$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: u6K3jftpFL5tHVf7DmkE2g4h6UZOCfIMH+jQ71YpDWQ= Subject key identifier: 69:FC:FB:67:AD:34:08:66:C6:9A:C3:0A:DC:EB:9E:CB:FE:F0:AE:F6 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 030D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 0308 Signing time: Fri 09 May 2025 01:00:41 +0000 Manifest this update: Fri 09 May 2025 01:00:41 +0000 Manifest next update: Fri 16 May 2025 01:00:41 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: fIVd5Fbd07+Wh7Tw0UxKcom/4InUZDm2fWEbh3NrsAc=) 2: 756558C6D19611ECB75A996BC4F9AE02.roa (hash: jBN+GZ5K5hQcx74ci+Zj74gtJO93V93U4mPbsdd8SsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 01:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: May 9 01:00:41 2025 GMT Not After : May 16 01:00:41 2025 GMT Subject: CN=681d53b9-fe18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ed:b2:97:af:54:dc:aa:e3:c2:f6:ca:cc:2e: bb:1b:af:69:ad:dc:90:b7:c5:24:48:ad:6d:14:92: 7a:5e:7e:26:27:f0:fc:19:8a:b9:41:b0:de:62:da: 2a:20:0d:30:83:6c:be:79:44:41:69:69:d7:10:0b: d1:ad:9f:32:e5:b8:be:29:e2:8f:f2:de:94:0b:dd: 4b:1f:ce:60:75:f6:79:c4:cd:d0:ad:50:a6:93:c2: ac:ca:6a:e7:ff:22:37:23:28:91:e7:fd:b2:dc:1d: 34:24:30:04:08:65:6b:3a:32:9d:ed:e2:1f:1a:51: 83:07:64:54:fb:42:a4:c0:c1:80:c9:7a:63:f8:ab: 83:a7:47:80:ad:fd:be:73:0a:a8:56:75:55:5e:f6: 8b:ae:6d:2f:12:3d:37:05:de:5c:ba:e3:f3:11:94: 2e:65:75:89:2a:5b:21:44:c7:d8:68:ea:90:c3:bc: 9c:21:c9:10:ee:6e:23:15:a4:63:d2:d6:0a:bc:d5: 61:35:98:09:54:56:9a:c9:c8:85:1a:a9:05:9f:78: 6f:f7:29:33:19:9c:75:42:1e:b8:31:bc:a3:d9:09: af:fd:60:ae:ab:93:79:3e:dd:b8:d5:53:84:ff:99: bc:05:1c:0f:44:fc:ce:99:b5:a8:33:25:2b:bb:75: 30:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:FC:FB:67:AD:34:08:66:C6:9A:C3:0A:DC:EB:9E:CB:FE:F0:AE:F6 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:c3:f4:bb:87:cf:79:65:a4:b5:e4:de:32:5f:d4:93:49:3b: 22:1e:ca:b1:0c:ad:87:55:9c:20:d5:f0:28:b2:52:63:de:1e: 98:df:f5:18:bb:07:58:5e:c0:99:4a:f8:c1:f2:ca:63:10:63: 58:84:41:a1:dc:d3:37:5a:88:cf:90:fc:7d:15:c2:99:ba:a3: a0:c7:d6:b7:90:32:fb:f7:0a:1e:8a:4c:c6:8e:2a:af:95:d8: af:d5:5c:0e:f7:4d:ae:c3:f2:60:43:28:3a:66:cd:d0:e6:3d: a2:d0:d1:66:a8:a2:17:81:a9:c4:0d:00:27:ff:c3:03:9e:93: 07:b4:a4:fe:ec:c3:1a:89:64:ac:b7:9c:0e:7c:b0:2c:a1:29: 21:26:f2:b1:34:d7:95:d9:34:24:9f:b5:fa:22:0c:1a:40:e3: d6:27:ec:c9:a3:a6:92:a9:09:71:09:4a:4b:1b:83:2d:80:98: 94:3e:57:4d:4f:0b:94:54:81:0a:18:56:c5:7f:34:39:85:61: b0:9d:e6:70:c6:a0:cc:05:01:5b:07:bc:3a:cc:d2:53:4e:f9: ad:d9:ca:10:9b:ff:1e:3c:2a:97:87:e8:d8:04:ac:6c:d6:cc: 10:96:88:a5:89:13:14:1b:63:6e:e2:bb:4d:7b:fc:73:a4:83: 17:f6:28:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUwNTA5MDEwMDQxWhcNMjUwNTE2MDEwMDQxWjAYMRYwFAYD VQQDEw02ODFkNTNiOS1mZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8e2yl69U3KrjwvbKzC67G69prdyQt8UkSK1tFJJ6Xn4mJ/D8GYq5QbDeYtoq IA0wg2y+eURBaWnXEAvRrZ8y5bi+KeKP8t6UC91LH85gdfZ5xM3QrVCmk8Ksymrn /yI3IyiR5/2y3B00JDAECGVrOjKd7eIfGlGDB2RU+0KkwMGAyXpj+KuDp0eArf2+ cwqoVnVVXvaLrm0vEj03Bd5cuuPzEZQuZXWJKlshRMfYaOqQw7ycIckQ7m4jFaRj 0tYKvNVhNZgJVFaayciFGqkFn3hv9ykzGZx1Qh64Mbyj2Qmv/WCuq5N5Pt241VOE /5m8BRwPRPzOmbWoMyUru3UwwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGn8+2et NAhmxprDCtzrnsv+8K72MB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtw/S7h895ZaS15N4yX9STSTsiHsqxDK2HVZwg1fAoslJj3h6Y3/UY uwdYXsCZSvjB8spjEGNYhEGh3NM3WojPkPx9FcKZuqOgx9a3kDL79woeikzGjiqv ldiv1VwO902uw/JgQyg6Zs3Q5j2i0NFmqKIXganEDQAn/8MDnpMHtKT+7MMaiWSs t5wOfLAsoSkhJvKxNNeV2TQkn7X6IgwaQOPWJ+zJo6aSqQlxCUpLG4MtgJiUPldN TwuUVIEKGFbFfzQ5hWGwneZwxqDMBQFbB7w6zNJTTvmt2coQm/8ePCqXh+jYBKxs 1swQloiliRMUG2Nu4rtNe/xzpIMX9igK -----END CERTIFICATE-----Generated at Sat May 10 09:46:32 2025 by rpki-client