$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: c5BObBQsEYmyQGzlpOKwz5tVf7s+hXOU10qXRaxSqZc= Subject key identifier: 43:B8:CD:79:22:10:5C:DB:3F:CF:20:29:61:B1:DB:A7:DD:5F:43:86 Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 3484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 3484 Signing time: Fri 30 May 2025 15:01:40 +0000 Manifest this update: Fri 30 May 2025 15:01:39 +0000 Manifest next update: Fri 06 Jun 2025 15:01:39 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: +HvUwvIZofoKZW4LVuqrMjt9q56q7EP/TO755knYhS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13444 (0x3484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: May 30 15:01:39 2025 GMT Not After : Jun 6 15:01:39 2025 GMT Subject: CN=6839c854-2d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e9:a6:c7:3d:28:c8:ce:9c:fa:84:ca:9a:93: 85:63:71:3a:3c:71:25:f4:f6:b8:c2:09:9f:41:8d: 70:2e:4b:18:bf:c3:0e:89:e6:96:fe:a2:ef:1b:37: 78:4d:d7:5b:bb:5c:4d:fd:a3:ec:ab:b8:61:b3:56: 50:5d:33:32:d4:0d:67:cc:83:1e:e6:0b:ef:76:0d: 43:42:b4:8e:38:e6:f4:d1:b0:9a:07:7a:7c:d5:5c: ed:68:7a:d0:6e:4f:30:f6:11:49:cc:b0:aa:16:1c: 7d:51:d5:42:40:69:df:8a:19:f9:7c:90:84:f1:87: e5:e7:dc:c4:55:7c:2b:ac:dc:56:e9:dc:c8:89:c6: 83:19:c9:69:42:aa:d3:0b:77:14:18:9e:10:64:e6: bf:12:33:2a:08:a2:a5:64:0c:2a:14:c1:40:85:83: be:45:01:4e:79:05:72:e0:2d:ec:05:1c:70:da:c2: d6:b4:39:01:3e:20:05:43:68:12:1b:2b:e1:c8:2a: 13:51:28:91:73:d3:fc:cc:fd:de:73:2b:4c:5f:f4: 06:20:8b:26:85:b3:b7:1b:68:20:09:85:b8:7d:53: a8:62:4b:67:35:7f:12:83:75:04:2b:c9:f3:85:ae: a5:b6:ae:fa:37:0b:23:80:90:d0:08:7a:ba:b2:b3: fa:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B8:CD:79:22:10:5C:DB:3F:CF:20:29:61:B1:DB:A7:DD:5F:43:86 X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:5f:31:cc:c6:8e:fc:e0:d5:cd:e8:25:8d:5b:02:ed:ce:fa: c5:8d:a2:d6:98:70:c6:b8:06:c2:61:e3:a6:d9:d8:3c:d9:a8: 2e:e7:47:5a:71:0c:36:7e:d8:ec:e7:3d:70:6e:6a:04:31:b3: c3:92:a6:fa:a4:72:5b:b0:4d:1c:96:0c:a2:d7:7e:58:9e:c3: d1:b8:be:6f:f8:fe:7f:83:d6:ea:27:04:83:ae:1b:b3:c5:f1: 2d:06:71:55:32:d9:c4:bc:78:ef:83:75:22:4a:98:71:13:aa: 0b:68:0e:c8:50:dc:3f:66:4b:d4:f7:93:49:3e:fd:dc:81:94: 1a:4f:19:7e:51:51:ae:d0:4c:51:8e:c4:9b:ab:07:be:d4:cf: a4:42:4b:19:c8:58:ce:98:96:c9:78:c3:47:a0:39:01:d8:7e: 76:5d:99:c3:ef:16:ab:c2:f5:96:98:a6:5b:8c:f6:77:80:fc: 2f:a4:e1:b1:b3:6c:e7:0b:cd:ca:56:49:11:23:22:ac:7b:2d: 7a:8b:25:b2:0c:fe:5d:6d:e5:d2:75:15:a9:d1:47:b9:c3:4e: e5:92:e6:93:a4:82:26:61:81:c6:9c:b7:8b:52:8c:34:54:96: 90:dd:a6:a7:4a:3e:26:4c:6d:d0:ea:67:7c:ff:18:41:70:21: d1:93:34:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUwNTMwMTUwMTM5WhcNMjUwNjA2MTUwMTM5WjAYMRYwFAYD VQQDEw02ODM5Yzg1NC0yZDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+mmxz0oyM6c+oTKmpOFY3E6PHEl9Pa4wgmfQY1wLksYv8MOieaW/qLvGzd4 Tddbu1xN/aPsq7hhs1ZQXTMy1A1nzIMe5gvvdg1DQrSOOOb00bCaB3p81VztaHrQ bk8w9hFJzLCqFhx9UdVCQGnfihn5fJCE8Yfl59zEVXwrrNxW6dzIicaDGclpQqrT C3cUGJ4QZOa/EjMqCKKlZAwqFMFAhYO+RQFOeQVy4C3sBRxw2sLWtDkBPiAFQ2gS GyvhyCoTUSiRc9P8zP3ecytMX/QGIIsmhbO3G2ggCYW4fVOoYktnNX8Sg3UEK8nz ha6ltq76NwsjgJDQCHq6srP6YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEO4zXki EFzbP88gKWGx26fdX0OGMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1XzHMxo784NXN6CWNWwLtzvrFjaLWmHDGuAbCYeOm2dg82agu50da cQw2ftjs5z1wbmoEMbPDkqb6pHJbsE0clgyi135YnsPRuL5v+P5/g9bqJwSDrhuz xfEtBnFVMtnEvHjvg3UiSphxE6oLaA7IUNw/ZkvU95NJPv3cgZQaTxl+UVGu0ExR jsSbqwe+1M+kQksZyFjOmJbJeMNHoDkB2H52XZnD7xarwvWWmKZbjPZ3gPwvpOGx s2znC83KVkkRIyKsey16iyWyDP5dbeXSdRWp0Ue5w07lkuaTpIImYYHGnLeLUow0 VJaQ3aanSj4mTG3Q6md8/xhBcCHRkzQ5 -----END CERTIFICATE-----Generated at Sat May 31 16:33:08 2025 by rpki-client