$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: n8x2urhYagKH9hrlSp6Zg9MemdmHeYcDSaJdO/j/v30= Subject key identifier: 76:59:46:6B:59:6F:55:0F:82:91:19:38:BB:24:4F:F4:ED:4C:0A:A5 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 0990 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 0986 Signing time: Fri 30 May 2025 20:58:36 +0000 Manifest this update: Fri 30 May 2025 20:58:35 +0000 Manifest next update: Fri 06 Jun 2025 20:58:35 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: Kb5tNIooeqWeZkYVgcmYBAFXkWnACMECCl3Aebw8Tzg=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: EW5gw++/Nv/7XkyhmrGAdJFCyCQBgQSX+Pdw0qIT5p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2448 (0x990) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: May 30 20:58:35 2025 GMT Not After : Jun 6 20:58:35 2025 GMT Subject: CN=683a1bfb-55d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ff:7c:ce:db:8e:e9:a2:6d:40:9a:30:7d:94: 1c:3a:65:f2:69:81:50:f0:5e:3e:b4:a1:1b:93:e5: 80:c4:5c:31:f6:86:0a:43:86:62:e7:e4:26:0c:dd: 82:d7:5a:b4:62:2f:1e:95:ae:58:6c:10:0f:c6:65: 1e:94:4d:7b:7b:32:a5:ee:09:f8:0d:34:61:f2:9e: 43:bd:76:c8:31:38:a5:2f:84:e0:1f:a4:b1:50:c4: e5:a5:b0:9e:3b:c4:60:cc:b5:b2:2e:fa:2c:24:85: 25:17:4e:77:3b:81:3e:f1:f8:84:d7:de:b7:25:6d: d3:83:22:29:5f:8b:a8:50:c4:9a:a3:e0:9b:0d:f7: 33:19:af:ed:43:e3:59:fa:71:89:c5:b8:da:43:b6: 59:07:92:19:c9:73:b9:25:45:24:a8:1a:fe:18:b9: 89:1f:9b:ab:3d:4b:8f:8a:db:f6:d5:24:a7:d1:11: 85:89:94:63:fe:1f:c5:6d:6a:ca:52:f7:cf:8e:3b: 5a:f0:90:f0:f1:57:75:74:89:b5:fa:c4:b8:45:49: 4e:5e:37:38:86:62:94:0a:95:9d:8e:d4:1e:09:65: ce:5b:06:24:7b:52:69:8a:64:73:82:86:39:71:66: 50:73:05:b2:47:73:2b:0d:ad:83:57:64:40:17:2e: a9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:59:46:6B:59:6F:55:0F:82:91:19:38:BB:24:4F:F4:ED:4C:0A:A5 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:4a:de:35:2d:5a:b9:c1:9e:6a:47:ca:07:41:4f:14:5c:d3: 1f:f0:f5:d6:d4:23:52:05:b8:03:85:7c:6f:03:66:20:f8:fd: 56:ac:b6:03:35:ae:f4:d9:97:34:37:eb:31:db:2a:b8:ae:a9: ed:ee:fd:08:0d:5b:ae:10:2c:9e:3a:c9:ec:24:d9:ae:ee:67: 37:a9:ac:0f:37:4f:00:17:b2:6b:60:29:49:d4:d5:64:6b:23: 96:54:3f:3e:be:65:f8:cd:61:26:1e:b5:ce:7d:fc:de:0c:75: dc:af:0f:1b:c3:7b:2a:7b:47:c9:33:9d:ff:b8:d2:e7:f2:fc: 79:77:b8:21:13:09:89:41:94:8d:22:bd:c4:c1:0e:38:fe:ed: 3f:94:57:aa:cd:37:26:6f:78:1a:72:7c:9b:de:68:f7:f5:c0: a9:ae:b4:a2:ad:23:c2:c9:aa:86:38:74:0e:48:7c:cd:3a:6f: e9:e6:63:29:c9:7f:f3:9c:37:67:27:11:72:3d:a0:49:15:ff: 66:ae:ef:33:b3:63:12:89:fe:d8:4a:b3:72:8f:67:85:a3:75: c9:4b:65:0d:0c:a6:36:9f:93:a4:07:55:56:b8:d2:47:90:55: 5f:a9:b5:ef:83:d0:72:69:ef:f1:4b:ce:c2:27:01:ff:0f:aa: d9:4f:69:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjUwNTMwMjA1ODM1WhcNMjUwNjA2MjA1ODM1WjAYMRYwFAYD VQQDEw02ODNhMWJmYi01NWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/98ztuO6aJtQJowfZQcOmXyaYFQ8F4+tKEbk+WAxFwx9oYKQ4Zi5+QmDN2C 11q0Yi8ela5YbBAPxmUelE17ezKl7gn4DTRh8p5DvXbIMTilL4TgH6SxUMTlpbCe O8RgzLWyLvosJIUlF053O4E+8fiE1963JW3TgyIpX4uoUMSao+CbDfczGa/tQ+NZ +nGJxbjaQ7ZZB5IZyXO5JUUkqBr+GLmJH5urPUuPitv21SSn0RGFiZRj/h/FbWrK UvfPjjta8JDw8Vd1dIm1+sS4RUlOXjc4hmKUCpWdjtQeCWXOWwYke1JpimRzgoY5 cWZQcwWyR3MrDa2DV2RAFy6pjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZZRmtZ b1UPgpEZOLskT/TtTAqlMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkSt41LVq5wZ5qR8oHQU8UXNMf8PXW1CNSBbgDhXxvA2Yg+P1WrLYD Na702Zc0N+sx2yq4rqnt7v0IDVuuECyeOsnsJNmu7mc3qawPN08AF7JrYClJ1NVk ayOWVD8+vmX4zWEmHrXOffzeDHXcrw8bw3sqe0fJM53/uNLn8vx5d7ghEwmJQZSN Ir3EwQ44/u0/lFeqzTcmb3gacnyb3mj39cCprrSirSPCyaqGOHQOSHzNOm/p5mMp yX/znDdnJxFyPaBJFf9mru8zs2MSif7YSrNyj2eFo3XJS2UNDKY2n5OkB1VWuNJH kFVfqbXvg9Byae/xS87CJwH/D6rZT2lP -----END CERTIFICATE-----Generated at Sat May 31 17:27:54 2025 by rpki-client