$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: OLMko89K0j44uYLzwL6nCaTLoOmvmh1OFCZSrp0/m/E= Subject key identifier: 6A:DA:46:A1:A7:A3:4E:0D:DE:EA:CE:D1:3A:2A:34:E5:36:8A:2D:AC Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 07F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 07F3 Signing time: Wed 16 Apr 2025 20:40:53 +0000 Manifest this update: Wed 16 Apr 2025 20:40:52 +0000 Manifest next update: Wed 23 Apr 2025 20:40:52 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: 1qzTqJOMY3HJmN/VuYjK6kqvAeNMZlfdnxAVNKfZDmI=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: k50ZB9p61nq4gYFWFacngoDcN0U36+Btc6YIKa1PUKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 20:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462, serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: Apr 16 20:40:52 2025 GMT Not After : Apr 23 20:40:52 2025 GMT Subject: CN=680015d5-486f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:81:1f:43:b6:d4:4d:91:ea:8c:2e:27:83:30: 53:50:64:a0:e2:a5:9b:4d:8d:b4:8e:84:63:b8:95: ce:a1:39:2f:b2:aa:ed:df:b7:1f:c6:20:d1:c3:64: 2f:3e:8b:a2:4a:61:75:00:83:aa:f5:06:67:49:8c: f4:74:72:65:5b:ed:e4:4b:32:dc:e7:8f:bb:8a:d0: 8f:73:0b:39:5d:e6:30:de:0f:f4:9e:03:2e:f5:1e: ec:33:81:ad:ad:e9:18:11:77:22:6d:63:b7:a7:a6: 1f:69:d4:4e:71:5a:0e:24:c2:4c:72:39:f1:42:78: 9a:3c:13:a1:d5:70:fc:79:03:70:de:80:52:c9:9f: 61:e0:96:bd:a5:37:0d:0d:3c:ca:48:93:5a:80:54: 71:49:e8:af:54:aa:b9:6a:49:c7:f9:01:3b:0e:14: f3:72:1a:f0:71:3a:f3:1f:7d:21:b1:d1:48:66:cd: 4a:ac:f8:0f:82:6c:5c:b3:ce:64:26:66:13:22:16: 2f:cb:e6:85:38:9e:27:d2:e0:c5:1a:27:a1:26:45: ba:1e:47:6a:6e:06:78:8d:1c:19:11:26:09:51:29: 8c:b5:23:f9:4b:c0:ec:f3:ca:be:0a:29:32:a0:f3: ba:64:62:c3:72:f0:07:5f:be:0b:07:91:3c:cb:54: e0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:DA:46:A1:A7:A3:4E:0D:DE:EA:CE:D1:3A:2A:34:E5:36:8A:2D:AC X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:17:c1:39:3e:7c:11:2a:6a:8f:a7:1b:56:d0:3c:2a:39:80: ae:4d:3d:33:d9:e4:4d:f4:cb:36:dd:93:22:c6:b1:b6:c3:82: ce:65:7b:68:ba:f3:d5:7e:31:89:45:65:83:41:66:5a:e8:7e: f3:ab:b1:5d:1c:24:ac:f3:24:71:66:47:56:6e:03:17:c6:c2: 0f:4e:cc:73:50:c2:f8:0f:37:4a:b7:d2:51:a0:1f:7f:f4:1b: 6b:e9:ac:8a:f1:56:74:14:d5:71:b6:f7:1c:96:8b:fb:61:ae: d0:ed:e3:96:a1:c9:58:af:78:d1:ef:c2:46:5a:07:6b:3a:c6: b8:7a:27:36:2d:16:7a:af:c4:db:1d:06:34:4f:76:37:eb:ef: 67:85:85:d7:1d:d9:6d:8a:0e:9a:d7:21:98:41:3a:a4:dc:3a: b5:0c:90:85:32:12:76:e1:48:9c:3b:db:58:fd:e2:9a:11:09: f4:d4:66:1d:52:0e:b6:f2:f0:9e:9a:0c:27:6f:f8:8f:8e:70: 00:39:ee:53:95:c6:1e:55:bf:07:b0:ba:0e:46:0a:b8:19:bc: f9:6f:e3:ee:f7:a7:83:0c:66:ac:35:60:c6:d2:08:e8:60:de: d0:4d:c2:80:f3:af:f5:65:b3:dc:85:db:d2:1c:da:44:2d:d1: fe:ba:15:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjUwNDE2MjA0MDUyWhcNMjUwNDIzMjA0MDUyWjAYMRYwFAYD VQQDEw02ODAwMTVkNS00ODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoEfQ7bUTZHqjC4ngzBTUGSg4qWbTY20joRjuJXOoTkvsqrt37cfxiDRw2Qv PouiSmF1AIOq9QZnSYz0dHJlW+3kSzLc54+7itCPcws5XeYw3g/0ngMu9R7sM4Gt rekYEXcibWO3p6YfadROcVoOJMJMcjnxQniaPBOh1XD8eQNw3oBSyZ9h4Ja9pTcN DTzKSJNagFRxSeivVKq5aknH+QE7DhTzchrwcTrzH30hsdFIZs1KrPgPgmxcs85k JmYTIhYvy+aFOJ4n0uDFGiehJkW6HkdqbgZ4jRwZESYJUSmMtSP5S8Ds88q+Ciky oPO6ZGLDcvAHX74LB5E8y1TgOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGraRqGn o04N3urO0ToqNOU2ii2sMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdF8E5PnwRKmqPpxtW0DwqOYCuTT0z2eRN9Ms23ZMixrG2w4LOZXto uvPVfjGJRWWDQWZa6H7zq7FdHCSs8yRxZkdWbgMXxsIPTsxzUML4DzdKt9JRoB9/ 9Btr6ayK8VZ0FNVxtvcclov7Ya7Q7eOWoclYr3jR78JGWgdrOsa4eic2LRZ6r8Tb HQY0T3Y36+9nhYXXHdltig6a1yGYQTqk3Dq1DJCFMhJ24UicO9tY/eKaEQn01GYd Ug628vCemgwnb/iPjnAAOe5TlcYeVb8HsLoORgq4Gbz5b+Pu96eDDGasNWDG0gjo YN7QTcKA86/1ZbPchdvSHNpELdH+uhUP -----END CERTIFICATE-----Generated at Thu Apr 17 19:06:06 2025 by rpki-client