$ rpki-client -vvf rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft File: 9TkpGRnN4USwNO8oiwpjR4PoLH8.mft (raw, json) Hash identifier: byDYWkjJEEd05vo2Q8W3JjUgMeJkNrj4LQPj8LhV3wY= Subject key identifier: 88:55:57:04:AD:D4:B8:64:0E:8D:2E:D6:F0:44:D8:96:FC:1A:FF:98 Authority key identifier: F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F Certificate issuer: /CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Certificate serial: 046C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft Manifest number: 042E Signing time: Sat 31 May 2025 00:45:20 +0000 Manifest this update: Sat 31 May 2025 00:45:19 +0000 Manifest next update: Sat 07 Jun 2025 00:45:19 +0000 Files and hashes: 1: 9TkpGRnN4USwNO8oiwpjR4PoLH8.crl (hash: 4TNto/NQYsUh/IOwxOlq4YEorHrvJ8TtNVvtDcCJ8iE=) 2: 06B47656E38A11EFA4DDBC1EC4F9AE02.roa (hash: jw0OS28NBUixcPBkwOHR1vk2bGtDUl1DjQdu4UsyyXU=) 3: 976C4E84F72711EFB800B84BC4F9AE02.roa (hash: yyqYiyN6Yt2drA5esyg23pSPV3UCCGrSIBo6P8TjMZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1132 (0x46c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C61B, serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Validity Not Before: May 31 00:45:19 2025 GMT Not After : Jun 7 00:45:19 2025 GMT Subject: CN=683a5120-6437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:29:a9:a1:90:e2:08:d1:d0:14:8b:e8:af:2d: 2c:6e:87:11:05:87:7b:d5:f2:fb:77:f5:d2:ed:ef: 1c:a1:27:a2:a0:a3:88:50:99:37:a6:9c:96:9b:dc: 5a:dd:47:7c:98:36:37:78:1f:89:0f:74:83:39:5f: 3a:86:ca:9f:ee:d6:b9:01:bc:cf:74:34:80:34:e1: 1a:e5:00:0c:a3:c4:a3:91:b2:13:03:a4:93:d4:e7: 61:eb:7e:2d:7c:24:15:2d:30:83:d1:e7:9f:84:58: 9c:1a:e5:d7:5e:e0:cb:9a:75:19:45:10:10:bf:a7: 19:d3:7a:53:18:8b:8c:62:d1:ed:62:1b:88:13:db: d0:8c:b9:51:70:1e:7c:21:22:79:9a:c4:d5:2e:41: a1:6b:6a:4d:6b:80:79:2e:7c:0a:0a:7e:2b:58:aa: 0a:fe:2d:38:ed:6f:78:f0:f2:da:5e:14:46:38:ea: f4:8b:83:bb:0d:f5:e7:a0:f5:66:8f:2e:36:17:e7: 2c:6b:db:3e:02:ba:64:9d:d6:c1:12:b4:64:20:e7: fa:88:d5:f3:6c:a1:2a:bf:5e:a2:3b:25:8f:bb:03: 3b:df:16:cf:b6:cb:08:91:5e:1a:34:c6:98:41:8d: 7b:38:50:31:9b:de:e1:a5:dc:7a:f0:4f:b0:26:b6: 9c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:55:57:04:AD:D4:B8:64:0E:8D:2E:D6:F0:44:D8:96:FC:1A:FF:98 X509v3 Authority Key Identifier: keyid:F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:be:95:eb:98:d5:23:02:c4:8b:74:70:76:21:78:36:2c:b3: 16:69:fe:65:a2:68:3c:20:60:86:90:15:de:64:ac:53:f6:7d: 8e:12:be:32:a8:0a:20:fe:45:4a:d2:9a:f4:39:b5:2c:98:df: c0:d7:e1:55:82:d0:10:a2:80:e8:3b:92:e9:64:79:ec:65:69: 62:e8:34:b9:28:a6:73:14:12:e7:ba:29:e5:84:23:bb:d2:f9: ba:bb:e5:d9:94:90:7c:74:e5:67:cc:51:cd:47:a8:e3:bf:0b: 05:6e:7e:b4:76:96:2c:05:0d:67:cc:2d:d0:b2:18:47:20:f0: cc:91:ef:dc:f9:d9:69:5b:87:62:9e:5e:fd:28:d6:ca:e1:8c: 2d:d3:f0:7a:8a:ab:93:9a:d7:ae:1d:7a:df:e2:89:07:37:76: 08:d1:28:4e:46:2c:97:9a:fd:9a:b9:e1:e5:32:f2:40:4b:f1: 9b:e9:7f:75:f5:63:be:e1:d0:ac:8b:e3:9a:58:b9:e7:18:06: e6:2e:e3:54:44:42:d2:5c:03:09:da:ca:a7:12:b6:5b:ff:91: c3:ce:b9:51:5f:1d:ba:a6:0a:c5:56:dd:26:c4:37:8d:40:f3: 0c:e7:9a:98:ce:c6:57:c8:9e:a7:46:7d:0f:7d:4a:42:27:73: 2d:72:24:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2MUIxMTAvBgNVBAUTKEY1MzkyOTE5MTlDREUxNDRCMDM0RUYyODhCMEE2MzQ3 ODNFODJDN0YwHhcNMjUwNTMxMDA0NTE5WhcNMjUwNjA3MDA0NTE5WjAYMRYwFAYD VQQDEw02ODNhNTEyMC02NDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCmpoZDiCNHQFIvory0sbocRBYd71fL7d/XS7e8coSeioKOIUJk3ppyWm9xa 3Ud8mDY3eB+JD3SDOV86hsqf7ta5AbzPdDSANOEa5QAMo8SjkbITA6ST1Odh634t fCQVLTCD0eefhFicGuXXXuDLmnUZRRAQv6cZ03pTGIuMYtHtYhuIE9vQjLlRcB58 ISJ5msTVLkGha2pNa4B5LnwKCn4rWKoK/i047W948PLaXhRGOOr0i4O7DfXnoPVm jy42F+csa9s+ArpkndbBErRkIOf6iNXzbKEqv16iOyWPuwM73xbPtssIkV4aNMaY QY17OFAxm97hpdx68E+wJrac2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhVVwSt 1LhkDo0u1vBE2Jb8Gv+YMB8GA1UdIwQYMBaAFPU5KRkZzeFEsDTvKIsKY0eD6Cx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzYxQi81MUVGRkEzMDgy NjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRVU3dOTzhvaXdwalI0UG9M SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUa3BHUm5ONFVTd05POG9pd3BqUjRQb0xIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzYxQi81MUVGRkEzMDgyNjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRV U3dOTzhvaXdwalI0UG9MSDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADvpXrmNUjAsSLdHB2IXg2LLMWaf5lomg8IGCGkBXeZKxT9n2OEr4y qAog/kVK0pr0ObUsmN/A1+FVgtAQooDoO5LpZHnsZWli6DS5KKZzFBLnuinlhCO7 0vm6u+XZlJB8dOVnzFHNR6jjvwsFbn60dpYsBQ1nzC3QshhHIPDMke/c+dlpW4di nl79KNbK4Ywt0/B6iquTmteuHXrf4okHN3YI0ShORiyXmv2aueHlMvJAS/Gb6X91 9WO+4dCsi+OaWLnnGAbmLuNURELSXAMJ2sqnErZb/5HDzrlRXx26pgrFVt0mxDeN QPMM55qYzsZXyJ6nRn0PfUpCJ3MtciTt -----END CERTIFICATE-----Generated at Sat May 31 16:55:02 2025 by rpki-client