$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: T+HeDEXeh3jYOSX8SmUKwW9Rlp21/KS60ibz9Cs73eE= Subject key identifier: D8:4F:F2:A3:F9:24:7A:0D:AB:D0:D2:FC:9A:4F:A2:F5:F7:2A:0A:D7 Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0FBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0FB2 Signing time: Fri 30 May 2025 17:42:30 +0000 Manifest this update: Fri 30 May 2025 17:42:30 +0000 Manifest next update: Fri 06 Jun 2025 17:42:30 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: xG75gBzaL20GNFEEsGlbK0yJ1rJxHdXDZnpiFiRW3VE=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4030 (0xfbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: May 30 17:42:30 2025 GMT Not After : Jun 6 17:42:30 2025 GMT Subject: CN=6839ee06-e7c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ff:6e:eb:a3:c0:8b:33:94:c0:87:c7:6d:26: 50:d7:38:9a:53:c0:56:9f:99:cf:b2:a1:15:2e:b3: f4:ec:a6:e2:14:b3:b1:a7:53:1d:76:b1:ae:76:b8: e5:9a:67:fb:2d:83:f8:cb:fe:1d:7e:0c:fd:42:e8: d4:c8:30:40:11:0c:79:2c:7f:e7:58:2e:7a:94:81: 5b:fd:42:c8:a5:89:be:e3:aa:7d:dd:b0:00:d5:1f: ab:a5:be:56:f2:19:31:c1:49:9a:5d:da:95:47:20: b8:a7:9c:13:06:c6:d0:d1:23:8e:22:7c:e4:db:4a: e2:59:3a:dc:12:22:df:47:61:3a:a7:98:31:17:b5: b2:1e:73:c0:89:58:37:3e:63:a4:0f:13:88:0d:86: 40:ae:14:ae:de:03:c6:0e:b9:2d:18:71:62:41:7e: de:0f:93:bd:70:55:14:9d:49:b5:d4:5d:70:39:9f: ac:f4:fd:1f:1b:42:79:fa:24:38:c0:76:f4:37:11: ab:70:03:cd:4c:19:23:cd:fb:f5:fd:a3:df:bb:48: 33:dc:b7:89:da:4d:5c:35:84:ab:12:e0:c7:e7:a7: 92:32:48:78:14:64:12:ca:59:6e:fa:c9:e3:bb:68: 3a:0f:43:b7:9a:a7:e2:d2:6e:29:b7:31:f6:fe:d4: b7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:4F:F2:A3:F9:24:7A:0D:AB:D0:D2:FC:9A:4F:A2:F5:F7:2A:0A:D7 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:8f:de:b2:ae:91:4b:1b:cb:b5:d9:fb:1a:34:7b:4a:1e:b4: 1f:75:03:9c:8e:93:65:13:eb:c8:5f:fa:f8:7c:c2:06:af:43: c6:aa:ad:27:20:77:d6:f5:d1:3c:78:54:cb:fa:fd:d2:a6:34: c0:14:40:9d:0b:47:d1:6f:de:cf:9e:91:6d:87:c4:5c:53:06: 2d:78:32:32:18:81:b2:a3:51:ef:da:06:6c:4c:81:dc:d7:75: b5:70:5e:20:01:c9:f3:02:23:d5:2e:7b:b2:75:04:e3:5e:4b: d3:d9:3e:8c:ec:71:51:cf:31:04:a2:81:ae:93:66:f5:30:14: 42:54:2e:bc:02:01:9d:64:21:79:3f:4e:9b:2e:6e:d0:23:54: 8b:b7:5a:3c:73:b2:1d:59:69:27:7a:76:9c:14:70:81:ff:0b: 0c:7c:bb:f6:59:73:1f:41:5e:a4:e8:15:bb:62:84:78:bc:e3: 1c:46:96:52:ef:bd:33:f9:bc:ab:bc:07:c8:4b:41:ed:d6:05: 40:3a:27:c1:92:f7:fe:43:11:cd:ba:d2:d6:93:e1:7d:52:8f: 6d:6d:09:96:03:6a:7a:33:1e:cf:7d:87:50:57:1d:c5:26:7a: ad:0d:a7:66:30:d4:b4:24:77:21:08:5e:79:08:81:56:d9:8b: e5:9f:5c:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwNTMwMTc0MjMwWhcNMjUwNjA2MTc0MjMwWjAYMRYwFAYD VQQDEw02ODM5ZWUwNi1lN2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0v9u66PAizOUwIfHbSZQ1ziaU8BWn5nPsqEVLrP07KbiFLOxp1MddrGudrjl mmf7LYP4y/4dfgz9QujUyDBAEQx5LH/nWC56lIFb/ULIpYm+46p93bAA1R+rpb5W 8hkxwUmaXdqVRyC4p5wTBsbQ0SOOInzk20riWTrcEiLfR2E6p5gxF7WyHnPAiVg3 PmOkDxOIDYZArhSu3gPGDrktGHFiQX7eD5O9cFUUnUm11F1wOZ+s9P0fG0J5+iQ4 wHb0NxGrcAPNTBkjzfv1/aPfu0gz3LeJ2k1cNYSrEuDH56eSMkh4FGQSyllu+snj u2g6D0O3mqfi0m4ptzH2/tS3RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhP8qP5 JHoNq9DS/JpPovX3KgrXMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfj96yrpFLG8u12fsaNHtKHrQfdQOcjpNlE+vIX/r4fMIGr0PGqq0n IHfW9dE8eFTL+v3SpjTAFECdC0fRb97PnpFth8RcUwYteDIyGIGyo1Hv2gZsTIHc 13W1cF4gAcnzAiPVLnuydQTjXkvT2T6M7HFRzzEEooGuk2b1MBRCVC68AgGdZCF5 P06bLm7QI1SLt1o8c7IdWWknenacFHCB/wsMfLv2WXMfQV6k6BW7YoR4vOMcRpZS 770z+byrvAfIS0Ht1gVAOifBkvf+QxHNutLWk+F9Uo9tbQmWA2p6Mx7PfYdQVx3F JnqtDadmMNS0JHchCF55CIFW2Yvln1wZ -----END CERTIFICATE-----Generated at Sat May 31 17:03:27 2025 by rpki-client