$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: m2PQhVlrZtU6d2mrRH8uPDfxDQ58GXmQuUvcxzxWkoQ= Subject key identifier: 0B:A6:52:F6:6A:3C:0E:F3:BA:E8:31:D4:D5:5B:FD:FB:FC:DF:C1:6A Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 025E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 025B Signing time: Sat 31 May 2025 01:59:48 +0000 Manifest this update: Sat 31 May 2025 01:59:47 +0000 Manifest next update: Sat 07 Jun 2025 01:59:47 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: yFEzRpAZCsokLYiZXBbtm8eHpGduB2JlNOJ0xGeejCw=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: May 31 01:59:47 2025 GMT Not After : Jun 7 01:59:47 2025 GMT Subject: CN=683a6293-cd19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7b:40:17:55:2b:6a:9c:03:52:2b:fa:d8:44: ed:b1:fa:25:65:75:66:64:83:81:98:c0:0c:eb:ed: 5c:87:55:45:0d:ae:b9:a5:0e:c0:8c:48:1d:16:92: 3b:cd:7d:9f:94:4f:3c:ad:1c:db:38:34:b2:3a:bf: d2:66:a4:02:88:e1:30:26:18:5c:f0:8e:4b:2a:80: b2:0b:25:13:3c:99:bd:d1:ef:10:96:a7:14:8a:d8: 47:af:a4:d1:c7:8f:35:8e:79:70:53:8b:51:72:04: 8e:8e:91:c1:7d:62:a0:60:1c:61:d7:b0:da:89:c5: c8:63:b4:65:ce:41:a3:a0:3f:75:8d:5d:4f:e3:17: ca:a0:52:c8:c5:cc:bb:cd:b9:37:fd:17:c4:e8:e2: ff:c5:25:2f:b6:ad:b5:3d:07:67:34:b9:a9:e4:57: cd:5e:f1:9b:72:59:12:00:15:4c:d6:cb:1f:cd:0d: 8d:29:19:11:bd:01:cf:a9:49:33:9f:5b:26:2e:e6: f7:fc:0a:e6:2f:59:60:4f:27:e4:0e:15:7b:dd:75: 78:b5:72:b3:fa:30:e4:2f:18:f9:87:0c:b4:cc:54: 86:55:78:49:fa:25:ce:85:a5:ef:da:64:28:85:d9: 88:52:9b:13:f8:a2:23:97:ba:f4:3a:99:30:df:0c: e3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A6:52:F6:6A:3C:0E:F3:BA:E8:31:D4:D5:5B:FD:FB:FC:DF:C1:6A X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:2c:66:bc:93:f1:14:53:c4:7c:4c:9b:36:5e:05:8e:f5:da: b3:78:53:99:cd:f5:20:ab:b4:84:94:90:50:67:ec:0e:80:8d: f6:21:45:2a:73:72:18:97:4f:15:17:c2:fe:f0:80:f9:8c:e7: f1:aa:a8:ca:a6:50:b5:ce:a0:f5:7f:8f:0e:17:5c:f0:58:7f: b8:10:3d:c0:54:56:41:75:14:e3:33:17:fa:0c:d0:44:d8:52: fd:28:1c:52:d8:bb:2e:ae:58:35:94:b6:49:ce:b5:a0:9d:27: f2:f7:cc:8a:49:c8:80:03:78:8b:5e:86:e0:87:32:82:5f:a2: ca:54:39:ed:57:bf:9e:10:28:f7:ee:83:e0:e6:5c:15:fe:71: f6:6c:43:10:47:f2:ce:74:a0:bd:a2:6e:49:ab:ce:7f:89:cb: 93:2f:74:d1:76:bb:5a:0f:cc:e4:3e:84:2b:5d:43:42:a2:78: ac:24:7a:f4:f3:b8:23:4b:ae:69:b2:d4:1b:be:dc:d0:e6:78: 55:f5:ae:54:ac:95:48:f6:c9:68:ed:4c:de:01:e8:57:03:1f: 2e:93:8f:9b:52:38:c1:00:c0:c0:8b:8d:75:d1:26:b8:84:f8: 49:b9:5c:49:7e:68:6a:f0:30:c1:ce:d0:be:6b:99:63:10:c5: 25:f3:67:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwNTMxMDE1OTQ3WhcNMjUwNjA3MDE1OTQ3WjAYMRYwFAYD VQQDEw02ODNhNjI5My1jZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwntAF1UrapwDUiv62ETtsfolZXVmZIOBmMAM6+1ch1VFDa65pQ7AjEgdFpI7 zX2flE88rRzbODSyOr/SZqQCiOEwJhhc8I5LKoCyCyUTPJm90e8QlqcUithHr6TR x481jnlwU4tRcgSOjpHBfWKgYBxh17DaicXIY7RlzkGjoD91jV1P4xfKoFLIxcy7 zbk3/RfE6OL/xSUvtq21PQdnNLmp5FfNXvGbclkSABVM1ssfzQ2NKRkRvQHPqUkz n1smLub3/ArmL1lgTyfkDhV73XV4tXKz+jDkLxj5hwy0zFSGVXhJ+iXOhaXv2mQo hdmIUpsT+KIjl7r0Opkw3wzjewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAumUvZq PA7zuugx1NVb/fv838FqMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+LGa8k/EUU8R8TJs2XgWO9dqzeFOZzfUgq7SElJBQZ+wOgI32IUUq c3IYl08VF8L+8ID5jOfxqqjKplC1zqD1f48OF1zwWH+4ED3AVFZBdRTjMxf6DNBE 2FL9KBxS2Lsurlg1lLZJzrWgnSfy98yKSciAA3iLXobghzKCX6LKVDntV7+eECj3 7oPg5lwV/nH2bEMQR/LOdKC9om5Jq85/icuTL3TRdrtaD8zkPoQrXUNConisJHr0 87gjS65pstQbvtzQ5nhV9a5UrJVI9slo7UzeAehXAx8uk4+bUjjBAMDAi4110Sa4 hPhJuVxJfmhq8DDBztC+a5ljEMUl82f+ -----END CERTIFICATE-----Generated at Sat May 31 17:23:35 2025 by rpki-client