$ rpki-client -vvf rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft File: mmZSAdYWDzHXa50heh3_6tEsuoI.mft (raw, json) Hash identifier: /YBiErzO/z9sckk3KE2Xqz/Tm954pfkuIoBklvLJAsU= Subject key identifier: 84:30:39:A3:BD:F4:D9:AF:E2:26:09:9E:52:B5:63:53:6F:D1:E6:D0 Authority key identifier: 9A:66:52:01:D6:16:0F:31:D7:6B:9D:21:7A:1D:FF:EA:D1:2C:BA:82 Certificate issuer: /CN=A915180C/serialNumber=9A665201D6160F31D76B9D217A1DFFEAD12CBA82 Certificate serial: 1DD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft Manifest number: 1DC3 Signing time: Fri 30 May 2025 16:18:00 +0000 Manifest this update: Fri 30 May 2025 16:18:00 +0000 Manifest next update: Fri 06 Jun 2025 16:18:00 +0000 Files and hashes: 1: mmZSAdYWDzHXa50heh3_6tEsuoI.crl (hash: Ea6JwcySsmXwJhoazAZYlRGjqLIrZmbZOIMYUGshMVM=) 2: 5F313E6A99D611E6BB89D557C4F9AE02.roa (hash: quQxqNwWkulIRmJT2I6ZYZNStKYWsMI4R3sbyT8S9tA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.crl rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7632 (0x1dd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915180C, serialNumber=9A665201D6160F31D76B9D217A1DFFEAD12CBA82 Validity Not Before: May 30 16:18:00 2025 GMT Not After : Jun 6 16:18:00 2025 GMT Subject: CN=6839da38-b6f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0b:26:b6:a1:78:c9:66:ec:d3:08:6b:56:82: 13:ba:b6:e1:24:ab:83:04:8f:b4:24:cb:b9:6e:37: 3d:07:8e:59:85:3b:43:5f:96:e6:66:1a:cb:5b:3c: 4d:ee:8e:f1:ab:d5:ee:4a:c1:9c:e6:06:c9:07:e6: f5:de:1f:e5:56:c9:84:c0:cf:50:6f:dd:46:c7:d7: e8:28:09:9b:66:f9:c3:ae:fe:7c:46:16:84:a3:21: 94:00:4d:0a:e6:c6:5b:87:0c:9a:5e:a5:69:4c:b5: 51:f7:c2:a9:7b:06:4c:63:7a:d8:82:8f:80:08:e7: c2:07:db:c4:ad:1b:c9:59:35:3f:a3:44:8c:78:4c: 1b:3d:7c:d3:8a:80:11:51:85:97:58:30:3c:28:22: 21:95:d5:fc:29:55:e6:c8:e4:83:ea:5e:9b:9e:41: c1:ac:2b:1f:a6:37:2c:da:f8:e2:10:f0:6a:b2:86: 3b:19:a4:be:52:88:3b:cc:fc:5d:51:80:a3:c0:99: 0d:ae:78:f4:c2:e7:dd:d8:96:2e:2d:46:2e:0b:eb: ac:6f:fb:2a:b2:6e:55:e7:7e:47:cb:e1:29:f6:80: 9b:03:16:e2:49:02:d7:96:22:bc:cd:36:d6:09:1c: 98:e5:04:cc:3c:44:da:7c:a2:0e:85:f2:e7:6b:79: de:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:30:39:A3:BD:F4:D9:AF:E2:26:09:9E:52:B5:63:53:6F:D1:E6:D0 X509v3 Authority Key Identifier: keyid:9A:66:52:01:D6:16:0F:31:D7:6B:9D:21:7A:1D:FF:EA:D1:2C:BA:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:1a:b2:7e:84:4a:fc:78:51:c8:65:7d:06:9a:45:84:38:01: 3e:59:fa:14:a2:af:be:f4:93:2e:d4:e1:6d:02:ad:74:a5:0b: 75:cb:f0:5c:d1:21:0c:8e:31:87:52:91:15:b8:46:cc:7d:18: ac:79:bf:b9:57:e8:27:2a:76:96:6e:52:39:4f:95:55:0f:eb: ec:36:2b:be:52:17:0d:b0:59:da:fe:47:2d:b5:43:35:45:c4: bb:42:26:b3:3a:b9:26:d1:d3:69:8a:97:08:03:02:0f:11:6f: 2b:6c:55:4c:8e:1a:07:4b:a6:24:9e:de:b0:b5:c1:cc:98:c3: ca:27:d5:b2:b4:56:6c:a0:85:ef:2a:97:58:53:f3:7c:4d:4d: ce:b8:87:60:6f:a8:6b:f8:ee:cc:fb:d0:3d:7c:c3:b4:13:dc: 1b:cf:89:01:57:b7:23:97:3e:6a:88:91:64:ac:48:4c:58:82: 53:89:70:4f:fe:14:08:4c:fb:02:c4:c1:75:04:30:6f:d1:72: 8d:f7:81:53:6f:b3:e1:ca:81:bc:6b:7a:da:e4:f0:28:fd:93: d7:ca:38:f6:6d:67:d3:64:63:31:a7:6d:8a:56:cc:f6:67:bd: f4:a2:f3:8c:60:6a:80:2d:52:dc:b5:93:dd:9f:be:40:60:7d: f7:2a:b9:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4MEMxMTAvBgNVBAUTKDlBNjY1MjAxRDYxNjBGMzFENzZCOUQyMTdBMURGRkVB RDEyQ0JBODIwHhcNMjUwNTMwMTYxODAwWhcNMjUwNjA2MTYxODAwWjAYMRYwFAYD VQQDEw02ODM5ZGEzOC1iNmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwsmtqF4yWbs0whrVoITurbhJKuDBI+0JMu5bjc9B45ZhTtDX5bmZhrLWzxN 7o7xq9XuSsGc5gbJB+b13h/lVsmEwM9Qb91Gx9foKAmbZvnDrv58RhaEoyGUAE0K 5sZbhwyaXqVpTLVR98KpewZMY3rYgo+ACOfCB9vErRvJWTU/o0SMeEwbPXzTioAR UYWXWDA8KCIhldX8KVXmyOSD6l6bnkHBrCsfpjcs2vjiEPBqsoY7GaS+Uog7zPxd UYCjwJkNrnj0wufd2JYuLUYuC+usb/sqsm5V535Hy+Ep9oCbAxbiSQLXliK8zTbW CRyY5QTMPETafKIOhfLna3neawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQwOaO9 9Nmv4iYJnlK1Y1Nv0ebQMB8GA1UdIwQYMBaAFJpmUgHWFg8x12udIXod/+rRLLqC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTgwQy85QTdDRDNFQTk2 QjUxMUU2ODRGNzM0MTFDNEY5QUUwMi9tbVpTQWRZV0R6SFhhNTBoZWgzXzZ0RXN1 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21tWlNBZFlXRHpIWGE1MGhlaDNfNnRFc3VvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTgwQy85QTdDRDNFQTk2QjUxMUU2ODRGNzM0MTFDNEY5QUUwMi9tbVpTQWRZV0R6 SFhhNTBoZWgzXzZ0RXN1b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYGrJ+hEr8eFHIZX0GmkWEOAE+WfoUoq++9JMu1OFtAq10pQt1y/Bc 0SEMjjGHUpEVuEbMfRiseb+5V+gnKnaWblI5T5VVD+vsNiu+UhcNsFna/kcttUM1 RcS7QiazOrkm0dNpipcIAwIPEW8rbFVMjhoHS6Yknt6wtcHMmMPKJ9WytFZsoIXv KpdYU/N8TU3OuIdgb6hr+O7M+9A9fMO0E9wbz4kBV7cjlz5qiJFkrEhMWIJTiXBP /hQITPsCxMF1BDBv0XKN94FTb7PhyoG8a3ra5PAo/ZPXyjj2bWfTZGMxp22KVsz2 Z730ovOMYGqALVLctZPdn75AYH33Krla -----END CERTIFICATE-----Generated at Sat May 31 15:02:52 2025 by rpki-client