$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: u1nqEwf3iEvAEq/oCzknddzOnck3VOeaTUqunpgfkZs= Subject key identifier: 80:31:90:72:05:87:EB:28:68:5B:CB:51:D8:69:07:5A:8B:2D:8C:FC Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 0256 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 0251 Signing time: Sat 31 May 2025 02:01:29 +0000 Manifest this update: Sat 31 May 2025 02:01:28 +0000 Manifest next update: Sat 07 Jun 2025 02:01:28 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: +ruNis6IC9RfnU/4n/ro4Ll8lQ2aT0s0dZx5O0YwouA=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: omp1fXUs+vDBv/MaKIuGTrmCJ5TEGYnfoKG3I8GKsAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: May 31 02:01:28 2025 GMT Not After : Jun 7 02:01:28 2025 GMT Subject: CN=683a62f8-e579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:62:2c:1a:aa:1f:8b:39:48:cc:13:0b:67: 8a:ce:07:67:53:b7:57:4b:fc:ec:16:3e:17:8f:3f: 71:bd:b9:29:5b:f3:22:69:69:9b:b7:89:0b:f7:0f: 82:6a:24:d5:9c:4b:b3:0a:b8:08:9e:72:8c:42:54: de:8e:70:84:f5:9d:59:03:58:94:7f:55:67:46:c7: a4:c5:90:f1:51:89:9d:b2:b1:99:4e:ce:78:e5:bc: 1c:52:ec:c8:c0:85:5e:7b:a0:be:50:8c:51:c9:e5: c4:d9:b8:cc:92:54:fe:4c:fc:f3:ee:a2:e1:d6:73: a4:ce:5a:cc:93:8a:91:37:32:96:89:44:54:0b:95: 29:f2:f9:0f:da:1a:57:1b:d7:bf:ed:26:09:e2:24: de:b9:ec:66:d6:da:99:5b:23:6a:9c:a4:39:32:58: 6c:74:2a:7f:ba:3a:28:37:dc:c8:d0:89:1d:8f:7d: c4:dc:64:af:79:24:6f:c3:89:79:d6:f6:45:c8:b3: ed:2b:fa:aa:10:e8:91:bf:d5:30:f2:63:1e:db:e8: fe:0c:a3:18:ea:7d:26:aa:e3:90:42:94:36:df:52: 3f:f8:f3:15:43:98:75:8c:d5:8a:a2:a5:70:80:5f: af:8e:6d:9c:26:c2:d3:6f:95:99:6b:be:f2:17:a2: 13:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:31:90:72:05:87:EB:28:68:5B:CB:51:D8:69:07:5A:8B:2D:8C:FC X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:1c:5a:e4:b5:7e:3c:80:2c:ff:9e:63:62:66:b6:a8:b3:91: 14:65:b5:8f:dd:c2:d0:e0:b7:cc:50:8e:74:9e:d4:32:a9:94: e3:8d:f4:a0:f7:c3:26:f3:cf:59:e7:55:31:78:a2:29:97:ae: 8a:81:bf:eb:db:ff:a8:19:2c:65:63:05:7a:66:9e:cf:74:7e: 91:02:31:3a:67:84:ff:fc:45:41:95:57:ce:0f:9b:15:b5:36: fc:13:24:30:a7:42:c6:93:98:89:2b:9d:ad:e0:93:5c:db:9e: aa:14:b1:47:9a:d1:0c:de:b0:f0:79:d2:5b:56:a9:43:c8:d7: 9b:98:e8:06:23:e2:6e:39:79:49:df:68:5c:de:6f:a3:84:24: 74:ce:43:4a:9b:ba:73:a4:34:20:41:ee:52:5d:8a:88:8b:a8: 01:c0:4a:d0:2e:7c:cf:72:6f:5e:ae:2e:84:e0:a2:ec:b1:1a: dd:8f:b7:9e:72:55:0c:12:81:7b:de:e5:e1:27:f6:38:94:cc: 0e:cc:c6:74:0f:c9:28:e5:65:a8:4c:7c:6d:88:32:41:72:db: 9b:f0:45:9f:35:2d:c0:10:e8:66:00:b2:36:9e:3f:23:32:59: 87:20:98:df:93:6a:17:a9:5b:1a:82:72:d6:c9:69:6a:22:ec: 42:aa:e7:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUwNTMxMDIwMTI4WhcNMjUwNjA3MDIwMTI4WjAYMRYwFAYD VQQDEw02ODNhNjJmOC1lNTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya5iLBqqH4s5SMwTC2eKzgdnU7dXS/zsFj4Xjz9xvbkpW/MiaWmbt4kL9w+C aiTVnEuzCrgInnKMQlTejnCE9Z1ZA1iUf1VnRsekxZDxUYmdsrGZTs545bwcUuzI wIVee6C+UIxRyeXE2bjMklT+TPzz7qLh1nOkzlrMk4qRNzKWiURUC5Up8vkP2hpX G9e/7SYJ4iTeuexm1tqZWyNqnKQ5MlhsdCp/ujooN9zI0Ikdj33E3GSveSRvw4l5 1vZFyLPtK/qqEOiRv9Uw8mMe2+j+DKMY6n0mquOQQpQ231I/+PMVQ5h1jNWKoqVw gF+vjm2cJsLTb5WZa77yF6ITewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAxkHIF h+soaFvLUdhpB1qLLYz8MB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUHFrktX48gCz/nmNiZraos5EUZbWP3cLQ4LfMUI50ntQyqZTjjfSg 98Mm889Z51UxeKIpl66Kgb/r2/+oGSxlYwV6Zp7PdH6RAjE6Z4T//EVBlVfOD5sV tTb8EyQwp0LGk5iJK52t4JNc256qFLFHmtEM3rDwedJbVqlDyNebmOgGI+JuOXlJ 32hc3m+jhCR0zkNKm7pzpDQgQe5SXYqIi6gBwErQLnzPcm9eri6E4KLssRrdj7ee clUMEoF73uXhJ/Y4lMwOzMZ0D8ko5WWoTHxtiDJBctub8EWfNS3AEOhmALI2nj8j MlmHIJjfk2oXqVsagnLWyWlqIuxCqucu -----END CERTIFICATE-----Generated at Sat May 31 17:44:13 2025 by rpki-client