$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft File: o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json) Hash identifier: 7+Z8wvam0eWVRhkaMhtYWZ6kflrjjNav3Dmy+dVyc0Q= Subject key identifier: 6B:CB:3F:13:D9:50:53:A6:A3:87:86:B9:18:C1:89:74:C0:9B:76:76 Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 05F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft Manifest number: 05D0 Signing time: Fri 30 May 2025 23:23:31 +0000 Manifest this update: Fri 30 May 2025 23:23:31 +0000 Manifest next update: Fri 06 Jun 2025 23:23:31 +0000 Files and hashes: 1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: ejoFkmdDBlFwSksz0RIY9/Uu84LiiyIvgWkJO3yARK0=) 2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: tzTNsTyay71DnZ6Tdbo+sDlbNh8WzoY7t1vlYqQ5Tec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: May 30 23:23:31 2025 GMT Not After : Jun 6 23:23:31 2025 GMT Subject: CN=683a3df3-1524 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a3:48:6d:7d:01:63:af:62:cf:85:da:54:cc: 4b:ce:1e:93:23:a3:75:af:db:44:95:b3:bb:a3:fb: 99:ce:6d:76:d4:07:34:a4:6f:92:5d:c8:cb:2b:7c: f9:a7:20:a5:9e:7b:74:99:19:e0:d3:07:06:f8:9c: 81:3e:81:21:7b:1e:c8:ed:a3:5f:a5:ef:fe:fc:a7: aa:30:79:16:38:bb:6e:4a:7f:ec:f3:d6:f3:b1:09: c0:86:35:58:6e:fb:53:33:73:3b:21:f2:6f:10:f0: 6c:fb:d7:8b:11:9b:0e:01:1e:0b:8d:18:5e:e9:61: 93:9b:bf:1e:a7:fd:39:f6:e8:50:ef:45:b9:18:7a: f1:7a:8e:91:5b:23:1f:b5:64:f1:e1:28:64:9f:75: 4c:69:b6:07:85:27:72:bb:30:1f:24:3c:4b:f1:7c: c4:f4:fb:12:3c:d7:83:15:d3:e6:87:40:d5:6d:c8: 6d:80:0c:26:de:ad:f5:5e:21:81:35:ed:5b:9c:8a: 42:1e:92:6d:13:51:62:8d:82:86:2b:37:97:7e:6b: 4c:ac:50:ea:cb:8c:8c:55:9c:60:a8:56:cd:d4:45: c4:d9:f1:54:c2:e3:d7:ab:ad:85:52:77:98:f5:83: 49:de:2e:6a:9e:ec:bc:e3:39:4a:f0:85:ea:d7:8f: 89:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CB:3F:13:D9:50:53:A6:A3:87:86:B9:18:C1:89:74:C0:9B:76:76 X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:45:f9:5e:c2:50:3f:2e:bd:4d:6e:1c:5c:06:b0:16:6b:b1: f8:e3:da:7c:89:2a:eb:ae:c1:ee:41:5f:c1:e1:39:52:bf:8a: c9:b6:63:e9:69:4b:04:56:01:cc:cf:a4:81:4d:91:83:51:5e: 75:64:b7:f2:a3:52:83:b6:c6:1d:d0:69:cd:78:de:c9:9c:97: 93:75:c7:fd:3f:fc:74:3d:bd:03:5e:02:80:b1:e6:41:35:8d: 85:71:96:e5:3b:70:3b:bc:a1:8f:51:e0:f3:80:6c:a2:90:e4: 60:48:b5:6f:8b:36:15:5d:c1:a1:77:96:69:63:8a:76:d9:4d: 8e:db:1a:aa:18:5d:d1:96:63:3e:ef:52:f2:01:40:24:b0:0d: 9a:87:95:cc:02:af:d1:74:06:2e:57:90:3e:f0:d5:e9:2f:1f: 2d:f1:fb:73:ee:9c:a6:ad:8a:01:44:1a:4b:f2:42:44:4f:89: 4a:e5:17:4a:fb:39:67:f7:43:17:da:e9:a0:41:2f:ea:dd:0f: d1:c1:58:39:00:1d:eb:e2:c7:f6:b7:bd:45:c1:aa:f3:c5:68: a8:1a:46:fa:e9:db:61:b4:c6:a8:a6:83:21:f0:59:52:f1:c2: 46:fc:ee:86:a8:9d:49:15:4d:c2:37:91:98:8a:02:22:f0:b5: 8b:b1:91:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjUwNTMwMjMyMzMxWhcNMjUwNjA2MjMyMzMxWjAYMRYwFAYD VQQDEw02ODNhM2RmMy0xNTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKNIbX0BY69iz4XaVMxLzh6TI6N1r9tElbO7o/uZzm121Ac0pG+SXcjLK3z5 pyClnnt0mRng0wcG+JyBPoEhex7I7aNfpe/+/KeqMHkWOLtuSn/s89bzsQnAhjVY bvtTM3M7IfJvEPBs+9eLEZsOAR4LjRhe6WGTm78ep/059uhQ70W5GHrxeo6RWyMf tWTx4Shkn3VMabYHhSdyuzAfJDxL8XzE9PsSPNeDFdPmh0DVbchtgAwm3q31XiGB Ne1bnIpCHpJtE1FijYKGKzeXfmtMrFDqy4yMVZxgqFbN1EXE2fFUwuPXq62FUneY 9YNJ3i5qnuy84zlK8IXq14+JEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvLPxPZ UFOmo4eGuRjBiXTAm3Z2MB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NEMS9BRDdGNDVBNENEQzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZ dWNORDdVU2NGcERyNDBGdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpRflewlA/Lr1NbhxcBrAWa7H449p8iSrrrsHuQV/B4TlSv4rJtmPp aUsEVgHMz6SBTZGDUV51ZLfyo1KDtsYd0GnNeN7JnJeTdcf9P/x0Pb0DXgKAseZB NY2FcZblO3A7vKGPUeDzgGyikORgSLVvizYVXcGhd5ZpY4p22U2O2xqqGF3RlmM+ 71LyAUAksA2ah5XMAq/RdAYuV5A+8NXpLx8t8ftz7pymrYoBRBpL8kJET4lK5RdK +zln90MX2umgQS/q3Q/RwVg5AB3r4sf2t71FwarzxWioGkb66dthtMaopoMh8FlS 8cJG/O6GqJ1JFU3CN5GYigIi8LWLsZHP -----END CERTIFICATE-----Generated at Sat May 31 17:12:52 2025 by rpki-client