$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft File: tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft (raw, json) Hash identifier: 7XEWx0AuhD5PG1SMstv57MVqc0bq8NZXQdHy5iO9of4= Subject key identifier: F1:02:BE:BA:EC:4C:F0:E7:2D:19:58:33:9B:8B:EF:B3:12:DE:53:2C Authority key identifier: B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD Certificate issuer: /CN=A9150CF3/serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft Manifest number: 033C Signing time: Sat 31 May 2025 02:07:49 +0000 Manifest this update: Sat 31 May 2025 02:07:49 +0000 Manifest next update: Sat 07 Jun 2025 02:07:49 +0000 Files and hashes: 1: tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl (hash: J9qA/Uj5EM/nm6jOkIDwAPaHy8yizmDZBfUw5gMr7sU=) 2: FDB4B8B4E85211EE83F9ED4BC4F9AE02.roa (hash: SCTf0mwZLUHqFVPegVRVJr7Eh8lVpCyL1GKCV+U6N7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150CF3, serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Validity Not Before: May 31 02:07:49 2025 GMT Not After : Jun 7 02:07:49 2025 GMT Subject: CN=683a6475-dba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c1:5d:ca:7a:53:f5:1b:88:0f:c9:1b:42:a6: 64:d7:8e:88:9a:fa:c2:da:ec:08:80:e0:1c:5b:b3: 93:2f:8a:7e:13:57:c0:1b:19:74:55:c9:31:cb:18: 75:b4:57:b9:3e:e2:55:68:96:50:c2:07:02:2d:f9: ac:4f:99:6d:d4:24:7b:69:f9:2e:c4:52:dd:e7:65: 94:92:81:a1:b6:b9:b5:2e:ef:44:f8:a1:0b:de:14: bb:9d:9a:5f:3e:31:5a:87:70:26:49:ed:8c:f6:d0: 81:ef:71:88:f7:30:72:a7:bf:14:3d:5f:b9:8c:3f: 7d:2d:a4:49:c9:97:68:56:78:42:cf:e3:fe:65:59: 1f:19:02:55:02:b2:25:b1:14:71:2a:a2:fa:a8:c4: 17:ae:ac:54:fc:9d:93:bd:fd:8a:c5:7d:2d:a7:8d: cc:1f:e9:f0:12:c5:6b:0f:1e:2d:6a:fc:9c:90:06: b8:3f:92:47:7c:b3:7a:e6:26:d1:15:9e:6c:af:2f: 4a:fe:7e:38:24:c3:02:d6:05:8d:85:68:a7:f7:8a: 06:04:15:8f:3d:4e:66:84:46:69:7d:96:96:1c:fe: 06:59:77:12:1b:58:ec:3a:2d:f6:78:30:09:94:f5: 26:db:43:5c:6b:8e:23:79:11:bb:42:c9:61:22:fb: a3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:02:BE:BA:EC:4C:F0:E7:2D:19:58:33:9B:8B:EF:B3:12:DE:53:2C X509v3 Authority Key Identifier: keyid:B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:22:3d:e4:da:8f:45:c3:c6:0c:26:a8:99:6d:db:dd:d6:8e: 9c:e9:45:ea:f0:6a:14:54:3c:08:a2:9c:95:57:aa:c6:26:48: 42:34:0e:a0:6a:ec:2e:19:33:8b:d2:97:1e:10:ee:a8:a0:ae: 69:04:02:0d:6d:a5:3c:a8:c3:6c:95:98:08:0b:89:52:39:51: 00:be:89:97:c5:34:63:e4:79:ff:e8:73:31:0d:86:db:c5:36: 68:a5:5f:90:a4:77:b4:c6:b7:44:53:19:8b:f0:38:66:9b:51: 2f:df:4b:a1:44:29:11:9f:39:06:63:40:ad:7a:ea:3c:70:c7: 80:3e:85:7e:3f:45:0d:8a:2c:fe:09:c9:57:9d:ea:a8:c2:24: 89:ad:d6:e8:a0:52:e3:bd:40:97:e1:10:ea:c1:fc:44:1f:32: 0a:65:cd:07:87:12:ba:2d:6a:a2:90:ec:75:e9:ca:d7:fd:4b: 57:01:f4:7d:92:a4:eb:11:a0:b7:50:73:8d:a6:8f:fc:30:ca: 55:2a:56:3f:20:90:67:11:6e:45:46:db:20:1a:82:44:71:73: 49:b2:f4:c4:e3:8b:99:82:7b:8a:d9:65:52:8f:1f:f4:68:cb: a7:7e:eb:09:c0:39:7a:c6:ac:e6:10:bf:7b:de:a5:54:9f:10: 3b:12:6e:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBDRjMxMTAvBgNVBAUTKEI0OENCMTgwODI2MkI4MDk5Qjg3MjcyQTU3NkZGRURD MTlBMzk2QkQwHhcNMjUwNTMxMDIwNzQ5WhcNMjUwNjA3MDIwNzQ5WjAYMRYwFAYD VQQDEw02ODNhNjQ3NS1kYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsFdynpT9RuID8kbQqZk146ImvrC2uwIgOAcW7OTL4p+E1fAGxl0Vckxyxh1 tFe5PuJVaJZQwgcCLfmsT5lt1CR7afkuxFLd52WUkoGhtrm1Lu9E+KEL3hS7nZpf PjFah3AmSe2M9tCB73GI9zByp78UPV+5jD99LaRJyZdoVnhCz+P+ZVkfGQJVArIl sRRxKqL6qMQXrqxU/J2Tvf2KxX0tp43MH+nwEsVrDx4tavyckAa4P5JHfLN65ibR FZ5sry9K/n44JMMC1gWNhWin94oGBBWPPU5mhEZpfZaWHP4GWXcSG1jsOi32eDAJ lPUm20Nca44jeRG7QslhIvuj8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPECvrrs TPDnLRlYM5uL77MS3lMsMB8GA1UdIwQYMBaAFLSMsYCCYrgJm4cnKldv/twZo5a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MENGMy8wMjhGOUVGRTJF ODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVBbWJoeWNxVjJfLTNCbWps cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJeXhnSUppdUFtYmh5Y3FWMl8tM0JtamxyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MENGMy8wMjhGOUVGRTJFODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVB bWJoeWNxVjJfLTNCbWpscjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcIj3k2o9Fw8YMJqiZbdvd1o6c6UXq8GoUVDwIopyVV6rGJkhCNA6g auwuGTOL0pceEO6ooK5pBAINbaU8qMNslZgIC4lSOVEAvomXxTRj5Hn/6HMxDYbb xTZopV+QpHe0xrdEUxmL8Dhmm1Ev30uhRCkRnzkGY0Cteuo8cMeAPoV+P0UNiiz+ CclXneqowiSJrdbooFLjvUCX4RDqwfxEHzIKZc0HhxK6LWqikOx16crX/UtXAfR9 kqTrEaC3UHONpo/8MMpVKlY/IJBnEW5FRtsgGoJEcXNJsvTE44uZgnuK2WVSjx/0 aMunfusJwDl6xqzmEL973qVUnxA7Em7G -----END CERTIFICATE-----Generated at Sat May 31 17:14:41 2025 by rpki-client