$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft File: cL0aXZUSv23gumklPbvwEQPlOkM.mft (raw, json) Hash identifier: GyyxeOUpvhisFgzCpuF4HO97o3amAP2khP/0Rp0VZE0= Subject key identifier: B6:48:E5:3D:81:D5:10:29:98:05:51:71:53:68:79:77:89:CC:37:75 Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 1115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft Manifest number: 10F8 Signing time: Fri 30 May 2025 17:28:37 +0000 Manifest this update: Fri 30 May 2025 17:28:36 +0000 Manifest next update: Fri 06 Jun 2025 17:28:36 +0000 Files and hashes: 1: cL0aXZUSv23gumklPbvwEQPlOkM.crl (hash: +9M9kdYHVXt4yq2BaDbG+mNuzBJN2mRQ4Z8TvE3omio=) 2: 8818EDF88F2C11EDA558DE4DC4F9AE02.roa (hash: b6hr7IhNuFUDMwuO8Nb6ge3GDbb3DEInCX/HHEiFoVM=) 3: E0A2D2B040C811EE90859140C4F9AE02.roa (hash: skRP+9UcVz6p99ItfpkcWdsCVMpTNN+fUT0lptapL6Y=) 4: 6B5A80B80B8211EAAD5B6B4AC4F9AE02.roa (hash: ShmWGPi16fistc8ldhgNj0wn72/E+SCOVnORBpUTPkI=) 5: 595310E440C911EE9F1D5F41C4F9AE02.roa (hash: Z7+3DvwJtElz8GyUhaEbEO58MPBIQdKLUzyM58gm72k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4373 (0x1115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797, serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: May 30 17:28:36 2025 GMT Not After : Jun 6 17:28:36 2025 GMT Subject: CN=6839eac4-7f1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c8:76:a8:20:ff:31:a7:29:73:b5:40:22:52: 03:44:81:54:86:14:ea:a0:f8:20:ca:0a:72:8d:72: 53:80:d8:99:38:06:a5:22:51:0d:2a:b1:d3:f2:00: 02:cf:54:df:94:ed:61:f9:7b:6a:b5:c9:60:f6:23: b9:5d:94:a3:e6:dd:95:99:54:8d:66:28:71:45:ff: 2e:0a:53:d1:1c:2f:0d:01:36:23:af:1a:4e:30:2b: 93:c2:7d:50:b4:7f:9d:39:d4:23:91:91:f4:0e:c8: 20:45:a3:f4:db:b7:fb:5d:bd:b6:14:56:32:af:06: f9:4f:b4:e4:8c:66:14:1f:3b:d3:f4:3f:c0:16:46: ed:95:19:ed:e5:9b:bb:6d:44:5f:af:b5:b1:1f:a0: 9c:b1:ba:e6:4f:1d:03:37:14:60:27:94:3c:80:9e: 55:64:19:0d:c4:40:c5:b9:3e:be:0e:ad:dc:e3:d5: e7:b2:d9:3e:7e:d4:7c:90:21:f4:4a:c5:8e:3a:8b: 03:d1:1e:29:81:31:ee:79:08:02:09:81:0b:da:fc: 27:cd:e7:98:3a:92:33:e0:32:84:71:b6:95:f7:6d: d3:db:ac:19:8b:f6:27:53:64:33:5b:cc:3e:97:c4: b7:57:db:cb:79:97:53:43:41:75:e8:ff:33:76:a4: 02:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:48:E5:3D:81:D5:10:29:98:05:51:71:53:68:79:77:89:CC:37:75 X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:3d:63:a1:ed:d6:45:48:1d:e7:1c:3b:9b:c0:79:97:39:63: ca:c8:3f:91:30:9d:23:07:68:c6:c1:9f:69:61:24:03:f1:46: 57:4c:28:f6:fe:1d:cd:84:fc:45:2a:4b:07:2e:41:e1:d0:2a: d1:dc:37:38:78:ca:5d:69:c7:24:d0:de:cc:b4:dd:6a:83:c2: 7a:5b:b7:e8:83:73:df:9c:b7:4c:3a:bc:4f:bc:a4:9c:e2:59: ec:9d:a7:da:f8:af:5c:4c:12:8b:73:47:f8:2d:1a:cf:db:86: d9:00:5a:fa:76:e4:39:76:66:5a:2f:95:32:58:36:ae:ef:dd: 8d:12:45:2e:37:e0:6f:ba:1a:4e:56:c3:9c:71:ea:a1:94:33: 63:e1:88:d0:55:84:2e:b5:63:b2:62:de:dd:7c:22:92:9d:5a: 4c:c9:66:9e:17:f0:57:9e:b1:ca:d2:8f:98:a6:01:d8:18:e6: 06:40:75:cb:0d:b6:e4:d4:c1:5e:a8:b7:14:97:20:74:77:dd: fc:3d:1f:f4:b5:95:55:1a:93:45:7a:c2:1e:45:94:4b:76:6a: 67:1e:67:29:73:84:1e:48:e2:a9:fd:ed:31:38:3b:a0:3e:99: d9:f0:8e:b0:a6:e2:1f:4c:d8:7b:04:89:e3:78:8e:85:d3:bd: 3c:af:df:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjUwNTMwMTcyODM2WhcNMjUwNjA2MTcyODM2WjAYMRYwFAYD VQQDEw02ODM5ZWFjNC03ZjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMh2qCD/Macpc7VAIlIDRIFUhhTqoPggygpyjXJTgNiZOAalIlENKrHT8gAC z1TflO1h+Xtqtclg9iO5XZSj5t2VmVSNZihxRf8uClPRHC8NATYjrxpOMCuTwn1Q tH+dOdQjkZH0DsggRaP027f7Xb22FFYyrwb5T7TkjGYUHzvT9D/AFkbtlRnt5Zu7 bURfr7WxH6CcsbrmTx0DNxRgJ5Q8gJ5VZBkNxEDFuT6+Dq3c49Xnstk+ftR8kCH0 SsWOOosD0R4pgTHueQgCCYEL2vwnzeeYOpIz4DKEcbaV923T26wZi/YnU2QzW8w+ l8S3V9vLeZdTQ0F16P8zdqQCgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZI5T2B 1RApmAVRcVNoeXeJzDd1MB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc5Ny8wOUYyRDk5NDFBMjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3Yy M2d1bWtsUGJ2d0VRUGxPa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZPWOh7dZFSB3nHDubwHmXOWPKyD+RMJ0jB2jGwZ9pYSQD8UZXTCj2 /h3NhPxFKksHLkHh0CrR3Dc4eMpdacck0N7MtN1qg8J6W7fog3PfnLdMOrxPvKSc 4lnsnafa+K9cTBKLc0f4LRrP24bZAFr6duQ5dmZaL5UyWDau792NEkUuN+BvuhpO VsOcceqhlDNj4YjQVYQutWOyYt7dfCKSnVpMyWaeF/BXnrHK0o+YpgHYGOYGQHXL Dbbk1MFeqLcUlyB0d938PR/0tZVVGpNFesIeRZRLdmpnHmcpc4QeSOKp/e0xODug PpnZ8I6wpuIfTNh7BInjeI6F0708r9+H -----END CERTIFICATE-----Generated at Sat May 31 17:53:12 2025 by rpki-client