$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: AypiKY/pz9BtREatwaui/s5i1wAP1Lyg6JZwF3HDeJE= Subject key identifier: 45:B4:3E:19:15:A2:58:B1:E2:50:A9:EF:E5:8D:8B:E8:11:79:01:F9 Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 01CD Signing time: Sat 31 May 2025 02:36:28 +0000 Manifest this update: Sat 31 May 2025 02:36:28 +0000 Manifest next update: Sat 07 Jun 2025 02:36:28 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: 2sNyFtISIdE3RMckxu7AxCq0pdCWioRBSB9oKJxoWQ4=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: zvSljqq8u0aCswP8WadYkts+Ql8DETe3wBjOyVuGUoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: May 31 02:36:28 2025 GMT Not After : Jun 7 02:36:28 2025 GMT Subject: CN=683a6b2c-01e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e4:61:41:ce:09:a1:b2:f5:a8:fe:5b:48:1e: b2:1c:9d:f6:ec:ab:02:0e:31:8c:a3:03:95:c0:58: ef:25:bf:d7:db:af:61:52:2f:bc:23:f2:44:0c:80: e5:73:81:fb:63:fe:f2:a5:01:78:f9:3a:b7:54:ea: 67:2e:7b:9e:d0:25:bb:73:85:cd:db:a8:ed:1b:35: c1:d0:01:cd:c4:f7:8a:8c:bb:c0:af:cb:75:7b:40: 32:a0:ce:40:bf:2f:28:95:9d:36:a6:92:ee:95:96: 64:90:1b:83:1d:f4:9f:60:8c:bc:e4:bd:5d:55:c1: bc:da:54:96:54:81:87:8e:60:b2:13:29:ab:74:60: e2:40:f3:5a:e5:58:58:c4:df:67:e9:6d:35:b7:de: c1:60:32:93:d2:fb:36:3c:5a:61:9d:d1:63:f0:bc: 96:5c:f7:99:d3:2f:da:88:41:cb:59:a8:e9:81:0a: 20:b0:f3:bb:52:18:38:1b:7c:1a:a7:ef:d2:e4:aa: 56:66:2a:4d:10:51:c8:e6:19:2f:85:69:a0:a6:d5: 33:7e:7a:9d:71:f1:ac:cf:24:99:e4:6a:a1:cc:c3: da:20:39:16:98:bc:3d:52:ce:38:78:d8:52:2a:e6: 11:e1:dd:44:1a:b4:13:40:45:95:bf:29:e3:23:fc: a9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B4:3E:19:15:A2:58:B1:E2:50:A9:EF:E5:8D:8B:E8:11:79:01:F9 X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:92:3c:73:02:98:52:b8:16:5c:74:2c:0b:48:3f:ca:ff:78: 84:ce:de:76:ae:00:04:49:dd:27:66:2d:0a:2c:89:ff:7d:ab: 4b:2d:49:c8:90:b7:cb:f1:2e:09:31:93:df:26:eb:39:01:ad: 0d:72:b7:35:66:db:5a:0a:35:7d:4c:5c:35:1b:c3:ac:22:56: 1a:cd:38:38:3d:41:fb:36:4d:01:64:29:25:80:bf:b9:2b:1e: 2b:33:ff:12:9f:af:e5:84:cd:08:14:51:26:07:20:40:1d:07: 77:f6:91:c6:e7:cc:e7:29:86:60:94:88:79:d7:8e:83:ca:3d: 1e:10:68:ce:c0:3f:a3:ae:71:9a:00:30:ea:dd:c6:b0:91:b2: 90:35:d1:0c:4a:79:6d:ad:98:90:b4:96:3f:96:b0:d4:ab:31: 93:c5:d0:84:d2:ed:48:a8:c6:38:c2:a8:27:79:fe:73:1f:5b: 78:5f:51:59:82:a9:43:1e:32:8a:9e:66:5f:ba:9d:2b:d4:7b: 8a:e7:08:dd:4f:f7:ab:bf:e8:44:1a:41:13:0c:0b:56:d3:68: 95:63:cf:c3:d0:d6:b1:a8:6c:81:0a:f8:09:5c:ff:d3:b3:77: cd:20:cd:59:f5:0b:2d:37:4e:35:ce:e4:0b:3b:6f:2d:c7:40: 0c:b9:9f:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUwNTMxMDIzNjI4WhcNMjUwNjA3MDIzNjI4WjAYMRYwFAYD VQQDEw02ODNhNmIyYy0wMWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweRhQc4JobL1qP5bSB6yHJ327KsCDjGMowOVwFjvJb/X269hUi+8I/JEDIDl c4H7Y/7ypQF4+Tq3VOpnLnue0CW7c4XN26jtGzXB0AHNxPeKjLvAr8t1e0AyoM5A vy8olZ02ppLulZZkkBuDHfSfYIy85L1dVcG82lSWVIGHjmCyEymrdGDiQPNa5VhY xN9n6W01t97BYDKT0vs2PFphndFj8LyWXPeZ0y/aiEHLWajpgQogsPO7Uhg4G3wa p+/S5KpWZipNEFHI5hkvhWmgptUzfnqdcfGszySZ5GqhzMPaIDkWmLw9Us44eNhS KuYR4d1EGrQTQEWVvynjI/ypCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEW0PhkV olix4lCp7+WNi+gReQH5MB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9kjxzAphSuBZcdCwLSD/K/3iEzt52rgAESd0nZi0KLIn/fatLLUnI kLfL8S4JMZPfJus5Aa0Ncrc1ZttaCjV9TFw1G8OsIlYazTg4PUH7Nk0BZCklgL+5 Kx4rM/8Sn6/lhM0IFFEmByBAHQd39pHG58znKYZglIh5146Dyj0eEGjOwD+jrnGa ADDq3cawkbKQNdEMSnltrZiQtJY/lrDUqzGTxdCE0u1IqMY4wqgnef5zH1t4X1FZ gqlDHjKKnmZfup0r1HuK5wjdT/erv+hEGkETDAtW02iVY8/D0NaxqGyBCvgJXP/T s3fNIM1Z9QstN041zuQLO28tx0AMuZ/c -----END CERTIFICATE-----Generated at Sat May 31 15:43:38 2025 by rpki-client