$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: tnEvQD8KJy6ggSniNEQ0OXFsCL02iLfF66d+9KGRfFY= Subject key identifier: 89:1F:68:F1:15:E1:1F:82:5E:4F:BC:11:B8:09:E7:58:4E:5E:B5:07 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 04BD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 04B2 Signing time: Tue 03 Jun 2025 00:07:48 +0000 Manifest this update: Tue 03 Jun 2025 00:07:47 +0000 Manifest next update: Tue 10 Jun 2025 00:07:47 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: ydB7LvpmIZbz9hvsCb5dY8Ei9iNDPATTwIZmoTDfv9A=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Jun 3 00:07:47 2025 GMT Not After : Jun 10 00:07:47 2025 GMT Subject: CN=683e3cd4-1a28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:2f:c0:17:d0:89:49:03:5b:7e:d0:c5:f9: 77:3e:4c:71:e8:56:68:9f:da:ce:84:c9:55:96:17: 14:76:15:c4:9c:aa:7f:bc:b7:d2:fe:51:62:70:d7: 0f:a6:12:6b:09:71:92:a1:84:45:7d:c2:6b:32:1b: fe:a5:e8:7a:ae:7e:79:97:8f:4f:53:f2:d5:5e:ac: 7e:f2:11:a3:1a:e1:a3:6e:48:92:90:38:48:b5:17: a2:67:46:0e:7b:8c:e6:a3:86:27:bc:a9:60:31:3a: 4c:9d:68:fa:f6:a3:65:cf:b5:14:b9:60:e2:41:fc: c8:5b:31:d8:12:56:dc:e8:da:1f:f0:17:91:a1:b7: e7:ad:df:ea:60:1a:f1:3d:e0:94:c2:39:7b:8f:f7: e4:a2:d3:1d:c9:da:2e:f7:06:eb:ac:f0:a3:db:19: fe:74:aa:0d:79:36:38:3a:a0:7d:cc:da:e0:1a:79: ba:21:b9:64:9b:7d:a0:8b:11:1a:47:5b:40:58:78: e0:95:be:cc:aa:b0:2e:08:32:c2:1f:b8:bd:5a:3a: c9:cd:0f:c6:2c:4e:9b:b4:21:f7:a6:4d:e0:19:02: e3:ae:d8:96:68:d8:cf:86:d6:67:1f:eb:07:95:71: e3:4b:6b:bd:7c:7e:41:e1:0e:58:bc:c5:05:98:14: 5e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:1F:68:F1:15:E1:1F:82:5E:4F:BC:11:B8:09:E7:58:4E:5E:B5:07 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:0e:f0:62:82:0c:48:68:70:28:0b:40:4d:b9:7f:0d:90:85: e4:32:3d:ae:b4:61:8c:05:cd:72:51:81:0b:6b:e6:36:93:da: cc:cd:12:7d:ab:39:6f:fa:b3:90:52:a5:cf:b7:ec:07:21:b8: 63:d0:6a:9d:76:73:7e:7d:b8:19:a7:ae:2e:08:42:78:91:4d: 59:9c:c5:bb:48:2f:51:83:c1:b9:37:76:0e:a5:ea:fe:1a:18: 16:4d:0c:6b:78:ba:26:9d:c8:67:d7:bd:56:af:0f:37:bc:6d: 77:bc:e7:5b:13:fc:aa:7c:87:c1:c6:d0:b9:db:b8:98:f7:de: 90:3b:40:2d:c5:b2:9a:f9:35:45:37:f8:67:d9:42:84:a8:36: a5:84:53:32:60:1d:53:27:9d:df:f3:c1:ac:77:18:6a:d9:fc: 28:d6:45:90:e0:f8:fe:78:ad:15:e7:51:2d:18:dd:67:d7:c0: 9e:67:64:e6:4f:cd:de:12:b3:bf:97:8c:be:df:03:8c:1d:bf: f2:ac:18:eb:1c:57:21:c6:9f:5a:b9:54:e1:d4:ef:89:14:50: 5b:5c:26:68:41:39:19:42:d2:01:72:0a:af:67:14:b8:9d:9b: c2:c9:3b:45:b4:39:35:22:87:37:50:75:f8:53:6d:3a:74:51: 2e:51:53:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUwNjAzMDAwNzQ3WhcNMjUwNjEwMDAwNzQ3WjAYMRYwFAYD VQQDEw02ODNlM2NkNC0xYTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMsvwBfQiUkDW37Qxfl3Pkxx6FZon9rOhMlVlhcUdhXEnKp/vLfS/lFicNcP phJrCXGSoYRFfcJrMhv+peh6rn55l49PU/LVXqx+8hGjGuGjbkiSkDhItReiZ0YO e4zmo4YnvKlgMTpMnWj69qNlz7UUuWDiQfzIWzHYElbc6Nof8BeRobfnrd/qYBrx PeCUwjl7j/fkotMdydou9wbrrPCj2xn+dKoNeTY4OqB9zNrgGnm6Iblkm32gixEa R1tAWHjglb7MqrAuCDLCH7i9WjrJzQ/GLE6btCH3pk3gGQLjrtiWaNjPhtZnH+sH lXHjS2u9fH5B4Q5YvMUFmBReHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkfaPEV 4R+CXk+8EbgJ51hOXrUHMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuDvBiggxIaHAoC0BNuX8NkIXkMj2utGGMBc1yUYELa+Y2k9rMzRJ9 qzlv+rOQUqXPt+wHIbhj0GqddnN+fbgZp64uCEJ4kU1ZnMW7SC9Rg8G5N3YOper+ GhgWTQxreLomnchn171Wrw83vG13vOdbE/yqfIfBxtC527iY996QO0AtxbKa+TVF N/hn2UKEqDalhFMyYB1TJ53f88Gsdxhq2fwo1kWQ4Pj+eK0V51EtGN1n18CeZ2Tm T83eErO/l4y+3wOMHb/yrBjrHFchxp9auVTh1O+JFFBbXCZoQTkZQtIBcgqvZxS4 nZvCyTtFtDk1Ioc3UHX4U206dFEuUVNl -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:51 2025 by rpki-client