$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: Lw4WbMK2YxPfHQAYtGoTp6wfumc3C7SRwabp1DITtJw= Subject key identifier: 4C:1D:A6:C0:7E:99:F5:3C:D0:94:89:19:A9:82:2B:6F:B6:BC:44:24 Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 0148 Signing time: Sat 31 May 2025 03:54:29 +0000 Manifest this update: Sat 31 May 2025 03:54:29 +0000 Manifest next update: Sat 07 Jun 2025 03:54:29 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: VZJXNi+ByOau3FbBRrhkuVOYa1nmZvtfvSbShaZWHJg=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: May 31 03:54:29 2025 GMT Not After : Jun 7 03:54:29 2025 GMT Subject: CN=683a7d75-5940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:94:e7:29:55:a5:bd:07:14:f2:d7:29:74:4d: f0:ad:ed:18:49:18:3c:20:fe:51:ed:56:4f:e2:eb: da:c0:10:e9:a2:97:7a:b7:c6:49:17:79:5d:2c:46: 05:52:91:a8:f4:df:1f:f8:0f:dc:b1:6f:6b:10:52: b1:ac:ef:3a:de:80:f9:26:54:6a:70:87:7b:39:87: fa:7f:59:d9:2d:78:3e:66:60:17:a0:6d:b6:82:bd: 84:e5:d5:57:c8:25:e4:41:8f:31:68:d4:db:43:75: 12:57:8b:b3:18:7d:de:da:d9:72:56:32:8b:85:6d: 52:42:e2:92:a8:a2:59:3a:1c:b1:fa:23:8d:72:6e: b7:a5:89:4b:89:b2:c7:fe:fd:56:4c:ad:17:ee:76: 3a:15:b5:33:d8:0a:d9:e3:d2:c4:fa:e3:37:d4:b0: 52:79:8c:23:3a:e4:19:d3:dc:53:76:dc:d9:17:73: d7:cb:56:82:6e:7d:91:26:1a:b2:36:76:f3:77:15: 8f:f9:a3:15:f4:22:1d:f6:d9:a6:71:65:61:85:94: 72:8a:f5:40:aa:d8:35:5a:86:bf:8e:2e:3b:3e:c6: b5:36:9d:af:61:0e:b9:4e:a8:09:93:8c:1a:98:cc: 64:59:91:ad:09:8c:13:25:05:cc:f0:e1:a3:9c:aa: 59:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1D:A6:C0:7E:99:F5:3C:D0:94:89:19:A9:82:2B:6F:B6:BC:44:24 X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:89:56:29:cb:82:60:c0:0a:77:86:fb:de:72:b1:c6:2f:5a: 38:24:62:89:a2:4e:0a:d3:77:74:23:7b:15:86:d8:df:74:35: 62:f4:65:40:67:7f:36:db:a6:86:fb:51:16:95:29:a9:6a:b7: a2:3b:58:59:d2:e6:92:e2:41:62:47:fc:85:45:8b:26:a3:d3: 43:78:f6:7d:20:63:45:ae:48:7c:59:fe:fe:6a:5a:56:a9:b3: b4:31:2b:df:d6:9e:15:74:63:5a:dc:03:8d:eb:57:c8:a5:49: 5e:31:ee:5d:2b:dd:77:a6:a9:1e:d4:c2:71:a1:16:23:0f:37: 5b:1e:c3:91:3a:9b:af:e8:cd:c9:f8:82:4e:c5:f8:6a:b5:63: 2e:56:af:23:cd:d1:ca:e7:2e:87:69:19:31:15:f4:92:a0:3e: 4a:42:ae:4a:33:40:47:ea:b0:c4:20:ef:40:9c:cf:96:9b:11: 0f:bc:b3:cb:f7:cd:73:40:9e:58:33:b5:90:ba:91:17:a5:b6: 8a:42:99:5f:90:a9:fd:37:cc:25:46:61:4f:b7:62:ca:95:7b: bf:b2:7d:9b:0c:f8:b0:b7:09:b6:cb:2b:a2:3f:7f:86:10:76: 24:ae:6b:f3:58:3c:1c:ac:ac:53:7e:5d:1b:d2:53:fe:66:ef: 63:b3:32:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjUwNTMxMDM1NDI5WhcNMjUwNjA3MDM1NDI5WjAYMRYwFAYD VQQDEw02ODNhN2Q3NS01OTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5TnKVWlvQcU8tcpdE3wre0YSRg8IP5R7VZP4uvawBDpopd6t8ZJF3ldLEYF UpGo9N8f+A/csW9rEFKxrO863oD5JlRqcId7OYf6f1nZLXg+ZmAXoG22gr2E5dVX yCXkQY8xaNTbQ3USV4uzGH3e2tlyVjKLhW1SQuKSqKJZOhyx+iONcm63pYlLibLH /v1WTK0X7nY6FbUz2ArZ49LE+uM31LBSeYwjOuQZ09xTdtzZF3PXy1aCbn2RJhqy NnbzdxWP+aMV9CId9tmmcWVhhZRyivVAqtg1Woa/ji47Psa1Np2vYQ65TqgJk4wa mMxkWZGtCYwTJQXM8OGjnKpZRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwdpsB+ mfU80JSJGamCK2+2vEQkMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMiVYpy4JgwAp3hvvecrHGL1o4JGKJok4K03d0I3sVhtjfdDVi9GVA Z38226aG+1EWlSmpareiO1hZ0uaS4kFiR/yFRYsmo9NDePZ9IGNFrkh8Wf7+alpW qbO0MSvf1p4VdGNa3AON61fIpUleMe5dK913pqke1MJxoRYjDzdbHsOROpuv6M3J +IJOxfhqtWMuVq8jzdHK5y6HaRkxFfSSoD5KQq5KM0BH6rDEIO9AnM+WmxEPvLPL 981zQJ5YM7WQupEXpbaKQplfkKn9N8wlRmFPt2LKlXu/sn2bDPiwtwm2yyuiP3+G EHYkrmvzWDwcrKxTfl0b0lP+Zu9jszL7 -----END CERTIFICATE-----Generated at Sat May 31 16:30:26 2025 by rpki-client