$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: iqDoCj5G7UNf6bCTt+9rFbbIPV2m5uohVOTa5TD7nU0= Subject key identifier: 65:1D:14:6B:DE:68:11:D0:6C:87:60:3A:48:06:BF:87:66:B4:CB:99 Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 139C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 1383 Signing time: Fri 30 May 2025 17:10:17 +0000 Manifest this update: Fri 30 May 2025 17:10:16 +0000 Manifest next update: Fri 06 Jun 2025 17:10:16 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: K40YmdIcbyxhRhyOT/ecYJBGthOsG23L6l2qckYYsrM=) 2: 337C9CE4314C11F0845D2C39C4F9AE02.roa (hash: tLRJQ8QY9Inh1rPsduPheEywqKEjWOsUqz32XElA7RM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5020 (0x139c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3, serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: May 30 17:10:16 2025 GMT Not After : Jun 6 17:10:16 2025 GMT Subject: CN=6839e679-ba9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4e:ff:7f:f4:ad:21:11:9b:19:d8:8d:5c:0f: 9b:ac:37:9c:e3:e9:62:27:46:c3:40:d4:c4:03:19: 56:72:b9:67:07:24:9b:03:d2:2b:92:71:d4:0b:5a: ec:ff:d7:6a:4f:0a:64:a1:43:0e:f3:94:8b:89:ac: 00:ce:be:14:22:af:8d:61:4b:4e:fe:af:a0:18:0d: eb:36:55:5f:09:89:1d:07:60:6e:ec:6b:43:f3:48: 19:0d:96:36:e3:39:47:66:65:38:03:19:36:b2:ea: 81:a8:e1:31:48:c9:08:18:c4:3c:5e:cc:97:65:30: 68:23:3e:01:5a:dd:c5:61:e4:01:fe:8e:63:37:66: d7:7b:f6:f1:3a:cc:f4:de:b5:6a:5b:21:4a:cc:76: 7a:7f:73:e5:a2:d3:b2:ee:fe:17:52:34:f2:c5:7e: f1:3c:9b:4c:d4:53:ae:78:f3:3c:8f:6d:54:24:7e: 37:d3:9a:6f:85:d4:58:f4:e6:50:34:d9:9e:5b:48: 83:6e:3f:05:cc:fb:e4:15:dc:76:ca:19:64:da:b6: cf:88:f2:c3:05:56:0d:80:f0:31:7d:77:29:13:cb: 40:d3:b1:1f:2b:35:3b:42:e5:9a:73:75:d7:19:24: be:51:47:e1:6a:87:48:a2:63:60:16:9b:9b:ad:be: d0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:1D:14:6B:DE:68:11:D0:6C:87:60:3A:48:06:BF:87:66:B4:CB:99 X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:b5:b7:cc:36:eb:36:e5:80:fa:4d:9e:ba:50:db:31:4f:38: d4:16:63:6f:ff:84:95:da:69:19:19:54:c8:6c:a1:81:c0:cb: c1:c9:a6:ce:da:fa:49:b4:ef:2f:c4:08:aa:88:84:b2:79:7a: 8b:bb:2c:e5:4f:73:4a:9b:2b:52:0f:69:c9:4c:dc:76:ce:09: 89:03:99:9b:13:4c:d8:c6:bb:45:c9:94:6c:ab:8d:e6:a0:94: f8:c5:45:6e:a1:d5:50:b6:f5:bd:60:23:34:5b:5b:d3:84:12: eb:8e:f3:b4:ff:32:c6:45:75:a6:58:86:49:49:87:84:6a:65: e9:38:29:cb:b4:2d:6d:89:f8:09:4d:3d:f1:cd:d4:ae:d2:30: 4a:c5:6d:d3:f1:17:5e:31:1f:a7:6c:56:b2:bc:d5:32:d4:a3: ae:3c:f5:7a:0d:ab:30:cb:d5:b6:27:f8:b6:04:63:5a:2b:3d: 62:7e:b3:9b:f6:9b:6d:b6:72:03:a6:e6:a6:60:ee:1c:16:47: 99:1e:4b:ae:35:f2:4b:06:e7:9f:3b:3d:05:27:ea:6c:d3:a1: d4:3d:1d:35:12:bd:f0:8b:5c:b1:0d:dc:07:23:cd:f5:2e:a6: 13:19:d7:4c:36:38:ce:70:0c:26:58:be:12:29:0f:2b:6f:2e: ce:49:45:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjUwNTMwMTcxMDE2WhcNMjUwNjA2MTcxMDE2WjAYMRYwFAYD VQQDEw02ODM5ZTY3OS1iYTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0E7/f/StIRGbGdiNXA+brDec4+liJ0bDQNTEAxlWcrlnBySbA9IrknHUC1rs /9dqTwpkoUMO85SLiawAzr4UIq+NYUtO/q+gGA3rNlVfCYkdB2Bu7GtD80gZDZY2 4zlHZmU4Axk2suqBqOExSMkIGMQ8XsyXZTBoIz4BWt3FYeQB/o5jN2bXe/bxOsz0 3rVqWyFKzHZ6f3PlotOy7v4XUjTyxX7xPJtM1FOuePM8j21UJH4305pvhdRY9OZQ NNmeW0iDbj8FzPvkFdx2yhlk2rbPiPLDBVYNgPAxfXcpE8tA07EfKzU7QuWac3XX GSS+UUfhaodIomNgFpubrb7QjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUdFGve aBHQbIdgOkgGv4dmtMuZMB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1tbfMNus25YD6TZ66UNsxTzjUFmNv/4SV2mkZGVTIbKGBwMvByabO 2vpJtO8vxAiqiISyeXqLuyzlT3NKmytSD2nJTNx2zgmJA5mbE0zYxrtFyZRsq43m oJT4xUVuodVQtvW9YCM0W1vThBLrjvO0/zLGRXWmWIZJSYeEamXpOCnLtC1tifgJ TT3xzdSu0jBKxW3T8RdeMR+nbFayvNUy1KOuPPV6Daswy9W2J/i2BGNaKz1ifrOb 9ptttnIDpuamYO4cFkeZHkuuNfJLBuefOz0FJ+ps06HUPR01Er3wi1yxDdwHI831 LqYTGddMNjjOcAwmWL4SKQ8rby7OSUUp -----END CERTIFICATE-----Generated at Sat May 31 16:55:07 2025 by rpki-client