$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: 42+aIu2FIFgcO1WtE66cjF2x49AAFCmlEO5M8NVMkaw= Subject key identifier: 50:79:58:A5:76:52:44:01:B7:38:69:E5:8E:11:B5:5C:DB:B3:80:DB Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 04BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 04B2 Signing time: Sun 01 Jun 2025 00:07:53 +0000 Manifest this update: Sun 01 Jun 2025 00:07:52 +0000 Manifest next update: Sun 08 Jun 2025 00:07:52 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: 0b8j8j0iM7El0XXs6+qFGcrLk2vKXyUQzFIJvh8nD2o=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: qsT6gdrcrYiz10awZz/5+uahx1IUYSEl585Lltn+07o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Jun 1 00:07:52 2025 GMT Not After : Jun 8 00:07:52 2025 GMT Subject: CN=683b99d9-3737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:43:3b:08:c3:11:46:33:64:98:a0:43:10:2f: f5:a9:4e:8d:e9:ef:f4:3d:8e:77:d0:e9:75:92:20: 35:6e:93:fb:f1:eb:93:6f:46:56:27:09:70:f1:9e: 65:64:fd:d2:92:15:61:69:c3:15:0b:16:ea:36:0c: d5:03:97:a3:e2:2f:11:6e:54:5f:aa:52:a9:b8:23: 64:00:41:cb:02:63:54:a9:0d:6c:0e:4c:82:b5:39: d9:22:da:a2:5f:fa:40:17:38:09:fa:2b:22:c9:8c: 77:96:9a:1d:ec:e0:61:97:a7:77:e9:7c:5d:75:f0: e4:34:43:48:08:f5:59:ea:34:3a:5f:02:b0:09:90: aa:57:41:90:20:68:90:84:98:ab:c6:94:96:2a:3b: 7a:c8:ca:e2:8c:2c:34:ec:b7:cf:5c:2f:74:f3:ae: 27:21:44:08:c8:85:9c:b3:0b:b8:90:fa:75:18:52: a1:18:1e:f3:51:7a:05:50:be:33:97:2e:a2:9e:a6: 16:b1:dc:d9:1f:42:9e:4e:b5:61:fe:ed:3c:16:ef: d5:a4:32:95:ca:05:53:de:80:4a:c5:12:80:0a:a0: a0:53:f1:9d:5d:40:59:5f:f0:62:82:78:8f:95:a4: 5a:99:30:ea:d9:29:de:2c:67:6d:6c:fe:d7:83:1a: 2a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:79:58:A5:76:52:44:01:B7:38:69:E5:8E:11:B5:5C:DB:B3:80:DB X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:46:72:ee:31:6d:65:47:26:2d:31:8c:1f:e0:54:ce:24:1c: 80:6d:49:e3:b1:ff:b5:4d:06:8c:bb:91:5d:59:37:64:7e:77: f5:46:64:83:a6:74:17:ff:3c:07:de:d0:23:e7:7a:28:8e:b0: d9:ce:96:16:fe:f1:3b:8e:c2:c5:86:e0:94:65:ff:5a:9d:63: 5a:9c:5b:b6:04:c2:3c:21:b3:76:22:d0:02:54:9d:0e:a5:d7: 86:18:de:8a:44:cb:a7:1b:85:e7:86:6a:0e:e2:ea:95:0e:2b: 47:fb:8f:59:4a:f3:8d:fe:57:2e:5d:5a:35:50:a2:ac:54:78: 13:2f:66:04:49:79:c2:4f:aa:10:e3:37:e5:c7:ee:3b:9f:6a: 64:a4:47:06:32:12:fa:eb:f7:f1:05:8d:1d:77:5b:3b:02:f0: b1:b9:17:e4:33:47:c1:56:86:7e:95:79:c7:18:8a:36:ea:23: 94:15:c7:db:47:60:f3:03:b4:de:f3:bb:6b:4b:12:97:22:cd: f0:28:94:99:e2:6c:18:9c:ac:a5:cd:a0:82:bc:91:41:ac:6e: ab:b2:1a:84:98:df:48:5d:eb:51:3e:49:36:97:7a:d0:b3:69: 4c:78:2c:be:12:50:7a:a4:d7:e0:e2:f7:8b:41:db:f5:c4:44: 2c:93:8a:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUwNjAxMDAwNzUyWhcNMjUwNjA4MDAwNzUyWjAYMRYwFAYD VQQDEw02ODNiOTlkOS0zNzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00M7CMMRRjNkmKBDEC/1qU6N6e/0PY530Ol1kiA1bpP78euTb0ZWJwlw8Z5l ZP3SkhVhacMVCxbqNgzVA5ej4i8RblRfqlKpuCNkAEHLAmNUqQ1sDkyCtTnZItqi X/pAFzgJ+isiyYx3lpod7OBhl6d36XxddfDkNENICPVZ6jQ6XwKwCZCqV0GQIGiQ hJirxpSWKjt6yMrijCw07LfPXC90864nIUQIyIWcswu4kPp1GFKhGB7zUXoFUL4z ly6inqYWsdzZH0KeTrVh/u08Fu/VpDKVygVT3oBKxRKACqCgU/GdXUBZX/BigniP laRamTDq2SneLGdtbP7XgxoqLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFB5WKV2 UkQBtzhp5Y4RtVzbs4DbMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8RnLuMW1lRyYtMYwf4FTOJByAbUnjsf+1TQaMu5FdWTdkfnf1RmSD pnQX/zwH3tAj53oojrDZzpYW/vE7jsLFhuCUZf9anWNanFu2BMI8IbN2ItACVJ0O pdeGGN6KRMunG4XnhmoO4uqVDitH+49ZSvON/lcuXVo1UKKsVHgTL2YESXnCT6oQ 4zflx+47n2pkpEcGMhL66/fxBY0dd1s7AvCxuRfkM0fBVoZ+lXnHGIo26iOUFcfb R2DzA7Te87trSxKXIs3wKJSZ4mwYnKylzaCCvJFBrG6rshqEmN9IXetRPkk2l3rQ s2lMeCy+ElB6pNfg4veLQdv1xEQsk4oi -----END CERTIFICATE-----Generated at Mon Jun 2 19:55:26 2025 by rpki-client