$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: qQYGL1K2m2lZ6axpLA4Qc3NkLkBQYc9viFAdLgDrM7o= Subject key identifier: 93:E5:D4:9F:50:3A:8F:E2:B4:83:C2:75:2F:EB:C5:22:33:5B:7C:F5 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 14 Signing time: Sat 31 May 2025 07:34:42 +0000 Manifest this update: Sat 31 May 2025 07:34:41 +0000 Manifest next update: Sat 07 Jun 2025 07:34:41 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: WzgCSo8xbx4BI/8cNRcREeqiuBH1Fzg6i8EjKYFIgUI=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 1rT5RRmmBu2dtW7r80awQ5qBk4VrGxHD3sFnkgNZ9lQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: May 31 07:34:41 2025 GMT Not After : Jun 7 07:34:41 2025 GMT Subject: CN=683ab112-caca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:65:72:7f:3c:66:e3:6a:8f:a1:10:fd:12:21: 32:d7:fc:49:bc:b2:76:79:05:f5:d0:44:79:00:94: 48:c1:51:8c:16:34:34:95:cd:d4:24:43:5d:7f:3e: d7:31:b7:3a:3d:07:ec:5a:84:8e:cd:a9:6b:d2:25: c4:aa:7b:c1:c6:51:76:58:aa:4d:ab:78:31:f0:70: cd:80:21:9f:01:88:6e:9e:f0:4e:a9:23:f8:bb:68: 84:7c:eb:16:0e:2e:11:48:4b:12:d3:ca:e8:2b:08: 2e:d5:e8:5d:47:70:a4:be:ac:2d:4c:25:46:ee:20: 46:7c:a6:fa:14:be:4a:c3:a5:80:5b:da:ad:a5:ec: 95:3a:20:73:06:cd:02:78:c4:91:03:18:4a:5a:43: a6:ac:6c:ce:80:f1:71:2b:f6:84:12:ca:64:c8:80: 38:ff:67:d2:d5:e3:5d:29:97:dc:4c:a0:ce:5f:e7: da:0b:fa:4f:1a:15:18:58:4b:35:e8:51:5a:9b:d4: 7a:ab:1c:3d:8a:8c:00:00:83:28:7d:c7:90:d9:4e: 0f:07:94:af:ee:c3:eb:ad:96:6b:f8:41:44:10:23: da:f0:6a:e6:60:70:34:8f:04:10:c8:b2:43:34:d2: 73:48:20:44:cd:61:c3:8c:e1:de:d4:d5:d6:d8:63: 46:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E5:D4:9F:50:3A:8F:E2:B4:83:C2:75:2F:EB:C5:22:33:5B:7C:F5 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:11:82:25:9e:7d:92:2c:40:0b:fb:1a:ae:cd:55:b7:76:26: 0d:d2:e9:7d:cb:b4:a3:ab:83:7f:c4:89:a4:d3:1c:a0:fb:17: 20:80:20:29:6e:8c:70:49:55:ba:44:bc:e7:6b:ca:75:97:88: eb:3d:af:0b:54:84:1e:0c:53:36:66:cc:05:19:01:8a:9a:de: 15:5d:c5:3d:7e:66:33:cc:f7:52:a6:ec:24:59:fa:59:ba:f5: 0a:be:65:42:61:cb:03:c4:86:7d:bd:fa:25:d5:d0:ff:ba:0a: 56:67:1e:9f:4f:55:89:75:43:13:75:3b:2d:08:20:3e:41:45: 98:04:2a:99:9f:94:64:ec:b9:04:7a:39:cf:3b:72:59:b0:33: eb:b6:68:64:7a:f1:92:6a:20:b2:2b:1c:c3:88:d5:a6:49:df: 17:8c:a7:aa:46:1c:32:4e:dd:4f:cf:b7:73:fe:d7:62:1a:e8: 85:b7:73:1a:70:75:aa:c6:f1:9c:0b:f5:bb:8e:39:c9:a9:4d: ac:70:f5:9f:93:10:e7:bb:77:6f:9f:b4:92:b0:e5:d7:3c:e7: 00:cb:49:00:4c:e6:c8:c8:8c:e9:6c:ad:67:94:e0:fa:1f:df: 53:24:a2:81:d4:ae:df:55:23:99:73:e1:b7:03:da:2f:60:1d: 81:d4:d0:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTA1MzEwNzM0NDFaFw0yNTA2MDcwNzM0NDFaMBgxFjAUBgNV BAMTDTY4M2FiMTEyLWNhY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrZXJ/PGbjao+hEP0SITLX/Em8snZ5BfXQRHkAlEjBUYwWNDSVzdQkQ11/Ptcx tzo9B+xahI7NqWvSJcSqe8HGUXZYqk2reDHwcM2AIZ8BiG6e8E6pI/i7aIR86xYO LhFISxLTyugrCC7V6F1HcKS+rC1MJUbuIEZ8pvoUvkrDpYBb2q2l7JU6IHMGzQJ4 xJEDGEpaQ6asbM6A8XEr9oQSymTIgDj/Z9LV410pl9xMoM5f59oL+k8aFRhYSzXo UVqb1HqrHD2KjAAAgyh9x5DZTg8HlK/uw+utlmv4QUQQI9rwauZgcDSPBBDIskM0 0nNIIETNYcOM4d7U1dbYY0bjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUk+XUn1A6 j+K0g8J1L+vFIjNbfPUwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGoRgiWefZIsQAv7Gq7NVbd2Jg3S6X3LtKOrg3/EiaTTHKD7FyCAIClu jHBJVbpEvOdrynWXiOs9rwtUhB4MUzZmzAUZAYqa3hVdxT1+ZjPM91Km7CRZ+lm6 9Qq+ZUJhywPEhn29+iXV0P+6ClZnHp9PVYl1QxN1Oy0IID5BRZgEKpmflGTsuQR6 Oc87clmwM+u2aGR68ZJqILIrHMOI1aZJ3xeMp6pGHDJO3U/Pt3P+12Ia6IW3cxpw darG8ZwL9buOOcmpTaxw9Z+TEOe7d2+ftJKw5dc85wDLSQBM5sjIjOlsrWeU4Pof 31MkooHUrt9VI5lz4bcD2i9gHYHU0LM= -----END CERTIFICATE-----Generated at Sat May 31 16:49:09 2025 by rpki-client