$ rpki-client -vvf rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft File: _80g3KaN5DLyGRt7YzKGvJh-Quw.mft (raw, json) Hash identifier: yLdbVpgbBGstvp5vbMBOdGg+xbPu2bqHZ+ic9coVUBw= Subject key identifier: 98:F5:45:C8:6B:4F:ED:1E:92:EB:19:B8:9C:2A:CA:11:55:86:24:EC Authority key identifier: FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC Certificate issuer: /CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Certificate serial: 1CFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft Manifest number: 1CB4 Signing time: Fri 30 May 2025 16:21:26 +0000 Manifest this update: Fri 30 May 2025 16:21:25 +0000 Manifest next update: Fri 06 Jun 2025 16:21:25 +0000 Files and hashes: 1: _80g3KaN5DLyGRt7YzKGvJh-Quw.crl (hash: pVi0NzjiDa5xkviSCz584vqXFLyeFMhDQhq52Fegxuo=) 2: 335B84084C9611E7B9D8512DC4F9AE02.roa (hash: lfXXFKA1BewBY10R96banzWyiiHGZ5/wupAGz1DuT5w=) 3: 186E151AD35C11E69A0BDB79C4F9AE02.roa (hash: qeTmmubtmqrY2/e8m/Tsiuz4+UZv7NeRmzZbrXj/lVI=) 4: 178177F0D35C11E69A0BDB79C4F9AE02.roa (hash: RFFbNib+EOfTMtyfuUsNL0crZ/n9uw59zoxUUo7ALbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7419 (0x1cfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150D27, serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Validity Not Before: May 30 16:21:25 2025 GMT Not After : Jun 6 16:21:25 2025 GMT Subject: CN=6839db05-1b13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:39:03:e4:ff:0b:1b:3f:ff:f3:8a:f1:74:3d: ea:4f:76:c1:e4:fc:1e:5c:db:c2:c5:22:d4:9e:c1: 89:ad:3b:ed:32:37:e4:72:5e:03:c5:d1:7f:a0:a8: 11:1c:ac:bc:04:b6:23:9c:d9:55:ec:be:85:cd:bf: 38:8e:8e:82:c9:13:64:3f:c1:57:7e:73:aa:fe:47: c9:a4:d1:2e:cf:18:d0:c2:79:d5:ea:1e:f7:1d:e9: 77:ad:8b:4e:ab:db:57:7b:38:b7:77:06:6c:1d:ff: 3d:30:3e:47:f5:ca:00:44:42:cb:91:c7:f0:41:5b: 61:2e:48:eb:4e:8a:58:99:e5:4e:c7:89:e0:67:8b: e6:d6:88:cf:bc:be:02:78:10:1a:50:0e:b8:d7:50: 99:4b:b0:b7:25:1c:f3:32:d7:80:99:57:25:45:b4: ce:a5:5b:1e:95:b5:6f:70:fb:e9:37:59:1d:84:ef: d9:29:ad:50:73:16:35:6d:05:a2:fc:c0:80:51:75: 2f:e8:15:99:a8:8e:6c:ac:31:a1:69:14:86:ac:28: 78:54:0b:55:0d:79:b1:e4:02:1c:6e:32:a1:08:98: eb:1b:5a:bd:18:0d:9e:04:fa:b6:8d:0d:cf:5a:3b: 5b:47:c5:87:70:55:54:6d:25:97:42:e4:c2:d7:ce: 1c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F5:45:C8:6B:4F:ED:1E:92:EB:19:B8:9C:2A:CA:11:55:86:24:EC X509v3 Authority Key Identifier: keyid:FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:8c:5e:ea:aa:47:78:be:da:1f:60:76:be:78:b6:5c:67:e0: 04:21:fe:b9:39:95:b3:b7:cc:6f:0f:8d:e6:d9:99:4d:fb:8c: 4d:51:bd:68:ee:4a:cb:93:c4:06:96:f9:38:f7:14:66:58:fc: 1b:19:09:57:91:f4:3c:2e:f9:f9:0c:4c:ec:35:05:41:32:8d: b9:96:0e:e2:f0:79:fc:a5:44:26:2a:8a:1b:fc:1f:f4:76:c7: bd:80:c1:aa:69:57:d2:e2:7c:e3:55:53:8f:c5:6a:cb:5a:8f: 9c:6e:be:d3:d9:54:a9:80:45:35:75:2e:35:66:f7:71:4a:bb: c6:e4:3f:d9:1e:d2:9c:97:97:0c:9c:a6:7c:63:9e:f2:3e:1f: 4f:34:a4:c1:29:e2:48:40:ae:f3:4c:14:5f:82:e3:4a:9b:8d: 61:b4:fc:79:37:36:72:d1:44:22:e8:b2:8c:b9:c9:30:a3:72: 9b:73:3f:06:53:35:a8:54:6c:aa:14:ac:29:cf:bb:a0:eb:7a: 8a:87:8f:ff:ff:8f:5d:38:1a:1b:b1:dd:dc:90:d0:af:e6:72: cd:37:8b:70:bf:b5:64:ea:f8:b4:48:aa:a9:b6:94:24:a9:40: 63:49:d7:e9:a7:40:35:77:5e:49:2a:bb:96:ae:02:bc:de:a4: 79:2c:ff:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBEMjcxMTAvBgNVBAUTKEZGQ0QyMERDQTY4REU0MzJGMjE5MUI3QjYzMzI4NkJD OTg3RTQyRUMwHhcNMjUwNTMwMTYyMTI1WhcNMjUwNjA2MTYyMTI1WjAYMRYwFAYD VQQDEw02ODM5ZGIwNS0xYjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTkD5P8LGz//84rxdD3qT3bB5PweXNvCxSLUnsGJrTvtMjfkcl4DxdF/oKgR HKy8BLYjnNlV7L6Fzb84jo6CyRNkP8FXfnOq/kfJpNEuzxjQwnnV6h73Hel3rYtO q9tXezi3dwZsHf89MD5H9coARELLkcfwQVthLkjrTopYmeVOx4ngZ4vm1ojPvL4C eBAaUA6411CZS7C3JRzzMteAmVclRbTOpVselbVvcPvpN1kdhO/ZKa1QcxY1bQWi /MCAUXUv6BWZqI5srDGhaRSGrCh4VAtVDXmx5AIcbjKhCJjrG1q9GA2eBPq2jQ3P WjtbR8WHcFVUbSWXQuTC184cUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJj1Rchr T+0ekusZuJwqyhFVhiTsMB8GA1UdIwQYMBaAFP/NINymjeQy8hkbe2MyhryYfkLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEQyNy8yQTYxQ0E4QUQz NTkxMUU2QjU1QUZBNzBDNEY5QUUwMi9fODBnM0thTjVETHlHUnQ3WXpLR3ZKaC1R dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL184MGczS2FONURMeUdSdDdZektHdkpoLVF1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEQyNy8yQTYxQ0E4QUQzNTkxMUU2QjU1QUZBNzBDNEY5QUUwMi9fODBnM0thTjVE THlHUnQ3WXpLR3ZKaC1RdXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDjF7qqkd4vtofYHa+eLZcZ+AEIf65OZWzt8xvD43m2ZlN+4xNUb1o 7krLk8QGlvk49xRmWPwbGQlXkfQ8Lvn5DEzsNQVBMo25lg7i8Hn8pUQmKoob/B/0 dse9gMGqaVfS4nzjVVOPxWrLWo+cbr7T2VSpgEU1dS41ZvdxSrvG5D/ZHtKcl5cM nKZ8Y57yPh9PNKTBKeJIQK7zTBRfguNKm41htPx5NzZy0UQi6LKMuckwo3Kbcz8G UzWoVGyqFKwpz7ug63qKh4///49dOBobsd3ckNCv5nLNN4twv7Vk6vi0SKqptpQk qUBjSdfpp0A1d15JKruWrgK83qR5LP9b -----END CERTIFICATE-----Generated at Sat May 31 17:31:53 2025 by rpki-client