$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft File: 7MBefFuSR4uMxDst35ql9slCnyE.mft (raw, json) Hash identifier: CM6Vj7F7xVm+FuhQnMrBVYci/1izBlnghmiGDto09r8= Subject key identifier: 55:40:1C:EF:A8:6E:30:9D:3C:2E:F7:04:B5:7D:33:12:5C:8F:30:5A Authority key identifier: EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 Certificate issuer: /CN=A9190D0D/serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Certificate serial: 0AEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft Manifest number: 0AE4 Signing time: Mon 12 May 2025 19:15:09 +0000 Manifest this update: Mon 12 May 2025 19:15:08 +0000 Manifest next update: Mon 19 May 2025 19:15:08 +0000 Files and hashes: 1: 7MBefFuSR4uMxDst35ql9slCnyE.crl (hash: C6hlAGnQAHSImGAuS41sWcNrw+c3h3Xoj2j6vPztB7c=) 2: 2791E5FC476811EA943F5A66C4F9AE02.roa (hash: CuzGm85wLiuHxUTSuvnqnZczG2t94ONHHbEKTXpyL78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2794 (0xaea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D0D, serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Validity Not Before: May 12 19:15:08 2025 GMT Not After : May 19 19:15:08 2025 GMT Subject: CN=682248bc-8199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6e:5f:4f:4c:4d:57:d8:c3:dc:33:54:14:79: b3:33:0a:07:b5:3d:6b:59:0c:4d:e4:f3:6f:a2:9b: 1a:23:ee:a0:9b:28:75:34:7b:86:a7:0b:5f:51:f9: 1b:cb:77:50:fe:ca:b8:00:5c:56:24:ca:6a:5e:3d: cd:99:3c:e4:db:d4:6a:46:dd:23:18:0f:cf:ba:57: 9e:96:70:23:1e:60:98:70:85:6a:a1:1b:ca:09:30: d6:12:47:67:f4:74:4e:d7:c2:f3:86:fb:04:48:7e: d4:24:ee:12:0f:21:fc:00:7c:fe:fd:7b:75:c1:de: fa:03:54:25:17:6b:68:d7:38:45:e4:82:2d:ef:5d: fa:2a:64:31:bc:dc:a2:db:1b:97:e4:55:e2:31:7c: fd:58:b3:1c:6f:b1:93:08:d2:16:8a:5c:17:8a:46: 38:29:e7:3d:22:52:58:6f:23:53:da:a0:40:f5:ba: 8f:42:06:30:a4:ad:a4:49:04:29:11:6b:53:11:b6: c6:59:95:97:02:50:47:b6:7d:b3:7d:62:84:61:34: 0a:d6:d4:88:01:c7:dc:d2:1a:2a:cd:b4:f1:3b:06: 04:fa:7a:ce:27:7d:54:e6:16:6b:b3:76:cd:c7:e5: 9e:df:0f:4e:f7:94:09:bf:90:22:8c:50:8f:f4:53: 1f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:40:1C:EF:A8:6E:30:9D:3C:2E:F7:04:B5:7D:33:12:5C:8F:30:5A X509v3 Authority Key Identifier: keyid:EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:16:ec:f9:75:24:ff:63:67:23:67:97:fe:73:12:aa:12:c2: 8f:1e:fa:96:2c:d8:83:a4:3e:41:7a:1d:06:0c:69:bb:38:78: 09:60:e5:8f:5f:e7:bf:02:1f:09:6a:9e:66:d4:1c:cd:80:1c: 90:ab:1e:f9:e9:e1:2f:9c:74:66:5c:6d:5a:b7:d6:59:fc:9b: b4:7c:3e:dc:22:6a:bb:c2:c5:38:43:db:3b:25:56:b1:c5:fe: e9:01:58:74:23:19:7b:33:42:d8:a7:64:1c:c1:a8:49:71:fb: 7d:83:d7:1d:cd:7a:58:48:89:4c:d2:a6:c3:f1:41:d3:e7:35: a9:07:8b:72:22:1d:5c:f2:00:1b:20:62:a5:50:40:2d:f3:4f: bc:17:f9:dc:1e:5b:33:ba:23:40:9e:ad:c3:c8:51:05:2c:78: 9c:8a:a3:b5:71:a1:b7:be:3a:6f:88:05:9b:10:99:16:5c:95: b7:2a:47:40:0b:ee:79:11:46:f8:d9:b9:d0:ba:71:4e:b5:da: 7d:70:c7:7f:e5:55:72:9f:21:df:ef:b1:aa:28:1d:5d:2f:6e: 39:d5:85:d8:9a:ca:a7:c4:1c:8f:ab:e0:4f:32:08:a4:80:3d: 82:cb:15:a7:37:aa:e5:99:d0:5c:80:9b:87:99:90:4e:1c:cb: 2b:b3:cb:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBEMEQxMTAvBgNVBAUTKEVDQzA1RTdDNUI5MjQ3OEI4Q0M0M0IyRERGOUFBNUY2 Qzk0MjlGMjEwHhcNMjUwNTEyMTkxNTA4WhcNMjUwNTE5MTkxNTA4WjAYMRYwFAYD VQQDEw02ODIyNDhiYy04MTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA525fT0xNV9jD3DNUFHmzMwoHtT1rWQxN5PNvopsaI+6gmyh1NHuGpwtfUfkb y3dQ/sq4AFxWJMpqXj3NmTzk29RqRt0jGA/PuleelnAjHmCYcIVqoRvKCTDWEkdn 9HRO18LzhvsESH7UJO4SDyH8AHz+/Xt1wd76A1QlF2to1zhF5IIt7136KmQxvNyi 2xuX5FXiMXz9WLMcb7GTCNIWilwXikY4Kec9IlJYbyNT2qBA9bqPQgYwpK2kSQQp EWtTEbbGWZWXAlBHtn2zfWKEYTQK1tSIAcfc0hoqzbTxOwYE+nrOJ31U5hZrs3bN x+We3w9O95QJv5AijFCP9FMfuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVAHO+o bjCdPC73BLV9MxJcjzBaMB8GA1UdIwQYMBaAFOzAXnxbkkeLjMQ7Ld+apfbJQp8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQwRC9GMDM3QkQwODQ3 NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0dU14RHN0MzVxbDlzbENu eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdNQmVmRnVTUjR1TXhEc3QzNXFsOXNsQ255RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEQwRC9GMDM3QkQwODQ3NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0 dU14RHN0MzVxbDlzbENueUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNFuz5dST/Y2cjZ5f+cxKqEsKPHvqWLNiDpD5Beh0GDGm7OHgJYOWP X+e/Ah8Jap5m1BzNgByQqx756eEvnHRmXG1at9ZZ/Ju0fD7cImq7wsU4Q9s7JVax xf7pAVh0Ixl7M0LYp2QcwahJcft9g9cdzXpYSIlM0qbD8UHT5zWpB4tyIh1c8gAb IGKlUEAt80+8F/ncHlszuiNAnq3DyFEFLHiciqO1caG3vjpviAWbEJkWXJW3KkdA C+55EUb42bnQunFOtdp9cMd/5VVynyHf77GqKB1dL2451YXYmsqnxByPq+BPMgik gD2CyxWnN6rlmdBcgJuHmZBOHMsrs8vv -----END CERTIFICATE-----Generated at Wed May 14 03:45:10 2025 by rpki-client