$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft File: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json) Hash identifier: 4SCzYVMdoRym7P5VnPGi3rYcatK2gJ+sLkI7B9IUpO4= Subject key identifier: 65:61:FC:78:78:8D:6A:BE:77:0E:3A:DB:09:3E:88:42:59:C3:97:D1 Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC Certificate issuer: /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Certificate serial: 0B1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft Manifest number: 0B0E Signing time: Sat 31 May 2025 19:23:08 +0000 Manifest this update: Sat 31 May 2025 19:23:07 +0000 Manifest next update: Sat 07 Jun 2025 19:23:07 +0000 Files and hashes: 1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: ZvNH7H2y1C6LwHY34Chu0WoNrv0S2i+6qM6kY+ZYM/U=) 2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: dPrx3cF0sDj9FTl2qCoRHJgtgGOLW5ACbJ0tx2wVxmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2843 (0xb1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C, serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Validity Not Before: May 31 19:23:07 2025 GMT Not After : Jun 7 19:23:07 2025 GMT Subject: CN=683b571c-e9d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:dd:cc:a3:83:9b:2f:c7:7f:bd:5c:74:dc:77: c6:ef:58:ca:28:d6:ed:40:0b:59:4d:fc:1c:9d:de: 39:3a:d5:81:03:86:3a:80:80:20:80:4d:e1:08:93: d8:72:4f:ae:cb:0c:39:37:5d:d0:84:0c:9b:c4:33: 50:0b:09:f7:0d:ec:8f:77:80:b0:e6:12:c0:30:c7: 34:fe:8e:44:c3:0c:92:01:5e:3b:52:95:8f:66:b8: 77:f4:2a:05:3c:76:2e:37:bf:2c:d5:95:cf:78:c4: df:44:a9:c4:d8:3a:d1:91:19:b2:c7:b4:57:f8:e9: d1:31:3a:65:73:62:2d:73:68:1e:1b:84:b4:22:ae: 1b:b8:4d:58:93:12:10:cc:90:c3:a5:e7:c5:58:55: a0:3b:36:e3:96:79:72:39:fa:f1:32:33:9c:4a:8f: c7:15:9e:a3:0f:e4:61:a8:ff:d9:55:81:e7:f6:fd: ce:ce:3f:75:07:3e:04:2c:3b:b8:7a:87:49:b3:d3: dc:93:5e:7f:0f:89:f4:9f:be:01:a8:29:0c:19:b4: bd:61:bd:10:18:00:08:1a:56:18:b0:d8:84:d9:64: 2e:64:3e:92:6d:67:d2:ad:03:ea:c3:70:d7:0b:12: 5e:02:e7:ea:ab:b8:5d:9e:1a:6c:73:88:cb:13:2f: a0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:61:FC:78:78:8D:6A:BE:77:0E:3A:DB:09:3E:88:42:59:C3:97:D1 X509v3 Authority Key Identifier: keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:bd:3c:4a:ca:45:f6:52:d1:35:6d:c4:2a:bf:f7:37:7b:82: ab:f4:5d:bc:47:82:fb:d0:70:65:ae:6a:d4:b7:68:50:21:b2: 86:5e:0a:e2:c9:5d:ca:ac:a2:6e:63:57:e4:2b:17:01:60:a7: 7b:f3:32:57:17:bd:9c:82:d4:f1:66:31:34:37:5a:7d:14:46: 9e:19:0c:72:70:44:20:1f:e1:fc:f3:c8:38:d0:9e:73:7e:7a: 7a:b8:76:e3:66:46:63:c8:54:34:22:99:e1:39:fd:79:7a:20: 4d:e9:e0:0c:9c:02:9d:ab:e0:cf:21:6d:54:1b:6a:89:05:e7: de:91:d0:93:31:e1:07:37:45:a7:3d:ca:b4:3a:11:33:92:99: ee:2d:c5:63:5f:de:92:06:a4:4d:0d:b0:86:b7:fa:03:90:3e: 3e:1d:8b:1e:27:f7:1a:b1:9e:b4:2a:f8:92:59:b7:60:44:1e: 37:9d:1e:05:b4:43:32:aa:95:0c:e1:30:fa:fa:c8:a6:a5:b8: 3d:77:aa:3b:d0:c5:01:f0:58:af:db:af:7a:20:a6:3c:2d:a1: d9:01:85:04:fd:d5:67:d9:7e:ce:da:f0:f8:aa:df:94:01:1e: 20:09:40:30:50:cc:9f:a8:20:ae:79:5a:8a:39:8d:9f:45:e4: 58:f6:43:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKEQ1QTAyNTA2MzRERkMwM0RDOUNGQ0FCQTk3OTUxODBG RjA1MTU4RkMwHhcNMjUwNTMxMTkyMzA3WhcNMjUwNjA3MTkyMzA3WjAYMRYwFAYD VQQDEw02ODNiNTcxYy1lOWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsN3Mo4ObL8d/vVx03HfG71jKKNbtQAtZTfwcnd45OtWBA4Y6gIAggE3hCJPY ck+uyww5N13QhAybxDNQCwn3DeyPd4Cw5hLAMMc0/o5EwwySAV47UpWPZrh39CoF PHYuN78s1ZXPeMTfRKnE2DrRkRmyx7RX+OnRMTplc2Itc2geG4S0Iq4buE1YkxIQ zJDDpefFWFWgOzbjlnlyOfrxMjOcSo/HFZ6jD+RhqP/ZVYHn9v3Ozj91Bz4ELDu4 eodJs9Pck15/D4n0n74BqCkMGbS9Yb0QGAAIGlYYsNiE2WQuZD6SbWfSrQPqw3DX CxJeAufqq7hdnhpsc4jLEy+gtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVh/Hh4 jWq+dw462wk+iEJZw5fRMB8GA1UdIwQYMBaAFNWgJQY038A9yc/KupeVGA/wUVj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy84QTFDNDYxNjQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndEM0p6OHE2bDVVWURfQlJX UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFhQWxCalRmd0QzSno4cTZsNVVZRF9CUldQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy84QTFDNDYxNjQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndE M0p6OHE2bDVVWURfQlJXUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXvTxKykX2UtE1bcQqv/c3e4Kr9F28R4L70HBlrmrUt2hQIbKGXgri yV3KrKJuY1fkKxcBYKd78zJXF72cgtTxZjE0N1p9FEaeGQxycEQgH+H888g40J5z fnp6uHbjZkZjyFQ0IpnhOf15eiBN6eAMnAKdq+DPIW1UG2qJBefekdCTMeEHN0Wn Pcq0OhEzkpnuLcVjX96SBqRNDbCGt/oDkD4+HYseJ/casZ60KviSWbdgRB43nR4F tEMyqpUM4TD6+simpbg9d6o70MUB8Fiv2696IKY8LaHZAYUE/dVn2X7O2vD4qt+U AR4gCUAwUMyfqCCueVqKOY2fReRY9kNS -----END CERTIFICATE-----Generated at Mon Jun 2 20:24:34 2025 by rpki-client