$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: VRuBnUET7DMu5XPg9YnNiJcvDJYnTeMASYvBQKT7mP8= Subject key identifier: F9:E6:17:60:D2:E8:A2:86:94:1C:E2:B1:DB:9F:E0:B2:85:38:A7:7C Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 05C3 Signing time: Fri 30 May 2025 23:18:15 +0000 Manifest this update: Fri 30 May 2025 23:18:15 +0000 Manifest next update: Fri 06 Jun 2025 23:18:15 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: +D12xzzMFfHr1iJnErEfEd8Ciwccc+wzXoLbR4uqHDE=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: dCkT6bEicYFMQep7850krPGfdcTTuO3WSPylF2CQFFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A, serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: May 30 23:18:15 2025 GMT Not After : Jun 6 23:18:15 2025 GMT Subject: CN=683a3cb7-df47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:dd:f8:df:6e:52:08:77:09:c4:bd:ec:6c:0f: 13:75:92:51:26:e8:7c:54:9f:f1:89:2a:fd:c7:c3: e3:0f:fc:79:59:15:1c:5f:61:7e:0f:21:58:2f:6c: 6b:60:d1:69:21:9a:b1:30:3b:a3:c0:3d:a5:13:0c: cf:dc:75:31:28:ee:f4:a1:26:26:71:d5:3b:ac:5a: be:5c:fe:08:ff:a3:a8:dd:55:ed:af:a5:f4:75:bd: f5:6e:3e:c2:c3:6d:22:cb:f7:77:5f:66:ac:2b:1b: 28:5b:c2:d0:5c:36:21:48:0d:28:24:43:bf:ab:10: ad:52:fe:d0:af:75:ec:5c:f9:49:33:3a:c1:2a:ac: 7d:ed:f1:ac:2a:8f:bd:44:78:c3:aa:8b:54:1e:83: 42:5f:92:c8:22:bf:36:c7:be:df:59:51:af:e5:fb: cc:e4:70:0f:f5:9c:5c:05:43:84:08:57:83:d0:a2: e8:e3:c5:ec:f3:a2:eb:94:cc:a8:13:5e:3e:1c:16: d1:44:19:75:0a:4e:1e:e3:f9:5f:64:54:08:77:83: 80:99:9c:3e:cb:3f:d7:22:35:a3:fa:36:ff:72:25: 59:71:64:d4:5d:a3:27:9f:50:5f:8a:d7:e8:10:02: 3f:c3:f0:de:14:5e:b7:5a:17:b8:79:cc:1b:83:d1: 30:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:E6:17:60:D2:E8:A2:86:94:1C:E2:B1:DB:9F:E0:B2:85:38:A7:7C X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:1d:62:e3:f7:83:9d:04:e5:a8:a5:60:b3:d5:bc:08:58:ab: d6:de:58:5b:65:af:00:f8:05:e3:69:cd:32:5e:58:8d:13:5b: 16:63:db:14:4c:72:7a:34:fd:b5:ba:ec:dc:d1:37:ad:3a:d2: 8f:6a:8f:c3:8d:ef:c9:88:bd:b8:d5:1e:32:a3:b2:d3:83:f5: 83:2b:dd:aa:ee:6c:ad:5b:a8:5f:8a:34:59:2c:25:b8:0c:3f: 65:46:69:6d:15:15:66:3d:52:bc:9b:56:38:a3:23:6b:35:79: 90:c9:0e:de:20:21:49:4f:fc:4f:c6:88:1a:11:6e:81:d0:17: 2c:fb:76:03:26:a0:49:80:fe:d1:e1:74:86:92:b8:1d:68:59: dd:1c:3d:7a:83:6e:9b:51:c2:4d:15:c0:4a:e9:12:ea:0b:95: 18:35:90:a1:db:e2:a2:03:e4:27:00:e5:27:0c:0b:c9:4d:08: 84:f1:dc:37:04:cd:e6:41:6a:10:99:30:3e:0b:9c:65:32:3a: eb:92:74:b2:72:ed:fd:44:07:e1:07:e5:c3:58:d8:42:1c:26: 4c:1b:7c:7d:af:57:d8:44:88:b4:2c:1f:08:ea:0a:a3:1e:0a: da:9c:0a:7a:c2:42:3d:73:e3:de:3e:7c:30:47:b9:2f:50:5d: 7c:ef:fe:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjUwNTMwMjMxODE1WhcNMjUwNjA2MjMxODE1WjAYMRYwFAYD VQQDEw02ODNhM2NiNy1kZjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3d34325SCHcJxL3sbA8TdZJRJuh8VJ/xiSr9x8PjD/x5WRUcX2F+DyFYL2xr YNFpIZqxMDujwD2lEwzP3HUxKO70oSYmcdU7rFq+XP4I/6Oo3VXtr6X0db31bj7C w20iy/d3X2asKxsoW8LQXDYhSA0oJEO/qxCtUv7Qr3XsXPlJMzrBKqx97fGsKo+9 RHjDqotUHoNCX5LIIr82x77fWVGv5fvM5HAP9ZxcBUOECFeD0KLo48Xs86LrlMyo E14+HBbRRBl1Ck4e4/lfZFQId4OAmZw+yz/XIjWj+jb/ciVZcWTUXaMnn1Bfitfo EAI/w/DeFF63Whe4ecwbg9EwTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnmF2DS 6KKGlBzisduf4LKFOKd8MB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwHWLj94OdBOWopWCz1bwIWKvW3lhbZa8A+AXjac0yXliNE1sWY9sU THJ6NP21uuzc0TetOtKPao/Dje/JiL241R4yo7LTg/WDK92q7mytW6hfijRZLCW4 DD9lRmltFRVmPVK8m1Y4oyNrNXmQyQ7eICFJT/xPxogaEW6B0Bcs+3YDJqBJgP7R 4XSGkrgdaFndHD16g26bUcJNFcBK6RLqC5UYNZCh2+KiA+QnAOUnDAvJTQiE8dw3 BM3mQWoQmTA+C5xlMjrrknSycu39RAfhB+XDWNhCHCZMG3x9r1fYRIi0LB8I6gqj HgranAp6wkI9c+PePnwwR7kvUF187/7k -----END CERTIFICATE-----Generated at Sat May 31 16:27:51 2025 by rpki-client