$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: OtrsNBDmdSo6/D2CWmwMtfB+HJRrkNSTRKa+bOQHfjE= Subject key identifier: 9F:0B:78:11:4A:D8:13:DC:A1:27:46:CF:F4:76:44:D2:51:6C:9C:C0 Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 0F Signing time: Sat 31 May 2025 07:36:48 +0000 Manifest this update: Sat 31 May 2025 07:36:47 +0000 Manifest next update: Sat 07 Jun 2025 07:36:47 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: pUn7erEnbdmUZQkv49g9pe0Hqa/xNrmk062SaE0bMYo=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: May 31 07:36:47 2025 GMT Not After : Jun 7 07:36:47 2025 GMT Subject: CN=683ab18f-2684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3d:41:97:de:fa:b8:09:56:d8:2e:cd:3b:ed: 70:23:97:ff:88:51:e3:1a:0c:e9:a7:45:37:83:0e: 6f:a1:d0:35:1f:4d:31:39:0d:c0:5c:d4:5b:f4:86: c4:0d:4f:99:69:81:1b:c6:76:04:90:ac:71:17:79: c6:53:0d:bf:f8:48:0a:c7:f3:be:7f:a7:60:80:42: 08:78:1f:0c:8b:3e:11:ca:14:19:6b:a2:c9:d2:0c: 00:81:b6:4c:fd:74:25:79:fd:18:cb:7a:4b:d2:d4: 82:c2:c8:37:7e:47:c8:cb:3f:3a:af:d2:c7:9e:de: a3:b9:44:60:18:40:f4:10:f9:da:5c:f3:a4:bf:64: 30:59:8b:87:d7:77:ed:a0:73:77:34:b9:5d:da:8b: 40:e0:e4:6a:76:78:fe:0b:96:71:d4:02:62:f3:0a: d3:15:cf:62:68:59:41:4b:02:ca:de:9d:16:ea:92: 7e:0f:91:e4:26:b4:a0:f6:94:b9:e5:3d:4c:5e:c9: b8:7d:de:fb:3d:c6:cc:80:e0:c5:48:9a:f9:72:a4: 08:24:10:87:be:cf:ca:33:f6:53:f8:92:ff:cc:62: 01:66:a4:86:1a:76:88:2b:fe:c1:de:10:a0:83:d1: 31:8d:ee:bc:23:09:dc:82:08:e2:fa:8e:25:33:99: 21:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0B:78:11:4A:D8:13:DC:A1:27:46:CF:F4:76:44:D2:51:6C:9C:C0 X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:e3:22:74:a2:c9:55:bf:69:39:37:58:9b:5c:d2:0d:ee:db: 92:ff:44:e3:f2:33:3e:09:00:0b:61:12:e2:6f:88:dd:92:10: 03:90:df:ff:21:ce:04:f9:f9:16:24:d8:8e:b3:a9:b9:ff:02: c7:06:0d:5b:5b:13:4d:ed:cf:39:93:7d:c4:af:60:0e:90:5b: 1f:56:ff:33:bb:e7:b6:51:48:ff:78:75:3f:77:bf:1c:42:19: ad:53:ac:85:70:08:c3:95:d8:76:5b:9d:d8:68:cf:18:75:90: 3c:6d:c9:5b:0a:48:38:2e:65:ac:a0:3e:29:03:80:1c:c1:b7: f7:f3:99:bd:b3:c3:93:6e:c1:a8:d2:c5:17:15:82:1a:c4:34: 39:f5:ba:f9:de:c3:de:71:8c:28:82:34:01:22:21:0f:4b:af: 6d:51:82:04:ef:55:62:89:6c:01:5e:3a:08:e4:9a:d7:82:dc: f5:27:34:b5:62:09:aa:d1:4b:af:93:a9:43:85:ad:63:73:14: 90:0d:66:99:73:c5:ce:b5:02:8d:e3:06:c3:98:3d:24:37:1c: 45:15:c0:78:7e:db:cc:66:59:8f:ae:ff:bb:eb:ae:e8:0d:e8: 2d:6e:d8:1b:da:2c:55:2a:d7:ab:a6:7c:f6:c8:52:02:73:25: ee:1a:df:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTA1MzEwNzM2NDdaFw0yNTA2MDcwNzM2NDdaMBgxFjAUBgNV BAMTDTY4M2FiMThmLTI2ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1PUGX3vq4CVbYLs077XAjl/+IUeMaDOmnRTeDDm+h0DUfTTE5DcBc1Fv0hsQN T5lpgRvGdgSQrHEXecZTDb/4SArH875/p2CAQgh4HwyLPhHKFBlrosnSDACBtkz9 dCV5/RjLekvS1ILCyDd+R8jLPzqv0see3qO5RGAYQPQQ+dpc86S/ZDBZi4fXd+2g c3c0uV3ai0Dg5Gp2eP4LlnHUAmLzCtMVz2JoWUFLAsrenRbqkn4PkeQmtKD2lLnl PUxeybh93vs9xsyA4MVImvlypAgkEIe+z8oz9lP4kv/MYgFmpIYadogr/sHeEKCD 0TGN7rwjCdyCCOL6jiUzmSHTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnwt4EUrY E9yhJ0bP9HZE0lFsnMAwHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKjjInSiyVW/aTk3WJtc0g3u25L/ROPyMz4JAAthEuJviN2SEAOQ3/8h zgT5+RYk2I6zqbn/AscGDVtbE03tzzmTfcSvYA6QWx9W/zO757ZRSP94dT93vxxC Ga1TrIVwCMOV2HZbndhozxh1kDxtyVsKSDguZaygPikDgBzBt/fzmb2zw5NuwajS xRcVghrENDn1uvnew95xjCiCNAEiIQ9Lr21RggTvVWKJbAFeOgjkmteC3PUnNLVi CarRS6+TqUOFrWNzFJANZplzxc61Ao3jBsOYPSQ3HEUVwHh+28xmWY+u/7vrrugN 6C1u2BvaLFUq16umfPbIUgJzJe4a33g= -----END CERTIFICATE-----Generated at Sat May 31 17:01:14 2025 by rpki-client