$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: hCSgn0FjmCwYrBdGkqS9swT51tJrePJiT/L1TNUegdQ= Subject key identifier: CB:A4:D9:18:02:41:83:2A:F5:45:38:36:AC:9A:12:BF:33:44:A7:AD Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 0128 Signing time: Wed 14 May 2025 23:50:24 +0000 Manifest this update: Wed 14 May 2025 23:50:23 +0000 Manifest next update: Wed 21 May 2025 23:50:23 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: A6ybAWxh5urnzqIBlbCN3x8LExGq0I6/PhtYUAwVgUI=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: +idkc0Y+TplJvB7T7xrVzyMgw/UlYDqH1h1gbH9ycfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: May 14 23:50:23 2025 GMT Not After : May 21 23:50:23 2025 GMT Subject: CN=68252c40-1160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:be:1a:a2:96:a6:b4:46:9b:00:fe:e2:6a:86: 0f:25:d5:6e:43:08:17:6b:e5:12:14:d7:9f:09:f9: 3f:8f:41:1e:8a:ab:b3:3c:c9:55:22:62:aa:64:bf: fe:21:70:7c:cf:6a:0b:ce:0c:c8:de:20:d8:10:86: 91:e6:52:12:bd:96:0e:c9:25:9c:4c:34:0c:68:65: 5f:c8:4f:ce:60:d0:5d:69:f7:06:4d:cf:35:25:7f: 29:40:2f:9b:e2:69:d9:36:49:4c:34:8f:45:97:f7: 4a:fd:ab:63:22:b9:62:58:51:6f:66:bd:25:d4:85: 92:6a:41:29:84:d4:0d:14:d1:ef:6b:73:97:ef:15: c0:9e:03:3a:0b:c9:23:48:3d:e8:16:33:11:99:19: e7:9a:6e:81:7d:fc:f0:32:04:3c:e7:9c:a9:ab:6b: 32:e3:d2:e9:4e:b8:d1:2f:ab:c8:50:d9:97:51:32: c9:a1:6c:01:cf:0f:e8:6d:4c:b3:99:46:cf:8e:8d: 33:97:3e:6c:ea:65:2e:32:31:da:ad:0a:16:f5:d6: b1:0d:bf:4b:36:3b:dd:8a:12:fa:b4:57:39:0f:ed: 9d:cb:d2:d2:9f:38:a5:17:65:45:00:72:ab:de:40: e2:53:f1:91:d3:62:71:40:bd:7c:ce:27:24:38:19: d7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A4:D9:18:02:41:83:2A:F5:45:38:36:AC:9A:12:BF:33:44:A7:AD X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:0e:8c:bd:b3:dd:ee:b5:df:9a:24:b5:74:0f:dc:f8:12:d6: 2d:83:20:f4:7a:2a:4f:2c:f3:85:71:27:7c:62:c2:bb:d1:76: b7:5e:73:2d:bb:dc:70:17:ab:0e:43:e0:72:d6:0e:1e:cb:ad: db:ea:8f:00:f1:f6:8e:89:0d:2d:a6:f0:4e:b0:6d:66:61:34: 52:7b:34:59:74:ae:8c:c4:9b:80:07:9e:c4:b8:d2:91:94:2a: b8:31:64:dd:b5:77:78:85:6a:e9:a4:3f:37:c7:2a:23:a1:0d: 7a:63:3b:78:78:c1:e1:6c:a9:ea:b9:2c:13:af:fe:3a:dd:07: 83:4f:5a:63:15:02:c9:3e:fe:cc:b9:6d:81:c5:77:ff:71:50: c4:f0:31:28:67:ef:e7:c5:64:19:b4:a2:95:8c:91:a0:3e:06: b4:7f:b5:00:01:f5:76:e1:ab:e1:2a:31:55:09:a7:a6:0f:46: e2:0d:14:23:bc:6d:9f:4b:0c:f5:fd:38:53:72:02:2a:0d:2d: cc:8a:d1:a7:ce:99:ca:8c:cf:b6:db:7e:12:cf:10:c7:1b:0a: 98:73:92:6d:2a:6e:f2:63:81:dd:d1:ac:1b:44:a5:d6:68:d8: bf:7b:89:b9:6e:45:87:1e:d6:e8:7a:3f:85:bd:1d:4b:0e:65: 7a:7b:a0:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUwNTE0MjM1MDIzWhcNMjUwNTIxMjM1MDIzWjAYMRYwFAYD VQQDEw02ODI1MmM0MC0xMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb4aopamtEabAP7iaoYPJdVuQwgXa+USFNefCfk/j0EeiquzPMlVImKqZL/+ IXB8z2oLzgzI3iDYEIaR5lISvZYOySWcTDQMaGVfyE/OYNBdafcGTc81JX8pQC+b 4mnZNklMNI9Fl/dK/atjIrliWFFvZr0l1IWSakEphNQNFNHva3OX7xXAngM6C8kj SD3oFjMRmRnnmm6BffzwMgQ855ypq2sy49LpTrjRL6vIUNmXUTLJoWwBzw/obUyz mUbPjo0zlz5s6mUuMjHarQoW9daxDb9LNjvdihL6tFc5D+2dy9LSnzilF2VFAHKr 3kDiU/GR02JxQL18zickOBnXPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuk2RgC QYMq9UU4NqyaEr8zRKetMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkDoy9s93utd+aJLV0D9z4EtYtgyD0eipPLPOFcSd8YsK70Xa3XnMt u9xwF6sOQ+By1g4ey63b6o8A8faOiQ0tpvBOsG1mYTRSezRZdK6MxJuAB57EuNKR lCq4MWTdtXd4hWrppD83xyojoQ16Yzt4eMHhbKnquSwTr/463QeDT1pjFQLJPv7M uW2BxXf/cVDE8DEoZ+/nxWQZtKKVjJGgPga0f7UAAfV24avhKjFVCaemD0biDRQj vG2fSwz1/ThTcgIqDS3MitGnzpnKjM+2234SzxDHGwqYc5JtKm7yY4Hd0awbRKXW aNi/e4m5bkWHHtboej+FvR1LDmV6e6Dg -----END CERTIFICATE-----Generated at Fri May 16 11:53:59 2025 by rpki-client