$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft File: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json) Hash identifier: LF7mosuBPCnLfLgZfr4/mS6E64zdNF1ziCRmZZ4tFvk= Subject key identifier: 6F:36:19:B9:4A:B5:50:B6:92:8C:24:32:01:FF:72:56:A7:0E:00:B5 Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft Manifest number: 51 Signing time: Sat 31 May 2025 06:49:59 +0000 Manifest this update: Sat 31 May 2025 06:49:58 +0000 Manifest next update: Sat 07 Jun 2025 06:49:58 +0000 Files and hashes: 1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: sL+tpU4sDXr4SUqL2GfZ5E1iAq+G4G2UxjrdhpbF8uM=) 2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: NFkplWmsMA3dKF672WmukIl9RpnNjHUYN1V/j7l+GN0=) 3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: FPrJ8rYYz3zXm+ulxONvcKZWR1V8127XQSJ/4rwqktA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C, serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Validity Not Before: May 31 06:49:58 2025 GMT Not After : Jun 7 06:49:58 2025 GMT Subject: CN=683aa697-50bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:60:9b:59:bd:7a:d2:bd:26:11:c9:aa:c1:b4: 6f:e4:69:9c:c4:73:6c:30:2c:4d:5a:e5:26:42:25: db:34:bf:06:c8:8b:9b:19:48:2f:e0:f2:e1:7c:0e: 63:6c:11:17:54:34:bc:f4:96:45:04:b9:b0:30:d2: d4:0c:49:78:fc:b2:d3:6c:66:81:2d:ad:e5:41:dd: d6:12:1f:64:41:66:c8:fd:de:af:0a:77:71:fc:55: 2a:e6:4a:56:8e:73:de:3e:b5:c2:ac:62:f9:73:b3: 7c:95:4f:b8:4a:dc:8d:2e:ad:8b:88:f9:a5:d4:92: 8d:12:91:84:29:39:cb:08:71:da:22:40:d7:bf:78: 40:5f:84:cf:b2:9c:fc:ad:c7:20:c8:c0:dd:45:06: 9f:c4:38:4f:2e:1f:8c:f0:40:28:15:0e:d0:af:d1: 57:a0:03:c6:47:fd:46:4c:54:b0:82:9e:de:b6:6e: 4d:92:70:83:c7:b3:0d:d1:d7:3a:75:26:f9:fa:9d: 3f:3c:f1:b5:29:53:b3:40:11:fa:16:60:9c:12:59: 9b:c6:1e:c6:f5:d1:fa:6a:3b:c0:5c:c8:1e:af:40: a7:0c:3f:73:82:2b:ef:ae:67:21:19:1c:b6:eb:7c: f7:a8:e6:f2:a5:75:fa:03:d5:cc:0b:2c:b6:04:3d: 7d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:36:19:B9:4A:B5:50:B6:92:8C:24:32:01:FF:72:56:A7:0E:00:B5 X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:74:0b:e8:78:3a:f1:6b:ec:c7:02:9b:e3:8c:01:b7:cb:e7: 35:96:d5:ba:54:b2:e1:7c:dc:1a:06:c2:90:23:79:d4:32:99: db:18:72:ef:1d:7f:95:1f:00:91:3e:98:c6:a6:1b:97:1d:58: f9:52:16:15:54:70:ac:bc:96:a0:74:59:d7:fe:1c:f8:e1:2a: 48:74:25:43:96:5d:10:20:78:90:ae:8f:77:e0:a2:e7:db:a4: 7c:95:fd:78:f9:71:d6:af:34:fd:ae:b2:cb:26:3c:24:eb:6e: 3a:f7:bd:22:a3:bf:87:55:2b:a7:f3:6e:6c:20:fc:59:79:2e: b9:03:1a:e4:7c:e9:a7:59:79:2d:40:1e:5a:8d:24:9d:51:b6: fd:a7:3c:66:86:3b:3f:93:a8:32:d7:20:4b:82:1d:c0:70:a8: 0f:99:bc:4d:d7:f5:5f:a7:fc:3f:40:21:a4:70:9c:e5:52:ac: 2c:ab:85:40:56:f7:e9:e9:ca:0c:69:a3:76:a0:47:dc:1c:7a: 64:b0:a2:55:b9:fd:9c:42:2d:48:73:02:44:b5:6e:6d:da:2e: d4:68:1f:57:66:ef:96:09:32:29:4a:a8:fa:ea:81:2d:b3:ec: 5e:5e:61:69:f6:39:c0:cd:6b:27:b3:52:0c:ac:2b:64:f6:a4: a7:b5:e1:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NkEzQzExMC8GA1UEBRMoRUU4MTlBNDlCOEM4QTg0NDEzRUU4RkU4MzI2RUYxMzdG NTE4NUM2NjAeFw0yNTA1MzEwNjQ5NThaFw0yNTA2MDcwNjQ5NThaMBgxFjAUBgNV BAMTDTY4M2FhNjk3LTUwYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD8YJtZvXrSvSYRyarBtG/kaZzEc2wwLE1a5SZCJds0vwbIi5sZSC/g8uF8DmNs ERdUNLz0lkUEubAw0tQMSXj8stNsZoEtreVB3dYSH2RBZsj93q8Kd3H8VSrmSlaO c94+tcKsYvlzs3yVT7hK3I0urYuI+aXUko0SkYQpOcsIcdoiQNe/eEBfhM+ynPyt xyDIwN1FBp/EOE8uH4zwQCgVDtCv0VegA8ZH/UZMVLCCnt62bk2ScIPHsw3R1zp1 Jvn6nT888bUpU7NAEfoWYJwSWZvGHsb10fpqO8BcyB6vQKcMP3OCK++uZyEZHLbr fPeo5vKldfoD1cwLLLYEPX1pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbzYZuUq1 ULaSjCQyAf9yVqcOALUwHwYDVR0jBBgwFoAU7oGaSbjIqEQT7o/oMm7xN/UYXGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2QTNDLzdCRkI0Q0FDQzZB MDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN29HYVNiaklxRVFUN29fb01tN3hOX1VZWEdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2 QTNDLzdCRkI0Q0FDQzZBMDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVR VDdvX29NbTd4Tl9VWVhHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIh0C+h4OvFr7McCm+OMAbfL5zWW1bpUsuF83BoGwpAjedQymdsYcu8d f5UfAJE+mMamG5cdWPlSFhVUcKy8lqB0Wdf+HPjhKkh0JUOWXRAgeJCuj3fgoufb pHyV/Xj5cdavNP2usssmPCTrbjr3vSKjv4dVK6fzbmwg/Fl5LrkDGuR86adZeS1A HlqNJJ1Rtv2nPGaGOz+TqDLXIEuCHcBwqA+ZvE3X9V+n/D9AIaRwnOVSrCyrhUBW 9+npygxpo3agR9wcemSwolW5/ZxCLUhzAkS1bm3aLtRoH1dm75YJMilKqPrqgS2z 7F5eYWn2OcDNayezUgysK2T2pKe14Z0= -----END CERTIFICATE-----Generated at Sat May 31 16:47:44 2025 by rpki-client