$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: TOPo5P+W2A5dHVpal8mYttuovxVtGKJDYoURJEW6uNQ= Subject key identifier: 1A:1D:B8:AB:69:D8:97:47:90:51:8E:4E:17:99:0B:AD:24:3A:0E:F7 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 135F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 1333 Signing time: Wed 14 May 2025 17:07:48 +0000 Manifest this update: Wed 14 May 2025 17:07:47 +0000 Manifest next update: Wed 21 May 2025 17:07:47 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: jyv2RrCimoS2ZFsyN9gRN7BlAy8Kvu12T0yAwC46lpA=) 2: 354FE56C6C5111EC9FF8F481C4F9AE02.roa (hash: yLsbLNfO8+GYafdqIv83Nfi6PSWJ/614Kmn3tZCnkTY=) 3: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: 2CAgcrLv4JGzDGMPlAonDkbaG+eLBXz0G6EKid4bHfs=) 4: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: d1W5JywmHjLqObvdK9tSNHN2RsDjV33NPPuORYy/wG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4959 (0x135f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: May 14 17:07:47 2025 GMT Not After : May 21 17:07:47 2025 GMT Subject: CN=6824cde3-b100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7a:2c:fb:53:eb:3f:0c:00:7b:39:4d:65:76: 2a:12:9d:2a:d7:5a:50:8a:ec:ef:5e:a3:96:14:5d: bc:42:8a:a2:2d:7d:e3:11:93:76:bb:c6:91:0c:36: fb:d6:1c:86:c4:04:ba:4c:63:00:ef:90:e0:1e:87: f4:ae:bd:41:f0:0d:c5:c2:22:12:f5:a3:54:c6:13: 3e:c6:d1:dd:d4:b9:16:52:34:d1:07:b0:2d:18:a4: ab:6e:57:fa:2d:1f:dc:42:1c:28:1e:c5:ac:81:3d: 3f:d6:f2:97:60:d5:3a:fe:8a:dd:8d:cf:46:17:9c: 1d:f5:15:d1:0c:31:7e:f5:d6:cf:62:e5:05:83:05: 91:ec:81:4a:99:05:78:e8:11:a6:ce:e8:b6:0a:5c: cc:41:74:64:90:29:f9:47:a7:0f:3f:5b:c4:85:0d: fd:b8:2c:cc:d6:1f:50:97:9a:de:be:d8:5b:f4:43: d4:8d:62:d7:a8:dd:4f:46:83:8e:4b:78:f0:26:4b: 3e:9c:c7:44:cf:63:60:10:69:5f:ee:f2:9d:fb:04: 19:2b:78:d3:7a:de:ac:1e:f6:bd:f0:34:92:e6:d1: ac:8e:0e:6b:1d:8f:47:47:0f:1c:6d:fa:6f:2e:97: 33:ff:48:aa:20:47:78:e8:29:7f:a6:3d:4c:6b:02: c7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:1D:B8:AB:69:D8:97:47:90:51:8E:4E:17:99:0B:AD:24:3A:0E:F7 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e9:47:60:76:ee:6d:63:01:08:b8:b6:35:bc:5e:9f:71:28: 7f:0b:00:ea:f3:46:33:54:5f:ed:f9:c9:66:2e:b0:e5:f7:12: 5b:73:7c:9c:98:86:68:7c:01:b6:b1:75:ae:d6:cb:9b:f8:6b: dd:ae:fb:15:fa:cc:6b:0b:77:09:b0:a6:1c:d0:6a:cd:fd:86: c7:71:c0:28:bb:2f:f7:af:41:4f:45:fe:97:32:51:f4:22:91: 98:3d:5a:7b:c3:3f:bc:9b:94:58:9c:de:2c:bf:64:71:83:74: 9c:54:bf:b5:c8:38:94:0c:c8:6a:4e:d8:fb:c2:8d:5d:96:56: 51:1a:b1:9b:44:17:84:19:a6:7e:a1:94:f2:f8:f2:6c:f0:93: 4a:bc:32:3d:1f:5e:41:a1:ab:63:19:01:5b:90:9b:e7:27:8f: b0:72:31:05:7d:0e:fb:36:f6:74:3f:f7:bc:1e:b6:ee:d8:13: 48:3d:1d:ee:f4:18:75:66:39:16:6c:0b:0f:f2:9d:df:87:b3: 95:7f:c1:e5:d4:ed:6b:d2:53:c1:e0:83:1d:5d:40:89:9f:83: 38:c8:38:75:66:ce:aa:ad:88:a5:d1:0e:d7:f1:9b:3f:8c:21: 21:a8:80:8a:02:85:59:8d:e8:a2:f4:08:44:ec:26:8f:15:d1: 34:ae:3b:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUwNTE0MTcwNzQ3WhcNMjUwNTIxMTcwNzQ3WjAYMRYwFAYD VQQDEw02ODI0Y2RlMy1iMTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXos+1PrPwwAezlNZXYqEp0q11pQiuzvXqOWFF28QoqiLX3jEZN2u8aRDDb7 1hyGxAS6TGMA75DgHof0rr1B8A3FwiIS9aNUxhM+xtHd1LkWUjTRB7AtGKSrblf6 LR/cQhwoHsWsgT0/1vKXYNU6/ordjc9GF5wd9RXRDDF+9dbPYuUFgwWR7IFKmQV4 6BGmzui2ClzMQXRkkCn5R6cPP1vEhQ39uCzM1h9Ql5revthb9EPUjWLXqN1PRoOO S3jwJks+nMdEz2NgEGlf7vKd+wQZK3jTet6sHva98DSS5tGsjg5rHY9HRw8cbfpv Lpcz/0iqIEd46Cl/pj1MawLHBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoduKtp 2JdHkFGOTheZC60kOg73MB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr6Udgdu5tYwEIuLY1vF6fcSh/CwDq80YzVF/t+clmLrDl9xJbc3yc mIZofAG2sXWu1sub+GvdrvsV+sxrC3cJsKYc0GrN/YbHccAouy/3r0FPRf6XMlH0 IpGYPVp7wz+8m5RYnN4sv2Rxg3ScVL+1yDiUDMhqTtj7wo1dllZRGrGbRBeEGaZ+ oZTy+PJs8JNKvDI9H15BoatjGQFbkJvnJ4+wcjEFfQ77NvZ0P/e8Hrbu2BNIPR3u 9Bh1ZjkWbAsP8p3fh7OVf8Hl1O1r0lPB4IMdXUCJn4M4yDh1Zs6qrYil0Q7X8Zs/ jCEhqICKAoVZjeii9AhE7CaPFdE0rjvf -----END CERTIFICATE-----Generated at Thu May 15 16:07:11 2025 by rpki-client