$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: 73M4FINs9ra0piwhsUIGZz4NzOfgMG94084kRspE+D8= Subject key identifier: B2:8E:9C:06:2E:D5:A3:B7:65:A5:97:C9:D6:65:0C:C1:E3:33:AD:23 Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 0101 Signing time: Sat 31 May 2025 04:45:50 +0000 Manifest this update: Sat 31 May 2025 04:45:49 +0000 Manifest next update: Sat 07 Jun 2025 04:45:49 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: dNBCAupASSw9pGvzMWSMGrnA5gXAMY3uPexfNPQukss=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: May 31 04:45:49 2025 GMT Not After : Jun 7 04:45:49 2025 GMT Subject: CN=683a897d-64fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:53:a9:b8:9f:fa:d4:d2:18:61:72:62:77:ad: 1f:c7:bf:30:07:c4:4e:63:04:c7:dc:88:16:a6:65: f4:bf:00:7e:95:3a:5c:81:16:a5:22:73:ac:24:b2: 77:14:2e:e2:dd:63:59:0f:c5:80:b5:cb:cb:60:1e: 64:18:93:c6:2e:19:e3:87:35:ce:b5:bd:c7:bd:c1: 54:6f:9c:32:78:e4:80:48:4a:a1:cf:69:35:a1:f6: 5b:75:2c:be:69:de:48:ef:8c:15:f5:cb:dd:76:bf: 6c:9a:60:d0:d8:96:60:1c:de:c4:20:8a:d4:d8:7c: d6:22:87:bb:73:3b:83:e5:3b:06:a8:48:15:57:70: 83:d4:87:3b:59:a1:a3:8d:5c:a5:d9:97:78:f0:cb: 37:cb:a4:7a:c0:3e:88:e8:1b:b0:a5:42:5b:4d:8c: f9:4d:e0:58:12:4c:2e:a4:53:e8:41:f3:a7:23:35: fb:c4:7e:13:14:b9:6e:bf:1c:11:a7:53:19:70:f2: 2d:af:c4:28:8b:40:0d:8b:43:e8:00:7f:60:10:6d: db:9c:5f:01:d8:67:8d:e8:ca:78:66:25:d2:f5:d1: 92:ac:4d:7e:93:7f:a7:1e:a1:f8:5d:e8:82:07:95: 6b:9c:cd:19:63:9c:db:cb:c0:03:4c:71:be:c3:9e: a4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8E:9C:06:2E:D5:A3:B7:65:A5:97:C9:D6:65:0C:C1:E3:33:AD:23 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:c2:f9:f0:01:93:20:35:fb:7b:66:c0:fd:52:0c:5a:35:56: 32:52:bd:93:6b:78:a3:84:ee:ff:f2:d6:3b:63:1b:dc:5f:c4: 36:6a:67:5a:8b:d1:a6:ca:32:d0:60:da:ad:1d:88:78:ba:55: 27:d7:88:f7:89:7f:b9:24:68:ac:03:e3:b6:18:3b:ae:c3:a9: 60:e3:0e:3f:6a:37:1d:46:73:ea:b5:d4:9c:96:86:3e:71:e8: ca:24:0f:c9:55:0b:62:3e:13:f9:6e:34:80:dd:bb:3e:13:2a: b7:bc:5e:6c:7a:c5:b8:af:df:a3:71:ae:2d:f0:5b:cc:b3:b5: 33:71:68:74:b3:85:00:e5:89:9f:04:e4:f0:5f:43:73:1d:4f: f9:23:ed:13:e7:04:a7:28:fc:15:a2:4d:0d:3f:57:84:0b:80: ba:c9:0a:f0:75:4e:1d:ea:61:ed:47:9c:f8:d9:f4:03:58:5d: 5c:09:34:90:62:c6:8a:e9:03:09:c2:95:85:0e:67:98:d0:3a: 68:a9:2c:0d:a8:62:44:9c:4e:44:80:e9:84:08:2f:38:56:fc: 9d:f2:d5:25:96:0d:ef:1b:43:e1:df:1e:7b:c2:2c:43:25:ea: ff:0f:7d:a1:80:51:1b:b0:0f:8b:16:ad:d7:a0:9a:84:32:07: 85:29:67:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjUwNTMxMDQ0NTQ5WhcNMjUwNjA3MDQ0NTQ5WjAYMRYwFAYD VQQDEw02ODNhODk3ZC02NGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslOpuJ/61NIYYXJid60fx78wB8ROYwTH3IgWpmX0vwB+lTpcgRalInOsJLJ3 FC7i3WNZD8WAtcvLYB5kGJPGLhnjhzXOtb3HvcFUb5wyeOSASEqhz2k1ofZbdSy+ ad5I74wV9cvddr9smmDQ2JZgHN7EIIrU2HzWIoe7czuD5TsGqEgVV3CD1Ic7WaGj jVyl2Zd48Ms3y6R6wD6I6BuwpUJbTYz5TeBYEkwupFPoQfOnIzX7xH4TFLluvxwR p1MZcPItr8Qoi0ANi0PoAH9gEG3bnF8B2GeN6Mp4ZiXS9dGSrE1+k3+nHqH4XeiC B5VrnM0ZY5zby8ADTHG+w56ktQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKOnAYu 1aO3ZaWXydZlDMHjM60jMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTwvnwAZMgNft7ZsD9UgxaNVYyUr2Ta3ijhO7/8tY7YxvcX8Q2amda i9GmyjLQYNqtHYh4ulUn14j3iX+5JGisA+O2GDuuw6lg4w4/ajcdRnPqtdScloY+ cejKJA/JVQtiPhP5bjSA3bs+Eyq3vF5sesW4r9+jca4t8FvMs7UzcWh0s4UA5Ymf BOTwX0NzHU/5I+0T5wSnKPwVok0NP1eEC4C6yQrwdU4d6mHtR5z42fQDWF1cCTSQ YsaK6QMJwpWFDmeY0DpoqSwNqGJEnE5EgOmECC84Vvyd8tUllg3vG0Ph3x57wixD Jer/D32hgFEbsA+LFq3XoJqEMgeFKWdG -----END CERTIFICATE-----Generated at Sat May 31 16:34:05 2025 by rpki-client