$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: McLZz/0QGfx6BQ56Lz2Gr/nS+Sr4GkjbNuMdWjgwsoE= Subject key identifier: A5:18:5C:1E:6E:09:3F:CF:5A:F4:CF:79:C2:F6:E0:70:E5:57:B5:85 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 074E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 0748 Signing time: Fri 30 May 2025 21:54:08 +0000 Manifest this update: Fri 30 May 2025 21:54:08 +0000 Manifest next update: Fri 06 Jun 2025 21:54:08 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: hdj/UjqT+eQ3nKM4LZVdrMpJjbY/jzcF4hjwDzMm7GU=) 2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: dyvPcZxPt0csBuZZARHE9y3XiMCjfKdl2w86flcHLuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1870 (0x74e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: May 30 21:54:08 2025 GMT Not After : Jun 6 21:54:08 2025 GMT Subject: CN=683a2900-c5dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b3:05:99:8e:c3:43:eb:f3:61:c0:88:77:59: 0e:f4:2d:56:50:8f:58:55:5d:3f:fd:29:26:eb:58: e4:6e:c1:fd:a0:39:bf:94:60:79:0d:f6:ca:f0:9a: 91:1d:9c:a1:7d:e5:c2:29:4b:e7:bc:02:6c:74:bb: 67:0c:42:59:e1:e9:6c:7e:dc:11:ec:ea:37:85:17: f3:cf:2b:18:96:b1:a1:5b:1b:90:ed:39:3b:78:23: cd:e8:d2:3e:89:0d:e1:99:ea:18:f6:1c:49:26:73: fc:94:a6:e4:2e:e9:8b:f3:ce:b3:28:27:13:d1:0b: 24:51:3d:10:d5:55:7f:f8:ea:17:d6:65:89:60:79: 86:f8:80:d4:8d:05:98:46:f3:ae:d3:a6:f1:f1:91: 15:77:c2:a8:24:ec:6c:7a:c5:3e:05:11:a0:af:bd: 3c:e1:42:e5:db:fe:cb:4f:47:be:0a:b8:71:7b:d3: b5:b5:7f:c7:9c:e5:09:d6:f8:3d:04:e7:06:ad:37: cf:fd:8d:4e:40:9c:d4:84:70:9a:16:1c:f8:12:96: 2a:7b:a3:df:36:a2:17:a9:99:5a:c4:30:c1:c9:2d: 6e:5d:dc:17:4c:27:b5:dc:f3:fe:5e:e0:d2:82:69: d5:4f:fe:52:b4:a6:27:37:24:fd:0f:a0:d2:b0:09: ba:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:18:5C:1E:6E:09:3F:CF:5A:F4:CF:79:C2:F6:E0:70:E5:57:B5:85 X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f0:9f:f3:6a:ea:38:a8:d8:35:f3:ac:44:fd:71:7c:34:18: 69:db:db:79:4d:22:2f:24:ea:76:6d:66:73:52:e6:51:ff:37: 19:dd:8f:e7:8d:d3:f5:c9:85:24:12:fb:07:31:76:da:02:c8: b3:65:de:8c:12:de:ed:74:65:84:8c:40:7c:4a:e5:2d:46:43: c4:51:43:80:cd:45:f1:97:9e:09:20:81:60:56:38:af:1e:51: e8:e5:46:91:65:9a:e6:38:38:c9:20:2e:12:28:f8:ac:c9:73: 96:23:67:9a:0e:bf:26:05:18:b0:38:46:95:8f:cd:9c:3d:da: ee:ac:67:4b:e3:28:fe:80:02:50:f6:1b:7d:2a:a3:f8:d7:02: c9:c0:82:bc:47:bc:02:29:5b:98:93:c7:a6:bf:36:fb:ab:96: 51:de:d0:ef:85:4d:84:aa:c7:28:da:78:2f:1f:1f:3a:31:24: 43:f1:f7:51:84:fc:93:0b:75:53:22:f6:2d:b1:06:00:80:42: 79:24:5a:62:2e:ab:da:73:bb:e2:1a:0e:1f:2e:63:e4:96:f1: 24:3e:92:bf:0b:8c:d0:7b:e5:07:f2:ce:a6:b1:df:6e:73:ad: 4e:1f:3d:d0:3b:8b:cd:c4:bf:96:98:37:7f:b0:47:63:23:b8: 39:60:41:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjUwNTMwMjE1NDA4WhcNMjUwNjA2MjE1NDA4WjAYMRYwFAYD VQQDEw02ODNhMjkwMC1jNWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7MFmY7DQ+vzYcCId1kO9C1WUI9YVV0//Skm61jkbsH9oDm/lGB5DfbK8JqR HZyhfeXCKUvnvAJsdLtnDEJZ4elsftwR7Oo3hRfzzysYlrGhWxuQ7Tk7eCPN6NI+ iQ3hmeoY9hxJJnP8lKbkLumL886zKCcT0QskUT0Q1VV/+OoX1mWJYHmG+IDUjQWY RvOu06bx8ZEVd8KoJOxsesU+BRGgr7084ULl2/7LT0e+Crhxe9O1tX/HnOUJ1vg9 BOcGrTfP/Y1OQJzUhHCaFhz4EpYqe6PfNqIXqZlaxDDByS1uXdwXTCe13PP+XuDS gmnVT/5StKYnNyT9D6DSsAm66QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUYXB5u CT/PWvTPecL24HDlV7WFMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/8J/zauo4qNg186xE/XF8NBhp29t5TSIvJOp2bWZzUuZR/zcZ3Y/n jdP1yYUkEvsHMXbaAsizZd6MEt7tdGWEjEB8SuUtRkPEUUOAzUXxl54JIIFgVjiv HlHo5UaRZZrmODjJIC4SKPisyXOWI2eaDr8mBRiwOEaVj82cPdrurGdL4yj+gAJQ 9ht9KqP41wLJwIK8R7wCKVuYk8emvzb7q5ZR3tDvhU2Eqsco2ngvHx86MSRD8fdR hPyTC3VTIvYtsQYAgEJ5JFpiLqvac7viGg4fLmPklvEkPpK/C4zQe+UH8s6msd9u c61OHz3QO4vNxL+WmDd/sEdjI7g5YEGW -----END CERTIFICATE-----Generated at Sat May 31 15:56:48 2025 by rpki-client