$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: IfTwCBlInXkY/qGyLp7996C1Ha2qeKFhIxSnrtvzZnA= Subject key identifier: 4A:F7:3E:84:90:F5:EC:66:C9:99:99:5C:C2:C8:71:E9:A1:B0:29:1B Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 102F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 0FFA Signing time: Fri 30 May 2025 17:41:21 +0000 Manifest this update: Fri 30 May 2025 17:41:20 +0000 Manifest next update: Fri 06 Jun 2025 17:41:20 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: E32oDdRK6e4Yloi/RzwhN4Kf/tBkwkNx89clYNvr07Q=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: mhCrCLIryxh44WtZLA41qeaUSE+ipopXbFtA9uM/L9M=) 3: B38547B48C1811ED95522F3EC4F9AE02.roa (hash: HXSaiv/+h3LslBJCo/sEGl2BDqm+Kqjgd7hBF3MDYrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4143 (0x102f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: May 30 17:41:20 2025 GMT Not After : Jun 6 17:41:20 2025 GMT Subject: CN=6839edc0-b505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:20:7c:0c:b3:fc:e8:4f:b3:13:f4:14:b8:9f: 27:89:7a:62:7a:11:70:84:2c:50:e5:97:f7:e9:fe: 71:82:22:63:89:16:d7:cc:36:2f:73:83:5a:4c:c8: e2:a8:8a:2a:28:97:9e:db:30:56:a6:78:2d:5f:d3: e1:ce:d4:29:57:bb:83:2d:64:18:a9:87:aa:1f:12: c6:a9:61:5b:2f:d9:57:04:17:fb:09:1a:33:c2:71: cb:e9:7d:f4:b0:0f:16:2a:77:89:ca:28:6c:42:fd: 62:34:9a:85:12:07:3d:5f:dc:d6:27:06:5a:bb:1d: 57:8b:71:b8:84:90:1b:83:aa:07:9f:75:0d:bf:97: 5a:ee:13:d4:d3:f6:fe:52:55:ab:ce:84:6d:98:3c: 28:ca:f0:06:fd:50:8f:0d:17:fa:1c:87:85:7a:0a: 06:02:17:3c:da:be:36:a2:31:0a:af:b9:f3:08:3f: d9:93:60:48:ec:3a:f5:47:71:5b:4d:31:a9:5f:ab: 8d:e7:e9:33:d7:37:35:42:d3:46:d0:69:6c:8d:2c: ba:f6:0d:18:c7:ea:b9:7e:8d:8f:54:fc:56:a2:82: 5b:db:3a:d4:63:56:ba:7b:62:52:b2:a6:62:a4:95: b2:d7:3a:1a:8e:a7:0f:46:7f:a7:a5:17:c3:3e:f4: f2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F7:3E:84:90:F5:EC:66:C9:99:99:5C:C2:C8:71:E9:A1:B0:29:1B X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:1d:f4:b9:cc:b8:37:ef:21:27:c7:aa:c7:83:ab:88:eb:1c: fa:95:13:0c:26:17:4b:87:7c:0a:a4:ff:dd:a9:32:a2:6c:96: b5:d7:1c:b9:f6:39:00:e5:79:64:27:f4:3e:15:79:fa:63:c7: ca:2c:25:2c:8e:db:60:ed:58:9b:0d:99:c3:a2:4e:a1:f2:69: 05:92:de:9b:60:e4:38:f0:17:a7:60:08:95:19:d2:40:a3:6d: dc:62:78:00:de:28:a8:10:85:fe:9f:76:3f:16:65:c6:0b:84: f5:07:32:70:66:ac:bc:1b:c9:02:e4:da:73:2b:1a:89:98:5c: c5:86:66:60:cc:0e:9f:e8:5c:8e:5b:04:4f:dd:b3:ce:20:51: 68:14:33:b2:3d:0c:a2:6f:46:dd:9b:d4:8b:1e:b3:15:41:29: 5c:a0:55:c3:20:1f:74:4d:88:c4:1b:ef:4c:06:35:ba:2a:69: 93:8d:a7:0f:1e:c5:26:54:dc:72:66:db:48:ec:a9:94:f9:6f: 60:d6:5e:4e:02:03:35:f4:ba:59:a6:46:4e:94:f8:49:ef:10: d5:d9:cd:5a:4f:ff:3b:e2:87:95:45:9e:fc:59:90:8f:cd:8f: 55:63:27:e0:ba:47:82:1a:1a:8f:38:ef:e5:77:ef:67:43:20: 56:3a:87:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwNTMwMTc0MTIwWhcNMjUwNjA2MTc0MTIwWjAYMRYwFAYD VQQDEw02ODM5ZWRjMC1iNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSB8DLP86E+zE/QUuJ8niXpiehFwhCxQ5Zf36f5xgiJjiRbXzDYvc4NaTMji qIoqKJee2zBWpngtX9PhztQpV7uDLWQYqYeqHxLGqWFbL9lXBBf7CRozwnHL6X30 sA8WKneJyihsQv1iNJqFEgc9X9zWJwZaux1Xi3G4hJAbg6oHn3UNv5da7hPU0/b+ UlWrzoRtmDwoyvAG/VCPDRf6HIeFegoGAhc82r42ojEKr7nzCD/Zk2BI7Dr1R3Fb TTGpX6uN5+kz1zc1QtNG0GlsjSy69g0Yx+q5fo2PVPxWooJb2zrUY1a6e2JSsqZi pJWy1zoajqcPRn+npRfDPvTycwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEr3PoSQ 9exmyZmZXMLIcemhsCkbMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4HfS5zLg37yEnx6rHg6uI6xz6lRMMJhdLh3wKpP/dqTKibJa11xy5 9jkA5XlkJ/Q+FXn6Y8fKLCUsjttg7VibDZnDok6h8mkFkt6bYOQ48BenYAiVGdJA o23cYngA3iioEIX+n3Y/FmXGC4T1BzJwZqy8G8kC5NpzKxqJmFzFhmZgzA6f6FyO WwRP3bPOIFFoFDOyPQyib0bdm9SLHrMVQSlcoFXDIB90TYjEG+9MBjW6KmmTjacP HsUmVNxyZttI7KmU+W9g1l5OAgM19LpZpkZOlPhJ7xDV2c1aT/874oeVRZ78WZCP zY9VYyfgukeCGhqPOO/ld+9nQyBWOofi -----END CERTIFICATE-----Generated at Sat May 31 17:57:41 2025 by rpki-client