$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: abZNbasBSySoY3pkCpz/mMadR0MMMl6v8dAw+fKOitc= Subject key identifier: 5D:E2:08:4B:16:16:F6:40:B0:E7:61:59:9A:73:18:A1:80:39:A7:53 Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 064B Signing time: Fri 30 May 2025 22:46:44 +0000 Manifest this update: Fri 30 May 2025 22:46:43 +0000 Manifest next update: Fri 06 Jun 2025 22:46:43 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: FYIHzEzHAxuhTmoTFBvZugKm+Qt3hzoBlQKXAUNIoQs=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 1444bb5xjFLOm1pP6Amz/K/2h6LYyRRZNFd2Apyax+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: May 30 22:46:43 2025 GMT Not After : Jun 6 22:46:43 2025 GMT Subject: CN=683a3553-f657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:6e:75:cd:87:e6:3c:93:68:6c:c1:74:95:8a: 27:46:89:d2:e0:e9:99:ae:eb:60:33:ba:b5:b5:e3: 5a:dc:4d:ea:b4:8f:50:01:95:35:65:be:fc:e9:77: a9:c0:ec:31:d9:6a:17:5e:ba:61:60:d1:f3:5d:b6: e8:83:5e:3c:14:be:76:67:e4:4a:d1:f6:fa:7e:e7: a3:f4:83:22:eb:fc:14:8a:27:f2:22:0b:55:20:45: a1:ed:27:76:95:ef:6e:04:aa:b9:aa:e5:3f:c0:70: 7f:e4:a5:4b:a3:25:12:2c:c2:8e:e3:ac:3b:32:0d: f0:2b:8d:9b:53:15:37:87:12:0f:d8:82:b3:e4:2f: bc:79:bc:c1:2d:c4:84:3c:45:a1:60:56:6a:b5:31: f1:3b:69:b5:16:78:13:a1:88:30:ea:a6:d3:6c:20: b6:c5:8d:33:6d:be:51:93:47:ed:65:d7:af:1d:c1: ae:05:67:74:da:1a:9a:af:34:86:11:6c:37:d6:fc: 28:0b:aa:29:2f:ee:15:fe:e3:6d:d0:64:17:e8:eb: b0:18:2b:ae:5c:5a:14:b1:e6:e6:97:12:bf:e4:35: d4:d3:86:49:70:0a:c2:df:6d:fc:c7:e4:7b:4f:82: ec:59:36:fd:04:33:b6:b3:89:c9:b2:bf:c5:23:92: a7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E2:08:4B:16:16:F6:40:B0:E7:61:59:9A:73:18:A1:80:39:A7:53 X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:6d:e1:d3:2f:f0:0a:d6:19:66:30:15:f2:07:46:b7:06:77: a1:ea:7e:c2:99:ca:6a:7f:9a:cf:95:d3:1e:4d:12:6e:ad:70: 96:e9:2c:84:4e:db:43:0f:95:fc:3b:db:39:e2:a4:e4:0a:ae: 8a:d9:f6:88:79:20:02:49:03:73:20:ae:03:20:0a:5a:40:b1: a4:80:1f:f2:b8:fb:48:8c:26:26:f5:c7:b7:a9:f5:13:70:8a: 82:55:1e:a4:fa:92:5b:85:80:ae:7a:6c:05:0c:02:3e:17:ce: a3:20:8c:00:63:d3:62:dd:0e:91:f6:80:46:df:25:78:d3:22: 83:18:f4:b7:22:c9:37:69:66:63:ff:b6:a6:40:79:94:86:36: df:43:b9:d4:ed:31:c7:63:57:c8:73:d2:17:7d:a5:63:e2:ce: 89:bf:78:1a:50:27:d3:b1:8e:86:5f:36:5f:62:b1:5d:38:e6: 3e:1d:f8:d5:44:98:a2:8e:38:c0:f9:79:ff:da:7a:39:db:43: 1a:b4:ae:6d:1e:11:0a:ff:71:af:6c:5d:9c:e8:69:04:77:14: 40:3e:ba:ac:54:a7:cd:b7:29:19:58:e5:00:d3:3a:4a:08:cd: ef:2b:bb:2d:d3:7b:d7:05:12:7e:01:ae:5c:c0:ff:82:66:e1: 00:4d:a8:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUwNTMwMjI0NjQzWhcNMjUwNjA2MjI0NjQzWjAYMRYwFAYD VQQDEw02ODNhMzU1My1mNjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+m51zYfmPJNobMF0lYonRonS4OmZrutgM7q1teNa3E3qtI9QAZU1Zb786Xep wOwx2WoXXrphYNHzXbbog148FL52Z+RK0fb6fuej9IMi6/wUiifyIgtVIEWh7Sd2 le9uBKq5quU/wHB/5KVLoyUSLMKO46w7Mg3wK42bUxU3hxIP2IKz5C+8ebzBLcSE PEWhYFZqtTHxO2m1FngToYgw6qbTbCC2xY0zbb5Rk0ftZdevHcGuBWd02hqarzSG EWw31vwoC6opL+4V/uNt0GQX6OuwGCuuXFoUsebmlxK/5DXU04ZJcArC3238x+R7 T4LsWTb9BDO2s4nJsr/FI5KnWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3iCEsW FvZAsOdhWZpzGKGAOadTMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIbeHTL/AK1hlmMBXyB0a3Bneh6n7Cmcpqf5rPldMeTRJurXCW6SyE TttDD5X8O9s54qTkCq6K2faIeSACSQNzIK4DIApaQLGkgB/yuPtIjCYm9ce3qfUT cIqCVR6k+pJbhYCuemwFDAI+F86jIIwAY9Ni3Q6R9oBG3yV40yKDGPS3Isk3aWZj /7amQHmUhjbfQ7nU7THHY1fIc9IXfaVj4s6Jv3gaUCfTsY6GXzZfYrFdOOY+HfjV RJiijjjA+Xn/2no520MatK5tHhEK/3GvbF2c6GkEdxRAPrqsVKfNtykZWOUA0zpK CM3vK7st03vXBRJ+Aa5cwP+CZuEATaid -----END CERTIFICATE-----Generated at Sat May 31 17:11:27 2025 by rpki-client