$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: 9o48AmW3IbrDCk+es+t/3rKo85lDPREl2D11ywhAnZQ= Subject key identifier: 24:9A:87:76:54:9A:BC:13:D8:3D:70:AE:9D:E7:0F:5F:C1:C2:95:13 Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2D7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2D62 Signing time: Fri 30 May 2025 15:39:32 +0000 Manifest this update: Fri 30 May 2025 15:39:32 +0000 Manifest next update: Fri 06 Jun 2025 15:39:32 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: hRlzAFjwQsIzZUQk6W5kTBcpAdASmds5kcenKkIVL64=) 2: 3635C928CE3811EF878F6569C4F9AE02.roa (hash: qYH+0NoYqUVH/kICTwmC5FSWgYMcanxVuKqTuwnMQdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:39:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11645 (0x2d7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: May 30 15:39:32 2025 GMT Not After : Jun 6 15:39:32 2025 GMT Subject: CN=6839d134-01e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:58:82:aa:be:03:1c:11:16:31:58:0c:0f:7f: 95:c9:e8:86:fd:5d:c9:b4:41:27:f4:60:50:0a:61: 25:12:51:90:08:70:69:a4:be:c0:a5:7a:eb:58:bf: 2e:62:aa:e4:1a:72:a5:c7:9b:e3:aa:f9:28:e8:a9: be:b5:77:67:3e:79:84:ec:3b:28:77:ae:e4:a9:a5: 2a:09:f3:f6:43:f5:92:a6:6c:eb:a6:e4:d1:bd:4b: 76:0a:70:88:d0:c3:21:ad:2d:61:5b:30:20:8f:35: 8e:73:89:6b:e8:78:ae:76:a7:5b:e6:3d:da:eb:5f: f8:02:72:d7:d1:21:8e:71:48:d8:6a:99:9f:c2:6d: 33:2c:b2:d4:82:2a:00:dd:dc:a2:59:6c:e3:fd:9d: 32:f2:ae:72:6e:3d:65:f5:e7:8b:22:c8:a2:48:b7: 8a:04:10:7d:d4:05:8d:7c:47:13:8d:c0:a9:f0:f4: f6:bc:96:c9:7f:46:a4:3a:89:d4:dc:55:82:cd:56: 87:43:58:54:f5:67:cf:c1:db:41:b0:9e:4f:30:72: d3:d8:3a:33:27:2e:a1:a4:67:5a:31:be:62:b7:a3: 72:dd:39:39:b6:fe:9f:0b:63:7f:c9:dd:60:d4:90: a2:01:dd:d1:56:f2:5b:54:9b:72:a4:43:00:2b:77: 15:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:9A:87:76:54:9A:BC:13:D8:3D:70:AE:9D:E7:0F:5F:C1:C2:95:13 X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:61:e4:65:ac:06:eb:ad:da:b2:44:b9:c3:0d:b1:ed:48:ed: f3:26:d3:3c:66:e0:04:f9:cc:ab:50:3e:6c:3f:25:bc:e8:35: f9:1e:59:11:3b:e8:46:bf:90:61:48:4c:f9:95:bc:86:87:44: 7f:dd:20:57:64:c4:0f:fc:53:4d:83:47:f6:9a:23:e8:fc:31: cd:0f:26:f0:e8:73:25:87:39:50:31:d0:85:8f:0f:76:02:87: 30:64:d5:2d:be:03:62:71:df:ae:cc:91:b9:b3:a3:57:07:ac: 56:9e:7e:5c:40:fc:da:76:23:b0:dc:85:1f:36:76:84:50:13: ab:b1:d5:8f:d5:41:4f:20:76:82:0a:70:c6:4b:19:7f:3f:5d: ac:22:24:64:a7:27:14:cf:6f:90:e9:66:b1:16:cd:df:50:09: 3e:5c:f9:9c:1d:17:5f:05:10:64:70:92:ea:45:db:b7:48:38: b7:a5:8c:7f:ea:2c:52:ea:5a:f6:16:19:d8:e4:3b:b5:e6:94: a8:09:f0:2f:75:21:96:f6:b2:c9:f3:be:e6:13:31:16:6f:7d: f6:43:14:8f:65:47:19:57:b8:ef:a8:c1:ae:05:b4:1a:05:f3: f0:5b:08:09:35:cc:7a:fe:ed:83:3d:26:3d:ac:10:c4:66:47: f4:b8:18:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjUwNTMwMTUzOTMyWhcNMjUwNjA2MTUzOTMyWjAYMRYwFAYD VQQDEw02ODM5ZDEzNC0wMWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ViCqr4DHBEWMVgMD3+VyeiG/V3JtEEn9GBQCmElElGQCHBppL7ApXrrWL8u YqrkGnKlx5vjqvko6Km+tXdnPnmE7Dsod67kqaUqCfP2Q/WSpmzrpuTRvUt2CnCI 0MMhrS1hWzAgjzWOc4lr6Hiudqdb5j3a61/4AnLX0SGOcUjYapmfwm0zLLLUgioA 3dyiWWzj/Z0y8q5ybj1l9eeLIsiiSLeKBBB91AWNfEcTjcCp8PT2vJbJf0akOonU 3FWCzVaHQ1hU9WfPwdtBsJ5PMHLT2DozJy6hpGdaMb5it6Ny3Tk5tv6fC2N/yd1g 1JCiAd3RVvJbVJtypEMAK3cVOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSah3ZU mrwT2D1wrp3nD1/BwpUTMB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlYeRlrAbrrdqyRLnDDbHtSO3zJtM8ZuAE+cyrUD5sPyW86DX5HlkR O+hGv5BhSEz5lbyGh0R/3SBXZMQP/FNNg0f2miPo/DHNDybw6HMlhzlQMdCFjw92 AocwZNUtvgNicd+uzJG5s6NXB6xWnn5cQPzadiOw3IUfNnaEUBOrsdWP1UFPIHaC CnDGSxl/P12sIiRkpycUz2+Q6WaxFs3fUAk+XPmcHRdfBRBkcJLqRdu3SDi3pYx/ 6ixS6lr2FhnY5Du15pSoCfAvdSGW9rLJ877mEzEWb332QxSPZUcZV7jvqMGuBbQa BfPwWwgJNcx6/u2DPSY9rBDEZkf0uBjo -----END CERTIFICATE-----Generated at Sat May 31 17:14:40 2025 by rpki-client