$ rpki-client -vvf rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft File: DeK2pi5UoKYbzzFLbi77jzoeOno.mft (raw, json) Hash identifier: JVOi3wrTlgsBD3ucBJ2P2YcqCVBhDjP9FAcmrPtzA2U= Subject key identifier: A5:D9:2C:49:3C:3A:80:17:70:1C:42:04:4E:24:BE:57:5A:15:81:94 Authority key identifier: 0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A Certificate issuer: /CN=A916F8DB/serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft Manifest number: 013F Signing time: Sat 31 May 2025 04:00:45 +0000 Manifest this update: Sat 31 May 2025 04:00:44 +0000 Manifest next update: Sat 07 Jun 2025 04:00:44 +0000 Files and hashes: 1: DeK2pi5UoKYbzzFLbi77jzoeOno.crl (hash: +xo0K440jJGn/HHHN1Yily1cFIH5QOqGM4M+oXRXg14=) 2: 65A459FE54BD11EE8C958973C4F9AE02.roa (hash: iUnEHsfjN1jchtBZnX9gEs2PWdWpqrF2oKCzEFQT8+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F8DB, serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A Validity Not Before: May 31 04:00:44 2025 GMT Not After : Jun 7 04:00:44 2025 GMT Subject: CN=683a7eec-a344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:99:e1:6d:ad:e0:c4:05:96:c4:87:53:a3:bf: c8:91:9f:9f:4f:9a:57:9d:ac:d0:b0:ea:6b:15:45: 76:21:2b:cc:bd:0b:8c:57:23:dd:2c:a2:28:3a:65: ae:d6:e2:12:a1:69:ac:7c:51:1c:6a:f7:20:90:8f: 96:c4:14:0b:e8:fd:13:e6:f1:2f:fe:84:1f:93:75: 3e:5c:87:c1:0a:28:b0:f6:a0:50:b3:7c:32:16:ad: a7:e4:39:6e:79:27:00:d4:a2:4d:72:4b:3f:53:5f: 78:bc:5e:82:51:ac:c9:cc:4a:27:d7:4b:e8:85:2f: 89:6f:81:7e:39:ef:08:b0:e5:51:a7:1a:8e:7e:21: 80:c3:0e:32:86:7c:ce:31:23:c0:61:d9:a1:0d:60: 13:7d:4c:d0:4a:43:05:43:18:41:f1:e5:95:1e:12: 66:cf:a8:e5:c3:d7:f8:b9:2b:75:f9:30:01:40:54: a1:9e:15:a9:ef:65:9d:27:31:57:cf:f0:c5:f1:b2: 4a:1b:37:d3:72:6c:68:29:19:ce:31:7a:3e:fe:d0: 83:f7:2a:12:67:d9:8a:7a:22:82:51:36:83:5f:ea: 84:7f:55:c3:c3:51:67:64:3a:6a:eb:0f:d2:5b:26: 47:64:38:ff:dd:b0:9c:71:3d:20:90:ec:00:ad:23: 46:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D9:2C:49:3C:3A:80:17:70:1C:42:04:4E:24:BE:57:5A:15:81:94 X509v3 Authority Key Identifier: keyid:0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c8:2a:9f:10:5a:f5:ca:2e:14:c5:02:ff:85:a7:49:84:67: 9e:0e:7d:37:a7:df:a7:13:5c:85:6c:59:b5:70:86:3c:fd:0c: c2:51:b6:14:5d:2f:30:a8:4f:a8:60:e5:da:60:71:be:80:af: c6:1d:1d:53:e8:58:b9:7d:2c:8f:89:dd:b2:79:7d:32:41:91: e1:df:54:b7:4f:18:dd:5e:84:7d:5a:39:e6:a6:38:28:28:3d: dd:c6:b7:9a:b7:93:88:fb:4d:3a:b6:27:33:27:12:71:14:c7: d7:32:04:d5:c0:e3:0e:70:c1:20:78:28:56:9c:a0:c7:2e:cf: 41:a5:79:a1:d4:c4:3f:5d:9b:61:ab:2c:1a:68:3a:b0:56:86: a1:e7:2c:1a:ab:31:a2:4a:80:86:b5:84:0c:1a:60:00:20:e4: c5:d9:13:f2:69:40:7d:19:9c:f5:03:8a:0b:12:d2:4d:3c:5c: 46:68:14:c2:41:a5:77:c9:58:fb:3b:8e:10:36:0e:f0:f3:e0: cd:31:21:ba:5d:09:67:6d:45:5d:3a:a3:85:37:ca:9c:68:86: ec:9e:81:c0:6a:4b:d8:62:a0:23:0b:52:e3:05:73:36:d5:89: 28:81:7e:0f:76:c7:03:2a:5d:bb:5a:67:5a:a5:16:17:4e:45: db:3c:8c:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY4REIxMTAvBgNVBAUTKDBERTJCNkE2MkU1NEEwQTYxQkNGMzE0QjZFMkVGQjhG M0ExRTNBN0EwHhcNMjUwNTMxMDQwMDQ0WhcNMjUwNjA3MDQwMDQ0WjAYMRYwFAYD VQQDEw02ODNhN2VlYy1hMzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZnhba3gxAWWxIdTo7/IkZ+fT5pXnazQsOprFUV2ISvMvQuMVyPdLKIoOmWu 1uISoWmsfFEcavcgkI+WxBQL6P0T5vEv/oQfk3U+XIfBCiiw9qBQs3wyFq2n5Dlu eScA1KJNcks/U194vF6CUazJzEon10vohS+Jb4F+Oe8IsOVRpxqOfiGAww4yhnzO MSPAYdmhDWATfUzQSkMFQxhB8eWVHhJmz6jlw9f4uSt1+TABQFShnhWp72WdJzFX z/DF8bJKGzfTcmxoKRnOMXo+/tCD9yoSZ9mKeiKCUTaDX+qEf1XDw1FnZDpq6w/S WyZHZDj/3bCccT0gkOwArSNGKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKXZLEk8 OoAXcBxCBE4kvldaFYGUMB8GA1UdIwQYMBaAFA3itqYuVKCmG88xS24u+486Hjp6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjhEQi82QzhCQjg2MjU0 QkMxMUVFQjhEQjExNEFDNEY5QUUwMi9EZUsycGk1VW9LWWJ6ekZMYmk3N2p6b2VP bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlSzJwaTVVb0tZYnp6RkxiaTc3anpvZU9uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjhEQi82QzhCQjg2MjU0QkMxMUVFQjhEQjExNEFDNEY5QUUwMi9EZUsycGk1VW9L WWJ6ekZMYmk3N2p6b2VPbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8yCqfEFr1yi4UxQL/hadJhGeeDn03p9+nE1yFbFm1cIY8/QzCUbYU XS8wqE+oYOXaYHG+gK/GHR1T6Fi5fSyPid2yeX0yQZHh31S3TxjdXoR9Wjnmpjgo KD3dxreat5OI+006ticzJxJxFMfXMgTVwOMOcMEgeChWnKDHLs9BpXmh1MQ/XZth qywaaDqwVoah5ywaqzGiSoCGtYQMGmAAIOTF2RPyaUB9GZz1A4oLEtJNPFxGaBTC QaV3yVj7O44QNg7w8+DNMSG6XQlnbUVdOqOFN8qcaIbsnoHAakvYYqAjC1LjBXM2 1YkogX4PdscDKl27WmdapRYXTkXbPIzH -----END CERTIFICATE-----Generated at Sat May 31 16:44:53 2025 by rpki-client