$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft File: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft (raw, json) Hash identifier: Rm+9FIu5orXFFJQl+1TgmfRp2DrSI3grz9Fcu5YskUg= Subject key identifier: E5:DB:C0:F9:13:7B:43:DA:D0:F5:84:1F:C4:D1:F6:CA:58:DD:4A:E8 Authority key identifier: 4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A Certificate issuer: /CN=A9144F34/serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft Manifest number: 56 Signing time: Sun 01 Jun 2025 06:56:40 +0000 Manifest this update: Sun 01 Jun 2025 06:56:40 +0000 Manifest next update: Sun 08 Jun 2025 06:56:40 +0000 Files and hashes: 1: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl (hash: e8gVGM+wVafQSM4my7yEWXHSae+bMksCi9VZpvPnVpc=) 2: 4965C7C02E4411F0B187B122C4F9AE02.roa (hash: vT0qzVdoUmxJ/TJ/AidkSPg3ugEyyFgQIDSZRoXd/0g=) 3: AA14EED2BDE911EFB07EE682C4F9AE02.roa (hash: 8Lz3SihiRlFf9NOxeybLJutdQF61khJ8l8jmKMF421Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F34, serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Validity Not Before: Jun 1 06:56:40 2025 GMT Not After : Jun 8 06:56:40 2025 GMT Subject: CN=683bf9a8-3b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:61:ed:09:01:dd:60:b0:9d:d6:c9:69:23:68: f7:69:62:33:2b:4c:0f:cf:fd:a8:d9:50:95:72:00: b4:8f:14:a9:4d:c6:94:81:32:98:d0:41:cd:67:29: 8d:d8:cb:8d:67:94:51:7a:22:c6:d5:76:f6:06:be: 57:24:ec:b1:7c:40:06:c1:7d:45:82:30:f2:d6:ca: 97:b3:9e:c1:0d:8a:63:5d:a1:18:ca:7e:0e:ad:7e: 37:36:36:23:e9:a2:2a:8d:83:c6:3f:86:59:b4:8f: 2f:93:39:11:db:7e:4f:91:75:92:74:f8:1a:7c:93: e3:a8:e2:0e:c9:b5:6c:5b:97:26:bb:5f:78:19:12: 19:af:8c:5a:b2:4c:8a:b6:54:d9:50:c8:cd:b2:94: da:62:20:cf:a3:2b:2a:35:87:0d:b4:d7:35:3b:10: 3e:b6:29:c5:73:79:72:b9:3c:06:2c:5b:fd:43:75: 07:01:8d:a4:c9:57:d9:1e:10:8a:fd:2e:cf:e1:5a: 3f:77:78:e2:ab:9e:c7:34:fc:80:58:7c:1d:62:b0: 85:fd:9d:26:8f:47:d7:10:25:6e:20:bd:24:0b:13: 90:aa:c3:57:66:59:f5:7b:db:d9:ae:a6:55:b5:33: fd:37:34:f3:ec:31:30:22:ca:7a:c4:84:08:c2:89: 63:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DB:C0:F9:13:7B:43:DA:D0:F5:84:1F:C4:D1:F6:CA:58:DD:4A:E8 X509v3 Authority Key Identifier: keyid:4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:bf:eb:2a:6f:04:3d:16:9b:50:7a:9c:a5:ce:eb:d5:c7:bd: e7:0a:25:a0:f9:70:28:21:08:11:be:5c:d3:25:c6:40:9f:9f: e7:6b:c6:df:b4:af:37:70:a5:63:02:aa:01:f5:dd:c8:04:3a: 31:2f:0d:66:39:87:59:fa:6a:1d:37:27:d3:df:da:38:f4:95: 1a:63:46:a3:07:bd:73:88:11:60:c5:58:e4:06:21:2e:c3:20: 4c:64:e2:d2:71:f7:aa:25:e8:d2:75:b6:43:a3:1f:cc:1f:d6: a5:aa:11:ef:34:c0:87:39:a4:94:78:28:71:56:45:f5:6b:b9: 27:7b:af:6f:d6:47:50:8c:a6:ba:ba:ec:cc:d4:7f:53:a0:7d: 80:e2:de:73:b5:cd:83:35:66:2c:5f:4f:b8:ac:7c:eb:96:52: 96:af:62:5a:b5:89:47:aa:1e:dd:a2:3c:4c:c0:1e:06:10:8a: 37:3f:e9:99:6e:9f:4e:f3:fe:c9:35:52:08:c6:e0:da:ed:23: 35:b7:a3:a9:45:71:ad:34:4e:e8:91:d4:0e:d4:1a:f3:89:c1: f2:26:29:a7:f6:ea:be:b4:12:9f:b7:ee:7d:10:e6:b1:cf:d7: 70:69:ef:59:ed:ef:f4:7b:96:75:e9:ea:81:ca:af:fb:f4:83: 2d:8e:12:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NEYzNDExMC8GA1UEBRMoNEIzMTA4QkM1NzU4ODQzRDYzREZGNkZDNjQwOTdGMkIx NjQ0Q0I4QTAeFw0yNTA2MDEwNjU2NDBaFw0yNTA2MDgwNjU2NDBaMBgxFjAUBgNV BAMTDTY4M2JmOWE4LTNiOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMYe0JAd1gsJ3WyWkjaPdpYjMrTA/P/ajZUJVyALSPFKlNxpSBMpjQQc1nKY3Y y41nlFF6IsbVdvYGvlck7LF8QAbBfUWCMPLWypeznsENimNdoRjKfg6tfjc2NiPp oiqNg8Y/hlm0jy+TORHbfk+RdZJ0+Bp8k+Oo4g7JtWxblya7X3gZEhmvjFqyTIq2 VNlQyM2ylNpiIM+jKyo1hw201zU7ED62KcVzeXK5PAYsW/1DdQcBjaTJV9keEIr9 Ls/hWj93eOKrnsc0/IBYfB1isIX9nSaPR9cQJW4gvSQLE5Cqw1dmWfV729muplW1 M/03NPPsMTAiynrEhAjCiWNxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5dvA+RN7 Q9rQ9YQfxNH2yljdSugwHwYDVR0jBBgwFoAUSzEIvFdYhD1j3/b8ZAl/KxZEy4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0RjM0LzREMjJFRUUwQkRF OTExRUZCRkQ1Mzg4MkM0RjlBRTAyL1N6RUl2RmRZaEQxajNfYjhaQWxfS3haRXk0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU3pFSXZGZFloRDFqM19iOFpBbF9LeFpFeTRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 RjM0LzREMjJFRUUwQkRFOTExRUZCRkQ1Mzg4MkM0RjlBRTAyL1N6RUl2RmRZaEQx ajNfYjhaQWxfS3haRXk0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACm/6ypvBD0Wm1B6nKXO69XHvecKJaD5cCghCBG+XNMlxkCfn+drxt+0 rzdwpWMCqgH13cgEOjEvDWY5h1n6ah03J9Pf2jj0lRpjRqMHvXOIEWDFWOQGIS7D IExk4tJx96ol6NJ1tkOjH8wf1qWqEe80wIc5pJR4KHFWRfVruSd7r2/WR1CMprq6 7MzUf1OgfYDi3nO1zYM1ZixfT7isfOuWUpavYlq1iUeqHt2iPEzAHgYQijc/6Zlu n07z/sk1UgjG4NrtIzW3o6lFca00TuiR1A7UGvOJwfImKaf26r60Ep+37n0Q5rHP 13Bp71nt7/R7lnXp6oHKr/v0gy2OEko= -----END CERTIFICATE-----Generated at Mon Jun 2 20:53:38 2025 by rpki-client