$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: LNUGILDlMLG4vCxqSW7brVi3eQoensOHicwiILQPvW4= Subject key identifier: F3:8F:DE:57:32:4F:00:F7:67:0E:12:D9:B6:61:DB:FD:D4:3E:C5:80 Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 3485 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 3480 Signing time: Tue 06 May 2025 14:59:32 +0000 Manifest this update: Tue 06 May 2025 14:59:31 +0000 Manifest next update: Tue 13 May 2025 14:59:31 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: 375OdOlGveQF73pRb2/jBSRwJylnwh1hmm7wP/Y61mY=) 2: 450B9058E3B511EF8A23824BC4F9AE02.roa (hash: r37bpTTUcU1lH0DUSQwsabLyee9wQt2kebjFicJO4a8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 14:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13445 (0x3485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: May 6 14:59:31 2025 GMT Not After : May 13 14:59:31 2025 GMT Subject: CN=681a23d4-3240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:ce:f7:ce:b5:05:6b:1e:e4:8a:64:c9:1b: 46:98:3f:ee:77:75:48:87:03:bc:20:f3:14:bf:cc: 11:4e:f4:bf:2a:c2:ee:9e:20:6b:f2:81:a1:d0:cc: 9b:66:a6:6b:37:2f:82:72:ac:71:4f:b2:85:59:20: c5:79:0b:31:e8:f9:8b:14:df:3c:79:e0:16:50:d8: 6f:0d:53:d0:21:7a:ee:68:28:7a:0e:60:18:68:c8: c0:d9:53:06:8d:07:c4:3f:e4:db:96:c5:ae:b4:fb: 89:9c:1d:df:75:e4:f8:c6:ca:ba:90:36:c1:c7:fa: db:2c:0e:9b:88:50:88:14:87:9a:8d:e4:81:f8:e4: ea:e4:69:0b:a6:02:18:48:76:7b:89:75:a7:d7:a7: 4c:2f:27:fb:f0:71:a6:a1:74:11:21:93:f0:3d:17: f8:34:1f:4c:55:52:70:f2:ca:d1:40:54:f0:de:96: a3:c4:ad:6a:8f:bb:1f:31:22:7d:ae:52:e6:3e:73: b6:4d:88:1a:cf:d7:db:16:c8:39:c2:54:ea:c3:9c: 7c:6a:d1:fc:9a:77:7e:72:24:95:15:9f:9b:91:b0: 67:a2:f2:0e:27:60:f8:3c:a2:ff:6b:1e:29:b5:29: 72:81:a7:5d:b7:38:6f:a0:3c:37:6a:f6:35:b4:a1: bc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8F:DE:57:32:4F:00:F7:67:0E:12:D9:B6:61:DB:FD:D4:3E:C5:80 X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:0f:03:89:9a:bd:e9:1d:9e:a8:38:0f:3f:77:a3:00:fa:35: 42:05:cc:be:6e:a3:50:be:67:f6:28:6c:c5:ca:4f:d3:d5:f5: 52:bc:17:47:7b:c3:0f:1e:8b:5f:19:8c:de:6e:5f:53:e6:92: 66:3c:37:83:72:00:17:7e:8e:b8:56:2c:d9:06:a8:62:fd:6f: 1a:c1:e4:73:2c:e0:9b:be:79:99:bb:d4:44:69:3b:d8:d7:f1: 75:e1:cf:0d:d0:b1:2e:78:77:a9:bd:fb:98:5d:82:b4:ca:4f: d6:8b:b0:22:0b:90:96:c9:f2:f6:68:b7:83:ee:fc:f3:74:3b: c8:ba:2b:fa:5c:e0:04:0d:84:a6:20:e9:2e:1e:6a:fe:90:dc: 6a:b1:55:59:f1:a4:ce:06:d8:82:bd:50:45:50:25:4d:ea:b1: 48:3c:e3:48:2a:2c:0b:62:c9:9d:69:c1:6b:06:b5:2f:46:94: 45:29:0b:7d:5c:32:fd:8a:f6:9d:a1:2a:0f:85:ec:58:fd:47: bd:d6:4b:b9:b4:77:54:b7:4b:00:15:c5:71:b7:f5:1b:ca:8b: f1:e5:80:58:7d:77:f6:34:25:90:23:86:56:0a:5a:4a:cd:d3: 63:b4:8e:19:95:5c:cd:96:06:bb:24:11:4e:dc:30:14:e0:4b: 00:95:2a:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUwNTA2MTQ1OTMxWhcNMjUwNTEzMTQ1OTMxWjAYMRYwFAYD VQQDEw02ODFhMjNkNC0zMjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjnO9861BWse5IpkyRtGmD/ud3VIhwO8IPMUv8wRTvS/KsLuniBr8oGh0Myb ZqZrNy+CcqxxT7KFWSDFeQsx6PmLFN88eeAWUNhvDVPQIXruaCh6DmAYaMjA2VMG jQfEP+TblsWutPuJnB3fdeT4xsq6kDbBx/rbLA6biFCIFIeajeSB+OTq5GkLpgIY SHZ7iXWn16dMLyf78HGmoXQRIZPwPRf4NB9MVVJw8srRQFTw3pajxK1qj7sfMSJ9 rlLmPnO2TYgaz9fbFsg5wlTqw5x8atH8mnd+ciSVFZ+bkbBnovIOJ2D4PKL/ax4p tSlygaddtzhvoDw3avY1tKG8pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOP3lcy TwD3Zw4S2bZh2/3UPsWAMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwDwOJmr3pHZ6oOA8/d6MA+jVCBcy+bqNQvmf2KGzFyk/T1fVSvBdH e8MPHotfGYzebl9T5pJmPDeDcgAXfo64VizZBqhi/W8aweRzLOCbvnmZu9REaTvY 1/F14c8N0LEueHepvfuYXYK0yk/Wi7AiC5CWyfL2aLeD7vzzdDvIuiv6XOAEDYSm IOkuHmr+kNxqsVVZ8aTOBtiCvVBFUCVN6rFIPONIKiwLYsmdacFrBrUvRpRFKQt9 XDL9ivadoSoPhexY/Ue91ku5tHdUt0sAFcVxt/Ubyovx5YBYfXf2NCWQI4ZWClpK zdNjtI4ZlVzNlga7JBFO3DAU4EsAlSo9 -----END CERTIFICATE-----Generated at Thu May 8 05:28:47 2025 by rpki-client