$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: JIbENymBz7ncSYXpZicBgcI2bdodld16c9cn4dj9jpQ= Subject key identifier: 0B:93:08:9E:BD:33:F6:44:66:9A:B4:B5:35:6C:B1:92:FB:8D:7A:BB Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: D1 Signing time: Thu 15 May 2025 04:58:12 +0000 Manifest this update: Thu 15 May 2025 04:58:12 +0000 Manifest next update: Thu 22 May 2025 04:58:12 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: vlvbfXgLWHzrQ6qA8AKEZ5tnX3TjCZ/Z89LEni8cVLE=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:58:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: May 15 04:58:12 2025 GMT Not After : May 22 04:58:12 2025 GMT Subject: CN=68257464-9404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:32:93:00:7e:13:87:c1:dc:d3:a9:f4:34:32: be:82:14:a2:1c:21:0e:9c:9e:c7:ae:fb:1d:db:48: ab:d7:10:0e:8b:4a:dd:45:b5:64:a9:d4:7c:64:a0: e3:da:4d:f3:65:f4:82:4e:e8:14:f1:a7:b0:08:ea: fd:6c:26:52:4f:92:69:7f:92:44:bc:85:84:19:18: 83:95:32:3f:07:b6:22:59:2d:b4:88:54:26:ec:06: e4:cb:39:5b:09:16:77:1b:e2:eb:d1:2d:4b:ca:1e: 18:f1:cc:fa:07:cc:b7:fd:7f:3d:03:3f:53:fe:67: dd:28:48:03:d9:1b:bd:ca:5a:e3:e1:41:67:ef:8a: af:e1:0f:25:63:ed:83:a8:30:eb:0b:68:94:67:03: c1:13:0d:9b:ec:c4:34:d5:bc:a3:11:fa:d4:6d:fc: 24:91:f6:9a:3a:88:6c:70:4d:00:34:c8:6c:e8:47: 68:ed:4f:ee:c0:a9:e2:61:5a:49:09:fb:73:8d:de: 3b:c8:89:3e:93:0c:13:0a:93:5f:bb:9b:c3:55:8d: cc:11:4f:d5:a1:2c:da:ca:9d:9f:af:14:74:63:3d: c7:79:ff:33:c9:ac:74:c9:c6:d8:3e:6a:65:0d:d9: ad:4c:b0:65:6d:c0:16:ed:9b:e0:ea:ee:80:c7:58: 0c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:93:08:9E:BD:33:F6:44:66:9A:B4:B5:35:6C:B1:92:FB:8D:7A:BB X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:57:09:7a:4b:2d:b0:5a:7d:ac:42:e0:9b:b4:1a:1c:2e:b5: 9f:b2:72:6c:5e:bc:9d:63:78:a2:4a:95:7b:ed:ad:68:98:49: 30:5f:08:94:dc:64:8c:a3:63:52:96:f1:cd:61:f4:bd:a3:3c: 6b:c6:39:56:ff:53:7d:3e:47:43:31:6c:20:d2:f4:6d:ab:d5: 50:43:e5:c4:57:95:0d:5e:40:b4:38:93:2c:d1:3f:a3:91:82: 48:c8:21:1d:47:9d:b4:15:7a:13:67:14:bb:c9:53:39:8a:e8: b1:e8:fb:8f:3e:a8:14:4b:09:e3:74:f0:d7:eb:5a:02:75:a5: 83:04:d7:9b:f7:05:76:ab:9f:17:e3:46:f0:1e:eb:fa:5d:c4: 0f:9f:db:4d:4b:7a:0e:ec:ff:1a:1f:37:3c:cb:5b:f8:14:41: f8:f6:97:10:d6:65:4b:35:a2:0d:80:0b:7d:de:04:58:02:4b: f3:0e:1b:7c:9d:7f:b0:58:ff:c4:f6:e6:5f:48:df:da:5b:7f: 55:09:c2:b7:29:8b:c9:cb:93:4e:a0:6d:8b:6f:d5:f5:cd:64: 5b:91:ce:0e:77:95:6c:4b:5f:b9:4c:77:5a:4c:bc:41:0c:af: ae:15:fb:d3:c9:e2:97:2c:c9:ee:c3:18:c5:d4:ee:51:fc:91: 49:38:66:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUwNTE1MDQ1ODEyWhcNMjUwNTIyMDQ1ODEyWjAYMRYwFAYD VQQDEw02ODI1NzQ2NC05NDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjKTAH4Th8Hc06n0NDK+ghSiHCEOnJ7Hrvsd20ir1xAOi0rdRbVkqdR8ZKDj 2k3zZfSCTugU8aewCOr9bCZST5Jpf5JEvIWEGRiDlTI/B7YiWS20iFQm7Abkyzlb CRZ3G+Lr0S1Lyh4Y8cz6B8y3/X89Az9T/mfdKEgD2Ru9ylrj4UFn74qv4Q8lY+2D qDDrC2iUZwPBEw2b7MQ01byjEfrUbfwkkfaaOohscE0ANMhs6Edo7U/uwKniYVpJ Cftzjd47yIk+kwwTCpNfu5vDVY3MEU/VoSzayp2frxR0Yz3Hef8zyax0ycbYPmpl DdmtTLBlbcAW7Zvg6u6Ax1gMLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuTCJ69 M/ZEZpq0tTVssZL7jXq7MB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmVwl6Sy2wWn2sQuCbtBocLrWfsnJsXrydY3iiSpV77a1omEkwXwiU 3GSMo2NSlvHNYfS9ozxrxjlW/1N9PkdDMWwg0vRtq9VQQ+XEV5UNXkC0OJMs0T+j kYJIyCEdR520FXoTZxS7yVM5iuix6PuPPqgUSwnjdPDX61oCdaWDBNeb9wV2q58X 40bwHuv6XcQPn9tNS3oO7P8aHzc8y1v4FEH49pcQ1mVLNaINgAt93gRYAkvzDht8 nX+wWP/E9uZfSN/aW39VCcK3KYvJy5NOoG2Lb9X1zWRbkc4Od5VsS1+5THdaTLxB DK+uFfvTyeKXLMnuwxjF1O5R/JFJOGbJ -----END CERTIFICATE-----Generated at Fri May 16 09:55:04 2025 by rpki-client