$ rpki-client -vvf rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft File: Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft (raw, json) Hash identifier: xjoIyJTIrRI/MHeZ7wzkgoY5NwqmYhnRzxBM0SwBwn4= Subject key identifier: 1C:A7:DA:00:C0:C9:09:EB:6A:97:D2:49:FE:04:B2:E7:98:0D:56:8D Authority key identifier: 49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E Certificate issuer: /CN=A9194EF2/serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Certificate serial: 0D43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft Manifest number: 0D3C Signing time: Mon 12 May 2025 17:53:23 +0000 Manifest this update: Mon 12 May 2025 17:53:23 +0000 Manifest next update: Mon 19 May 2025 17:53:23 +0000 Files and hashes: 1: Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl (hash: VPAOYm1iXujfyBxy10CO6igj7fc/QfUezI7cZzow9k4=) 2: 1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa (hash: 3NvJFO+he2ACqNiLgD+llzSbjPgJVQ7hiMX5hEMIbGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3395 (0xd43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194EF2, serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Validity Not Before: May 12 17:53:23 2025 GMT Not After : May 19 17:53:23 2025 GMT Subject: CN=68223593-4600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6d:09:ac:ee:0c:f5:66:6f:40:d5:08:f2:58: ab:e9:b8:56:f9:a2:cc:74:5a:b1:14:93:a9:c8:2b: 81:07:b6:5a:76:ee:75:a6:3a:fb:d2:6a:8f:4d:1b: 96:e5:ac:75:7f:9b:2a:2c:ea:47:8d:c0:8d:72:3c: 85:4e:65:1a:b5:a2:f8:1d:d8:10:3a:70:b2:96:c3: a6:97:ef:7f:ae:30:27:fc:27:d0:2a:c0:0e:ad:2d: 96:a3:13:fa:eb:61:91:03:6c:c4:52:02:72:a4:d6: 23:e2:4c:42:37:92:a4:47:30:8a:71:f8:f0:79:ef: 13:59:43:ec:dd:7e:d2:46:99:3b:7b:8e:ea:3a:40: eb:a6:06:95:5b:60:ac:a0:0a:d4:64:80:5d:76:a4: cd:46:56:10:75:c1:68:b9:1c:fd:b0:d7:98:94:44: 56:6a:52:b9:24:22:11:2b:c7:bd:84:7c:d1:9c:f4: f2:c6:96:13:46:91:cb:5a:07:0a:1e:9b:22:a1:6a: e3:7a:03:ac:62:78:13:fe:19:a0:e5:99:88:ea:03: aa:27:21:e0:7d:df:d7:ec:93:77:e7:3a:00:9f:a1: 5f:82:df:1f:6e:5b:b8:3c:d9:b2:ee:93:37:5f:38: bf:56:0f:b6:71:c2:c5:d8:04:76:19:04:51:0e:1a: 1b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A7:DA:00:C0:C9:09:EB:6A:97:D2:49:FE:04:B2:E7:98:0D:56:8D X509v3 Authority Key Identifier: keyid:49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:8b:56:bc:dc:37:42:91:43:7b:03:01:d5:b2:d7:6b:39:0e: df:9d:91:0e:93:55:e9:55:45:0d:ca:21:f9:83:b6:f0:2c:61: 19:fe:05:6b:0e:dc:f9:ed:a4:96:90:2a:b7:00:0a:b1:4b:6c: d9:26:ed:a6:c2:61:1b:38:01:9f:9b:fc:34:19:74:66:03:b5: bd:d2:a3:a0:e2:ff:2d:88:a0:65:c6:04:f3:07:00:dd:e3:92: 43:af:43:96:87:15:41:5c:b5:4b:2b:2a:eb:d5:ab:1c:ea:21: 0f:d4:f5:af:e6:52:5d:6f:f6:bf:3e:76:ed:d4:05:74:27:56: 18:3b:2f:c7:93:37:e9:e6:91:be:cd:7f:04:9e:36:32:2b:b6: b7:bd:08:85:da:67:59:c3:97:7b:d9:2d:46:83:75:a1:9d:b8: 08:02:79:8e:16:3c:07:e2:1b:03:22:cc:5c:2f:11:55:c9:83: 88:ae:57:6a:c2:7e:7f:5c:64:6c:aa:92:17:63:d6:c0:8c:f0: 4f:da:12:cd:e7:12:bb:d7:e3:2a:a0:98:c4:fc:98:de:e7:c9: 0a:2e:6b:13:9a:12:89:83:a8:ba:8a:49:d8:00:04:0e:be:bc: 5a:06:be:bd:fb:86:09:46:60:5e:4e:f2:5f:11:0f:fe:1b:d2: a0:f6:8b:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFRjIxMTAvBgNVBAUTKDQ5QzlFOUUzMjI3Q0Q1NUFEMjlBMjEzQ0JBQTE3NDc4 NUExNjVDN0UwHhcNMjUwNTEyMTc1MzIzWhcNMjUwNTE5MTc1MzIzWjAYMRYwFAYD VQQDEw02ODIyMzU5My00NjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsW0JrO4M9WZvQNUI8lir6bhW+aLMdFqxFJOpyCuBB7Zadu51pjr70mqPTRuW 5ax1f5sqLOpHjcCNcjyFTmUataL4HdgQOnCylsOml+9/rjAn/CfQKsAOrS2WoxP6 62GRA2zEUgJypNYj4kxCN5KkRzCKcfjwee8TWUPs3X7SRpk7e47qOkDrpgaVW2Cs oArUZIBddqTNRlYQdcFouRz9sNeYlERWalK5JCIRK8e9hHzRnPTyxpYTRpHLWgcK HpsioWrjegOsYngT/hmg5ZmI6gOqJyHgfd/X7JN35zoAn6Ffgt8fblu4PNmy7pM3 Xzi/Vg+2ccLF2AR2GQRRDhobewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByn2gDA yQnrapfSSf4EsueYDVaNMB8GA1UdIwQYMBaAFEnJ6eMifNVa0pohPLqhdHhaFlx+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEVGMi9CNjQ0MUVCNkQy QkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFWclNtaUU4dXFGMGVGb1dY SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NjbnA0eUo4MVZyU21pRTh1cUYwZUZvV1hINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEVGMi9CNjQ0MUVCNkQyQkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFW clNtaUU4dXFGMGVGb1dYSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJi1a83DdCkUN7AwHVstdrOQ7fnZEOk1XpVUUNyiH5g7bwLGEZ/gVr Dtz57aSWkCq3AAqxS2zZJu2mwmEbOAGfm/w0GXRmA7W90qOg4v8tiKBlxgTzBwDd 45JDr0OWhxVBXLVLKyrr1asc6iEP1PWv5lJdb/a/Pnbt1AV0J1YYOy/Hkzfp5pG+ zX8EnjYyK7a3vQiF2mdZw5d72S1Gg3WhnbgIAnmOFjwH4hsDIsxcLxFVyYOIrldq wn5/XGRsqpIXY9bAjPBP2hLN5xK71+MqoJjE/Jje58kKLmsTmhKJg6i6iknYAAQO vrxaBr69+4YJRmBeTvJfEQ/+G9Kg9osL -----END CERTIFICATE-----Generated at Wed May 14 01:39:02 2025 by rpki-client