$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: kSHa+XlRn3Chc1uEuW7YLAu+S3DfqKdKKAn6LakOh+k= Subject key identifier: C4:07:5D:99:37:EC:86:65:E7:9E:29:AA:E0:D3:6D:EF:49:86:2D:7D Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 06BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 06AC Signing time: Mon 12 May 2025 21:58:44 +0000 Manifest this update: Mon 12 May 2025 21:58:43 +0000 Manifest next update: Mon 19 May 2025 21:58:43 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: gi7yxX7UUScN1pEKUl9FdRhaFBdwFI/Hm/Frx7YUvwU=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: ZoyzDGshP3Xcoohd0LXUFxcHdBCls9Mtr+7VfTCfHng=) 3: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: atNvogMajVgrPoutiUYnbQeZE/aQ+6Wia9GfoJ31M8o=) 4: 34956990D75511EF80E68A39C4F9AE02.roa (hash: h81pLQ3f9taD4ZqBYBRt4RndKbd9f7ld0NnWuyDorBE=) 5: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: Ugt+4UcuNweFOll74GevcYAxRnvyyr25SWxXtIDRBOs=) 6: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: OJZvptd+tocMmJD9s/jElE2hQgWZLbxuwcVBqNbj/eE=) 7: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 1+LvjWYI9J8a4Eg8H2uslKbRbyLwQqWNXS1h5+rfIco=) 8: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: KBvqkQdj5OAEkzL6ogJ3+9HoBsBkMOAMwsqEyeP/iq8=) 9: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: +GfFG8a92/6/e1SPONilMIvPHcJ1t193OnonNOBg/KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: May 12 21:58:43 2025 GMT Not After : May 19 21:58:43 2025 GMT Subject: CN=68226f13-22d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:64:26:5b:08:fe:d8:5c:7b:0c:ff:dc:c0:3d: 59:67:e9:74:49:17:21:39:4a:fa:8e:3c:39:10:53: 71:ac:a6:17:21:85:40:bf:d1:80:af:cd:1f:e7:c7: 08:28:5d:3a:df:73:7d:84:5c:b9:a8:b7:16:bc:5c: b3:70:9b:74:7a:9d:40:72:5c:29:03:b5:3a:75:00: 7b:1c:9f:58:63:09:3b:a6:a3:25:dd:11:20:24:56: b8:d5:66:96:ec:9c:17:8b:94:f9:3a:5d:a5:b5:24: 08:f7:70:8e:8d:22:2e:54:41:43:e9:d9:7d:38:da: bf:2e:22:36:c3:61:28:0f:cd:49:44:eb:ba:67:04: 2e:a0:88:d9:ee:b0:30:18:93:d2:80:08:69:a3:74: 16:97:8f:f2:10:b3:ea:9f:6d:1c:46:27:b0:76:7a: fc:09:06:5e:e3:c0:5e:bd:a5:6d:d3:44:2a:4f:14: 6f:f3:8c:30:58:79:64:78:14:31:f4:d7:aa:14:d0: 81:fa:2c:60:52:ea:6a:e2:3e:c6:74:1a:9f:71:4d: 6d:d4:76:42:87:87:c3:6b:6a:26:28:f2:a6:76:94: 8a:72:3e:a1:4a:06:7f:ad:67:1c:29:2f:16:92:d0: 79:64:98:94:f8:59:71:d2:6a:23:3d:c6:1c:22:36: 3c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:07:5D:99:37:EC:86:65:E7:9E:29:AA:E0:D3:6D:EF:49:86:2D:7D X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:d6:63:44:c1:6b:4c:94:39:91:96:d6:48:91:4a:2d:d9:9d: 9f:4d:d2:b2:bb:5d:d0:2f:03:22:24:dc:3e:52:0e:4f:b1:3a: a1:48:6a:f1:63:ed:7a:ee:fe:35:83:be:09:b1:0b:ff:56:82: eb:35:25:e0:b2:15:dc:5f:12:46:cf:d9:8e:d8:f5:80:e7:0c: 94:1a:92:4e:18:31:e1:75:78:40:0b:61:54:9d:c9:4f:b7:5a: 6f:84:7a:03:d7:e8:b1:bc:a4:ab:bb:88:25:da:20:a2:f0:10: 7f:05:c4:5b:18:59:3c:7e:df:af:4d:d7:35:84:74:aa:aa:bb: ba:e9:e6:fb:a8:b8:b5:b1:4b:52:5d:9c:ee:b6:3f:90:15:91: ec:ea:df:e5:80:cd:7b:ef:91:72:f6:b4:f6:f8:ef:0d:b1:2d: 35:24:0f:2b:b8:94:cf:e3:51:67:b6:01:c9:98:25:bf:dd:b3: ad:a3:53:df:21:2a:71:d7:7d:6b:44:bf:32:65:37:cb:af:a5: 0f:af:96:4f:b0:f7:38:93:19:83:24:23:ea:e8:15:c1:5d:f2: 70:9c:d5:37:ae:26:c2:4d:8c:23:55:59:ff:c5:c8:2f:81:a4: d9:37:e5:18:31:92:a7:fd:b3:c6:0d:72:f8:13:21:60:fd:78: 49:bb:bd:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNTEyMjE1ODQzWhcNMjUwNTE5MjE1ODQzWjAYMRYwFAYD VQQDEw02ODIyNmYxMy0yMmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2QmWwj+2Fx7DP/cwD1ZZ+l0SRchOUr6jjw5EFNxrKYXIYVAv9GAr80f58cI KF0633N9hFy5qLcWvFyzcJt0ep1AclwpA7U6dQB7HJ9YYwk7pqMl3REgJFa41WaW 7JwXi5T5Ol2ltSQI93COjSIuVEFD6dl9ONq/LiI2w2EoD81JROu6ZwQuoIjZ7rAw GJPSgAhpo3QWl4/yELPqn20cRiewdnr8CQZe48BevaVt00QqTxRv84wwWHlkeBQx 9NeqFNCB+ixgUupq4j7GdBqfcU1t1HZCh4fDa2omKPKmdpSKcj6hSgZ/rWccKS8W ktB5ZJiU+Flx0mojPcYcIjY80QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQHXZk3 7IZl554pquDTbe9Jhi19MB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDW1mNEwWtMlDmRltZIkUot2Z2fTdKyu13QLwMiJNw+Ug5PsTqhSGrx Y+167v41g74JsQv/VoLrNSXgshXcXxJGz9mO2PWA5wyUGpJOGDHhdXhAC2FUnclP t1pvhHoD1+ixvKSru4gl2iCi8BB/BcRbGFk8ft+vTdc1hHSqqru66eb7qLi1sUtS XZzutj+QFZHs6t/lgM1775Fy9rT2+O8NsS01JA8ruJTP41FntgHJmCW/3bOto1Pf ISpx131rRL8yZTfLr6UPr5ZPsPc4kxmDJCPq6BXBXfJwnNU3ribCTYwjVVn/xcgv gaTZN+UYMZKn/bPGDXL4EyFg/XhJu72a -----END CERTIFICATE-----Generated at Wed May 14 06:45:20 2025 by rpki-client