$ rpki-client -vvf rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft File: CF4MUA89R900skS9OSnO_a3ZbD0.mft (raw, json) Hash identifier: vjprTA+s3+4dOeg7chunBPTTO5dXcVnsA5Tb9dW6Us8= Subject key identifier: 7F:C6:EE:B5:AF:64:F5:DD:64:7A:09:ED:FD:A7:13:05:44:98:10:12 Authority key identifier: 08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D Certificate issuer: /CN=A919D118/serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Certificate serial: 0A7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft Manifest number: 0A67 Signing time: Mon 12 May 2025 19:30:08 +0000 Manifest this update: Mon 12 May 2025 19:30:08 +0000 Manifest next update: Mon 19 May 2025 19:30:08 +0000 Files and hashes: 1: CF4MUA89R900skS9OSnO_a3ZbD0.crl (hash: Q1DWXJlMZ6VFumf+oxdV4pljyLW8l3n2RO5YKqaYReI=) 2: E56559AA7CAD11EEB3536044C4F9AE02.roa (hash: 0eEfoYZVPT+i1jAQtAFcxmDQsIWicbTtDWldCs89vv8=) 3: 5FFA4BEC3C0B11ED89AD755FC4F9AE02.roa (hash: +qdSnSMI4Cq6GPacx1y6troGvfBHeu8mDwsrgTG91us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2682 (0xa7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D118, serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Validity Not Before: May 12 19:30:08 2025 GMT Not After : May 19 19:30:08 2025 GMT Subject: CN=68224c40-1811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:df:17:ce:c2:06:58:4f:75:25:d6:ea:a8:86: a0:b0:56:07:8f:6d:28:2d:5c:50:31:28:73:59:e1: e3:5f:64:ff:57:c3:b3:f4:3a:ad:db:fc:41:53:1b: a2:b1:62:a7:9e:26:1c:33:e6:f7:e5:52:d9:83:6f: 56:6d:64:30:66:46:b9:a3:67:5b:9d:8f:e0:ae:76: 2d:f1:7a:db:b0:ec:0a:5e:ae:c5:ff:eb:85:d5:4d: 8a:46:3c:b9:3e:17:75:c7:69:00:03:c4:c2:ea:bf: 19:47:9a:b1:5a:e6:31:33:11:be:37:37:c3:8a:11: c4:dc:ed:96:15:b7:41:c6:14:94:ed:f3:77:b7:81: 4e:a9:a6:ee:e7:f7:21:5f:75:a0:01:db:b8:ce:2f: 93:7c:14:b9:de:c6:fe:02:f1:6b:f1:24:e5:2b:b3: 32:f6:66:fd:21:24:3d:56:78:13:f0:a6:da:02:02: fe:f8:0c:d6:31:51:b4:73:73:03:12:a5:1f:07:fa: fe:96:73:42:1c:7f:cf:68:63:fb:c0:99:8f:80:aa: a7:a8:f9:69:c1:97:8c:22:1f:a8:15:c1:0b:75:ee: 02:c3:b3:20:c4:61:f6:b4:36:80:e6:df:27:ad:a1: 32:f9:70:6e:45:2e:61:9a:02:52:4e:b9:ee:94:dd: f6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C6:EE:B5:AF:64:F5:DD:64:7A:09:ED:FD:A7:13:05:44:98:10:12 X509v3 Authority Key Identifier: keyid:08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:8c:58:14:31:1a:c8:20:c9:2e:3e:95:79:fe:80:09:c7:8b: 2e:3a:6c:bb:9d:a0:57:4d:0b:31:e8:47:75:d4:5b:a9:74:47: 9b:db:04:e9:12:f9:c8:97:42:ce:59:11:6d:29:b3:ed:12:4f: ef:2f:c1:a3:c5:55:e6:bc:00:84:89:23:5b:30:54:e4:1a:81: f5:4a:50:be:34:2c:c2:d9:82:4d:a5:d1:68:c4:0e:43:5c:ea: b9:ea:b6:e9:64:c3:b1:73:2b:52:92:e0:df:49:66:0f:05:49: f7:a6:f3:84:18:d6:ea:43:72:da:52:bf:4c:dd:5a:2b:75:6a: e2:3b:44:3c:4c:68:a0:cb:06:9e:a8:fc:bd:7c:f7:96:7b:63: bb:67:2f:7e:f4:39:6b:d5:51:cd:33:af:44:35:83:16:79:c2: 76:22:ca:51:bc:38:c1:40:81:2a:62:5f:81:d8:e2:55:45:ec: dd:17:f9:92:41:30:02:e3:29:4f:7c:f9:76:3f:ef:7b:05:dc: 03:ea:d6:a3:e0:9e:06:c9:e0:f8:6c:1e:f3:d9:ec:e0:62:cb: 99:3e:15:0f:aa:03:e9:7a:84:5c:15:f9:72:ce:98:3f:85:e7: 1b:6f:e8:5c:f4:1c:e8:7c:ff:69:7b:fc:98:76:09:e3:d3:d7: e5:e3:ae:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMTgxMTAvBgNVBAUTKDA4NUUwQzUwMEYzRDQ3REQzNEIyNDRCRDM5MjlDRUZE QUREOTZDM0QwHhcNMjUwNTEyMTkzMDA4WhcNMjUwNTE5MTkzMDA4WjAYMRYwFAYD VQQDEw02ODIyNGM0MC0xODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2N8XzsIGWE91JdbqqIagsFYHj20oLVxQMShzWeHjX2T/V8Oz9Dqt2/xBUxui sWKnniYcM+b35VLZg29WbWQwZka5o2dbnY/grnYt8XrbsOwKXq7F/+uF1U2KRjy5 Phd1x2kAA8TC6r8ZR5qxWuYxMxG+NzfDihHE3O2WFbdBxhSU7fN3t4FOqabu5/ch X3WgAdu4zi+TfBS53sb+AvFr8STlK7My9mb9ISQ9VngT8KbaAgL++AzWMVG0c3MD EqUfB/r+lnNCHH/PaGP7wJmPgKqnqPlpwZeMIh+oFcELde4Cw7MgxGH2tDaA5t8n raEy+XBuRS5hmgJSTrnulN32OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/G7rWv ZPXdZHoJ7f2nEwVEmBASMB8GA1UdIwQYMBaAFAheDFAPPUfdNLJEvTkpzv2t2Ww9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDExOC9CQjgxQTUxNDYy QkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5MDBza1M5T1NuT19hM1pi RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NGNE1VQTg5UjkwMHNrUzlPU25PX2EzWmJEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDExOC9CQjgxQTUxNDYyQkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5 MDBza1M5T1NuT19hM1piRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1jFgUMRrIIMkuPpV5/oAJx4suOmy7naBXTQsx6Ed11FupdEeb2wTp EvnIl0LOWRFtKbPtEk/vL8GjxVXmvACEiSNbMFTkGoH1SlC+NCzC2YJNpdFoxA5D XOq56rbpZMOxcytSkuDfSWYPBUn3pvOEGNbqQ3LaUr9M3VordWriO0Q8TGigywae qPy9fPeWe2O7Zy9+9Dlr1VHNM69ENYMWecJ2IspRvDjBQIEqYl+B2OJVRezdF/mS QTAC4ylPfPl2P+97BdwD6taj4J4GyeD4bB7z2ezgYsuZPhUPqgPpeoRcFflyzpg/ hecbb+hc9BzofP9pe/yYdgnj09fl465i -----END CERTIFICATE-----Generated at Wed May 14 07:54:17 2025 by rpki-client