$ rpki-client -vvf rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft File: AgtgbdnoiYp9XfXqHKPZlgKOddk.mft (raw, json) Hash identifier: 7fHNScCDf7aOnZJ9cY+hLpWQqW9XF4mIaFvnml0x1oo= Subject key identifier: 44:7A:CC:D2:15:BE:98:1E:DA:3D:2A:2B:D8:0A:73:3D:58:DE:ED:9B Authority key identifier: 02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 Certificate issuer: /CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft Manifest number: 0204 Signing time: Sat 31 May 2025 02:13:28 +0000 Manifest this update: Sat 31 May 2025 02:13:27 +0000 Manifest next update: Sat 07 Jun 2025 02:13:27 +0000 Files and hashes: 1: AgtgbdnoiYp9XfXqHKPZlgKOddk.crl (hash: RwgGutrMpPLkwW0CnyzUdhHlSklnhtSIxf+UYXyY3tQ=) 2: D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa (hash: IhgTSFQXOA9FXL9H0ErI6IsYaAMceNv3flW3IvKbv4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E23F, serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Validity Not Before: May 31 02:13:27 2025 GMT Not After : Jun 7 02:13:27 2025 GMT Subject: CN=683a65c8-93ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ff:72:ef:9a:9e:0a:3b:98:54:18:b8:7d:89: ef:dd:8c:7f:bd:83:74:7d:95:3d:c6:c3:38:4f:3f: a7:2d:3f:43:94:90:4e:e5:9e:dd:da:cc:2c:0c:dd: 30:7d:9e:f2:c3:f4:d3:b4:12:32:43:2b:37:2c:24: a2:9a:95:1c:c2:ef:1f:08:f5:22:8f:b5:db:a2:4b: 31:29:69:8f:03:ea:d0:9b:43:b9:cf:f1:68:85:4b: cd:a7:82:27:1b:9b:bc:ca:6f:f1:62:b7:98:8f:36: 65:55:a8:44:63:67:a0:c9:a4:70:eb:92:67:1e:b0: 94:1a:16:84:6d:bf:12:27:6c:4c:46:17:19:28:ec: 4c:17:f9:b3:c5:2a:23:01:c0:62:39:4a:d8:b6:ab: 2b:c5:9f:8f:58:45:96:c2:86:7c:ca:42:a1:02:cc: 2a:31:7f:d5:d4:98:e6:0d:15:f8:45:1b:d8:b8:19: 8c:77:75:cd:f0:1d:ce:c9:c0:73:b4:da:09:8f:09: 0a:9e:e9:9b:53:dd:41:40:9a:c0:8a:4b:9e:83:00: f5:09:2e:25:dd:75:7f:49:61:e0:f5:03:0d:fd:0e: c8:57:56:61:67:76:16:e6:e9:2f:1c:7f:c6:69:49: 18:30:e9:78:be:3e:04:56:b5:ee:5e:85:55:f8:b7: 31:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:7A:CC:D2:15:BE:98:1E:DA:3D:2A:2B:D8:0A:73:3D:58:DE:ED:9B X509v3 Authority Key Identifier: keyid:02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e3:4b:1e:eb:23:43:d1:3d:7e:01:18:0e:ac:fd:cc:09:fc: 47:97:a5:4c:c9:eb:7a:1d:25:b0:d6:4e:f8:a6:c2:1d:30:b1: 09:06:c5:6b:05:90:ff:18:e9:40:ae:cf:77:ba:a5:e7:c2:d2: 7b:1b:b3:76:33:3d:b2:fa:d2:25:24:6d:c6:37:52:e8:a9:e4: 88:8d:b4:19:50:e8:b9:fd:e2:66:c8:da:16:7e:a4:7e:97:90: 72:c0:b4:28:30:5c:49:f7:26:a4:87:8e:c5:eb:90:0b:61:2c: 55:56:0f:5d:43:40:31:32:14:74:e4:1a:83:0c:86:5f:39:dc: ee:0a:35:2d:65:9c:f9:fc:bf:c5:8f:33:43:19:30:47:8c:c3: ad:98:b2:3b:a5:bd:0e:ef:86:a1:da:d7:3b:ce:d0:57:6b:dd: e0:84:2f:45:a4:07:27:8f:52:4d:cc:1d:43:49:21:1b:49:c1: 6f:04:63:fe:85:09:85:15:8b:3e:c3:02:79:68:19:bd:70:46: 45:1b:de:9f:d0:36:d9:d7:6f:19:b3:3a:18:15:5b:fa:54:44: 98:22:86:dd:01:c7:3d:b5:ce:ad:ee:a2:07:f0:90:76:da:7a: 17:ab:01:05:1c:f2:17:ad:13:7f:16:5e:e9:35:f3:44:03:99: 5c:11:fd:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyM0YxMTAvBgNVBAUTKDAyMEI2MDZERDlFODg5OEE3RDVERjVFQTFDQTNEOTk2 MDI4RTc1RDkwHhcNMjUwNTMxMDIxMzI3WhcNMjUwNjA3MDIxMzI3WjAYMRYwFAYD VQQDEw02ODNhNjVjOC05M2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApv9y75qeCjuYVBi4fYnv3Yx/vYN0fZU9xsM4Tz+nLT9DlJBO5Z7d2swsDN0w fZ7yw/TTtBIyQys3LCSimpUcwu8fCPUij7XboksxKWmPA+rQm0O5z/FohUvNp4In G5u8ym/xYreYjzZlVahEY2egyaRw65JnHrCUGhaEbb8SJ2xMRhcZKOxMF/mzxSoj AcBiOUrYtqsrxZ+PWEWWwoZ8ykKhAswqMX/V1JjmDRX4RRvYuBmMd3XN8B3OycBz tNoJjwkKnumbU91BQJrAikuegwD1CS4l3XV/SWHg9QMN/Q7IV1ZhZ3YW5ukvHH/G aUkYMOl4vj4EVrXuXoVV+LcxUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFER6zNIV vpge2j0qK9gKcz1Y3u2bMB8GA1UdIwQYMBaAFAILYG3Z6ImKfV316hyj2ZYCjnXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTIzRi9DNjRDQUFBNDNF NTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZcDlYZlhxSEtQWmxnS09k ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FndGdiZG5vaVlwOVhmWHFIS1BabGdLT2Rkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTIzRi9DNjRDQUFBNDNFNTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZ cDlYZlhxSEtQWmxnS09kZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK40se6yND0T1+ARgOrP3MCfxHl6VMyet6HSWw1k74psIdMLEJBsVr BZD/GOlArs93uqXnwtJ7G7N2Mz2y+tIlJG3GN1LoqeSIjbQZUOi5/eJmyNoWfqR+ l5BywLQoMFxJ9yakh47F65ALYSxVVg9dQ0AxMhR05BqDDIZfOdzuCjUtZZz5/L/F jzNDGTBHjMOtmLI7pb0O74ah2tc7ztBXa93ghC9FpAcnj1JNzB1DSSEbScFvBGP+ hQmFFYs+wwJ5aBm9cEZFG96f0DbZ128ZszoYFVv6VESYIobdAcc9tc6t7qIH8JB2 2noXqwEFHPIXrRN/Fl7pNfNEA5lcEf3c -----END CERTIFICATE-----Generated at Sat May 31 17:39:19 2025 by rpki-client