpqRMQUP1pvadQUSGfGsVGXGbgBBF FmMrPb0jHsDIk0CujtIARZvFrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFbvaek W8N+yixHDaClHTsq149MMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwfCafFsRVmM+n9vfIxoCpqaaAgjiOVe20waFpoMoS6ZdnWgzdFRU/ NA9CyRgtCjDUV7x/PH05sZiaGx/lp3JKP0YmeaSWrYx8dswTCvPrhyW1Ik3zVFiV ypcQ9tjJqGbnvq/8bb1OUmZKeA1EhrUAuLdiSBDvp74VN50FbXOOz/tdq465KpEv 5ysfEFyWc6JmyT/V+mKUrDt9NU0bhnX4kjp/5uXeL5D7I3YjtV2+1H2lry0YF3z4 ZV5quyFcLgiss5Jv/0s9jjPsV9Yls/zajfW09ZQ+r6V/tPWnUz/IaeB9/3C1BggA zMMyvyXWAoMeWxDQPGkR6iUavwEpZbPq -----END CERTIFICATE-----Generated at Sat May 10 16:37:08 2025 by rpki-client