$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: ftKgGG+ErXv7dsfv4CVVY+1SCCMKdIo6YXSN87YjCAM= Subject key identifier: E5:DB:73:63:D0:06:BB:44:65:2A:96:0D:48:4B:91:6F:46:08:AB:2E Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: 29 Signing time: Tue 03 Jun 2025 07:39:13 +0000 Manifest this update: Tue 03 Jun 2025 07:39:12 +0000 Manifest next update: Tue 10 Jun 2025 07:39:12 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: s/lmrsiOT7kPqWRcDhMMDKTByB4tu+FuUieLq9YNj9g=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: kGx1CJpE3cHBsf4M7cgjGHBrxKAD0rzUUv2UM3HRfTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: Jun 3 07:39:12 2025 GMT Not After : Jun 10 07:39:12 2025 GMT Subject: CN=683ea6a0-884c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:96:00:43:3e:78:29:27:e0:54:3b:f3:56:5c: 8a:4f:bd:7c:c5:07:ca:ee:38:10:9d:a4:91:bc:45: a7:e8:c2:b0:5b:f3:67:71:cd:3d:53:99:c6:18:67: ef:5d:90:30:39:10:56:b5:36:14:1e:3c:4c:4e:e4: ed:db:1e:7b:ab:30:96:22:8e:d0:3b:cf:90:d4:97: 36:35:a1:dd:f4:4d:94:61:1d:8e:01:f9:ed:32:83: 81:03:a6:58:46:64:58:4f:40:73:f0:1e:10:cb:6b: 92:8c:1d:b6:5e:8a:45:ff:51:01:b4:91:84:40:3b: d6:c8:6d:0c:66:ab:dd:30:26:e3:a2:fe:ed:c5:47: 5d:5b:e0:2f:f2:64:53:44:aa:cb:72:4e:33:03:b2: d1:9c:9b:07:d1:55:a6:c4:81:d0:66:d0:ac:25:d7: 1d:6c:02:21:2e:79:f0:88:1a:80:55:a9:9a:31:c7: fc:95:cf:0c:8a:44:f5:76:77:5f:46:5e:60:12:26: f9:4b:9c:4b:19:2a:bb:96:d8:93:fb:85:26:7a:a0: ec:0f:aa:c7:4d:91:7e:5e:58:42:bc:c8:31:33:39: 89:c2:6b:e6:4c:4b:24:14:a8:c0:50:59:96:d4:08: 8f:f9:b1:7c:71:8f:39:4f:92:00:db:29:0b:b9:c0: 63:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DB:73:63:D0:06:BB:44:65:2A:96:0D:48:4B:91:6F:46:08:AB:2E X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:8c:cf:96:70:9a:3c:97:90:8c:8c:9d:b6:c4:a8:d2:41:b9: 51:c3:af:07:0c:7f:95:3a:3d:0c:e0:02:cc:7f:13:7e:e3:6f: 61:c2:47:5e:a7:8b:ac:6b:11:d2:05:02:28:6e:d8:f2:16:71: 9a:95:1e:e9:f5:f3:00:06:2e:c0:4e:d8:4b:d4:10:02:17:8e: 21:50:6f:64:ab:d3:4a:fb:3e:e0:cf:f5:8f:6d:91:9a:10:2d: ef:f3:3e:d3:84:ce:77:4d:f2:e7:1d:ec:31:9b:27:ec:f6:91: df:07:f8:2c:d8:1b:59:e4:72:44:dd:62:a4:f4:81:45:51:ea: bb:e7:17:f8:0f:12:97:73:51:eb:dc:dc:82:e9:95:ad:be:ea: e7:b1:8b:55:29:a7:60:3e:0c:98:38:88:02:c2:85:04:b1:d5: be:db:10:b4:b7:55:63:bd:1a:50:52:de:57:bf:26:c8:0f:71: 14:7d:a5:b6:d4:84:cf:d0:b4:66:83:f4:0c:79:a6:45:d1:7c: a5:5b:7d:f8:ed:16:65:4b:e3:16:84:59:7b:80:18:e5:2e:19: 86:7e:94:6e:82:dc:87:21:99:fc:5d:b3:85:2e:3b:8d:98:d5: 11:d0:1c:c4:9c:ad:ea:b0:dd:3e:b7:8b:4f:cb:54:7b:06:6b: 2a:84:36:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoQjAzNDFDMzQzRkUxNTI1Rjc2QzkyOTk2MTBDQTBFNzhF OTNFODdDMzAeFw0yNTA2MDMwNzM5MTJaFw0yNTA2MTAwNzM5MTJaMBgxFjAUBgNV BAMTDTY4M2VhNmEwLTg4NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3lgBDPngpJ+BUO/NWXIpPvXzFB8ruOBCdpJG8RafowrBb82dxzT1TmcYYZ+9d kDA5EFa1NhQePExO5O3bHnurMJYijtA7z5DUlzY1od30TZRhHY4B+e0yg4EDplhG ZFhPQHPwHhDLa5KMHbZeikX/UQG0kYRAO9bIbQxmq90wJuOi/u3FR11b4C/yZFNE qstyTjMDstGcmwfRVabEgdBm0Kwl1x1sAiEuefCIGoBVqZoxx/yVzwyKRPV2d19G XmASJvlLnEsZKruW2JP7hSZ6oOwPqsdNkX5eWEK8yDEzOYnCa+ZMSyQUqMBQWZbU CI/5sXxxjzlPkgDbKQu5wGN3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5dtzY9AG u0RlKpYNSEuRb0YIqy4wHwYDVR0jBBgwFoAUsDQcND/hUl92ySmWEMoOeOk+h8Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzQyRkMzRDhBMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc0RRY05EX2hVbDkyeVNtV0VNb09lT2staDhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzQyRkMzRDhBMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5 MnlTbVdFTW9PZU9rLWg4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFCMz5ZwmjyXkIyMnbbEqNJBuVHDrwcMf5U6PQzgAsx/E37jb2HCR16n i6xrEdIFAihu2PIWcZqVHun18wAGLsBO2EvUEAIXjiFQb2Sr00r7PuDP9Y9tkZoQ Le/zPtOEzndN8ucd7DGbJ+z2kd8H+CzYG1nkckTdYqT0gUVR6rvnF/gPEpdzUevc 3ILpla2+6uexi1Upp2A+DJg4iALChQSx1b7bELS3VWO9GlBS3le/JsgPcRR9pbbU hM/QtGaD9Ax5pkXRfKVbffjtFmVL4xaEWXuAGOUuGYZ+lG6C3Ichmfxds4UuO42Y 1RHQHMScreqw3T63i0/LVHsGayqENv4= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:16 2025 by rpki-client