$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: SWfKWm+o/yKU1uBKPL12BvWEyWk2jmeVJcEI5J0xPsQ= Subject key identifier: 1C:11:0D:CF:E4:96:E8:07:F1:2D:4A:57:00:20:00:0E:42:13:4E:6D Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 0119 Signing time: Sat 31 May 2025 04:32:14 +0000 Manifest this update: Sat 31 May 2025 04:32:13 +0000 Manifest next update: Sat 07 Jun 2025 04:32:13 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: x5BdDWJhpPCDp1/i+dAUrNumXduLsAKPLjMe96Vf1Mo=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: 8cegSUbUuoPE7mPNDdYwV/tSOtw6Sjag/azXHzK7Lu8=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: l/0cV1WqKHlm3zfBuP747PhglBf2SLieAswGuN8ioE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: May 31 04:32:13 2025 GMT Not After : Jun 7 04:32:13 2025 GMT Subject: CN=683a864e-546a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8d:be:ba:f2:62:2c:66:fd:bb:8c:0c:fa:db: 9e:77:76:5d:1f:e4:f3:8f:e5:76:39:e6:2f:0d:3e: a5:97:82:15:5e:8f:27:c8:89:c9:d4:48:82:45:d5: f7:5f:93:e5:57:23:2c:8f:db:51:7c:6f:bc:d5:ff: 49:49:cf:ee:da:ce:88:89:22:f8:de:a6:da:e0:9f: ae:58:5c:2a:8c:13:46:75:87:ea:62:07:f5:f1:17: 8f:ee:2f:5c:18:5c:88:ff:01:76:84:2a:07:89:3a: a2:a9:90:21:9f:f6:0d:46:3c:9d:fe:8b:22:c1:e5: 8e:d5:6e:f7:7c:f3:dd:80:59:2a:ad:b0:6a:94:95: da:61:e0:03:77:27:71:5d:11:6f:b9:3f:f1:65:9b: b7:12:5c:22:b1:49:bb:2c:39:bf:d2:80:fd:6c:c8: 50:cf:11:51:d1:27:dd:c4:96:c9:48:de:bd:33:bc: 8d:bc:c9:a3:09:8e:30:f5:7a:75:91:c6:72:63:e9: 4a:26:66:fd:80:63:a8:e8:d5:82:17:a0:af:7b:f1: 0f:75:bc:c1:bf:8e:f7:e8:9f:1b:3d:c1:45:d4:8b: b7:69:1f:ca:f6:8c:fd:39:29:88:e8:e0:9b:dc:02: 04:ff:e8:8f:53:3f:6b:8c:ae:ef:a4:c6:39:1f:46: 9c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:11:0D:CF:E4:96:E8:07:F1:2D:4A:57:00:20:00:0E:42:13:4E:6D X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:3a:d0:13:c7:2d:24:32:77:75:3c:9c:c8:61:15:20:82:f4: d1:38:4d:aa:75:15:78:e2:5f:45:52:ce:97:36:29:27:7d:0d: 35:c7:9e:b6:ae:4c:a2:4d:55:8c:56:67:60:4b:c4:8d:a7:e9: 02:b4:45:4b:3f:eb:f1:79:77:14:c6:34:b2:3c:fa:64:ac:25: db:be:f0:3f:55:03:3f:bd:e0:7e:62:05:39:71:ad:40:fe:cf: 42:f0:cb:d5:f9:92:51:13:52:78:88:13:d8:a4:35:5b:d6:64: 2e:87:33:47:c2:d8:e4:3e:fd:99:37:2e:ea:f4:13:11:c2:1f: 31:07:07:6a:bf:46:67:96:4b:64:c0:22:1f:39:ad:0c:f1:08: 1b:cb:b2:7f:d6:c4:ff:d2:a9:9a:eb:30:af:82:73:bf:3c:5a: 25:5e:5d:fa:d4:38:76:6a:6e:df:14:07:61:8c:c5:aa:d5:1e: 67:bc:48:eb:21:f5:59:13:8b:d6:5d:15:b5:bc:5d:bb:63:fa: 83:2b:e4:ad:c8:48:4e:07:75:6a:96:03:92:c0:d8:ce:dd:bf: 68:60:7f:9a:77:71:0b:70:c4:01:e1:78:85:9c:01:84:7b:9c: 06:2c:bb:0c:fd:8d:ed:fc:93:c2:9a:4c:4d:4f:57:1f:66:a0: 83:71:1d:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUwNTMxMDQzMjEzWhcNMjUwNjA3MDQzMjEzWjAYMRYwFAYD VQQDEw02ODNhODY0ZS01NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqY2+uvJiLGb9u4wM+tued3ZdH+Tzj+V2OeYvDT6ll4IVXo8nyInJ1EiCRdX3 X5PlVyMsj9tRfG+81f9JSc/u2s6IiSL43qba4J+uWFwqjBNGdYfqYgf18ReP7i9c GFyI/wF2hCoHiTqiqZAhn/YNRjyd/osiweWO1W73fPPdgFkqrbBqlJXaYeADdydx XRFvuT/xZZu3ElwisUm7LDm/0oD9bMhQzxFR0SfdxJbJSN69M7yNvMmjCY4w9Xp1 kcZyY+lKJmb9gGOo6NWCF6Cve/EPdbzBv4736J8bPcFF1Iu3aR/K9oz9OSmI6OCb 3AIE/+iPUz9rjK7vpMY5H0actQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwRDc/k lugH8S1KVwAgAA5CE05tMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANOtATxy0kMnd1PJzIYRUggvTROE2qdRV44l9FUs6XNiknfQ01x562 rkyiTVWMVmdgS8SNp+kCtEVLP+vxeXcUxjSyPPpkrCXbvvA/VQM/veB+YgU5ca1A /s9C8MvV+ZJRE1J4iBPYpDVb1mQuhzNHwtjkPv2ZNy7q9BMRwh8xBwdqv0Znlktk wCIfOa0M8Qgby7J/1sT/0qma6zCvgnO/PFolXl361Dh2am7fFAdhjMWq1R5nvEjr IfVZE4vWXRW1vF27Y/qDK+StyEhOB3VqlgOSwNjO3b9oYH+ad3ELcMQB4XiFnAGE e5wGLLsM/Y3t/JPCmkxNT1cfZqCDcR3Q -----END CERTIFICATE-----Generated at Sat May 31 17:57:51 2025 by rpki-client