$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft File: d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft (raw, json) Hash identifier: UCZRgNEvDAO2t5qlKOud52BpKgaeHRKdASxIwS6T0iE= Subject key identifier: 15:A3:61:7A:0D:EC:70:6C:26:C0:4E:6B:97:A3:4D:7D:43:DF:6F:E6 Authority key identifier: 77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 Certificate issuer: /CN=A9112320/serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft Manifest number: 010B Signing time: Sat 31 May 2025 23:44:39 +0000 Manifest this update: Sat 31 May 2025 23:44:39 +0000 Manifest next update: Sat 07 Jun 2025 23:44:39 +0000 Files and hashes: 1: d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl (hash: BmkknIRGAZDkRNybQRAxTpHqth3XlStueIl1aOrprM8=) 2: 7EE26732EB2411EEBDA7715FC4F9AE02.roa (hash: tvLrXzmWLi+yYUfuM7mTXsSMiwGKfb5ZJS93I35M4zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Validity Not Before: May 31 23:44:39 2025 GMT Not After : Jun 7 23:44:39 2025 GMT Subject: CN=683b9467-064e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0c:10:e4:f2:c3:7d:36:1c:21:54:89:6a:26: 03:84:a8:55:65:a3:ad:30:05:c9:b9:a9:cf:50:ae: f6:96:a6:e0:a2:d2:b5:c6:09:b1:3e:f8:c2:cb:4b: 73:fb:7f:fa:b8:3f:18:8f:dc:b3:a9:60:2d:2e:09: 5a:3f:2d:75:e3:3c:06:5a:cf:40:dc:1a:d3:35:07: 6d:8a:dd:c4:08:24:eb:95:b3:6c:7c:e3:b2:2a:d2: 81:59:2b:81:9c:27:14:08:8e:d4:79:f1:11:92:77: 68:72:98:08:91:04:03:ca:e9:b1:a4:ff:fe:b3:6b: 68:b7:d6:89:5a:24:60:41:b6:84:56:42:6b:50:c0: 6c:74:7b:4a:36:2d:4d:64:e3:41:0b:01:7e:45:fd: e3:c6:b6:c9:df:b3:7f:84:6b:bc:d9:8c:c0:8e:00: f9:4d:23:f5:e1:fb:0e:35:55:56:bb:07:be:f1:30: 8e:83:00:51:80:71:1a:05:6d:ef:ee:2c:24:46:7b: d4:98:cb:52:94:f8:bc:03:54:2c:88:a7:36:a8:b3: c2:0d:c2:7e:91:b2:57:db:80:2f:a1:57:b0:55:90: aa:ca:44:82:8e:c2:f6:7f:d7:9b:ab:be:79:3c:af: 1e:dc:a5:4c:02:db:dd:7b:af:4f:6a:f6:4b:df:92: 18:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A3:61:7A:0D:EC:70:6C:26:C0:4E:6B:97:A3:4D:7D:43:DF:6F:E6 X509v3 Authority Key Identifier: keyid:77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ce:64:bd:7e:82:d4:2e:f0:65:1c:0f:fc:1d:76:62:37:ae: 3c:25:f1:20:d2:82:e6:0d:a9:30:18:75:57:bb:cd:b6:ff:f9: fd:43:57:31:bc:f9:cb:b5:3a:72:87:8f:2c:2b:a5:f1:79:c6: 87:b5:c6:19:5f:ea:06:6e:15:70:33:11:86:08:02:f1:73:92: 7c:7c:93:7d:56:24:89:5a:52:76:7e:79:94:17:52:b8:7c:1e: cf:b8:78:76:01:ea:11:cf:26:36:8d:7b:c1:fa:ef:71:62:9c: cb:1f:b9:95:5e:d8:80:25:ef:bf:7e:28:53:4d:b6:1c:d7:b6: fc:6f:ec:0c:a3:1a:db:dd:78:b0:35:43:c2:5c:9b:87:4c:be: 77:69:72:31:c1:cb:d5:38:86:fc:45:80:f0:3e:4d:de:a0:f8: 1f:77:15:b8:dd:c6:a2:44:51:9a:ec:87:f8:24:6e:e4:e8:b9: 44:a3:02:ce:4f:b0:0c:2e:c5:64:e2:18:be:c4:75:6a:e2:04: 43:9a:2e:82:46:5d:ea:de:91:3b:b4:bd:21:e9:5b:fe:b4:26: 0c:a7:72:17:f3:be:40:22:7d:52:2f:fe:ac:1d:7a:e4:d4:0b: 60:82:30:ed:f1:b1:ce:63:64:bc:2a:d5:ea:89:b3:f3:7d:b9: 57:fd:d6:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDc3RUM0ODY5MkQwNDI3MDI5NzhEQ0QwQjY4RTk0MEI4 RDc3MjNFNTIwHhcNMjUwNTMxMjM0NDM5WhcNMjUwNjA3MjM0NDM5WjAYMRYwFAYD VQQDEw02ODNiOTQ2Ny0wNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgwQ5PLDfTYcIVSJaiYDhKhVZaOtMAXJuanPUK72lqbgotK1xgmxPvjCy0tz +3/6uD8Yj9yzqWAtLglaPy114zwGWs9A3BrTNQdtit3ECCTrlbNsfOOyKtKBWSuB nCcUCI7UefERkndocpgIkQQDyumxpP/+s2tot9aJWiRgQbaEVkJrUMBsdHtKNi1N ZONBCwF+Rf3jxrbJ37N/hGu82YzAjgD5TSP14fsONVVWuwe+8TCOgwBRgHEaBW3v 7iwkRnvUmMtSlPi8A1QsiKc2qLPCDcJ+kbJX24AvoVewVZCqykSCjsL2f9ebq755 PK8e3KVMAtvde69PavZL35IYBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWjYXoN 7HBsJsBOa5ejTX1D32/mMB8GA1UdIwQYMBaAFHfsSGktBCcCl43NC2jpQLjXcj5S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC8yOEM2Q0NFNkE5 RjAxMUVFOTMxNUVENkNDNEY5QUUwMi9kLXhJYVMwRUp3S1hqYzBMYU9sQXVOZHlQ bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2QteElhUzBFSndLWGpjMExhT2xBdU5keVBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC8yOEM2Q0NFNkE5RjAxMUVFOTMxNUVENkNDNEY5QUUwMi9kLXhJYVMwRUp3 S1hqYzBMYU9sQXVOZHlQbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbzmS9foLULvBlHA/8HXZiN648JfEg0oLmDakwGHVXu822//n9Q1cx vPnLtTpyh48sK6XxecaHtcYZX+oGbhVwMxGGCALxc5J8fJN9ViSJWlJ2fnmUF1K4 fB7PuHh2AeoRzyY2jXvB+u9xYpzLH7mVXtiAJe+/fihTTbYc17b8b+wMoxrb3Xiw NUPCXJuHTL53aXIxwcvVOIb8RYDwPk3eoPgfdxW43caiRFGa7If4JG7k6LlEowLO T7AMLsVk4hi+xHVq4gRDmi6CRl3q3pE7tL0h6Vv+tCYMp3IX875AIn1SL/6sHXrk 1AtggjDt8bHOY2S8KtXqibPzfblX/dbd -----END CERTIFICATE-----Generated at Mon Jun 2 20:24:35 2025 by rpki-client