$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft File: 1rdRTL8L4gRsE8oNf10iNS_aWO4.mft (raw, json) Hash identifier: Ky8odb9DzIxbwSnyeEo5OYW9IpXyJOWE4STrJjWhIT4= Subject key identifier: 6D:85:EE:D9:86:7E:FD:B6:39:19:C0:18:02:A3:09:0D:13:76:93:A9 Authority key identifier: D6:B7:51:4C:BF:0B:E2:04:6C:13:CA:0D:7F:5D:22:35:2F:DA:58:EE Certificate issuer: /CN=A9134B2D/serialNumber=D6B7514CBF0BE2046C13CA0D7F5D22352FDA58EE Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft Manifest number: 01CA Signing time: Sat 31 May 2025 02:40:38 +0000 Manifest this update: Sat 31 May 2025 02:40:37 +0000 Manifest next update: Sat 07 Jun 2025 02:40:37 +0000 Files and hashes: 1: 1rdRTL8L4gRsE8oNf10iNS_aWO4.crl (hash: yPKmlEo0cvB2q9IKTVivwV8i9Unhhkyu6wxt6SSKYfE=) 2: 8E3128B4837D11EDB082012FC4F9AE02.roa (hash: pbCZups9CHpt8yF1jqE6eaTv1T+fEJy3uGbRYPbMwLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.crl rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B2D, serialNumber=D6B7514CBF0BE2046C13CA0D7F5D22352FDA58EE Validity Not Before: May 31 02:40:37 2025 GMT Not After : Jun 7 02:40:37 2025 GMT Subject: CN=683a6c25-e643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cb:0b:0d:64:f2:43:81:10:e4:bc:e2:77:05: a4:5d:fb:4f:f3:51:69:e4:e4:a4:1a:79:12:82:02: d1:c7:83:75:e9:7f:ac:68:9e:8d:ee:f8:e4:e2:4d: da:41:eb:f2:e3:d1:28:e4:2a:27:bc:03:f5:a9:36: fa:a7:7a:83:ce:67:db:80:4c:ee:ec:96:fb:a3:5b: 04:dd:98:34:c3:b0:53:6b:c8:89:fd:1c:47:1e:9c: 13:19:c3:4d:2f:20:20:b6:f6:4a:93:bd:53:c4:7f: 7e:ba:2c:f5:0b:ed:b6:89:ee:47:ea:26:0d:5e:81: 4f:92:46:ef:c0:39:e1:19:f7:dc:b6:04:e3:d6:4a: 72:b3:ee:f8:0b:ad:58:36:bd:f3:db:38:88:cb:27: f9:23:3d:2e:9c:0c:f5:88:d9:26:df:22:77:46:56: 40:88:2a:dc:02:ee:d8:a8:d3:73:93:85:c4:5b:b0: 06:d8:bc:eb:44:7c:0c:87:bf:8a:bc:fc:f4:8a:1d: e4:9a:d3:65:d7:47:05:6d:5e:bc:29:cc:06:45:30: 6c:7f:66:ed:ef:67:94:fd:dd:08:5d:6a:2a:f5:d8: 77:74:11:f9:1c:e6:3b:d6:f7:dd:23:33:e9:75:52: 35:00:b3:2b:e6:5b:ba:dc:de:76:f9:80:f7:4f:96: a5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:85:EE:D9:86:7E:FD:B6:39:19:C0:18:02:A3:09:0D:13:76:93:A9 X509v3 Authority Key Identifier: keyid:D6:B7:51:4C:BF:0B:E2:04:6C:13:CA:0D:7F:5D:22:35:2F:DA:58:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:56:77:cc:76:59:e6:46:7e:b6:41:b6:21:6d:65:ef:74:0f: 81:38:98:06:36:4f:1a:27:d9:ec:39:31:14:d1:04:7c:ed:04: c6:a8:01:15:e4:b3:62:8b:92:2b:64:4b:f0:31:f3:af:8c:5c: 55:65:39:c5:2c:44:fe:9b:20:0f:53:42:aa:2a:8e:a6:20:02: 18:da:c6:21:3b:a4:b1:10:a8:e0:ad:13:49:be:4a:fb:e3:36: 95:e3:d9:40:4e:c4:4f:7c:46:7a:87:b4:be:41:5c:97:fe:aa: a3:93:39:a6:43:49:c9:59:eb:c6:2e:89:32:42:bb:84:3d:a3: ca:11:ec:55:58:e3:09:8c:54:b7:85:36:11:21:10:70:79:2e: 08:93:f7:9f:16:64:9c:96:bf:72:08:70:73:64:d2:de:05:d9: 33:db:f4:db:c2:18:2b:ba:17:41:02:bc:65:2b:69:79:ef:a7: ec:52:3b:8e:44:a8:24:36:ba:cb:fb:00:e1:e7:ad:56:b4:4a: 2e:5e:80:e5:cd:f4:ad:fd:ee:b7:d1:11:e7:82:dc:b7:51:fd: 7b:10:96:6f:68:4b:d5:35:d6:c1:44:5b:2c:0a:ba:bf:52:c6: 27:a3:81:24:7a:8c:3e:ae:8d:c4:f8:10:c6:d0:8e:5f:5c:12: 27:ec:f7:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCMkQxMTAvBgNVBAUTKEQ2Qjc1MTRDQkYwQkUyMDQ2QzEzQ0EwRDdGNUQyMjM1 MkZEQTU4RUUwHhcNMjUwNTMxMDI0MDM3WhcNMjUwNjA3MDI0MDM3WjAYMRYwFAYD VQQDEw02ODNhNmMyNS1lNjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0csLDWTyQ4EQ5LzidwWkXftP81Fp5OSkGnkSggLRx4N16X+saJ6N7vjk4k3a Qevy49Eo5ConvAP1qTb6p3qDzmfbgEzu7Jb7o1sE3Zg0w7BTa8iJ/RxHHpwTGcNN LyAgtvZKk71TxH9+uiz1C+22ie5H6iYNXoFPkkbvwDnhGffctgTj1kpys+74C61Y Nr3z2ziIyyf5Iz0unAz1iNkm3yJ3RlZAiCrcAu7YqNNzk4XEW7AG2LzrRHwMh7+K vPz0ih3kmtNl10cFbV68KcwGRTBsf2bt72eU/d0IXWoq9dh3dBH5HOY71vfdIzPp dVI1ALMr5lu63N52+YD3T5al6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2F7tmG fv22ORnAGAKjCQ0TdpOpMB8GA1UdIwQYMBaAFNa3UUy/C+IEbBPKDX9dIjUv2lju MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEIyRC8wMzFGNDUxRTgz N0IxMUVEODA1RDQwMkVDNEY5QUUwMi8xcmRSVEw4TDRnUnNFOG9OZjEwaU5TX2FX TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFyZFJUTDhMNGdSc0U4b05mMTBpTlNfYVdPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEIyRC8wMzFGNDUxRTgzN0IxMUVEODA1RDQwMkVDNEY5QUUwMi8xcmRSVEw4TDRn UnNFOG9OZjEwaU5TX2FXTzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVVnfMdlnmRn62QbYhbWXvdA+BOJgGNk8aJ9nsOTEU0QR87QTGqAEV 5LNii5IrZEvwMfOvjFxVZTnFLET+myAPU0KqKo6mIAIY2sYhO6SxEKjgrRNJvkr7 4zaV49lATsRPfEZ6h7S+QVyX/qqjkzmmQ0nJWevGLokyQruEPaPKEexVWOMJjFS3 hTYRIRBweS4Ik/efFmSclr9yCHBzZNLeBdkz2/TbwhgruhdBArxlK2l576fsUjuO RKgkNrrL+wDh561WtEouXoDlzfSt/e630RHngty3Uf17EJZvaEvVNdbBRFssCrq/ UsYno4Ekeow+ro3E+BDG0I5fXBIn7PcD -----END CERTIFICATE-----Generated at Sat May 31 17:04:55 2025 by rpki-client