$ rpki-client -vvf rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft File: 19wEkNjuc-uWU-jiR2_8-4l0qt8.mft (raw, json) Hash identifier: bOSiU5sJhUGyKkEwnkL/tetfH7J5OXx5y/PtwD84ScI= Subject key identifier: F7:0B:3A:A0:C8:97:DA:A5:1A:9F:A8:CA:20:3F:AE:8A:62:92:26:67 Authority key identifier: D7:DC:04:90:D8:EE:73:EB:96:53:E8:E2:47:6F:FC:FB:89:74:AA:DF Certificate issuer: /CN=A918A0B8/serialNumber=D7DC0490D8EE73EB9653E8E2476FFCFB8974AADF Certificate serial: 04A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft Manifest number: 04A3 Signing time: Sat 10 May 2025 23:31:18 +0000 Manifest this update: Sat 10 May 2025 23:31:18 +0000 Manifest next update: Sat 17 May 2025 23:31:18 +0000 Files and hashes: 1: 19wEkNjuc-uWU-jiR2_8-4l0qt8.crl (hash: BjS8ZU27pb4fsKM2P2IUaalnperFrRwZwwTRJ4SfkSw=) 2: 233E4D90309811ECAED04B4AC4F9AE02.roa (hash: mvkJO23Rhne3EOWrAQ2tX8d2RfjeSAd4lU2tWfhmNuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.crl rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1193 (0x4a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A0B8, serialNumber=D7DC0490D8EE73EB9653E8E2476FFCFB8974AADF Validity Not Before: May 10 23:31:18 2025 GMT Not After : May 17 23:31:18 2025 GMT Subject: CN=681fe1c6-c09c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ac:47:25:e0:c9:4b:cf:0d:4f:24:8d:0a:aa: 37:1c:e4:4d:34:40:24:4a:74:2a:1f:d3:7a:ea:4e: 95:42:9f:71:e6:03:ca:5c:00:63:c8:8c:c3:77:76: 74:6c:ac:75:76:b5:1f:0a:c4:b0:54:db:81:3b:ca: 42:b2:86:ca:04:2e:d3:5b:59:4f:fd:1e:5e:38:f0: ec:4d:78:1e:99:a6:aa:4c:00:06:ab:f4:8d:65:97: c1:63:5f:92:0f:b2:6f:d5:96:da:be:41:d7:be:1f: 11:84:57:3d:c2:f9:5d:07:0d:a1:5b:57:f1:2a:aa: e4:e4:80:e1:c4:fa:eb:a7:be:c9:cc:0a:69:a8:71: 23:00:f5:87:18:72:bb:fd:9e:b6:0a:6a:a7:63:96: dd:17:cc:04:40:2f:b7:fb:6a:b9:47:94:f8:15:4f: 8b:e9:9d:52:91:5d:19:e0:b9:aa:1a:86:fb:d1:39: c7:81:2e:3d:2e:09:54:95:88:8c:88:f1:12:21:ff: ad:1a:a4:aa:e9:b9:30:68:bd:6b:11:7d:ec:76:42: 8f:ef:14:a0:90:1b:6c:7f:74:3c:98:d2:a6:c3:10: 37:b7:ec:f7:02:d4:eb:e3:04:04:5b:75:b0:98:ad: cd:00:90:3c:8d:a5:59:96:4a:1c:ff:e1:cb:c5:cf: 38:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:0B:3A:A0:C8:97:DA:A5:1A:9F:A8:CA:20:3F:AE:8A:62:92:26:67 X509v3 Authority Key Identifier: keyid:D7:DC:04:90:D8:EE:73:EB:96:53:E8:E2:47:6F:FC:FB:89:74:AA:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:d3:a1:61:7e:0a:03:bc:87:71:95:3b:49:ed:20:9c:3e:2b: 98:d4:8a:9c:46:c4:c6:27:d0:da:a8:e0:29:0b:cd:b2:4a:a8: 63:05:ad:63:ce:1b:4b:59:85:35:db:61:34:00:fd:bb:75:44: 7a:f8:b2:d4:bf:57:2e:94:d6:ac:8b:20:ae:1e:28:e1:35:23: 26:f2:97:a7:8c:9f:4d:06:75:55:b0:b1:21:9f:98:13:74:f6: c9:c3:e0:a6:e5:6e:2f:b5:2a:13:ab:72:2f:44:95:d9:7f:8d: fe:58:4b:e6:6a:2a:2d:d0:a7:c2:23:1e:7b:ef:ed:10:fb:40: c4:02:8c:a8:c8:d4:df:45:e5:00:88:b0:3c:cc:49:03:ba:d8: da:71:cf:64:54:ca:ff:d9:45:8a:8d:38:17:1f:49:a3:4f:99: c6:be:b3:d5:91:9e:94:dd:d3:50:e3:68:0b:c6:4a:1c:f0:f3: 02:2a:2a:93:75:68:ae:c3:f4:52:8c:36:33:e5:60:de:e0:af: bd:66:70:1f:fc:ce:82:8c:17:31:c3:3c:cd:61:ba:0d:fd:86: fb:88:96:b7:cf:6c:33:0f:17:60:17:be:67:ef:b7:32:e4:4e: b3:8e:77:b6:7e:9a:4d:4f:7b:83:49:99:b0:7e:11:05:c8:59: d7:0b:ae:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwQjgxMTAvBgNVBAUTKEQ3REMwNDkwRDhFRTczRUI5NjUzRThFMjQ3NkZGQ0ZC ODk3NEFBREYwHhcNMjUwNTEwMjMzMTE4WhcNMjUwNTE3MjMzMTE4WjAYMRYwFAYD VQQDEw02ODFmZTFjNi1jMDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaxHJeDJS88NTySNCqo3HORNNEAkSnQqH9N66k6VQp9x5gPKXABjyIzDd3Z0 bKx1drUfCsSwVNuBO8pCsobKBC7TW1lP/R5eOPDsTXgemaaqTAAGq/SNZZfBY1+S D7Jv1ZbavkHXvh8RhFc9wvldBw2hW1fxKqrk5IDhxPrrp77JzAppqHEjAPWHGHK7 /Z62CmqnY5bdF8wEQC+3+2q5R5T4FU+L6Z1SkV0Z4LmqGob70TnHgS49LglUlYiM iPESIf+tGqSq6bkwaL1rEX3sdkKP7xSgkBtsf3Q8mNKmwxA3t+z3AtTr4wQEW3Ww mK3NAJA8jaVZlkoc/+HLxc84swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcLOqDI l9qlGp+oyiA/ropikiZnMB8GA1UdIwQYMBaAFNfcBJDY7nPrllPo4kdv/PuJdKrf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTBCOC8xN0RFRkYxNDJG RjYxMUVDOTA0N0EyNDNDNEY5QUUwMi8xOXdFa05qdWMtdVdVLWppUjJfOC00bDBx dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE5d0VrTmp1Yy11V1UtamlSMl84LTRsMHF0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTBCOC8xN0RFRkYxNDJGRjYxMUVDOTA0N0EyNDNDNEY5QUUwMi8xOXdFa05qdWMt dVdVLWppUjJfOC00bDBxdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC706FhfgoDvIdxlTtJ7SCcPiuY1IqcRsTGJ9DaqOApC82ySqhjBa1j zhtLWYU122E0AP27dUR6+LLUv1culNasiyCuHijhNSMm8penjJ9NBnVVsLEhn5gT dPbJw+Cm5W4vtSoTq3IvRJXZf43+WEvmaiot0KfCIx577+0Q+0DEAoyoyNTfReUA iLA8zEkDutjacc9kVMr/2UWKjTgXH0mjT5nGvrPVkZ6U3dNQ42gLxkoc8PMCKiqT dWiuw/RSjDYz5WDe4K+9ZnAf/M6CjBcxwzzNYboN/Yb7iJa3z2wzDxdgF75n77cy 5E6zjne2fppNT3uDSZmwfhEFyFnXC66z -----END CERTIFICATE-----Generated at Mon May 12 15:54:33 2025 by rpki-client