$ rpki-client -vvf rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft File: M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft (raw, json) Hash identifier: q82Wj7vv56JDyaowt2NaQMQYl7qdASCPfRh68JTzULw= Subject key identifier: 58:50:BB:26:5F:35:C4:94:68:FB:D4:3C:2C:BA:3A:42:1E:A4:AC:87 Authority key identifier: 33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5 Certificate issuer: /CN=A919D3F9/serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft Manifest number: 11 Signing time: Tue 13 May 2025 07:17:37 +0000 Manifest this update: Tue 13 May 2025 07:17:37 +0000 Manifest next update: Tue 20 May 2025 07:17:37 +0000 Files and hashes: 1: M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl (hash: sicgyc1zrBy/Mn3MBCAhxxqeYnDJbgrdSPUQbzATFvg=) 2: 35C008E818C811F0BF9E881FC4F9AE02.roa (hash: dO3tBpPXfUSx2n1k3cMhWuGnqgEV9qYaUcicUOmxL84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D3F9, serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5 Validity Not Before: May 13 07:17:37 2025 GMT Not After : May 20 07:17:37 2025 GMT Subject: CN=6822f211-3793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:dd:83:4e:89:fa:4e:06:2c:4b:c8:59:7c: d0:8b:60:eb:6e:aa:4d:30:07:25:f6:60:20:13:69: fe:b8:79:3c:ca:7e:13:27:da:a2:d6:b6:9c:84:12: 50:87:50:ce:c0:71:44:46:2d:7b:d2:d1:b0:8d:c2: 2b:ce:68:c5:b7:3f:50:64:09:7a:73:7f:29:6c:8c: 12:68:f7:0f:74:57:9e:d3:a0:c8:61:4a:82:84:86: d2:0a:14:56:1b:b7:9d:f3:6e:64:73:92:78:e6:7f: 64:81:5f:f3:0b:d2:d5:e4:55:c4:ae:62:fa:c3:e3: 1b:f0:8d:99:97:63:b0:b4:5b:f5:90:72:1b:30:ed: b3:5e:84:ac:2f:3b:c3:8d:27:6a:f0:60:bd:3c:6b: 63:f0:58:04:8b:10:bf:16:a3:5d:62:46:f1:aa:d6: 13:38:a7:d0:5a:87:31:b4:12:14:74:3d:d5:ae:36: ac:37:a2:19:d4:89:9c:9f:6c:fb:8b:4f:d7:24:30: e2:c1:13:d4:ff:62:31:5e:3b:d8:e0:40:b8:54:d7: 81:5f:b0:d4:43:8b:ef:01:2a:ee:3c:53:45:33:cd: fa:51:63:d8:43:3d:20:be:e2:84:65:d0:c6:5e:9c: a6:c2:56:2b:9d:2d:05:4c:66:c8:5c:df:49:a6:0a: 28:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:50:BB:26:5F:35:C4:94:68:FB:D4:3C:2C:BA:3A:42:1E:A4:AC:87 X509v3 Authority Key Identifier: keyid:33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:c0:51:c9:79:d0:d5:f9:3d:55:e5:7f:a5:60:6b:31:83:58: 01:b5:a3:82:14:87:f0:e2:6e:f0:ea:3d:a5:f3:d1:8f:39:9f: 22:17:32:03:93:f1:b8:32:3b:84:be:dd:81:e7:70:89:5a:d3: c3:b6:09:b4:96:a4:bd:ec:c5:03:7e:2e:b6:80:ab:af:49:82: d9:2a:c8:c2:72:ef:89:8d:4f:5c:3d:18:72:1d:11:55:a3:83: ad:cb:b6:92:10:ff:fc:90:55:3c:01:1f:4e:b4:1e:9c:c8:8a: e9:bb:73:bf:24:bf:b0:b8:da:93:a4:3a:5e:eb:47:7f:73:15: 56:2d:96:01:96:08:d8:a6:26:c7:75:8f:9b:d5:06:d0:99:54: e8:3d:d7:a9:ec:78:8d:44:bb:28:c1:db:c7:cc:6f:f0:fd:16: df:9c:74:ab:27:03:91:6c:81:36:1a:8f:19:d1:20:93:e0:82: ed:8b:35:17:89:38:25:2b:d6:a7:16:7c:7d:21:07:67:23:39: 70:68:1f:63:37:65:2f:55:bd:e1:2b:0e:cb:a5:f6:07:ce:8e: b0:fe:b6:7c:96:9d:de:01:93:9a:97:f3:28:e5:ce:75:4a:c1: 92:c5:1f:e5:1d:b1:a6:51:79:5e:1b:fa:49:1b:7d:d0:86:6a: d1:30:2e:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDNGOTExMC8GA1UEBRMoMzM2MkFDNThFREIxODlDRjI1NzgzQzI3RDkwQTdEMkZB MzI5NzdDNTAeFw0yNTA1MTMwNzE3MzdaFw0yNTA1MjAwNzE3MzdaMBgxFjAUBgNV BAMTDTY4MjJmMjExLTM3OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9I92DTon6TgYsS8hZfNCLYOtuqk0wByX2YCATaf64eTzKfhMn2qLWtpyEElCH UM7AcURGLXvS0bCNwivOaMW3P1BkCXpzfylsjBJo9w90V57ToMhhSoKEhtIKFFYb t53zbmRzknjmf2SBX/ML0tXkVcSuYvrD4xvwjZmXY7C0W/WQchsw7bNehKwvO8ON J2rwYL08a2PwWASLEL8Wo11iRvGq1hM4p9BahzG0EhR0PdWuNqw3ohnUiZyfbPuL T9ckMOLBE9T/YjFeO9jgQLhU14FfsNRDi+8BKu48U0UzzfpRY9hDPSC+4oRl0MZe nKbCViudLQVMZshc30mmCijpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWFC7Jl81 xJRo+9Q8LLo6Qh6krIcwHwYDVR0jBBgwFoAUM2KsWO2xic8leDwn2Qp9L6Mpd8Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEM0Y5LzEyMjIzNkU2MThD NzExRjA4MDU0MTc3RUM0RjlBRTAyL00yS3NXTzJ4aWM4bGVEd24yUXA5TDZNcGQ4 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTJLc1dPMnhpYzhsZUR3bjJRcDlMNk1wZDhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE M0Y5LzEyMjIzNkU2MThDNzExRjA4MDU0MTc3RUM0RjlBRTAyL00yS3NXTzJ4aWM4 bGVEd24yUXA5TDZNcGQ4VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJvAUcl50NX5PVXlf6VgazGDWAG1o4IUh/DibvDqPaXz0Y85nyIXMgOT 8bgyO4S+3YHncIla08O2CbSWpL3sxQN+LraAq69JgtkqyMJy74mNT1w9GHIdEVWj g63LtpIQ//yQVTwBH060HpzIium7c78kv7C42pOkOl7rR39zFVYtlgGWCNimJsd1 j5vVBtCZVOg916nseI1EuyjB28fMb/D9Ft+cdKsnA5FsgTYajxnRIJPggu2LNReJ OCUr1qcWfH0hB2cjOXBoH2M3ZS9VveErDsul9gfOjrD+tnyWnd4Bk5qX8yjlznVK wZLFH+UdsaZReV4b+kkbfdCGatEwLss= -----END CERTIFICATE-----Generated at Tue May 13 22:04:12 2025 by rpki-client