$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.mft (raw, json) Hash identifier: se9cD2n1j9aKkUXXaLkKeQran2shh/FjqkCsYygloG4= Subject key identifier: 6E:F0:EA:66:6F:4B:89:54:9D:77:9D:BF:89:C7:84:73:14:C7:D7:56 Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 071C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft Manifest number: 0715 Signing time: Fri 30 May 2025 22:04:19 +0000 Manifest this update: Fri 30 May 2025 22:04:18 +0000 Manifest next update: Fri 06 Jun 2025 22:04:18 +0000 Files and hashes: 1: 1O0zil4gh9gu9ML2RZm0ERJy5eA.crl (hash: dFkN5Mv3Fm1xR5BXUcq8qke5pOJhnH88hjuAJ4VS7lc=) 2: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (hash: P6M32s9N/Ait6pG90TBg5gFRqcz9Jw3z+OITkwygUn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1820 (0x71c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4, serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: May 30 22:04:18 2025 GMT Not After : Jun 6 22:04:18 2025 GMT Subject: CN=683a2b62-e0c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ad:81:94:67:09:98:df:29:07:08:c8:2d:b0: 46:d1:38:f1:2b:ce:2e:f2:4a:4c:b5:f9:99:fd:3b: 30:11:8f:71:06:13:f4:22:46:91:96:10:56:b7:29: fe:ea:08:2f:ee:aa:c7:03:db:dd:35:0f:ec:0d:45: 55:07:ab:f7:a4:33:9b:01:87:d1:87:d0:c3:bb:e0: d2:21:4e:e4:43:7f:31:38:73:d1:96:4e:44:b8:29: 5f:55:07:a9:f8:b7:e2:fe:8d:59:d4:cd:f1:65:29: c9:ff:a4:94:44:68:8e:57:a6:04:df:fc:92:df:7b: c1:56:9f:e3:b6:70:64:22:1e:80:79:11:60:0f:ee: 2d:48:e2:44:d3:5d:fb:b1:21:0f:93:17:d1:8f:af: 2b:bd:9e:44:41:95:9d:4b:03:c9:6d:4a:bb:ed:29: a8:1b:ec:10:8f:b5:ac:f3:a3:61:91:33:e1:5c:31: 28:5d:02:6d:70:9b:d5:5d:53:c5:09:e3:0d:2f:43: 3e:75:ae:60:d7:0b:eb:24:7f:c2:c8:37:e4:40:49: dc:ce:b0:7b:14:2a:04:cd:af:aa:a2:23:90:22:11: 7d:cf:be:02:9b:0e:95:d5:e9:c3:3a:e2:72:0d:b0: 8d:73:b5:ab:18:f8:66:53:93:ca:d3:2e:32:9a:25: 17:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:F0:EA:66:6F:4B:89:54:9D:77:9D:BF:89:C7:84:73:14:C7:D7:56 X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:92:bb:7b:12:27:9e:ca:02:5f:89:7b:cd:65:a3:4b:b0:60: 73:80:af:84:f0:d8:9f:a6:eb:60:3f:0d:ca:e0:55:ac:44:db: 87:c9:cb:4b:9f:a1:f4:5d:c0:6a:46:68:d8:d9:46:4d:e5:7f: a2:91:3f:45:c1:07:9b:4c:53:20:37:9e:56:37:85:53:97:9f: b5:9c:85:db:fc:a3:53:79:47:64:a1:92:c6:a2:5c:74:d6:2a: 8b:ba:ec:e1:e5:42:23:16:e7:c8:ee:a7:4c:2e:c6:4e:64:1d: b8:a0:2e:c2:75:81:0b:cf:61:db:95:a8:75:35:dd:e5:ac:85: 04:c5:ef:3c:c1:6e:49:c8:91:24:a8:7c:35:fe:2f:dd:f3:b5: b7:58:ec:75:3b:86:7f:37:f0:35:4a:d4:5a:fb:35:83:bc:0b: 64:77:d2:c0:fd:0a:a8:2f:ac:5c:7c:0e:bf:94:f8:77:b1:26: 1d:52:11:b7:c9:db:26:6c:4f:72:9d:1a:19:57:2d:6c:34:cb: c1:5e:8f:fc:f1:4f:ba:9a:bb:c9:04:4e:a2:cd:bf:78:b1:2d: ce:88:28:e9:95:0a:63:29:6b:9d:46:2c:39:3e:38:35:97:dc: 85:0b:61:b0:e8:14:92:ac:c1:31:27:fd:ae:02:34:0e:32:81: 1a:0d:1f:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjUwNTMwMjIwNDE4WhcNMjUwNjA2MjIwNDE4WjAYMRYwFAYD VQQDEw02ODNhMmI2Mi1lMGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA362BlGcJmN8pBwjILbBG0TjxK84u8kpMtfmZ/TswEY9xBhP0IkaRlhBWtyn+ 6ggv7qrHA9vdNQ/sDUVVB6v3pDObAYfRh9DDu+DSIU7kQ38xOHPRlk5EuClfVQep +Lfi/o1Z1M3xZSnJ/6SURGiOV6YE3/yS33vBVp/jtnBkIh6AeRFgD+4tSOJE0137 sSEPkxfRj68rvZ5EQZWdSwPJbUq77SmoG+wQj7Ws86NhkTPhXDEoXQJtcJvVXVPF CeMNL0M+da5g1wvrJH/CyDfkQEnczrB7FCoEza+qoiOQIhF9z74Cmw6V1enDOuJy DbCNc7WrGPhmU5PK0y4ymiUX9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7w6mZv S4lUnXedv4nHhHMUx9dWMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5 Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCykrt7EieeygJfiXvNZaNLsGBzgK+E8NifputgPw3K4FWsRNuHyctL n6H0XcBqRmjY2UZN5X+ikT9FwQebTFMgN55WN4VTl5+1nIXb/KNTeUdkoZLGolx0 1iqLuuzh5UIjFufI7qdMLsZOZB24oC7CdYELz2Hblah1Nd3lrIUExe88wW5JyJEk qHw1/i/d87W3WOx1O4Z/N/A1StRa+zWDvAtkd9LA/QqoL6xcfA6/lPh3sSYdUhG3 ydsmbE9ynRoZVy1sNMvBXo/88U+6mrvJBE6izb94sS3OiCjplQpjKWudRiw5Pjg1 l9yFC2Gw6BSSrMExJ/2uAjQOMoEaDR8w -----END CERTIFICATE-----Generated at Sat May 31 17:34:17 2025 by rpki-client