$ rpki-client -vvf rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft File: aNpOhaeYSz_RCu80x9HQDxtGRTE.mft (raw, json) Hash identifier: MJJWu4sFfB+mFdWiXvER1461/6BVW7kzyf7ZmFvLZng= Subject key identifier: 08:AA:31:1F:2C:10:F7:26:A0:48:DE:27:0B:F2:36:72:B8:00:42:12 Authority key identifier: 68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 Certificate issuer: /CN=A918D931/serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Certificate serial: 0795 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft Manifest number: 078F Signing time: Sat 10 May 2025 21:00:20 +0000 Manifest this update: Sat 10 May 2025 21:00:19 +0000 Manifest next update: Sat 17 May 2025 21:00:19 +0000 Files and hashes: 1: aNpOhaeYSz_RCu80x9HQDxtGRTE.crl (hash: dlM59Np+ruH/HeHlas+RcLbCSyFY2eaRnHByB6HU8Yg=) 2: F575D65A085A11EBA6864D71C4F9AE02.roa (hash: MoYCzKz4ghJi1D1zSWKy/H/ig794mxo8w546loZw0HA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D931, serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Validity Not Before: May 10 21:00:19 2025 GMT Not After : May 17 21:00:19 2025 GMT Subject: CN=681fbe63-0bf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:98:11:d1:6d:71:1b:5c:28:32:c7:46:67:67: 81:b9:9b:b5:47:fa:b3:a0:68:56:bc:e3:af:73:85: e4:9b:7b:38:21:e4:40:9f:d8:3c:16:fe:07:0f:bd: 76:51:11:bb:0a:12:cb:98:05:38:a9:7f:73:df:60: 3c:b5:4e:b9:6f:c2:46:a2:8a:de:36:f1:2f:91:7d: 0b:b4:30:2b:df:55:d7:51:90:94:ec:a7:97:02:1a: 62:38:a0:4c:94:e3:1d:13:fa:5a:fb:2d:3e:0c:1e: 5b:01:08:d2:41:1b:c5:25:1e:7f:36:9c:f5:db:00: 58:c3:31:09:db:0e:c9:6e:fb:d8:cd:c7:c8:32:7c: 0b:35:31:7f:98:6a:ff:c1:ec:d0:cf:10:9e:c8:a2: 78:60:9b:f3:6c:1d:bf:9c:aa:38:61:4c:cd:a1:88: b4:da:56:82:12:15:98:9e:49:62:cb:0c:33:91:ba: 45:30:f9:f8:4d:23:1d:ca:b8:ba:ab:21:35:01:c3: aa:db:46:ed:dc:f9:35:bd:0c:e6:b5:64:4d:21:cc: df:aa:6a:c8:a1:29:27:61:da:de:92:97:ad:95:bb: c1:59:e7:74:5a:7b:2e:c8:45:98:df:1a:2e:05:cb: 7e:2d:92:95:2b:2d:fd:6a:a0:ca:16:88:b0:8a:a8: 43:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:AA:31:1F:2C:10:F7:26:A0:48:DE:27:0B:F2:36:72:B8:00:42:12 X509v3 Authority Key Identifier: keyid:68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:10:57:22:ca:79:cc:af:3f:79:26:54:cc:c5:64:05:b2:4f: 4d:a3:6b:e8:86:4b:93:6e:9f:5f:ed:b4:64:0c:a0:3c:2f:5b: 53:bd:4d:50:b7:9b:3a:d8:a7:23:0d:54:61:17:11:a4:4b:08: 4f:a2:a7:e9:f0:8a:0a:4f:b3:44:bc:75:55:f5:dc:5c:70:7f: d5:c9:28:3b:e5:19:a8:f8:98:8b:a9:01:39:20:72:a0:6b:3f: 29:56:b5:a7:57:a7:1f:39:b6:0e:43:7c:1c:3c:7f:f7:4c:d3: ac:ea:f1:f0:97:41:e3:2b:2d:a5:41:da:92:08:47:d8:b7:fe: bf:b2:6a:5c:11:e8:b8:0f:07:07:1b:1d:77:a3:d6:55:7d:5f: 7b:60:6c:c4:86:97:43:e3:04:93:67:d5:a4:95:0e:a4:aa:fb: f9:c7:15:29:34:f4:4e:77:b4:0f:4c:a4:da:5e:b2:0b:2f:9f: a3:87:24:f4:93:49:3d:b6:a6:79:2a:79:f8:a2:d9:54:f0:41: ae:c2:1d:bf:db:9d:e9:30:c1:2c:23:99:06:a2:01:35:c6:12: 33:f9:9f:b6:82:a1:a7:35:2d:cb:30:69:9e:98:86:a1:82:4a: f6:96:03:34:d5:34:2c:83:50:f6:a0:24:db:b0:b8:a6:c0:52: c0:7c:7a:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5MzExMTAvBgNVBAUTKDY4REE0RTg1QTc5ODRCM0ZEMTBBRUYzNEM3RDFEMDBG MUI0NjQ1MzEwHhcNMjUwNTEwMjEwMDE5WhcNMjUwNTE3MjEwMDE5WjAYMRYwFAYD VQQDEw02ODFmYmU2My0wYmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pgR0W1xG1woMsdGZ2eBuZu1R/qzoGhWvOOvc4Xkm3s4IeRAn9g8Fv4HD712 URG7ChLLmAU4qX9z32A8tU65b8JGooreNvEvkX0LtDAr31XXUZCU7KeXAhpiOKBM lOMdE/pa+y0+DB5bAQjSQRvFJR5/Npz12wBYwzEJ2w7JbvvYzcfIMnwLNTF/mGr/ wezQzxCeyKJ4YJvzbB2/nKo4YUzNoYi02laCEhWYnkliywwzkbpFMPn4TSMdyri6 qyE1AcOq20bt3Pk1vQzmtWRNIczfqmrIoSknYdrekpetlbvBWed0WnsuyEWY3xou Bct+LZKVKy39aqDKFoiwiqhDCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiqMR8s EPcmoEjeJwvyNnK4AEISMB8GA1UdIwQYMBaAFGjaToWnmEs/0QrvNMfR0A8bRkUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDkzMS9GQjVBNTA4NDA4 NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6X1JDdTgweDlIUUR4dEdS VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FOcE9oYWVZU3pfUkN1ODB4OUhRRHh0R1JURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDkzMS9GQjVBNTA4NDA4NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6 X1JDdTgweDlIUUR4dEdSVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkEFciynnMrz95JlTMxWQFsk9No2vohkuTbp9f7bRkDKA8L1tTvU1Q t5s62KcjDVRhFxGkSwhPoqfp8IoKT7NEvHVV9dxccH/VySg75Rmo+JiLqQE5IHKg az8pVrWnV6cfObYOQ3wcPH/3TNOs6vHwl0HjKy2lQdqSCEfYt/6/smpcEei4DwcH Gx13o9ZVfV97YGzEhpdD4wSTZ9WklQ6kqvv5xxUpNPROd7QPTKTaXrILL5+jhyT0 k0k9tqZ5Knn4otlU8EGuwh2/253pMMEsI5kGogE1xhIz+Z+2gqGnNS3LMGmemIah gkr2lgM01TQsg1D2oCTbsLimwFLAfHr/ -----END CERTIFICATE-----Generated at Sun May 11 09:08:33 2025 by rpki-client