$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: vtPJ5pz6EPFeOnjcWvaYxnsZOdvdx4nVN5SU/A5MOns= Subject key identifier: D7:0C:8F:ED:F4:3E:62:AD:95:67:0D:DA:4D:EA:F1:4B:81:69:CF:ED Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01D1 Signing time: Sat 31 May 2025 02:31:41 +0000 Manifest this update: Sat 31 May 2025 02:31:41 +0000 Manifest next update: Sat 07 Jun 2025 02:31:41 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: 8Q0O/THykT150/5RZJMcu0kBGLPJq7kCaHtsYmoN68s=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: May 31 02:31:41 2025 GMT Not After : Jun 7 02:31:41 2025 GMT Subject: CN=683a6a0d-b0b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c4:32:90:6f:02:30:7f:61:7a:8a:35:28:f2: 45:cb:8d:43:39:88:b7:69:7d:08:36:3a:32:23:5a: b2:07:f6:be:7d:03:52:ed:c2:5b:30:9e:1a:e2:84: dd:7d:31:bf:4b:3a:e9:9b:c3:b6:e8:87:95:ac:37: 65:80:14:83:9e:ae:07:f3:af:b7:10:c5:c0:35:81: e4:d5:43:72:24:ee:57:f8:f2:99:00:c2:df:34:20: df:75:d6:3d:40:2e:84:c4:71:6c:e8:72:bb:c3:38: 7d:2f:1f:91:67:e9:28:ce:33:38:dc:d4:29:09:dd: ae:ca:06:56:c9:56:6e:d8:f9:bc:d2:d3:b4:f8:03: 2b:ca:3b:87:0b:a1:67:2b:93:a0:48:d8:c2:7d:71: cf:83:ac:58:b7:84:a3:a5:57:a0:80:97:6a:40:72: 7e:a6:dc:38:02:cf:59:c2:cc:d5:68:d8:80:fd:2c: 09:40:10:9c:8b:ec:ec:e0:18:83:39:be:23:8b:36: 76:1f:18:0c:80:8c:89:f1:2a:79:e7:32:4f:43:76: 99:be:a7:dd:74:b7:52:ee:d0:64:a8:c3:1e:c9:e2: e2:9e:b8:c9:87:73:9a:31:dc:e0:d6:db:af:d9:a3: 12:37:98:d4:29:01:ba:21:78:92:44:9e:34:99:af: 54:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0C:8F:ED:F4:3E:62:AD:95:67:0D:DA:4D:EA:F1:4B:81:69:CF:ED X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:31:10:91:f6:58:b3:24:12:58:00:44:d7:f6:00:c5:d7:71: e7:b6:09:f3:e5:8e:5c:00:b9:1e:da:b9:3c:8c:6a:32:a0:e0: 49:6c:90:15:2b:ac:2b:6f:c1:1b:5d:1b:59:b5:e9:3b:4f:c6: 1f:40:a5:3e:61:55:c5:4e:c5:82:3a:5f:6d:b8:f7:19:5a:12: ef:3c:4d:cb:c4:bd:66:b9:6a:57:29:5e:a5:99:0c:b9:71:a2: 5a:99:5b:68:4a:8d:57:f0:43:26:36:e6:7b:74:61:83:f4:4d: c9:a8:f7:f3:80:34:83:a5:d8:b3:22:98:67:3d:9e:b7:7a:44: 15:82:8f:64:d1:c1:80:ab:3f:e4:0b:d4:2c:ed:75:bc:13:72: 86:88:af:34:13:68:dd:7c:65:67:cf:a8:ee:c1:68:61:b5:28: 19:89:bd:64:fb:2d:a6:a3:d8:6b:ea:4a:fe:7c:bf:44:c7:aa: a5:14:ca:f6:79:a1:c1:90:be:e3:36:bc:5a:49:13:4b:23:b2: a8:79:ea:fb:51:e5:8d:e1:97:cd:75:ad:a7:98:d4:02:3d:c8: af:9f:1e:64:52:a4:d8:54:f1:80:c9:9b:3c:c7:0c:3b:3d:a9: 66:77:2e:33:dd:7d:bc:f7:e1:72:77:96:6a:19:0a:c6:73:f8: 4d:c6:c5:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwNTMxMDIzMTQxWhcNMjUwNjA3MDIzMTQxWjAYMRYwFAYD VQQDEw02ODNhNmEwZC1iMGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcQykG8CMH9heoo1KPJFy41DOYi3aX0INjoyI1qyB/a+fQNS7cJbMJ4a4oTd fTG/Szrpm8O26IeVrDdlgBSDnq4H86+3EMXANYHk1UNyJO5X+PKZAMLfNCDfddY9 QC6ExHFs6HK7wzh9Lx+RZ+kozjM43NQpCd2uygZWyVZu2Pm80tO0+AMryjuHC6Fn K5OgSNjCfXHPg6xYt4SjpVeggJdqQHJ+ptw4As9ZwszVaNiA/SwJQBCci+zs4BiD Ob4jizZ2HxgMgIyJ8Sp55zJPQ3aZvqfddLdS7tBkqMMeyeLinrjJh3OaMdzg1tuv 2aMSN5jUKQG6IXiSRJ40ma9UeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcMj+30 PmKtlWcN2k3q8UuBac/tMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjMRCR9lizJBJYAETX9gDF13Hntgnz5Y5cALke2rk8jGoyoOBJbJAV K6wrb8EbXRtZtek7T8YfQKU+YVXFTsWCOl9tuPcZWhLvPE3LxL1muWpXKV6lmQy5 caJamVtoSo1X8EMmNuZ7dGGD9E3JqPfzgDSDpdizIphnPZ63ekQVgo9k0cGAqz/k C9Qs7XW8E3KGiK80E2jdfGVnz6juwWhhtSgZib1k+y2mo9hr6kr+fL9Ex6qlFMr2 eaHBkL7jNrxaSRNLI7Koeer7UeWN4ZfNda2nmNQCPcivnx5kUqTYVPGAyZs8xww7 Palmdy4z3X289+Fyd5ZqGQrGc/hNxsVh -----END CERTIFICATE-----Generated at Sat May 31 17:12:53 2025 by rpki-client