$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: UF6nCtUUsgyeOGJRAUueKpL8bA9vTzZuH5jP4mam1Og= Subject key identifier: B5:B2:29:2F:42:3B:DD:0D:E4:44:38:3D:A4:90:29:58:29:5B:F4:1D Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 3482 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 3482 Signing time: Fri 30 May 2025 14:41:33 +0000 Manifest this update: Fri 30 May 2025 14:41:33 +0000 Manifest next update: Fri 06 Jun 2025 14:41:33 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: jm4DQJaFdJTiAtj7bYDQgmQ9uj26T2IRjiBOQ8l2mBU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13442 (0x3482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: May 30 14:41:33 2025 GMT Not After : Jun 6 14:41:33 2025 GMT Subject: CN=6839c39d-96d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4f:d0:4c:b1:21:a7:96:f6:6f:60:99:cd:40: 07:b6:67:a1:70:b1:ed:45:9d:3e:d5:ba:c2:34:a2: a5:b3:30:c8:84:77:d4:0d:b4:e5:8f:a3:d6:fa:de: 92:04:c0:02:f5:c9:db:d0:ba:d4:3e:cd:37:8e:13: fd:85:fa:d7:3b:19:bc:3c:ff:e0:63:d3:b9:10:f7: 6d:eb:a9:40:a0:dc:43:d6:18:eb:d6:6d:0e:5b:47: 3f:08:76:a7:f5:6c:a8:09:4e:0b:61:8c:ec:41:6a: 99:ff:91:7d:75:c9:ac:c0:85:8e:c6:54:a8:2d:c2: 75:7a:31:a3:25:49:69:ce:3c:4f:4a:64:9d:e6:a6: 32:e2:bc:ec:6d:3d:c4:47:84:87:0c:06:b7:8f:a5: 8c:e5:ed:bf:dd:3f:d7:a0:87:49:b7:4c:a6:f2:38: 67:c7:e0:29:c0:4a:29:df:b8:14:72:93:b5:ee:f3: 97:a3:42:b7:67:d5:0b:ff:39:2e:8b:e9:4f:fc:aa: 16:ed:bd:c4:60:32:a2:93:8c:ef:ea:34:36:16:42: 30:2f:78:e2:4b:c0:37:d6:85:e3:24:e5:39:59:73: ec:b8:a3:8d:25:c9:c5:b1:09:2c:87:9e:33:79:d0: 01:68:b2:96:17:17:51:a6:28:1d:98:6d:6d:37:1c: ab:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B2:29:2F:42:3B:DD:0D:E4:44:38:3D:A4:90:29:58:29:5B:F4:1D X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:15:6f:ce:d1:e8:70:3b:b6:71:c4:01:69:11:e5:4b:19:f0: 66:07:c8:e9:79:14:90:9a:76:7a:0a:a1:b3:85:2d:df:c8:0d: 37:d8:0e:84:42:fd:3f:a1:c5:26:66:f8:c5:18:45:db:4d:2e: 45:81:92:a0:be:60:23:28:1c:d7:b0:64:44:ec:44:10:66:8e: 4c:b6:4d:77:e2:31:56:2c:e8:83:f3:ea:ce:95:d8:12:9e:57: d7:10:d5:fb:cf:75:94:04:ad:e0:f1:fd:6f:ac:70:18:33:eb: ca:38:08:f5:3e:44:7d:0f:5d:1f:86:78:f4:14:bf:16:92:b4: e1:c5:58:a4:22:cb:87:41:56:ad:1e:80:c7:62:72:8b:b3:73: ce:e7:2e:bd:3e:7a:74:5a:c7:42:3c:3d:7f:d6:38:6e:37:34: ab:1d:39:99:d4:de:c7:5b:04:84:15:e5:ca:55:b6:25:de:9b: 72:b2:7d:63:c2:68:3c:32:8d:a8:01:ed:1e:e3:79:22:b3:02: 43:b5:99:eb:02:2f:34:07:4b:2d:ad:c3:3b:ad:9d:84:64:35: 00:1e:13:dd:aa:0d:b0:91:17:dd:04:90:e4:35:dd:8f:98:5a: 0b:29:94:2e:47:e6:c7:0a:5f:f9:7d:c1:48:c5:68:56:cd:1e: a1:a2:e9:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUwNTMwMTQ0MTMzWhcNMjUwNjA2MTQ0MTMzWjAYMRYwFAYD VQQDEw02ODM5YzM5ZC05NmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU/QTLEhp5b2b2CZzUAHtmehcLHtRZ0+1brCNKKlszDIhHfUDbTlj6PW+t6S BMAC9cnb0LrUPs03jhP9hfrXOxm8PP/gY9O5EPdt66lAoNxD1hjr1m0OW0c/CHan 9WyoCU4LYYzsQWqZ/5F9dcmswIWOxlSoLcJ1ejGjJUlpzjxPSmSd5qYy4rzsbT3E R4SHDAa3j6WM5e2/3T/XoIdJt0ym8jhnx+ApwEop37gUcpO17vOXo0K3Z9UL/zku i+lP/KoW7b3EYDKik4zv6jQ2FkIwL3jiS8A31oXjJOU5WXPsuKONJcnFsQksh54z edABaLKWFxdRpigdmG1tNxyrGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWyKS9C O90N5EQ4PaSQKVgpW/QdMB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhFW/O0ehwO7ZxxAFpEeVLGfBmB8jpeRSQmnZ6CqGzhS3fyA032A6E Qv0/ocUmZvjFGEXbTS5FgZKgvmAjKBzXsGRE7EQQZo5Mtk134jFWLOiD8+rOldgS nlfXENX7z3WUBK3g8f1vrHAYM+vKOAj1PkR9D10fhnj0FL8WkrThxVikIsuHQVat HoDHYnKLs3PO5y69Pnp0WsdCPD1/1jhuNzSrHTmZ1N7HWwSEFeXKVbYl3ptysn1j wmg8Mo2oAe0e43kiswJDtZnrAi80B0strcM7rZ2EZDUAHhPdqg2wkRfdBJDkNd2P mFoLKZQuR+bHCl/5fcFIxWhWzR6houku -----END CERTIFICATE-----Generated at Sat May 31 14:55:07 2025 by rpki-client