$ rpki-client -vvf rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft File: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft (raw, json) Hash identifier: VrgR47B2+fNStL/3sO2QOl0DQ5eVsf+TAR0BYZyel+E= Subject key identifier: F3:6F:CB:AD:53:C4:DC:FF:42:0F:F1:50:2B:91:84:C6:DB:22:5F:9C Authority key identifier: 72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A Certificate issuer: /CN=A915D010/serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Certificate serial: 0D9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft Manifest number: 0D98 Signing time: Fri 30 May 2025 18:06:07 +0000 Manifest this update: Fri 30 May 2025 18:06:06 +0000 Manifest next update: Fri 06 Jun 2025 18:06:06 +0000 Files and hashes: 1: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl (hash: 2Upaor2+3HveblvAXw7sVU+49GO8K4YCu7m6wlTAKbg=) 2: FCFEAA74DB9111E9B70EDD2EC4F9AE02.roa (hash: 88rHQVPR1JUl3cf/OTRoNqatod6IR47YQyVPqlvmZBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3487 (0xd9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D010, serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Validity Not Before: May 30 18:06:06 2025 GMT Not After : Jun 6 18:06:06 2025 GMT Subject: CN=6839f38f-dce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0d:9b:d8:7b:53:ff:70:be:5d:4e:d9:8d:52: 7e:7c:41:83:2c:b6:32:af:05:ac:3d:62:14:31:05: d8:1e:53:52:f0:b3:02:6b:b3:9b:a8:e9:3e:39:f3: 85:80:e0:6d:f0:38:4a:e7:b4:76:5e:5c:a6:37:17: 95:27:4b:84:e9:dc:b1:e7:1e:51:87:48:81:22:61: d1:3f:b2:45:31:e6:70:e3:f9:f7:ba:a2:dd:cf:31: 2b:8c:9b:50:90:9b:b8:75:84:5d:01:26:1e:08:02: 15:7c:19:5f:f2:ca:c9:75:83:10:3e:2b:83:14:58: 01:f5:d2:0e:4c:e6:cd:b4:c9:ce:91:50:90:8d:16: 26:76:09:44:1d:9e:8e:ef:c9:11:3d:a2:08:a9:b1: ee:01:c4:19:80:d1:71:f1:be:4f:b4:51:59:fc:57: 40:0a:fb:f0:45:6e:9a:39:4b:49:9c:6b:88:16:e1: 7b:bf:c5:a1:59:89:7e:c1:de:34:c8:e7:b5:e6:77: 75:73:08:59:e1:7f:ab:ba:66:37:f7:95:a2:8b:b9: 0d:5e:ce:dd:1d:a6:20:45:d5:31:14:98:8d:14:78: 2d:4f:cd:0b:df:60:1c:ba:fa:ca:db:9e:4c:18:25: b4:be:f2:78:36:ba:ab:09:9a:4a:ce:5b:13:d2:41: 55:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:6F:CB:AD:53:C4:DC:FF:42:0F:F1:50:2B:91:84:C6:DB:22:5F:9C X509v3 Authority Key Identifier: keyid:72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:68:7a:4d:b1:a7:c9:21:3c:48:a0:e4:dc:2b:f6:f4:a3:97: 7c:34:c3:46:fb:30:3b:b6:4f:dc:74:c6:cb:0b:1d:55:2c:f3: 40:08:50:5e:1d:aa:d0:87:1a:fe:10:07:94:65:ce:ae:c3:6e: fb:1a:95:5b:02:ee:e2:e8:a9:f0:53:61:6c:02:b4:dc:fb:31: 6f:9f:6c:80:f4:22:67:c1:27:6b:ee:4e:ad:08:fc:32:2b:d3: a0:cc:1f:34:7c:70:02:4b:35:aa:e1:ef:6c:90:ce:c9:82:f0: 08:18:2f:e0:e1:a7:97:d8:b8:31:dd:8c:4d:e6:2c:52:ab:3f: 15:95:29:28:75:8b:a6:fa:41:b2:a6:30:35:db:55:20:40:d6: 5a:80:44:74:de:df:55:e5:c1:3a:d2:ef:44:65:88:e4:4e:b7: db:b1:5e:a5:1a:07:4d:2b:c6:86:6b:bd:1c:fe:a9:91:a1:00: d1:7b:c1:04:d2:65:54:43:67:da:76:02:5a:cf:42:8d:b4:34: 52:25:c0:05:39:b3:46:e4:7c:77:17:d6:5d:9f:71:34:01:0e: 77:46:57:a2:89:ed:d9:b3:14:5d:49:8a:28:6d:a0:4c:10:e8: d6:7c:03:f1:7d:73:d4:fe:6b:5b:68:8f:5b:91:d5:13:c0:75: 80:fc:65:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwMTAxMTAvBgNVBAUTKDcyMjE3OEQ1OTFEOTg1OTY4OUU0QjkyRjJEMEM4N0ZB NDdFMzVFMEEwHhcNMjUwNTMwMTgwNjA2WhcNMjUwNjA2MTgwNjA2WjAYMRYwFAYD VQQDEw02ODM5ZjM4Zi1kY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQ2b2HtT/3C+XU7ZjVJ+fEGDLLYyrwWsPWIUMQXYHlNS8LMCa7ObqOk+OfOF gOBt8DhK57R2XlymNxeVJ0uE6dyx5x5Rh0iBImHRP7JFMeZw4/n3uqLdzzErjJtQ kJu4dYRdASYeCAIVfBlf8srJdYMQPiuDFFgB9dIOTObNtMnOkVCQjRYmdglEHZ6O 78kRPaIIqbHuAcQZgNFx8b5PtFFZ/FdACvvwRW6aOUtJnGuIFuF7v8WhWYl+wd40 yOe15nd1cwhZ4X+rumY395Wii7kNXs7dHaYgRdUxFJiNFHgtT80L32AcuvrK255M GCW0vvJ4NrqrCZpKzlsT0kFVhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNvy61T xNz/Qg/xUCuRhMbbIl+cMB8GA1UdIwQYMBaAFHIheNWR2YWWieS5Ly0Mh/pH414K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAxMC81N0I3NjcxQUMy MUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmhaYUo1TGt2TFF5SC1rZmpY Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpRjQxWkhaaFphSjVMa3ZMUXlILWtmalhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDAxMC81N0I3NjcxQUMyMUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmha YUo1TGt2TFF5SC1rZmpYZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXaHpNsafJITxIoOTcK/b0o5d8NMNG+zA7tk/cdMbLCx1VLPNACFBe HarQhxr+EAeUZc6uw277GpVbAu7i6KnwU2FsArTc+zFvn2yA9CJnwSdr7k6tCPwy K9OgzB80fHACSzWq4e9skM7JgvAIGC/g4aeX2Lgx3YxN5ixSqz8VlSkodYum+kGy pjA121UgQNZagER03t9V5cE60u9EZYjkTrfbsV6lGgdNK8aGa70c/qmRoQDRe8EE 0mVUQ2fadgJaz0KNtDRSJcAFObNG5Hx3F9Zdn3E0AQ53Rleiie3ZsxRdSYoobaBM EOjWfAPxfXPU/mtbaI9bkdUTwHWA/GXo -----END CERTIFICATE-----Generated at Sat May 31 17:32:50 2025 by rpki-client