$ rpki-client -vvf rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft File: racwBjpGGMJtFVQ1gZU7AYX9nIU.mft (raw, json) Hash identifier: pDDowVuYcYaKcaprCDHyw6R0vyqfotUsgUFMYAwQFCY= Subject key identifier: 67:B3:BE:F4:9B:D0:D6:CE:94:31:F2:BE:FA:24:9C:B6:30:18:F5:C7 Authority key identifier: AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 Certificate issuer: /CN=A9199231/serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Certificate serial: 0733 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft Manifest number: 1244 Signing time: Mon 12 May 2025 19:03:53 +0000 Manifest this update: Mon 12 May 2025 19:03:53 +0000 Manifest next update: Mon 19 May 2025 19:03:53 +0000 Files and hashes: 1: racwBjpGGMJtFVQ1gZU7AYX9nIU.crl (hash: 8Lgs/iEvezl4o4UGJc9dOh/RPR+Ybm4ent894XKzyKY=) 2: 84DF7DDE361211EBACEF8647C4F9AE02.roa (hash: 5XwqomZ9BLQ4EjKkc4C/QpwLGFRZM50AcN0fv78p3Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199231, serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Validity Not Before: May 12 19:03:53 2025 GMT Not After : May 19 19:03:53 2025 GMT Subject: CN=68224619-8299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6e:fc:84:6d:46:d4:37:21:e5:7c:24:f0:c1: 3a:e9:8e:85:9f:cd:d9:80:56:86:f6:cb:f9:a7:b4: a9:9b:eb:67:3c:22:8b:f3:19:78:81:f2:e6:ab:34: fa:eb:86:c5:1a:b8:8f:ba:02:72:a1:71:99:dc:cc: 92:f1:78:58:c5:31:76:7f:70:83:36:ee:67:26:ec: 7c:ac:52:c1:16:af:d9:27:65:8a:1a:0f:06:2e:a0: 2a:96:dc:97:80:7c:f0:fb:16:b8:3b:4d:21:6a:7e: ee:4c:d6:ba:db:7b:fd:fb:db:5e:86:c4:42:90:31: 30:9c:bb:37:75:58:9a:31:05:6d:c3:d9:87:a7:bb: 7f:82:53:74:60:21:d2:34:04:1e:7f:a2:1b:f9:2b: f9:74:e2:65:78:5b:a2:c4:4e:b7:de:1b:91:4f:8c: d9:05:55:9a:d1:e0:11:33:9a:2c:47:77:4d:da:06: e5:fe:26:b4:57:2c:9b:9a:42:64:0c:12:6d:33:ce: b0:9d:c7:93:0e:0a:f8:a7:08:5f:f7:be:e2:02:9e: 96:fa:d0:65:30:ba:64:bb:1c:6e:b1:30:95:c6:11: 2f:65:02:ef:ce:c0:88:80:3d:cf:12:63:e9:21:b3: da:3e:f4:0d:ac:0e:77:5c:fd:88:d2:27:4b:bb:f4: e6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B3:BE:F4:9B:D0:D6:CE:94:31:F2:BE:FA:24:9C:B6:30:18:F5:C7 X509v3 Authority Key Identifier: keyid:AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:80:54:ee:6a:73:8a:da:33:6b:c4:f5:2d:79:76:a4:6f:9a: 0f:17:ac:17:67:d9:12:96:82:02:9c:db:4a:51:92:84:4f:1e: de:4d:c8:db:08:f3:fe:0d:ff:3f:e6:b0:ca:5a:51:69:d4:86: 6a:ea:c5:85:d7:72:42:62:d0:b2:c5:7e:e6:02:a2:78:3e:bb: 78:6b:61:bd:4c:b2:f4:5f:b3:9f:7d:a7:cc:bb:34:e2:97:9a: d0:23:c9:b0:83:2e:b9:b4:66:90:ce:aa:7d:9a:8a:43:1f:03: 77:9a:1f:35:12:58:2d:77:ce:58:fb:2b:d2:fa:1b:99:78:c8: f9:49:57:e6:b6:a4:73:4e:b3:93:cc:7b:7a:25:25:7e:e2:d0: da:82:69:6a:e2:9b:1e:4a:f4:0a:8e:a4:0b:02:f7:85:27:ae: 24:8f:5a:48:77:d7:5a:77:e5:1c:92:bf:05:32:fc:ec:3d:30: 15:8c:de:18:87:94:52:b5:27:c6:7c:84:21:fe:1e:35:1d:12: 83:01:94:3c:e3:fd:60:fb:f8:47:46:f4:ff:b5:12:7d:6d:a4: 94:24:df:be:cd:75:01:83:1b:69:43:63:34:2a:74:54:33:b3: d7:ee:d3:25:78:73:53:97:b3:28:b4:b5:ef:78:c4:45:8c:6f: c4:4d:04:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyMzExMTAvBgNVBAUTKEFEQTczMDA2M0E0NjE4QzI2RDE1NTQzNTgxOTUzQjAx ODVGRDlDODUwHhcNMjUwNTEyMTkwMzUzWhcNMjUwNTE5MTkwMzUzWjAYMRYwFAYD VQQDEw02ODIyNDYxOS04Mjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G78hG1G1Dch5Xwk8ME66Y6Fn83ZgFaG9sv5p7Spm+tnPCKL8xl4gfLmqzT6 64bFGriPugJyoXGZ3MyS8XhYxTF2f3CDNu5nJux8rFLBFq/ZJ2WKGg8GLqAqltyX gHzw+xa4O00han7uTNa623v9+9tehsRCkDEwnLs3dViaMQVtw9mHp7t/glN0YCHS NAQef6Ib+Sv5dOJleFuixE633huRT4zZBVWa0eARM5osR3dN2gbl/ia0VyybmkJk DBJtM86wnceTDgr4pwhf977iAp6W+tBlMLpkuxxusTCVxhEvZQLvzsCIgD3PEmPp IbPaPvQNrA53XP2I0idLu/TmtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGezvvSb 0NbOlDHyvvoknLYwGPXHMB8GA1UdIwQYMBaAFK2nMAY6RhjCbRVUNYGVOwGF/ZyF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTIzMS8wOEZEQ0Q1MDND ODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dNSnRGVlExZ1pVN0FZWDlu SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhY3dCanBHR01KdEZWUTFnWlU3QVlYOW5JVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTIzMS8wOEZEQ0Q1MDNDODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dN SnRGVlExZ1pVN0FZWDluSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjgFTuanOK2jNrxPUteXakb5oPF6wXZ9kSloICnNtKUZKETx7eTcjb CPP+Df8/5rDKWlFp1IZq6sWF13JCYtCyxX7mAqJ4Prt4a2G9TLL0X7OffafMuzTi l5rQI8mwgy65tGaQzqp9mopDHwN3mh81Elgtd85Y+yvS+huZeMj5SVfmtqRzTrOT zHt6JSV+4tDagmlq4pseSvQKjqQLAveFJ64kj1pId9dad+Uckr8FMvzsPTAVjN4Y h5RStSfGfIQh/h41HRKDAZQ84/1g+/hHRvT/tRJ9baSUJN++zXUBgxtpQ2M0KnRU M7PX7tMleHNTl7MotLXveMRFjG/ETQRO -----END CERTIFICATE-----Generated at Wed May 14 01:37:52 2025 by rpki-client