$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: 95or97XMtHBUUUzZ+duTV9sx1pV3kXnBZcpff4F4WCw= Subject key identifier: A5:96:89:E5:EF:2F:BE:B5:09:CC:BF:C0:FC:4F:A2:A3:2C:53:F6:8F Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0F69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0F56 Signing time: Fri 30 May 2025 17:46:37 +0000 Manifest this update: Fri 30 May 2025 17:46:36 +0000 Manifest next update: Fri 06 Jun 2025 17:46:36 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: PA3ZmBmXiUhMrKjuDDFG5oqU0tKJD08fn7nZGXZ+A3w=) 2: 12E476745E1A11EFB61C6844C4F9AE02.roa (hash: 3IAJ+9W9KeEq7QTVszcmLK1ObY/QRBXZfU+eVRZCpyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3945 (0xf69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: May 30 17:46:36 2025 GMT Not After : Jun 6 17:46:36 2025 GMT Subject: CN=6839eefc-b7af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b7:5b:9c:5c:e3:81:83:06:aa:fd:f3:78:75: 53:1c:df:11:57:1f:a2:a8:8f:16:fb:42:26:2f:5c: f1:c7:fa:d6:fa:96:33:a0:2a:7b:73:39:aa:5c:69: 46:42:6d:f9:fd:4d:21:46:95:55:73:de:92:0f:55: 0b:18:66:43:55:53:e1:bd:25:f6:4c:a9:07:20:af: 1e:a0:80:92:29:82:1c:d3:b2:ac:f2:7b:aa:0f:ec: 6a:24:11:76:ae:01:8a:a0:1c:73:bc:14:c5:25:6f: fb:20:78:cd:0f:c0:05:d9:a4:33:be:25:fc:fb:40: c4:0f:db:c4:6a:40:c8:71:cb:31:1d:fd:7f:cc:6e: 4e:95:b6:f3:17:58:b2:39:c4:1d:90:01:5b:6b:2b: 26:a0:31:af:4e:14:88:c9:aa:7e:eb:c2:35:d5:7a: 35:ac:dc:c4:d4:fd:4d:8c:58:87:f3:5f:10:02:9b: 16:1f:6e:fb:9c:45:9e:99:23:25:49:57:f2:1b:3a: 5c:7c:75:e1:c3:7e:28:6a:7e:72:bd:29:ad:04:a6: e9:c2:bc:64:4b:58:89:c9:38:d5:c4:96:f6:8d:e0: 3a:f2:51:0b:21:91:16:87:5e:fa:7d:db:7d:21:c1: 0c:4c:73:3b:79:a9:f4:1e:f5:2c:48:2e:2a:1a:5a: 2d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:96:89:E5:EF:2F:BE:B5:09:CC:BF:C0:FC:4F:A2:A3:2C:53:F6:8F X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:1d:27:da:9f:68:ae:1a:e9:3b:82:eb:9d:8d:ce:60:3b:9c: 6e:9c:99:e0:17:9c:88:e6:84:63:85:e4:1d:50:b9:fa:a0:8f: 63:28:9e:85:aa:a0:ec:79:de:a3:b8:4c:a9:b2:20:82:73:ce: ec:48:5a:61:c5:45:79:cf:f7:d6:da:a9:65:01:5e:15:b6:28: 17:9f:4a:34:72:01:68:18:b4:83:0b:f8:86:fc:58:e8:e2:41: d4:cc:89:43:fc:b2:9f:51:78:58:7d:1b:cf:a8:1d:9f:62:6e: 65:d8:8f:9b:75:87:c5:17:b8:b7:05:0b:d1:b2:0d:58:36:ed: e7:80:21:3c:07:ea:b9:cf:af:30:5d:15:67:b4:e1:f3:7a:44: 63:36:64:5f:c6:07:44:e6:08:05:2d:a9:37:87:3f:53:bc:76: 13:7f:f0:36:ee:17:1c:9f:0a:45:e1:13:73:f4:cf:75:f3:ef: a8:c7:df:0c:36:c9:08:ef:43:58:f9:ee:91:94:39:a5:43:7d: 08:91:a5:37:f9:7e:09:36:3e:e4:a4:ee:21:fb:b4:fd:cd:7e: c9:25:86:e8:2a:c2:ac:90:f8:0b:7b:16:aa:0f:68:20:48:f3: a3:c0:5b:51:5b:d6:d4:99:88:95:39:c0:86:e4:3d:a1:b2:5c: 59:56:de:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUwNTMwMTc0NjM2WhcNMjUwNjA2MTc0NjM2WjAYMRYwFAYD VQQDEw02ODM5ZWVmYy1iN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8rdbnFzjgYMGqv3zeHVTHN8RVx+iqI8W+0ImL1zxx/rW+pYzoCp7czmqXGlG Qm35/U0hRpVVc96SD1ULGGZDVVPhvSX2TKkHIK8eoICSKYIc07Ks8nuqD+xqJBF2 rgGKoBxzvBTFJW/7IHjND8AF2aQzviX8+0DED9vEakDIccsxHf1/zG5OlbbzF1iy OcQdkAFbaysmoDGvThSIyap+68I11Xo1rNzE1P1NjFiH818QApsWH277nEWemSMl SVfyGzpcfHXhw34oan5yvSmtBKbpwrxkS1iJyTjVxJb2jeA68lELIZEWh176fdt9 IcEMTHM7ean0HvUsSC4qGlotKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWWieXv L761Ccy/wPxPoqMsU/aPMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvHSfan2iuGuk7guudjc5gO5xunJngF5yI5oRjheQdULn6oI9jKJ6F qqDsed6juEypsiCCc87sSFphxUV5z/fW2qllAV4VtigXn0o0cgFoGLSDC/iG/Fjo 4kHUzIlD/LKfUXhYfRvPqB2fYm5l2I+bdYfFF7i3BQvRsg1YNu3ngCE8B+q5z68w XRVntOHzekRjNmRfxgdE5ggFLak3hz9TvHYTf/A27hccnwpF4RNz9M918++ox98M NskI70NY+e6RlDmlQ30IkaU3+X4JNj7kpO4h+7T9zX7JJYboKsKskPgLexaqD2gg SPOjwFtRW9bUmYiVOcCG5D2hslxZVt6N -----END CERTIFICATE-----Generated at Sat May 31 17:08:58 2025 by rpki-client