$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft File: rwJRH3yA38Do7VBvZjD2e9ZADgk.mft (raw, json) Hash identifier: 5H1NIo4qjqWH0aQAgN97s9g2av/Q26TwTEKxc4llbHQ= Subject key identifier: 07:88:A0:FC:FE:F1:BF:34:66:9C:18:73:F7:3E:18:57:6D:09:C9:52 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 141F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft Manifest number: 140C Signing time: Mon 02 Jun 2025 17:07:37 +0000 Manifest this update: Mon 02 Jun 2025 17:07:36 +0000 Manifest next update: Mon 09 Jun 2025 17:07:36 +0000 Files and hashes: 1: rwJRH3yA38Do7VBvZjD2e9ZADgk.crl (hash: LTB6plxSsoCGAXm11H5zfNpfDnKW00imvkzC5smr+T8=) 2: 4C6227D2B69B11EFA181E00AC4F9AE02.roa (hash: 3UDqux2pyFF/Bk7qZfNBKUplKVtNPBgZPpnXk8snk4g=) 3: 26F19BD2EFFE11EDA34BD84DC4F9AE02.roa (hash: OwQjzjq4z1p3OKHRKYKyS/M55XVWZ+v6tClUy+yiWnc=) 4: 7F444842C3A411ED8EFA6F13C4F9AE02.roa (hash: PdnkTM08eG2sjPAy8+yW/MtnozIOdAkbD6OPtta7i0w=) 5: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (hash: TNsMJFZbcdKegim5sz+iSFbDGvmlLTbjneRhrtC2NlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5151 (0x141f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Jun 2 17:07:36 2025 GMT Not After : Jun 9 17:07:36 2025 GMT Subject: CN=683dda58-59a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:00:ab:9d:c3:8a:48:a8:e3:e7:cf:76:2f:da: c7:13:a5:9a:2e:fc:7a:1a:41:e4:e8:d9:86:cf:e8: 0a:07:7f:f6:4c:7c:0c:b3:d7:f3:07:01:a9:41:24: b8:2c:07:3e:c6:0a:67:5c:6c:c8:19:97:ac:b5:c0: b7:e0:1c:97:06:2d:84:c2:2e:89:c2:c4:d0:18:7f: cc:8f:71:23:0b:e1:6a:a0:90:0d:3d:aa:68:59:62: 99:9a:1e:76:71:cc:81:68:9b:d0:4b:5d:03:5b:c0: 9f:99:24:76:25:2f:1c:b2:9e:27:59:91:e8:12:e8: b8:65:a9:1e:2d:20:d2:f9:98:81:79:89:e1:1a:91: 49:52:d9:05:52:37:35:9a:d8:6c:0e:e1:4f:df:5b: 55:c9:24:40:c9:7b:da:90:ab:3a:35:85:32:48:fd: c8:01:ee:00:1f:0b:a7:0c:fa:64:b2:39:43:71:f7: d2:b5:ea:74:c4:c7:a9:81:08:d1:9d:cf:d5:3c:4e: bf:be:60:72:69:88:07:4b:fb:f3:b0:bd:b9:a6:72: 35:49:12:fc:fe:cc:d9:35:9f:0d:e6:56:a9:39:9b: 1b:b6:dd:02:6c:77:b3:9e:fd:e5:0c:03:9a:ac:f9: a1:34:b4:72:40:1b:77:8e:22:f5:4e:e1:4d:c7:46: 20:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:88:A0:FC:FE:F1:BF:34:66:9C:18:73:F7:3E:18:57:6D:09:C9:52 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c9:da:02:31:cd:b7:f3:84:69:e0:0c:3e:d8:61:b8:8f:64: f3:8f:b8:b3:79:49:e4:42:5f:92:7c:a5:d5:f8:30:c1:f0:a3: b3:17:49:c7:6d:60:b1:e3:75:e8:bc:48:55:58:90:47:5b:76: 83:95:f3:70:66:58:47:a9:d8:20:09:ef:4f:43:21:47:de:bf: d6:8e:42:bf:53:c7:ac:9e:1c:2f:2a:d4:5c:e8:98:47:7c:5c: cd:b0:ae:79:2e:53:ab:fc:a3:43:0b:6f:dc:83:b4:05:30:93: df:9f:3c:9c:8b:2a:f4:e9:34:cf:f3:15:55:30:de:6e:72:a8: 31:a6:d0:c3:d3:70:af:7e:10:41:90:7c:94:63:24:2b:ea:7d: d6:ff:8e:1f:c9:b3:92:6a:b0:2d:9e:ba:c9:1f:03:78:2a:ea: a0:c9:be:fc:54:8b:d4:da:53:de:ea:85:b6:1a:3d:14:f6:0d: 1d:a4:c1:72:d3:e6:c7:93:b9:ec:4c:4c:2a:c1:ed:2e:1d:47: 8e:b2:73:b9:ee:30:4c:6a:22:20:bd:d8:7b:b4:37:62:34:76: 5e:4a:2f:2e:48:4a:7b:2b:76:ec:12:df:38:6c:b3:41:f5:7d: b9:d0:aa:5b:5e:cd:24:6d:62:79:f9:62:a7:a6:92:26:9b:df: 02:5c:31:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwNjAyMTcwNzM2WhcNMjUwNjA5MTcwNzM2WjAYMRYwFAYD VQQDEw02ODNkZGE1OC01OWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygCrncOKSKjj5892L9rHE6WaLvx6GkHk6NmGz+gKB3/2THwMs9fzBwGpQSS4 LAc+xgpnXGzIGZestcC34ByXBi2Ewi6JwsTQGH/Mj3EjC+FqoJANPapoWWKZmh52 ccyBaJvQS10DW8CfmSR2JS8csp4nWZHoEui4ZakeLSDS+ZiBeYnhGpFJUtkFUjc1 mthsDuFP31tVySRAyXvakKs6NYUySP3IAe4AHwunDPpksjlDcffStep0xMepgQjR nc/VPE6/vmByaYgHS/vzsL25pnI1SRL8/szZNZ8N5lapOZsbtt0CbHeznv3lDAOa rPmhNLRyQBt3jiL1TuFNx0YgjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeIoPz+ 8b80ZpwYc/c+GFdtCclSMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEI0QS8wQURCMTdDMDgwMEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4 RG83VkJ2WmpEMmU5WkFEZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKydoCMc2384Rp4Aw+2GG4j2Tzj7izeUnkQl+SfKXV+DDB8KOzF0nH bWCx43XovEhVWJBHW3aDlfNwZlhHqdggCe9PQyFH3r/WjkK/U8esnhwvKtRc6JhH fFzNsK55LlOr/KNDC2/cg7QFMJPfnzyciyr06TTP8xVVMN5ucqgxptDD03CvfhBB kHyUYyQr6n3W/44fybOSarAtnrrJHwN4Kuqgyb78VIvU2lPe6oW2Gj0U9g0dpMFy 0+bHk7nsTEwqwe0uHUeOsnO57jBMaiIgvdh7tDdiNHZeSi8uSEp7K3bsEt84bLNB 9X250KpbXs0kbWJ5+WKnppImm98CXDGA -----END CERTIFICATE-----Generated at Tue Jun 3 23:48:12 2025 by rpki-client