$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: aZX5GBIubQwyKVHpHqmtTA74gDX5ynF4XmLKta1TEdQ= Subject key identifier: 58:AA:08:06:EC:5B:B3:B1:F1:BA:8F:D7:FE:0F:93:60:D8:DC:4B:62 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 0312 Signing time: Sat 31 May 2025 01:23:45 +0000 Manifest this update: Sat 31 May 2025 01:23:45 +0000 Manifest next update: Sat 07 Jun 2025 01:23:45 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: q/DsmCaNoWxbokI1z/k1hRmM2yuTdWIeX4an8m0wUxo=) 2: 756558C6D19611ECB75A996BC4F9AE02.roa (hash: jBN+GZ5K5hQcx74ci+Zj74gtJO93V93U4mPbsdd8SsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: May 31 01:23:45 2025 GMT Not After : Jun 7 01:23:45 2025 GMT Subject: CN=683a5a21-5ad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:87:4f:00:f5:68:0f:10:d6:85:7b:26:28:32: 27:52:40:de:ed:05:17:76:33:f2:fd:4e:8b:0f:d8: 54:6f:dc:01:de:db:69:e0:9a:20:a7:84:15:6e:d3: 8f:7a:63:fc:3a:af:39:c0:a7:52:69:76:0a:aa:f1: 61:14:a5:3c:1a:c5:24:87:55:0b:53:bd:4e:1f:fd: 1f:bf:81:95:2c:65:f2:51:e1:17:d6:11:7a:7a:42: 7b:ac:ac:25:95:36:63:d2:58:90:8a:00:0e:a6:b3: 98:28:34:2f:c9:50:70:7e:10:fb:f5:87:c9:c5:ff: 78:6b:d4:46:27:42:72:f5:18:b9:09:18:d8:f3:d5: 11:8d:dc:30:73:63:72:d1:5e:10:89:87:ce:2f:0a: c1:24:bd:8b:f9:f4:69:18:b5:73:f6:cc:6e:04:43: e4:ee:34:7a:8b:8e:b5:e6:f6:a1:0f:02:aa:db:1d: e4:d3:dc:fb:63:20:fb:18:e8:61:40:60:4c:8b:b5: 79:23:93:0e:62:a4:54:b0:4d:bf:00:e6:76:bb:86: 46:ed:15:ad:71:5e:6d:ff:78:8c:5d:93:60:ae:67: 7d:0e:ad:0b:0b:f2:24:26:35:3a:0e:6a:81:97:6b: 64:0a:76:96:01:63:d1:c6:de:e5:b0:95:d5:d3:08: 88:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:AA:08:06:EC:5B:B3:B1:F1:BA:8F:D7:FE:0F:93:60:D8:DC:4B:62 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:1f:c3:49:a0:c0:2d:3c:ea:e6:31:43:a5:2e:8a:fc:62:91: c0:3f:3f:bd:32:3f:d7:ea:1c:fe:db:10:8e:4f:cd:cb:b6:12: f5:4e:cc:56:d3:5d:02:16:4a:47:8e:d5:01:c9:a6:5b:4b:15: 47:b9:7a:50:d1:77:45:26:4b:c8:fe:63:01:22:d0:31:9e:7b: 57:e7:2a:28:7e:b6:92:74:1d:64:55:4f:15:f3:d8:93:33:1c: 86:e4:99:a0:b0:6b:f0:ee:c7:8b:22:ec:1e:8a:85:29:26:b0: 0a:db:9e:b4:65:aa:fe:27:c0:3e:e6:9f:ac:13:0d:16:04:d1: f1:8d:e8:71:8f:c3:99:f0:35:67:96:49:e9:f6:6d:77:74:8b: 39:04:72:ea:83:52:ba:52:69:bd:e3:77:6e:f8:dd:9e:2c:98: 8e:02:cc:a9:64:a0:21:c5:60:43:22:c6:bd:2d:07:21:fd:35: 1d:cb:d7:ae:01:f5:30:35:32:e1:29:72:d8:93:b0:67:fa:e9: 46:84:a8:73:c5:0e:c1:cc:60:d4:47:00:b0:ba:45:41:08:95: d3:d0:52:ef:8f:30:f2:6b:18:87:16:c0:3c:6b:0b:75:ac:f7: 99:88:8a:ad:96:9d:61:fa:a1:10:0c:dc:42:86:cc:b8:26:93: 05:9d:e8:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUwNTMxMDEyMzQ1WhcNMjUwNjA3MDEyMzQ1WjAYMRYwFAYD VQQDEw02ODNhNWEyMS01YWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA84dPAPVoDxDWhXsmKDInUkDe7QUXdjPy/U6LD9hUb9wB3ttp4Jogp4QVbtOP emP8Oq85wKdSaXYKqvFhFKU8GsUkh1ULU71OH/0fv4GVLGXyUeEX1hF6ekJ7rKwl lTZj0liQigAOprOYKDQvyVBwfhD79YfJxf94a9RGJ0Jy9Ri5CRjY89URjdwwc2Ny 0V4QiYfOLwrBJL2L+fRpGLVz9sxuBEPk7jR6i4615vahDwKq2x3k09z7YyD7GOhh QGBMi7V5I5MOYqRUsE2/AOZ2u4ZG7RWtcV5t/3iMXZNgrmd9Dq0LC/IkJjU6DmqB l2tkCnaWAWPRxt7lsJXV0wiIkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiqCAbs W7Ox8bqP1/4Pk2DY3EtiMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwH8NJoMAtPOrmMUOlLor8YpHAPz+9Mj/X6hz+2xCOT83LthL1TsxW 010CFkpHjtUByaZbSxVHuXpQ0XdFJkvI/mMBItAxnntX5yoofraSdB1kVU8V89iT MxyG5JmgsGvw7seLIuweioUpJrAK2560Zar+J8A+5p+sEw0WBNHxjehxj8OZ8DVn lknp9m13dIs5BHLqg1K6Umm943du+N2eLJiOAsypZKAhxWBDIsa9LQch/TUdy9eu AfUwNTLhKXLYk7Bn+ulGhKhzxQ7BzGDURwCwukVBCJXT0FLvjzDyaxiHFsA8awt1 rPeZiIqtlp1h+qEQDNxChsy4JpMFnehY -----END CERTIFICATE-----Generated at Sat May 31 16:32:13 2025 by rpki-client