$ rpki-client -vvf rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft File: n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft (raw, json) Hash identifier: RQFbMH0sj3JDt1R4D79djE6HYatvyq4tpB3UE++xqwQ= Subject key identifier: CC:27:9A:43:96:80:FD:93:B1:22:D1:94:47:B8:C7:98:84:16:55:68 Authority key identifier: 9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 Certificate issuer: /CN=A9136EC5/serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Certificate serial: 2B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft Manifest number: 2ADA Signing time: Sat 31 May 2025 15:32:15 +0000 Manifest this update: Sat 31 May 2025 15:32:15 +0000 Manifest next update: Sat 07 Jun 2025 15:32:15 +0000 Files and hashes: 1: n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl (hash: EaWSv+hz6DymCJnA6Qb6qG7MHGqCSaXANjGwfeAE/qY=) 2: F1BA2EAC353311EBB895B082C4F9AE02.roa (hash: 8JXHn+tn0IVLCUvOUOerZKmcj6/h+ZMsxk2iLkFwjsA=) 3: 08074A8A1EB711EF9C248E60C4F9AE02.roa (hash: bFIjQrk+SKu0XJffarEwWtaET/rTeUOfIWLHnin1FNE=) 4: 8B903A32353211EBB3D0487FC4F9AE02.roa (hash: ReV9a7hSveeezSpIAzgAbbvdpzxiWLw3q4n5gLELjhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11038 (0x2b1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136EC5, serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Validity Not Before: May 31 15:32:15 2025 GMT Not After : Jun 7 15:32:15 2025 GMT Subject: CN=683b20ff-8777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ac:be:fe:05:42:df:a0:ce:49:6e:22:76:bd: 23:5d:6a:42:9e:c5:a9:69:b3:8b:6c:93:21:13:04: 6b:e6:03:ef:f2:03:6e:dd:7b:50:44:23:ad:6d:6f: 97:e1:de:ad:b6:4f:fe:d6:eb:70:2d:50:de:00:17: e2:70:7a:4f:27:f7:c8:57:92:49:5d:93:00:18:c8: 61:eb:ca:05:9e:fc:74:67:9a:1e:73:13:52:02:13: f1:fe:44:02:2d:39:8d:33:4a:54:86:f1:85:a2:e8: 5a:10:46:ef:af:9e:96:cd:8c:1f:1a:15:fd:27:68: ac:56:e4:a6:b8:95:c5:34:9d:fe:bb:40:c4:f7:7e: 3e:b2:ba:f1:32:0e:ac:ad:81:f7:ef:e0:04:83:ff: 4c:67:e9:0a:a0:76:c1:ad:8b:71:a1:ae:8b:40:0e: f3:53:6d:82:3c:e9:79:ae:0a:b2:6a:ba:5d:6f:7f: 0d:3c:df:ba:de:99:1d:3b:9f:f0:78:f3:11:b9:6d: fb:37:59:68:ed:63:14:40:43:23:ba:89:ed:e3:e1: b6:3e:69:3c:19:94:9d:20:4a:d9:6c:7d:b5:e6:57: 67:48:7e:e4:71:aa:70:11:ba:83:4a:2d:42:ce:c6: 5d:66:87:ce:f7:83:c6:ae:8a:41:6c:f0:62:a8:b4: 49:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:27:9A:43:96:80:FD:93:B1:22:D1:94:47:B8:C7:98:84:16:55:68 X509v3 Authority Key Identifier: keyid:9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:5c:eb:0a:b0:e9:96:96:23:20:40:cc:13:b6:65:5e:30:e4: 64:dc:5c:2a:fa:f8:5b:7a:b6:8e:2b:1b:31:4c:d3:c7:3d:61: 29:55:db:5b:7e:99:37:d5:14:ce:b7:ad:6b:55:2e:b5:db:eb: 95:dd:dc:38:15:da:e7:8a:af:ce:e0:c9:ab:c0:92:5f:17:88: d6:96:dd:5f:ef:e3:8f:6b:74:f2:91:69:9b:2d:11:5f:44:9c: f7:9a:21:27:01:f8:3b:ac:66:75:48:e4:78:65:21:93:c1:e3: 30:95:a8:60:27:3f:e3:8b:bc:26:81:4c:f4:ef:a0:1f:3c:54: 77:c1:e2:21:4f:38:42:72:80:4b:30:37:82:6e:be:0d:6d:d1: b7:15:df:b1:24:bd:f0:19:dc:a8:ab:b4:08:98:a4:1c:cd:53: 2c:3e:ce:14:33:1b:14:f1:45:62:43:c4:ca:d8:e2:53:32:bb: 5e:cf:01:95:41:44:d0:23:1f:4d:1b:c5:7e:dd:e1:d9:aa:e6: 18:18:91:d2:ab:3b:f9:69:8c:a0:2d:27:e3:9c:ce:35:02:f9: 64:7c:af:03:b7:5a:24:18:88:24:55:32:dc:08:a8:f1:16:df: 13:aa:62:ed:eb:c7:ab:1a:96:5f:cc:07:21:4c:4e:48:e7:a0: 5c:f1:4f:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZFQzUxMTAvBgNVBAUTKDlGQ0UyODkxNEM1MERDOTk3NTVGMTA4QUI0MzM0Rjc3 MkNCRUEwRTIwHhcNMjUwNTMxMTUzMjE1WhcNMjUwNjA3MTUzMjE1WjAYMRYwFAYD VQQDEw02ODNiMjBmZi04Nzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyay+/gVC36DOSW4idr0jXWpCnsWpabOLbJMhEwRr5gPv8gNu3XtQRCOtbW+X 4d6ttk/+1utwLVDeABficHpPJ/fIV5JJXZMAGMhh68oFnvx0Z5oecxNSAhPx/kQC LTmNM0pUhvGFouhaEEbvr56WzYwfGhX9J2isVuSmuJXFNJ3+u0DE934+srrxMg6s rYH37+AEg/9MZ+kKoHbBrYtxoa6LQA7zU22CPOl5rgqyarpdb38NPN+63pkdO5/w ePMRuW37N1lo7WMUQEMjuont4+G2Pmk8GZSdIErZbH215ldnSH7kcapwEbqDSi1C zsZdZofO94PGropBbPBiqLRJ5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwnmkOW gP2TsSLRlEe4x5iEFlVoMB8GA1UdIwQYMBaAFJ/OKJFMUNyZdV8QirQzT3csvqDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkVDNS8yREVDQUU1NjBF NTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNKbDFYeENLdEROUGR5eS1v T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL244NG9rVXhRM0psMVh4Q0t0RE5QZHl5LW9PSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkVDNS8yREVDQUU1NjBFNTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNK bDFYeENLdEROUGR5eS1vT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYXOsKsOmWliMgQMwTtmVeMORk3Fwq+vhberaOKxsxTNPHPWEpVdtb fpk31RTOt61rVS612+uV3dw4Fdrniq/O4MmrwJJfF4jWlt1f7+OPa3TykWmbLRFf RJz3miEnAfg7rGZ1SOR4ZSGTweMwlahgJz/ji7wmgUz076AfPFR3weIhTzhCcoBL MDeCbr4NbdG3Fd+xJL3wGdyoq7QImKQczVMsPs4UMxsU8UViQ8TK2OJTMrtezwGV QUTQIx9NG8V+3eHZquYYGJHSqzv5aYygLSfjnM41AvlkfK8Dt1okGIgkVTLcCKjx Ft8TqmLt68erGpZfzAchTE5I56Bc8U/N -----END CERTIFICATE-----Generated at Sat May 31 17:30:19 2025 by rpki-client