$ rpki-client -vvf rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft File: u5rRr2kxSy7y9klB8Db94PfMTwI.mft (raw, json) Hash identifier: kntcgKasPnm0M8Tm7rBAFU5FBt2XZJsYUlXGmpvQjGg= Subject key identifier: 9C:01:1A:8F:7A:59:F4:CF:D1:D3:FD:00:C3:81:77:67:18:50:4B:45 Authority key identifier: BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02 Certificate issuer: /CN=A911DA8C/serialNumber=BB9AD1AF69314B2EF2F64941F036FDE0F7CC4F02 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft Manifest number: 0130 Signing time: Sun 13 Apr 2025 00:54:01 +0000 Manifest this update: Sun 13 Apr 2025 00:54:01 +0000 Manifest next update: Sun 20 Apr 2025 00:54:01 +0000 Files and hashes: 1: u5rRr2kxSy7y9klB8Db94PfMTwI.crl (hash: 5Ru0rBUmMAKm9BO5AL0ux+4Cc5tXhvYxNoRgic8YdQw=) 2: B6369EA2521711EE899DAC80C4F9AE02.roa (hash: HmUyjBFHI1+/W084EHPJ3tp/TeXvZpxhICsUCVrwFxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.crl rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 00:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DA8C, serialNumber=BB9AD1AF69314B2EF2F64941F036FDE0F7CC4F02 Validity Not Before: Apr 13 00:54:01 2025 GMT Not After : Apr 20 00:54:01 2025 GMT Subject: CN=67fb0b29-e9d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e0:8d:09:ec:37:f3:6e:5f:40:2f:40:ec:80: f9:4a:ef:24:91:f5:44:5d:ff:dc:15:0d:28:89:f6: 0d:3a:1c:0d:d9:5a:52:2b:f6:72:94:a1:0f:9b:4c: 6e:37:bd:c0:86:be:b7:86:9a:1a:ea:28:8c:b6:59: 09:40:e8:81:df:cf:85:e6:c6:0d:9d:f7:17:2c:dc: a9:d3:a6:16:ed:d1:31:8c:47:3d:95:82:cd:d9:2b: 70:11:bf:37:fc:14:47:18:3a:0d:3a:1d:12:cb:66: 59:c0:e9:04:42:d5:ed:a8:fb:b8:49:3d:66:36:af: 8e:b7:15:9b:3f:88:60:58:f7:7f:e4:ea:32:4c:86: 05:49:75:b3:6a:aa:04:d9:21:30:b1:2d:6f:44:69: e0:6f:82:bc:7d:4d:07:61:36:d6:5e:90:8c:d5:64: 61:bb:ef:de:52:4d:43:22:62:de:5f:60:ec:95:6e: 7b:0c:df:7e:17:23:6c:0a:dd:4f:9d:96:b7:ba:18: 92:4d:de:d6:b0:37:c8:56:06:88:c8:11:7d:3e:f2: aa:4a:4c:36:06:1c:2f:c0:ee:e5:69:79:03:e8:b5: 10:6d:90:27:e8:ab:54:68:48:c1:37:df:b9:94:a7: 6e:1a:8e:6f:a8:69:e7:e2:a9:6a:26:9f:61:88:28: 67:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:01:1A:8F:7A:59:F4:CF:D1:D3:FD:00:C3:81:77:67:18:50:4B:45 X509v3 Authority Key Identifier: keyid:BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:c0:3b:ff:c6:e5:65:28:f5:b3:8c:3f:ec:48:67:74:56:bc: 77:01:2f:c9:92:04:ff:c7:a2:4e:67:a5:02:22:2f:3c:f1:50: e5:3f:1d:cc:a8:c5:a8:61:f9:0d:4a:d0:9d:77:41:37:11:32: a2:9e:d6:a4:76:33:13:39:c8:94:6f:95:db:de:46:11:41:c0: 62:e6:5f:1b:c1:83:7a:b9:84:71:d5:33:e4:78:8d:25:83:94: f5:18:fb:ae:ad:e5:f5:4a:ea:80:04:5c:c6:3c:96:2f:68:b1: f2:8a:01:c8:91:59:c5:75:f4:a6:e1:0e:e6:7f:1c:87:a9:3c: 25:88:a1:42:8f:6a:bc:85:c5:d7:03:e5:db:94:35:5a:a1:13: 84:03:27:c6:2f:b3:f3:72:1c:ba:f6:b0:a2:24:87:1a:1a:a9: bc:b0:58:ec:a8:3b:a4:95:77:47:17:f1:87:99:d9:a5:3b:8a: 5d:ba:07:de:55:fd:b1:72:48:da:b0:93:3f:1c:52:a3:78:8c: 0f:50:7e:b3:50:25:fa:2f:0d:b5:14:2a:b0:c5:68:65:9b:71: 24:76:ab:f4:87:6b:9b:53:8f:f0:59:f9:f1:85:95:f6:b6:88: ad:31:c6:ad:3d:10:30:b9:b4:27:48:d0:4d:ab:3d:72:b2:49: 6d:25:05:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURBOEMxMTAvBgNVBAUTKEJCOUFEMUFGNjkzMTRCMkVGMkY2NDk0MUYwMzZGREUw RjdDQzRGMDIwHhcNMjUwNDEzMDA1NDAxWhcNMjUwNDIwMDA1NDAxWjAYMRYwFAYD VQQDEw02N2ZiMGIyOS1lOWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOCNCew3825fQC9A7ID5Su8kkfVEXf/cFQ0oifYNOhwN2VpSK/ZylKEPm0xu N73Ahr63hpoa6iiMtlkJQOiB38+F5sYNnfcXLNyp06YW7dExjEc9lYLN2StwEb83 /BRHGDoNOh0Sy2ZZwOkEQtXtqPu4ST1mNq+OtxWbP4hgWPd/5OoyTIYFSXWzaqoE 2SEwsS1vRGngb4K8fU0HYTbWXpCM1WRhu+/eUk1DImLeX2DslW57DN9+FyNsCt1P nZa3uhiSTd7WsDfIVgaIyBF9PvKqSkw2BhwvwO7laXkD6LUQbZAn6KtUaEjBN9+5 lKduGo5vqGnn4qlqJp9hiChncwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwBGo96 WfTP0dP9AMOBd2cYUEtFMB8GA1UdIwQYMBaAFLua0a9pMUsu8vZJQfA2/eD3zE8C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREE4Qy81NDZFRjNCQTRC OTkxMUVFQkIzNjBCNTVDNEY5QUUwMi91NXJScjJreFN5N3k5a2xCOERiOTRQZk1U d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U1clJyMmt4U3k3eTlrbEI4RGI5NFBmTVR3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REE4Qy81NDZFRjNCQTRCOTkxMUVFQkIzNjBCNTVDNEY5QUUwMi91NXJScjJreFN5 N3k5a2xCOERiOTRQZk1Ud0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJwDv/xuVlKPWzjD/sSGd0Vrx3AS/JkgT/x6JOZ6UCIi888VDlPx3M qMWoYfkNStCdd0E3ETKintakdjMTOciUb5Xb3kYRQcBi5l8bwYN6uYRx1TPkeI0l g5T1GPuureX1SuqABFzGPJYvaLHyigHIkVnFdfSm4Q7mfxyHqTwliKFCj2q8hcXX A+XblDVaoROEAyfGL7Pzchy69rCiJIcaGqm8sFjsqDuklXdHF/GHmdmlO4pdugfe Vf2xckjasJM/HFKjeIwPUH6zUCX6Lw21FCqwxWhlm3Ekdqv0h2ubU4/wWfnxhZX2 toitMcatPRAwubQnSNBNqz1yskltJQW6 -----END CERTIFICATE-----Generated at Sun Apr 13 04:20:14 2025 by rpki-client