$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft File: 0AZhDr1oKXhFffitopEQATORAZI.mft (raw, json) Hash identifier: dAMUlinXDe5ygoPSk6ddtl5yjR65yqDhxbI2931HMIc= Subject key identifier: 39:BE:76:7B:05:11:C5:08:A3:14:DB:FC:03:99:46:8D:22:8A:C9:AD Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0E7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft Manifest number: 0E71 Signing time: Fri 30 May 2025 17:54:02 +0000 Manifest this update: Fri 30 May 2025 17:54:01 +0000 Manifest next update: Fri 06 Jun 2025 17:54:01 +0000 Files and hashes: 1: 0AZhDr1oKXhFffitopEQATORAZI.crl (hash: QDZlwP3X65lrR4CEyIgEHX10XV6uEUdx3GMtQoj/i4w=) 2: CBD704945F5F11EFB99ABA76C4F9AE02.roa (hash: 8S2L4PIf85V9FtE2NxlTWF91adX1vQpLiZaP3LriZvM=) 3: 42431FFC8FF711EEA0FC990FC4F9AE02.roa (hash: dBVxIuxXi1IfubYTqCooyEf06bco+4CSqK6CVlwkBZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3710 (0xe7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E, serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: May 30 17:54:01 2025 GMT Not After : Jun 6 17:54:01 2025 GMT Subject: CN=6839f0b9-dccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:91:78:9a:05:ff:4d:42:a8:a8:34:3c:e1:74: 95:d2:f4:86:3e:02:ff:89:77:53:95:49:79:69:37: 33:35:85:0a:7d:42:93:32:6e:e9:96:67:07:bb:f4: 7b:bc:b3:97:06:70:4e:2a:37:f3:9a:a2:a7:bf:d1: f9:2f:e6:1b:52:b0:db:83:60:f3:00:cf:d1:1c:de: 09:0b:8d:a9:5b:28:31:73:1a:1b:a2:cc:7f:75:89: dc:3b:91:51:9b:d3:cf:03:18:6c:18:4d:73:6d:9c: 65:91:80:f9:ef:97:f0:f7:37:40:61:dd:8b:58:cc: b7:22:90:9a:2f:fd:0b:2d:40:b1:0c:f9:15:bb:fc: 08:37:18:e7:01:9d:03:43:2d:92:b2:17:6e:db:69: 25:12:5a:2e:d6:3e:4e:1d:7e:82:85:d6:7d:99:ba: 49:98:aa:ea:7f:9f:9e:0c:6b:fa:d1:54:ef:be:29: 29:25:82:9a:42:0e:ed:c0:93:68:0f:11:86:6c:f1: 3e:ad:f7:9c:cd:dc:5f:fe:5d:e2:51:a3:e5:77:6c: 1c:09:cb:0e:19:09:8b:36:f5:13:52:5b:71:41:05: 93:dd:68:dc:38:57:b0:52:9b:48:da:8d:96:5d:5a: ff:fc:18:cb:0c:7f:e6:67:27:0b:b6:91:3c:f4:85: 58:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BE:76:7B:05:11:C5:08:A3:14:DB:FC:03:99:46:8D:22:8A:C9:AD X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:37:ba:a0:1b:03:a9:3d:fb:97:2a:34:0f:80:96:a0:dd:f0: 83:8f:98:a6:2d:1e:a7:21:2f:84:fa:d9:a2:5e:b7:84:de:75: ce:bf:9a:66:6d:53:19:78:0f:33:94:27:5c:5d:3f:33:9c:6b: 67:b5:a2:1e:b7:d9:bc:83:30:6f:73:a2:9c:e4:4c:83:f0:8a: 67:97:14:2a:0c:c5:ff:bf:84:64:c3:de:c8:df:b7:b2:5f:ac: 3b:f3:8d:3f:5f:24:c5:5f:e6:85:b0:a2:d0:95:2b:a8:ca:ba: d9:47:da:df:4a:88:6c:af:4f:1e:b4:d7:2a:92:0f:fa:2e:ff: db:74:5f:11:d6:45:3b:a6:34:62:5f:ea:14:48:ee:0a:b1:f9: 5c:00:3f:bc:40:0c:fe:64:8f:58:d5:ae:ad:00:31:00:0e:c5: 98:0f:b8:eb:b7:ba:d5:4b:ca:54:9c:f5:fe:c4:dc:b7:75:ae: cb:90:90:f2:4c:9e:0d:5f:1a:88:84:aa:ba:c1:15:1e:b7:e3: b5:46:0d:e7:c3:ca:4a:19:f6:b0:3a:7a:61:d3:23:d7:1e:a7: 2c:54:be:fd:e9:36:00:d4:22:af:35:f8:2e:5b:72:68:9b:00: 5a:00:88:8a:6a:25:ac:80:32:d0:e6:9f:a5:65:40:54:b4:35: ec:04:60:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjUwNTMwMTc1NDAxWhcNMjUwNjA2MTc1NDAxWjAYMRYwFAYD VQQDEw02ODM5ZjBiOS1kY2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pF4mgX/TUKoqDQ84XSV0vSGPgL/iXdTlUl5aTczNYUKfUKTMm7plmcHu/R7 vLOXBnBOKjfzmqKnv9H5L+YbUrDbg2DzAM/RHN4JC42pWygxcxobosx/dYncO5FR m9PPAxhsGE1zbZxlkYD575fw9zdAYd2LWMy3IpCaL/0LLUCxDPkVu/wINxjnAZ0D Qy2Sshdu22klElou1j5OHX6ChdZ9mbpJmKrqf5+eDGv60VTvvikpJYKaQg7twJNo DxGGbPE+rfeczdxf/l3iUaPld2wcCcsOGQmLNvUTUltxQQWT3WjcOFewUptI2o2W XVr//BjLDH/mZycLtpE89IVY+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm+dnsF EcUIoxTb/AOZRo0iismtMB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0E2RS83OUVDRTgzODk4QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tY aEZmZml0b3BFUUFUT1JBWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNN7qgGwOpPfuXKjQPgJag3fCDj5imLR6nIS+E+tmiXreE3nXOv5pm bVMZeA8zlCdcXT8znGtntaIet9m8gzBvc6Kc5EyD8IpnlxQqDMX/v4Rkw97I37ey X6w7840/XyTFX+aFsKLQlSuoyrrZR9rfSohsr08etNcqkg/6Lv/bdF8R1kU7pjRi X+oUSO4KsflcAD+8QAz+ZI9Y1a6tADEADsWYD7jrt7rVS8pUnPX+xNy3da7LkJDy TJ4NXxqIhKq6wRUet+O1Rg3nw8pKGfawOnph0yPXHqcsVL796TYA1CKvNfguW3Jo mwBaAIiKaiWsgDLQ5p+lZUBUtDXsBGB2 -----END CERTIFICATE-----Generated at Sat May 31 17:11:29 2025 by rpki-client