$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: E0JylJAYGO+ZWy8jc5siJWQZ4i3gvCHKY6TxrLQbv4M= Subject key identifier: A7:32:97:0C:B4:30:AA:3D:B5:63:A8:64:C1:E2:48:EF:41:C8:47:33 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 016A Signing time: Sat 31 May 2025 03:32:00 +0000 Manifest this update: Sat 31 May 2025 03:32:00 +0000 Manifest next update: Sat 07 Jun 2025 03:32:00 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: xnzWLHTaxiEUZMKGIw+vw/JE2kq8MwC2QPUgLBwz3Y0=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: LEuGWO/AHJLUDwLeABLdjtuQr5+JNGq1678nn2RoAyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: May 31 03:32:00 2025 GMT Not After : Jun 7 03:32:00 2025 GMT Subject: CN=683a7830-a5c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:ac:09:f0:89:88:55:82:aa:05:47:a7:5b: c9:75:c1:ba:50:d4:0f:28:3c:77:68:ae:ab:ed:cf: 8a:a3:e9:c6:88:e5:8e:bd:75:cb:a5:5f:f3:1b:a6: f8:2b:1a:51:89:f1:51:86:b7:1f:ca:5a:2a:5f:08: a3:1b:96:96:ed:e4:c2:7a:ca:8d:5f:45:4d:ea:23: 40:58:6f:37:d2:46:cf:91:16:8d:2d:4e:30:63:4e: be:09:a6:31:e2:68:b7:18:12:f5:04:ea:9f:59:a4: 30:88:77:a2:3d:56:c6:49:ee:66:c6:b9:3f:8a:a1: 46:84:8e:cf:94:47:d3:96:fb:0e:7f:27:37:2f:2f: 63:69:c0:16:09:18:57:af:d1:8e:70:d0:11:bc:9d: 70:03:48:13:90:a8:6c:b9:f9:7c:6f:7d:51:79:e3: 02:a7:7f:ea:56:cd:71:64:c4:32:69:15:c9:91:70: 61:f4:91:32:70:9b:ae:83:86:dd:de:2c:eb:6e:6e: b6:e8:30:f8:40:cc:f4:72:7a:73:03:ea:70:91:91: 1a:17:2f:e2:41:58:8a:61:d5:4d:d7:a4:bc:75:02: 16:2a:26:a3:8b:2a:da:f5:f9:ad:09:dc:63:a4:d1: 28:93:5f:10:27:db:4d:7c:cf:3a:62:d1:b9:3b:38: 76:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:32:97:0C:B4:30:AA:3D:B5:63:A8:64:C1:E2:48:EF:41:C8:47:33 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:2a:81:b0:0f:cf:1c:c4:23:e0:34:a2:6b:ec:97:5c:f5:05: d7:63:59:44:3f:39:a2:27:35:ac:e5:9a:6f:f6:c6:2f:c8:9c: 4e:da:31:cb:be:4a:f4:d8:86:14:ad:42:e4:49:71:4b:ed:be: 86:7e:46:56:64:08:10:ab:ed:c3:b2:16:92:fc:b5:ac:5a:d8: 18:62:fe:0c:64:e1:48:23:98:e6:6e:23:20:af:5a:13:5e:b0: 9e:0a:4f:d0:f2:ea:44:99:fb:8a:67:fe:9c:c3:05:46:97:81: c1:f9:39:f0:8b:2a:80:6a:e0:7e:8a:d6:f5:a9:bd:41:bb:bd: fc:3b:e8:2d:6a:c3:d0:00:1e:c1:74:3f:1e:78:e2:46:b4:0b: 92:ef:55:5f:85:f9:76:ab:64:0a:5a:57:66:4b:5e:29:cd:e6: 92:06:05:b2:72:78:ac:3a:7a:4e:ed:d5:a8:9f:91:15:6a:8b: 16:fe:a6:7a:e0:30:73:9c:78:85:b2:ab:9f:0d:56:8a:f9:66: 15:ad:58:67:49:d7:ce:91:dc:47:43:f4:aa:55:5f:43:17:4b: 84:a0:10:49:33:a8:b4:25:f9:69:ad:10:ad:a3:57:f7:71:84: 45:28:fc:9a:02:54:41:51:6f:b9:7b:2f:55:8f:b3:69:ed:8d: 48:7c:75:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwNTMxMDMzMjAwWhcNMjUwNjA3MDMzMjAwWjAYMRYwFAYD VQQDEw02ODNhNzgzMC1hNWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDOsCfCJiFWCqgVHp1vJdcG6UNQPKDx3aK6r7c+Ko+nGiOWOvXXLpV/zG6b4 KxpRifFRhrcfyloqXwijG5aW7eTCesqNX0VN6iNAWG830kbPkRaNLU4wY06+CaYx 4mi3GBL1BOqfWaQwiHeiPVbGSe5mxrk/iqFGhI7PlEfTlvsOfyc3Ly9jacAWCRhX r9GOcNARvJ1wA0gTkKhsufl8b31ReeMCp3/qVs1xZMQyaRXJkXBh9JEycJuug4bd 3izrbm626DD4QMz0cnpzA+pwkZEaFy/iQViKYdVN16S8dQIWKiajiyra9fmtCdxj pNEok18QJ9tNfM86YtG5Ozh2UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcylwy0 MKo9tWOoZMHiSO9ByEczMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9KoGwD88cxCPgNKJr7Jdc9QXXY1lEPzmiJzWs5Zpv9sYvyJxO2jHL vkr02IYUrULkSXFL7b6GfkZWZAgQq+3DshaS/LWsWtgYYv4MZOFII5jmbiMgr1oT XrCeCk/Q8upEmfuKZ/6cwwVGl4HB+TnwiyqAauB+itb1qb1Bu738O+gtasPQAB7B dD8eeOJGtAuS71Vfhfl2q2QKWldmS14pzeaSBgWycnisOnpO7dWon5EVaosW/qZ6 4DBznHiFsqufDVaK+WYVrVhnSdfOkdxHQ/SqVV9DF0uEoBBJM6i0JflprRCto1f3 cYRFKPyaAlRBUW+5ey9Vj7Np7Y1IfHVK -----END CERTIFICATE-----Generated at Sat May 31 17:53:15 2025 by rpki-client