$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft File: aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft (raw, json) Hash identifier: N7vTOJKJFHO57D0GKdPccQK/oGyIV+5G8/b997qJDCs= Subject key identifier: 1A:13:DC:97:EA:05:17:A0:CD:10:6D:77:87:24:14:CC:79:FE:14:50 Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 22BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft Manifest number: 2278 Signing time: Fri 30 May 2025 16:03:06 +0000 Manifest this update: Fri 30 May 2025 16:03:06 +0000 Manifest next update: Fri 06 Jun 2025 16:03:06 +0000 Files and hashes: 1: aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl (hash: f7C0DWlMcXewt+VGcEMSPCd0QPl9qjNKpFc64NGKE9w=) 2: 443C3AF2D3F611EFB03C5C14C4F9AE02.roa (hash: QalrWEPHK1c0+wAh4Y9v/QxVAuOH9u4KL51JrDmBQPs=) 3: DD73806ED3C811EF9D76942FC4F9AE02.roa (hash: yV/SjGOrZoU6XjMAo/QC3pR5jQlSni/vmLDt0r4ftkA=) 4: 1AC9199AD3CB11EF84052053C4F9AE02.roa (hash: 3g8CG6eXI2y/sKSche4ErWaN1/woBDrqwhgjSA2yZ4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8891 (0x22bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333, serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: May 30 16:03:06 2025 GMT Not After : Jun 6 16:03:06 2025 GMT Subject: CN=6839d6ba-0709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4b:90:57:d9:10:3f:e7:9b:99:44:cc:0a:e4: 6d:e2:ed:94:8c:ff:fa:8b:61:44:71:20:b3:6b:05: 60:4c:c5:97:43:2e:60:ba:a7:87:79:50:85:33:5a: bc:dd:07:a3:aa:e5:ae:8b:2d:38:c4:fb:31:0f:80: f5:31:bf:92:1a:5c:a7:de:32:9a:66:2c:63:06:b1: 56:72:03:32:c7:46:06:8d:54:5b:98:ad:83:5f:13: 10:63:cf:86:ea:94:bb:89:f1:fb:92:64:ca:1c:22: a1:21:0a:e4:ae:8d:f2:ef:12:9b:c7:5e:f2:51:5f: d8:d5:46:cf:9b:61:31:e8:6c:2a:a8:51:5e:3b:36: 53:fc:35:c7:fd:5e:d6:5e:88:53:36:f4:b1:9d:fc: c5:d9:2c:d3:11:f3:ec:f3:67:75:56:d3:7c:b2:49: 5e:98:d1:b0:38:46:5f:16:df:97:a2:7b:c7:72:1a: 8c:2b:72:18:d4:3e:5b:90:6a:d7:b6:d9:58:dc:3a: d6:a5:3b:43:7c:29:8f:30:01:0d:16:41:a9:18:68: 54:80:da:78:7d:39:5c:c7:ad:4e:19:7d:a3:10:96: ee:df:c3:59:ee:a6:a7:f8:1e:ed:7a:eb:1a:ff:b2: 32:e6:b4:4f:93:20:e0:ca:5d:d4:81:d3:85:48:22: d5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:13:DC:97:EA:05:17:A0:CD:10:6D:77:87:24:14:CC:79:FE:14:50 X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:58:7b:37:47:35:88:73:6d:be:64:42:9d:cc:69:0d:d8:17: f7:df:5c:6c:d3:ba:4c:9f:cd:13:74:1b:bd:ef:54:ad:26:eb: 3a:89:52:4f:80:2c:d6:6c:88:53:ea:a3:37:30:01:36:35:85: 07:94:aa:11:57:75:08:39:c4:6d:31:1f:d5:ca:b1:b0:37:91: 24:d6:95:52:6f:6a:86:7c:ba:68:c3:72:f4:e4:c3:36:4b:74: 1f:5a:86:ba:d7:42:c7:7b:4f:9c:09:ce:32:7a:63:55:54:9c: 31:66:ab:32:12:20:ee:aa:2b:63:35:35:fe:28:ea:aa:1b:b9: f4:f9:12:6f:5c:f0:e5:cc:34:67:5e:39:f3:29:a3:0a:e3:f3: d8:01:12:db:0f:26:09:de:b0:70:b4:97:2f:2e:73:68:04:41: de:44:ce:82:5f:ac:19:34:71:a8:43:d7:4a:52:af:42:d7:9b: b9:cc:98:4f:70:0e:41:9d:52:c0:42:5f:d9:64:c7:1d:30:0f: f8:e1:45:c4:37:0f:05:43:2f:b8:22:cd:ea:2c:62:91:86:27: 0e:ac:f5:9f:b6:4a:0d:0e:2d:a4:2a:54:63:a1:bd:32:d5:48: 4b:27:bf:b3:2c:31:6e:a1:7f:24:17:47:08:9e:18:65:3c:f6: 57:69:8e:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjUwNTMwMTYwMzA2WhcNMjUwNjA2MTYwMzA2WjAYMRYwFAYD VQQDEw02ODM5ZDZiYS0wNzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0uQV9kQP+ebmUTMCuRt4u2UjP/6i2FEcSCzawVgTMWXQy5guqeHeVCFM1q8 3QejquWuiy04xPsxD4D1Mb+SGlyn3jKaZixjBrFWcgMyx0YGjVRbmK2DXxMQY8+G 6pS7ifH7kmTKHCKhIQrkro3y7xKbx17yUV/Y1UbPm2Ex6GwqqFFeOzZT/DXH/V7W XohTNvSxnfzF2SzTEfPs82d1VtN8sklemNGwOEZfFt+XonvHchqMK3IY1D5bkGrX ttlY3DrWpTtDfCmPMAENFkGpGGhUgNp4fTlcx61OGX2jEJbu38NZ7qan+B7teusa /7Iy5rRPkyDgyl3UgdOFSCLVxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoT3Jfq BRegzRBtd4ckFMx5/hRQMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzMy8wNjVEQTNCQUI4NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6 S2N3NmVHM3JlRmZpd2tJUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIWHs3RzWIc22+ZEKdzGkN2Bf331xs07pMn80TdBu971StJus6iVJP gCzWbIhT6qM3MAE2NYUHlKoRV3UIOcRtMR/VyrGwN5Ek1pVSb2qGfLpow3L05MM2 S3QfWoa610LHe0+cCc4yemNVVJwxZqsyEiDuqitjNTX+KOqqG7n0+RJvXPDlzDRn XjnzKaMK4/PYARLbDyYJ3rBwtJcvLnNoBEHeRM6CX6wZNHGoQ9dKUq9C15u5zJhP cA5BnVLAQl/ZZMcdMA/44UXENw8FQy+4Is3qLGKRhicOrPWftkoNDi2kKlRjob0y 1UhLJ7+zLDFuoX8kF0cInhhlPPZXaY4y -----END CERTIFICATE-----Generated at Sat May 31 16:36:48 2025 by rpki-client