$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: 71JEyZ+oN0CDUQLukKg7p1yXYcLkIq1bMuMJc9QlekY= Subject key identifier: 31:F8:43:F3:D6:9C:50:04:53:0D:A8:E6:FF:96:33:6A:FA:29:95:A2 Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: 5D Signing time: Sat 31 May 2025 06:42:10 +0000 Manifest this update: Sat 31 May 2025 06:42:10 +0000 Manifest next update: Sat 07 Jun 2025 06:42:10 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: EhmzCeyjpyh5jgK0nXajUvP8EkMqxdroNwxxLi66Dv4=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: pawwhpt8xl4Jm5tUlNLFvNNRwT1g8ks5JKIz2Wod4KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:42:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: May 31 06:42:10 2025 GMT Not After : Jun 7 06:42:10 2025 GMT Subject: CN=683aa4c2-8306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:79:1d:55:40:56:28:01:00:68:9b:40:83:14: a7:45:94:a0:cf:9d:cd:d1:2f:28:74:87:09:b3:c1: e5:c3:1d:54:c3:60:cf:92:6a:0f:16:83:7d:29:68: 59:ac:5c:ed:9d:f9:ef:5f:68:2f:7b:fd:38:fa:53: 21:b7:74:a0:3b:44:30:76:3f:01:ce:0e:eb:dc:d0: 4c:5a:c1:cc:44:e8:37:d7:44:67:35:fd:07:16:b3: be:98:55:87:ef:75:45:50:89:ac:36:a5:30:e6:c1: 67:de:26:4b:ff:87:86:f2:fc:53:06:86:ea:ca:5e: 71:93:60:13:f9:47:66:40:40:22:85:3d:f6:42:33: 6f:f2:aa:a7:b8:89:be:40:f0:a3:2f:0f:d1:87:98: 67:17:e5:04:4a:af:11:e3:95:82:cd:a7:db:e4:e0: 80:a1:dd:28:5d:c7:64:11:d2:5d:42:30:22:73:f5: 57:c2:80:8f:c8:95:2a:6b:4c:c5:4d:7d:38:99:0a: e6:3f:48:df:e9:99:2c:28:c3:29:a9:71:65:47:d7: 98:f8:76:a1:e7:91:ec:d7:70:e4:a7:28:0e:c1:ac: 0a:8a:ee:8e:40:40:d3:d5:20:5c:af:1c:06:16:e5: 65:76:fd:83:8a:8f:35:9b:cc:6c:07:05:3f:c6:1a: f1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F8:43:F3:D6:9C:50:04:53:0D:A8:E6:FF:96:33:6A:FA:29:95:A2 X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:a8:2e:55:e2:1d:1d:51:8c:c6:72:ec:4a:ec:54:92:28:7a: 5e:0f:22:3e:c1:f7:dc:90:43:8b:56:26:dd:3c:ff:9d:4e:85: 16:6b:21:cc:e8:48:8c:7e:fb:28:6f:01:f3:2b:91:d6:88:28: d6:66:de:3e:5b:9e:2f:31:ae:1e:e9:ae:fe:64:01:f1:e4:e8: e4:92:87:70:96:e4:e6:b5:51:13:c6:ad:92:9b:19:92:a8:63: 20:90:62:58:e0:48:89:6e:d7:9b:4f:bd:38:d4:f4:f8:af:70: cb:84:68:70:d3:0e:fb:b6:50:0a:3b:17:a9:a9:fc:99:3c:36: 8e:b2:85:26:42:0c:cb:01:67:b9:15:a6:d9:9b:0b:d4:be:2c: dc:52:9c:2c:33:c6:55:38:44:29:2c:d9:7b:17:2c:d9:9b:d0: 15:45:a3:19:ba:38:ac:0f:fb:01:8b:99:eb:60:b4:ba:f9:f7: c5:de:e0:4e:b0:c6:c4:31:04:78:59:39:c0:0a:ff:54:9f:c3: 15:9b:de:bd:65:cc:2d:ed:54:66:d1:af:27:30:91:91:f6:54: 82:ab:3e:c4:ca:8e:a2:7a:b0:28:16:01:e9:be:a3:ea:8d:70: 07:08:a2:59:e8:21:cc:14:a8:57:31:c1:69:f3:46:c0:42:10: 95:2e:de:3c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUIxMzExMC8GA1UEBRMoQjREMjE3OTM5QTI3NTE5MzhFMDc2NTlBNzk0ODg1QTlD ODg0MTkxOTAeFw0yNTA1MzEwNjQyMTBaFw0yNTA2MDcwNjQyMTBaMBgxFjAUBgNV BAMTDTY4M2FhNGMyLTgzMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPeR1VQFYoAQBom0CDFKdFlKDPnc3RLyh0hwmzweXDHVTDYM+Sag8Wg30paFms XO2d+e9faC97/Tj6UyG3dKA7RDB2PwHODuvc0ExawcxE6DfXRGc1/QcWs76YVYfv dUVQiaw2pTDmwWfeJkv/h4by/FMGhurKXnGTYBP5R2ZAQCKFPfZCM2/yqqe4ib5A 8KMvD9GHmGcX5QRKrxHjlYLNp9vk4ICh3Shdx2QR0l1CMCJz9VfCgI/IlSprTMVN fTiZCuY/SN/pmSwowympcWVH15j4dqHnkezXcOSnKA7BrAqK7o5AQNPVIFyvHAYW 5WV2/YOKjzWbzGwHBT/GGvFRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMfhD89ac UARTDajm/5YzavoplaIwHwYDVR0jBBgwFoAUtNIXk5onUZOOB2WaeUiFqciEGRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1QjEzLzUwQkQyMzBFQjEy ODExRUZCNzUwQTUyQkM0RjlBRTAyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdE5JWGs1b25VWk9PQjJXYWVVaUZxY2lFR1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 QjEzLzUwQkQyMzBFQjEyODExRUZCNzUwQTUyQkM0RjlBRTAyL3ROSVhrNW9uVVpP T0IyV2FlVWlGcWNpRUdSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKioLlXiHR1RjMZy7ErsVJIoel4PIj7B99yQQ4tWJt08/51OhRZrIczo SIx++yhvAfMrkdaIKNZm3j5bni8xrh7prv5kAfHk6OSSh3CW5Oa1URPGrZKbGZKo YyCQYljgSIlu15tPvTjU9PivcMuEaHDTDvu2UAo7F6mp/Jk8No6yhSZCDMsBZ7kV ptmbC9S+LNxSnCwzxlU4RCks2XsXLNmb0BVFoxm6OKwP+wGLmetgtLr598Xe4E6w xsQxBHhZOcAK/1SfwxWb3r1lzC3tVGbRrycwkZH2VIKrPsTKjqJ6sCgWAem+o+qN cAcIolnoIcwUqFcxwWnzRsBCEJUu3jw= -----END CERTIFICATE-----Generated at Sat May 31 15:28:23 2025 by rpki-client