$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: RS0iMtWG7uuF1PVMZBnF7vmFyfGO05sq4tNmhhfxtA0= Subject key identifier: CD:87:36:26:E1:F3:B4:97:EC:D7:62:BF:C2:D9:EF:CF:FA:32:58:3C Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 01E1 Signing time: Sat 31 May 2025 02:24:37 +0000 Manifest this update: Sat 31 May 2025 02:24:36 +0000 Manifest next update: Sat 07 Jun 2025 02:24:36 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: gp8D/KXK3za0tC0L9PkLIWPvmwzXVXSY3IdxmnnBOFQ=) 2: 349D4A7AB90A11EF97D24653C4F9AE02.roa (hash: BISS5CmxNxvmt9rFH6DiKF6LgvgQpzJ1qyGwOCZsmrY=) 3: 34386BAAB90A11EF97D24653C4F9AE02.roa (hash: gXomgC3UWF4hRBWpPOIJ1KbjovqaJl+GP7rjTy7IiYk=) 4: 35ADE898B90A11EF97D24653C4F9AE02.roa (hash: /sVqx8q3knVsrGKYvA1MUovYNq+EQPYvWXQlJdzVZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61, serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: May 31 02:24:36 2025 GMT Not After : Jun 7 02:24:36 2025 GMT Subject: CN=683a6865-8588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:60:d0:02:6f:f1:15:ac:96:47:fe:d3:c3:cd: 6d:fd:eb:a2:81:dc:83:f9:1f:f8:05:ac:32:db:95: c9:68:f1:64:dd:74:96:b4:d0:fc:a0:23:d0:d1:69: 44:1d:9a:f7:13:90:e5:f3:45:0b:7c:c8:9f:25:e8: 5b:e1:34:d6:45:06:b0:15:b0:10:b1:9d:39:0d:20: 01:4b:34:71:7f:95:10:e0:c8:bd:62:b8:20:be:65: 3a:e7:9c:9b:e6:21:b9:8a:c1:fd:f7:bd:34:b9:a0: 40:df:e8:6a:1b:04:35:97:8a:4f:91:b1:07:17:dd: 97:ec:08:ef:24:f7:60:01:d0:12:e7:6f:5d:86:29: 49:54:8a:49:a3:65:8a:a5:67:be:c4:be:bc:95:b0: 42:b2:82:15:86:ce:4d:5e:10:10:f5:2a:21:2b:11: 73:03:2e:84:06:90:07:ea:3a:44:5f:3e:c4:f0:8f: e9:f1:8d:ad:a6:f3:9c:7a:e0:3d:60:91:8a:fd:3f: 2b:dc:78:f2:87:59:00:a7:e9:9a:94:a9:76:de:a6: df:b8:28:8c:79:18:44:a0:ef:18:6f:99:60:a0:36: 39:51:32:ac:63:44:7b:3d:0b:30:ac:88:95:bd:c5: 23:76:85:78:d0:b5:d1:9f:23:8a:ae:1b:16:b2:f5: 2e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:87:36:26:E1:F3:B4:97:EC:D7:62:BF:C2:D9:EF:CF:FA:32:58:3C X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:16:4b:88:f3:eb:74:3d:b8:a8:d5:2f:f5:38:4b:bb:25:9a: 0f:cc:bb:9d:2e:45:58:dc:e8:a9:4d:9f:79:7e:5e:4f:f2:60: c9:7f:22:11:98:ed:fc:f6:1f:37:43:5b:e0:57:b0:43:d0:72: 0b:41:77:0d:f9:7f:53:8f:04:2a:04:c3:47:ba:49:c5:6c:90: 45:7b:38:0b:7d:5a:b6:c6:8f:a0:6a:75:98:e6:20:9c:36:c7: 8d:91:bc:a3:ff:7d:4c:ae:20:37:ea:e9:29:2c:36:47:de:34: 91:fc:9e:d4:e2:30:f8:32:07:2c:7c:8c:18:62:55:38:fb:e6: 52:fa:10:0d:04:77:0d:47:97:58:85:84:48:39:e9:bc:96:ed: d1:55:f4:1e:f9:5a:11:ab:9c:67:ba:61:e1:e3:cb:c7:be:a7: 5b:dd:c8:60:82:c4:fa:0b:71:db:ce:fe:d8:af:7d:1a:27:0b: 67:8b:5c:3c:17:d2:4e:d5:fa:6b:a3:3d:62:1e:a0:a0:f0:a7: 16:b1:4b:f7:57:90:0f:f4:bf:4b:fb:75:3d:c3:34:2a:ed:8b: 8e:12:2e:ee:92:82:7f:4b:a3:06:d3:19:5b:51:ea:5a:e7:3d: 14:a5:34:cc:59:30:42:4f:c4:a2:4d:15:00:4d:2e:3a:af:01: a6:db:f8:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjUwNTMxMDIyNDM2WhcNMjUwNjA3MDIyNDM2WjAYMRYwFAYD VQQDEw02ODNhNjg2NS04NTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GDQAm/xFayWR/7Tw81t/euigdyD+R/4Bawy25XJaPFk3XSWtND8oCPQ0WlE HZr3E5Dl80ULfMifJehb4TTWRQawFbAQsZ05DSABSzRxf5UQ4Mi9YrggvmU655yb 5iG5isH99700uaBA3+hqGwQ1l4pPkbEHF92X7AjvJPdgAdAS529dhilJVIpJo2WK pWe+xL68lbBCsoIVhs5NXhAQ9SohKxFzAy6EBpAH6jpEXz7E8I/p8Y2tpvOceuA9 YJGK/T8r3Hjyh1kAp+malKl23qbfuCiMeRhEoO8Yb5lgoDY5UTKsY0R7PQswrIiV vcUjdoV40LXRnyOKrhsWsvUurwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2HNibh 87SX7Ndiv8LZ78/6Mlg8MB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeFkuI8+t0Pbio1S/1OEu7JZoPzLudLkVY3OipTZ95fl5P8mDJfyIR mO389h83Q1vgV7BD0HILQXcN+X9TjwQqBMNHuknFbJBFezgLfVq2xo+ganWY5iCc NseNkbyj/31MriA36ukpLDZH3jSR/J7U4jD4MgcsfIwYYlU4++ZS+hANBHcNR5dY hYRIOem8lu3RVfQe+VoRq5xnumHh48vHvqdb3chggsT6C3Hbzv7Yr30aJwtni1w8 F9JO1fproz1iHqCg8KcWsUv3V5AP9L9L+3U9wzQq7YuOEi7ukoJ/S6MG0xlbUepa 5z0UpTTMWTBCT8SiTRUATS46rwGm2/j2 -----END CERTIFICATE-----Generated at Sat May 31 17:49:34 2025 by rpki-client