$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: T8nIoPjcw3MCj185sCwRSeOLwQzIO/ihMd7rmsBgRTg= Subject key identifier: 47:63:9C:65:4B:81:85:8F:74:79:B2:0F:EE:C5:59:F4:26:1C:1B:66 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 0494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 047E Signing time: Sat 31 May 2025 00:18:22 +0000 Manifest this update: Sat 31 May 2025 00:18:22 +0000 Manifest next update: Sat 07 Jun 2025 00:18:22 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: L1bH5S0EgO5XMzrRJT2JXyyfChSd8nss4NGGHjxIcHA=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: 01FpccdP/MsW2CvA7hmJMpiDNjJ1dNkKkLEpim6H7/0=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: qr8b4jL6pkulS0zDMbButEnYyv8gZUas09Wk3ymII28=) 4: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: TI6U5DDyMx2oNjPAY1onItBRjW+RoIBeg5nOMGrAMag=) 5: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: hL3IFyg9Xwqq4SM4WYiBZDcso6a27q9sQZQ/dFLeUNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1172 (0x494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: May 31 00:18:22 2025 GMT Not After : Jun 7 00:18:22 2025 GMT Subject: CN=683a4ace-68a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b4:56:1c:eb:84:4f:d9:5f:9c:7e:4d:14:66: b7:fd:9f:10:df:2f:f0:6b:aa:fc:d8:6c:cb:42:c0: 7d:08:de:20:14:b9:0f:45:cc:5b:85:e2:9e:30:6e: d6:2f:6a:f7:74:b9:02:64:e9:75:c9:8f:73:b3:91: eb:c4:4d:a1:c9:95:9a:e7:3b:a2:91:75:40:38:5b: e3:6b:ff:59:4a:3e:34:c6:3f:91:fb:c0:e9:2f:42: 14:a4:33:b4:81:5b:9c:8f:c5:5c:48:ab:b9:0e:a4: 02:a1:84:a8:22:66:1d:3a:ee:ac:90:7a:4e:e8:7f: 29:78:53:7d:22:39:49:7f:71:a7:ef:41:08:42:3e: 56:60:76:c5:2a:77:22:c1:09:d8:9d:aa:df:f0:ca: 25:c8:e7:5b:3e:f6:c2:d0:9f:9b:e9:f2:2d:04:88: 38:bd:24:60:13:0a:ea:48:d1:7b:6f:19:2a:ea:26: 16:22:5f:91:4c:d2:18:19:a1:65:b9:9b:d1:dc:70: f0:68:38:57:e0:6d:ed:b7:df:70:e6:cb:37:ce:0e: 6c:40:87:08:f4:42:5e:70:ca:3a:1a:d0:8a:04:80: d9:3e:1a:88:04:7f:a9:76:fa:ec:d4:85:3e:95:25: 14:9f:95:ff:31:0d:ea:89:86:2c:3d:e9:99:d2:eb: 4a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:63:9C:65:4B:81:85:8F:74:79:B2:0F:EE:C5:59:F4:26:1C:1B:66 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:36:28:ac:b5:67:8f:de:a5:af:41:1e:4c:ff:d8:ad:dc:69: f9:66:eb:9d:f1:a4:77:0a:95:0b:b8:bb:08:f9:a4:26:8d:cc: 44:da:60:dc:74:57:0c:00:79:85:ef:92:97:a2:19:63:a8:80: 69:19:7d:73:47:de:bb:ac:65:a4:18:94:f7:06:c3:ae:ed:0b: 35:5a:36:44:26:e3:de:31:b2:78:cf:17:a1:e4:66:b2:6e:47: 43:e9:1b:f1:6e:10:ab:3b:d7:95:2b:f5:b6:ad:0e:df:90:15: 21:aa:0c:f6:0e:49:71:69:5d:b6:be:e3:c4:b0:74:c5:e1:9f: 39:4e:a6:8d:6b:0e:a7:93:32:f8:5e:b3:96:98:0c:0f:46:43: 3a:3b:28:2c:4b:14:68:cc:f2:bf:6c:18:9a:92:75:18:81:83: 14:d9:e2:bb:e5:fd:06:c7:4c:59:03:cf:cc:4e:29:cc:b6:4c: f3:65:c1:25:6f:96:94:46:94:5b:3f:46:21:f8:61:a0:22:6f: 9b:55:1c:7b:c2:a6:8e:4d:b1:db:db:d7:87:76:84:25:61:a1: d4:f7:52:45:2f:e6:dd:d8:13:24:09:4d:b6:73:d9:46:cc:ac: a0:4e:d4:56:26:bd:18:be:04:bf:ea:14:2c:bc:a6:13:86:b8: 49:bf:9a:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUwNTMxMDAxODIyWhcNMjUwNjA3MDAxODIyWjAYMRYwFAYD VQQDEw02ODNhNGFjZS02OGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbRWHOuET9lfnH5NFGa3/Z8Q3y/wa6r82GzLQsB9CN4gFLkPRcxbheKeMG7W L2r3dLkCZOl1yY9zs5HrxE2hyZWa5zuikXVAOFvja/9ZSj40xj+R+8DpL0IUpDO0 gVucj8VcSKu5DqQCoYSoImYdOu6skHpO6H8peFN9IjlJf3Gn70EIQj5WYHbFKnci wQnYnarf8MolyOdbPvbC0J+b6fItBIg4vSRgEwrqSNF7bxkq6iYWIl+RTNIYGaFl uZvR3HDwaDhX4G3tt99w5ss3zg5sQIcI9EJecMo6GtCKBIDZPhqIBH+pdvrs1IU+ lSUUn5X/MQ3qiYYsPemZ0utKeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdjnGVL gYWPdHmyD+7FWfQmHBtmMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTNiistWeP3qWvQR5M/9it3Gn5Zuud8aR3CpULuLsI+aQmjcxE2mDc dFcMAHmF75KXohljqIBpGX1zR967rGWkGJT3BsOu7Qs1WjZEJuPeMbJ4zxeh5Gay bkdD6RvxbhCrO9eVK/W2rQ7fkBUhqgz2DklxaV22vuPEsHTF4Z85TqaNaw6nkzL4 XrOWmAwPRkM6OygsSxRozPK/bBiaknUYgYMU2eK75f0Gx0xZA8/MTinMtkzzZcEl b5aURpRbP0Yh+GGgIm+bVRx7wqaOTbHb29eHdoQlYaHU91JFL+bd2BMkCU22c9lG zKygTtRWJr0YvgS/6hQsvKYThrhJv5oW -----END CERTIFICATE-----Generated at Sat May 31 16:53:43 2025 by rpki-client