$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: mGjHKKVFDCtqhdOGOSYGc3Qxl2em4gsiLq0AOTv8rC0= Subject key identifier: E1:0C:96:38:D0:DA:99:C7:41:65:E3:B3:B2:4C:E1:0B:E2:8E:8E:EC Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0AAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 1309 Signing time: Wed 14 May 2025 19:37:26 +0000 Manifest this update: Wed 14 May 2025 19:37:25 +0000 Manifest next update: Wed 21 May 2025 19:37:25 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: qan+LaoqjGgfF/OMPXhZW3jlTb5fKuloK8AL0TUfOao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: May 14 19:37:25 2025 GMT Not After : May 21 19:37:25 2025 GMT Subject: CN=6824f0f6-7eea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:0f:51:9c:7d:33:93:17:7c:f5:b4:cf:5c:84: cf:ab:c3:dd:c3:1d:27:aa:eb:fa:62:50:9a:9d:99: b1:2d:77:fd:3e:f9:e4:f6:a4:d0:19:00:dd:9a:ba: c9:1e:a4:10:2c:c6:23:14:68:ed:a2:31:fa:8c:ae: 00:39:ef:26:65:6a:9b:7b:7a:bf:5b:7e:d3:10:14: 59:cf:20:b0:40:38:96:bb:3f:13:5e:fa:60:f7:a8: 48:88:bf:85:e9:b7:ba:72:29:7d:38:60:7c:bf:dc: 5a:47:22:b8:59:4b:7d:f8:81:3f:8c:2c:c1:5a:5f: 02:6e:15:39:80:e1:8a:20:18:25:06:64:8f:90:fa: 3d:00:ea:1e:6a:c9:35:05:99:f2:bc:0a:80:7b:b7: 1a:9b:19:73:35:35:1c:bb:89:40:d6:be:e1:5c:8a: 3e:48:09:97:c4:53:63:bb:1b:48:d5:71:cd:d5:76: f9:ec:a8:be:ec:d5:02:8b:59:83:d4:92:85:a8:fb: 57:18:a1:f2:2b:a2:04:1d:9e:99:ad:1d:ee:fe:c4: f7:5c:e1:f0:95:c0:ce:30:4f:5f:fe:b3:d2:8d:6d: 78:ff:42:35:33:e0:a4:b4:9c:03:3a:e1:bd:0d:98: 53:0c:63:12:48:0c:1c:9c:d2:24:f8:27:82:ac:b5: 53:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:0C:96:38:D0:DA:99:C7:41:65:E3:B3:B2:4C:E1:0B:E2:8E:8E:EC X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:54:9d:c7:d7:dd:2a:53:92:5b:de:3a:82:76:cd:a4:63:d9: e7:bd:90:59:83:ac:1f:f2:40:44:4a:15:ee:0c:2e:18:47:9f: 62:ea:81:f4:f4:08:a9:e4:96:b2:bc:5c:30:59:6c:00:f4:19: f1:39:e9:52:fd:b2:be:f6:84:11:53:31:27:b1:b3:52:91:40: 63:8b:17:13:19:70:f6:a3:d0:2d:48:6b:bc:23:ad:5d:f8:d8: 27:4e:41:96:6f:0c:a2:24:9a:ba:f7:33:49:19:2d:39:79:52: de:6d:26:ea:dc:97:7b:82:a1:be:a3:fd:f3:a8:bb:e4:62:8f: 93:eb:37:ab:20:f6:aa:5b:9a:4f:40:11:62:ea:90:42:2a:7c: 56:9d:22:ea:1d:83:82:24:fa:93:c3:2e:68:58:0a:11:d1:0b: 64:6e:41:10:23:ae:cb:4e:b3:bd:d9:66:83:7e:36:68:63:27: e9:3f:a6:a1:51:e2:1f:a4:8d:8f:8c:83:87:17:0d:0c:10:aa: 9a:39:1d:e9:0c:0a:1a:36:a4:54:14:cf:11:d9:a1:f4:5b:d6: 36:b2:c5:f0:00:53:f2:0a:07:a8:aa:d1:a4:ac:14:85:0d:0a: 5b:14:0e:bd:dd:5e:79:2c:dd:df:b1:46:83:6c:0b:f1:76:25: 4e:88:5b:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUwNTE0MTkzNzI1WhcNMjUwNTIxMTkzNzI1WjAYMRYwFAYD VQQDEw02ODI0ZjBmNi03ZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6w9RnH0zkxd89bTPXITPq8Pdwx0nquv6YlCanZmxLXf9Pvnk9qTQGQDdmrrJ HqQQLMYjFGjtojH6jK4AOe8mZWqbe3q/W37TEBRZzyCwQDiWuz8TXvpg96hIiL+F 6be6cil9OGB8v9xaRyK4WUt9+IE/jCzBWl8CbhU5gOGKIBglBmSPkPo9AOoeask1 BZnyvAqAe7camxlzNTUcu4lA1r7hXIo+SAmXxFNjuxtI1XHN1Xb57Ki+7NUCi1mD 1JKFqPtXGKHyK6IEHZ6ZrR3u/sT3XOHwlcDOME9f/rPSjW14/0I1M+CktJwDOuG9 DZhTDGMSSAwcnNIk+CeCrLVTYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEMljjQ 2pnHQWXjs7JM4Qvijo7sMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQVJ3H190qU5Jb3jqCds2kY9nnvZBZg6wf8kBEShXuDC4YR59i6oH0 9Aip5JayvFwwWWwA9BnxOelS/bK+9oQRUzEnsbNSkUBjixcTGXD2o9AtSGu8I61d +NgnTkGWbwyiJJq69zNJGS05eVLebSbq3Jd7gqG+o/3zqLvkYo+T6zerIPaqW5pP QBFi6pBCKnxWnSLqHYOCJPqTwy5oWAoR0QtkbkEQI67LTrO92WaDfjZoYyfpP6ah UeIfpI2PjIOHFw0MEKqaOR3pDAoaNqRUFM8R2aH0W9Y2ssXwAFPyCgeoqtGkrBSF DQpbFA693V55LN3fsUaDbAvxdiVOiFsL -----END CERTIFICATE-----Generated at Fri May 16 18:14:09 2025 by rpki-client