$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: nA6iWZbcBQLj+bddvYy171JC3OmJf7TsdCnIS5SLvks= Subject key identifier: FB:AD:FE:43:CA:07:3E:57:3A:4F:72:7C:13:C4:03:F4:19:30:02:FD Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0464 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 0450 Signing time: Mon 02 Jun 2025 17:18:12 +0000 Manifest this update: Mon 02 Jun 2025 17:18:12 +0000 Manifest next update: Mon 09 Jun 2025 17:18:12 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: 7OVd68MXSJPPb0KN5pUNDA2Oi6azJuAMGFTqJ04HbPw=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: BSTa7sI/Wxp7paF8iFEhYcOXczYzjvqpGs3tFatgPsE=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: EM7EONiwHXhiPFzyfONkaOBX/AROwU9rjV4ETvuVQDQ=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: TLiIvWlCkSUznKaCtTmASc45uAF4Q8KIvn7LhcKxI18=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HMDK7qPjAO3ncQEJzX6SKnODDt4e7glxidti8sfhV1k=) 6: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Z/SQA8GAHBj69mDXnfsLMK8qu+tlZ5LxlzdXDGduFGo=) 7: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: AfGxVPGE0X5aiSEnPrV13VcxuUAvslUoJjsgWW+PD9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Jun 2 17:18:12 2025 GMT Not After : Jun 9 17:18:12 2025 GMT Subject: CN=683ddcd4-76f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:79:70:f6:2b:9e:c7:6f:bc:00:48:9a:3e:8a: de:18:5e:ee:00:f6:4c:d5:ae:96:dd:35:3a:44:98: 5e:b9:7c:91:4a:f0:c7:d1:36:0f:65:de:2b:ce:09: 9f:ce:42:5f:66:b2:6a:2f:c8:b9:a7:e6:18:86:07: 3c:e4:db:21:f8:d6:76:0c:37:f1:d5:d9:26:26:5c: f3:0b:48:a4:b9:d5:31:a0:98:db:64:7b:bc:88:df: 8d:bf:43:55:65:47:3c:5d:86:8c:82:b1:b6:8e:45: dc:93:d5:9a:7c:ba:af:93:43:ff:42:a1:ab:38:6f: 68:ba:c7:b3:b1:40:32:78:dc:6e:6a:99:d6:ee:f6: e4:be:68:43:8a:c6:67:b9:4b:95:4a:5e:68:85:88: 00:bf:d0:93:8c:9b:7d:4b:f3:25:7e:3c:26:a6:23: e0:99:49:44:df:25:87:82:d1:c6:9a:e8:fe:a5:42: 95:ff:3c:cc:08:85:3e:44:3d:ef:28:9a:f3:cd:9d: d4:78:51:b6:01:7b:9c:82:7b:9b:92:79:cd:6d:3f: c6:e7:58:ce:43:fc:7b:75:d6:f8:61:e5:05:6d:2a: b0:d7:c7:55:b8:54:ac:c7:a2:90:11:6c:b9:30:ce: 8c:d9:97:74:15:e5:18:1f:55:9e:34:79:f3:e2:f6: da:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AD:FE:43:CA:07:3E:57:3A:4F:72:7C:13:C4:03:F4:19:30:02:FD X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:52:30:5d:47:88:2a:d5:8f:f2:49:4e:3f:dd:0c:36:e8:54: cf:7d:5e:76:de:13:b5:80:35:5e:fd:41:c9:7e:69:6a:3b:a1: d1:17:81:66:4b:33:6c:d8:c7:99:e0:bb:4d:3d:4d:cf:e3:d3: 52:33:bf:a6:90:cd:56:28:a0:9e:1d:d7:68:1a:ed:92:50:1a: fc:6d:39:34:94:a2:f9:a8:45:cd:d1:6d:9c:24:79:50:5a:39: 4d:bb:c7:cf:f5:5d:c3:7e:c5:06:c4:65:a6:9f:3b:63:a1:5f: 18:74:88:09:0e:48:d7:da:43:7b:78:fb:50:4f:17:24:86:52: 64:4b:92:75:82:d9:49:dc:ee:65:e8:a6:1e:de:14:0f:07:9b: dc:e0:d2:bf:70:c8:c3:cc:fc:8b:bd:18:11:a4:ea:38:20:87: ba:38:a6:d9:a0:e1:92:a6:0a:36:63:8c:cb:35:72:fa:24:3d: e6:34:5b:91:81:48:af:b7:50:41:b3:23:a8:27:9f:b5:f6:71: 2e:c6:fd:17:4e:bb:c0:89:43:03:96:7a:de:70:ae:56:2f:ad: 43:a9:6b:57:38:08:fe:9f:2b:09:24:97:92:63:c1:66:4a:e8: f3:83:b0:a5:78:b9:f6:07:04:f5:93:e1:78:5b:c5:04:fc:27: 60:af:87:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUwNjAyMTcxODEyWhcNMjUwNjA5MTcxODEyWjAYMRYwFAYD VQQDEw02ODNkZGNkNC03NmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3lw9iuex2+8AEiaPoreGF7uAPZM1a6W3TU6RJheuXyRSvDH0TYPZd4rzgmf zkJfZrJqL8i5p+YYhgc85Nsh+NZ2DDfx1dkmJlzzC0ikudUxoJjbZHu8iN+Nv0NV ZUc8XYaMgrG2jkXck9WafLqvk0P/QqGrOG9ousezsUAyeNxuapnW7vbkvmhDisZn uUuVSl5ohYgAv9CTjJt9S/MlfjwmpiPgmUlE3yWHgtHGmuj+pUKV/zzMCIU+RD3v KJrzzZ3UeFG2AXucgnubknnNbT/G51jOQ/x7ddb4YeUFbSqw18dVuFSsx6KQEWy5 MM6M2Zd0FeUYH1WeNHnz4vbalQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPut/kPK Bz5XOk9yfBPEA/QZMAL9MB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbUjBdR4gq1Y/ySU4/3Qw26FTPfV523hO1gDVe/UHJfmlqO6HRF4Fm SzNs2MeZ4LtNPU3P49NSM7+mkM1WKKCeHddoGu2SUBr8bTk0lKL5qEXN0W2cJHlQ WjlNu8fP9V3DfsUGxGWmnztjoV8YdIgJDkjX2kN7ePtQTxckhlJkS5J1gtlJ3O5l 6KYe3hQPB5vc4NK/cMjDzPyLvRgRpOo4IIe6OKbZoOGSpgo2Y4zLNXL6JD3mNFuR gUivt1BBsyOoJ5+19nEuxv0XTrvAiUMDlnrecK5WL61DqWtXOAj+nysJJJeSY8Fm Sujzg7CleLn2BwT1k+F4W8UE/Cdgr4fR -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:57 2025 by rpki-client