$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: iEcsAop9keA6WdWsnhoT+4l/tf+WjU8G0BXj89UH+7I= Subject key identifier: 32:79:E9:FD:E3:BD:2D:0C:8C:45:CD:9A:50:C0:49:D1:43:26:92:27 Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 01C5 Signing time: Sat 31 May 2025 02:53:42 +0000 Manifest this update: Sat 31 May 2025 02:53:42 +0000 Manifest next update: Sat 07 Jun 2025 02:53:42 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: WN9yM5DPvyh68KbAxc/luyW1uJNRAjUJDvjHM9ZdIhk=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: JxIG0aTCU82q7umurfAFtEVJNKacWC+8NM/ekdYlO24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: May 31 02:53:42 2025 GMT Not After : Jun 7 02:53:42 2025 GMT Subject: CN=683a6f36-3a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:7f:22:7b:ed:0b:c6:a5:70:1a:c0:c5:f0:66: 0d:b7:04:f1:eb:36:b0:25:4c:55:d5:11:73:c1:6d: 24:58:f5:72:28:9d:ba:85:91:c4:1e:79:8d:44:09: 65:99:de:97:4f:20:2a:30:cf:c7:14:55:6b:25:9d: d8:2f:39:79:4b:d0:2f:a4:c7:8f:06:dd:9d:64:e8: fd:6a:8b:1f:8d:98:78:0c:22:0b:5b:24:2f:ca:77: c8:12:29:50:0b:82:22:82:00:41:3d:dd:b7:c3:1f: 00:aa:22:fd:97:42:4e:e0:6b:a2:03:83:4a:e6:08: cf:18:ef:b8:43:05:b9:6f:85:da:db:e7:de:d5:e3: 01:52:5e:12:6e:81:86:a3:28:86:00:9c:f5:e5:97: 4c:2c:7a:e6:3f:87:a8:71:eb:9d:6e:94:49:f5:90: 6c:cd:1a:58:4d:3a:25:77:ee:0f:2c:98:95:e5:8b: b6:6a:3b:8a:34:b4:b8:3b:05:c8:74:c7:4d:97:b3: d4:d8:32:35:fb:4d:42:94:3e:e1:0b:6c:f8:b7:f6: e1:d5:37:d0:ab:94:5c:20:03:95:4d:a4:52:90:4f: 84:89:ef:44:97:1c:9a:10:2e:6f:b9:d4:dd:e2:f2: 51:d5:14:39:69:17:ba:fc:55:e2:68:16:df:76:12: 80:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:79:E9:FD:E3:BD:2D:0C:8C:45:CD:9A:50:C0:49:D1:43:26:92:27 X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:87:fc:60:25:39:cd:0e:2d:97:e5:39:55:1f:6a:0e:ce:20: 24:e4:38:ec:3b:e3:96:9e:f3:c3:00:78:bb:1e:87:ec:cd:eb: 2d:ff:f0:bf:41:cf:7d:98:a3:59:de:c9:1d:42:64:10:bb:f6: ea:cc:28:37:f9:26:cf:66:a5:77:57:0e:59:bf:c1:f8:bd:bc: 09:38:16:7f:3e:cc:c6:76:b7:2d:5b:c0:b1:69:32:1f:4f:38: ba:05:03:59:a6:26:c4:d5:60:7c:44:57:6e:3b:4b:13:b4:05: 9b:bb:17:12:59:74:88:23:e2:6f:ed:11:7e:93:fa:ae:ea:f8: 3c:67:d3:24:5c:5b:38:da:3e:a4:b5:11:e4:92:32:ad:a9:b1: 55:1f:fb:32:53:6b:b6:fb:aa:fe:22:0f:e2:1b:9a:85:17:9b: 8f:28:65:00:50:af:9f:e5:b0:c5:03:87:82:c0:d9:17:a8:76: 19:6a:b1:94:85:b4:26:78:17:27:d8:c8:3b:bc:7a:80:ca:9c: e8:a1:39:9e:6f:36:85:d6:8a:7d:06:53:fe:3d:85:ae:c1:8f: 3b:27:ee:57:1a:36:3b:e1:22:19:cb:ea:63:9c:61:b0:6c:35: 8d:1d:68:a7:1c:22:92:69:a9:c0:b6:3e:ab:f0:c7:0b:25:3d: 18:c7:2d:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUwNTMxMDI1MzQyWhcNMjUwNjA3MDI1MzQyWjAYMRYwFAYD VQQDEw02ODNhNmYzNi0zYTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5H8ie+0LxqVwGsDF8GYNtwTx6zawJUxV1RFzwW0kWPVyKJ26hZHEHnmNRAll md6XTyAqMM/HFFVrJZ3YLzl5S9AvpMePBt2dZOj9aosfjZh4DCILWyQvynfIEilQ C4IiggBBPd23wx8AqiL9l0JO4GuiA4NK5gjPGO+4QwW5b4Xa2+fe1eMBUl4SboGG oyiGAJz15ZdMLHrmP4eoceudbpRJ9ZBszRpYTTold+4PLJiV5Yu2ajuKNLS4OwXI dMdNl7PU2DI1+01ClD7hC2z4t/bh1TfQq5RcIAOVTaRSkE+Eie9ElxyaEC5vudTd 4vJR1RQ5aRe6/FXiaBbfdhKAOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJ56f3j vS0MjEXNmlDASdFDJpInMB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEh/xgJTnNDi2X5TlVH2oOziAk5DjsO+OWnvPDAHi7Hofszest//C/ Qc99mKNZ3skdQmQQu/bqzCg3+SbPZqV3Vw5Zv8H4vbwJOBZ/PszGdrctW8CxaTIf Tzi6BQNZpibE1WB8RFduO0sTtAWbuxcSWXSII+Jv7RF+k/qu6vg8Z9MkXFs42j6k tRHkkjKtqbFVH/syU2u2+6r+Ig/iG5qFF5uPKGUAUK+f5bDFA4eCwNkXqHYZarGU hbQmeBcn2Mg7vHqAypzooTmebzaF1op9BlP+PYWuwY87J+5XGjY74SIZy+pjnGGw bDWNHWinHCKSaanAtj6r8McLJT0Yxy1J -----END CERTIFICATE-----Generated at Sat May 31 17:00:22 2025 by rpki-client