$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: c+qG5EQOb0d4Rv/i4EpftmQ7nF4a/6Sebao4FTzAiic= Subject key identifier: 02:95:3F:0D:1F:CC:ED:94:E4:B2:DE:C3:D6:D8:1A:74:AB:C6:A9:85 Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 0130 Signing time: Sat 31 May 2025 23:59:49 +0000 Manifest this update: Sat 31 May 2025 23:59:49 +0000 Manifest next update: Sat 07 Jun 2025 23:59:49 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: 74RTq5u9+tDV/hjPfutnhQ+1ENxuDMZPzU0I71yESI4=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: +idkc0Y+TplJvB7T7xrVzyMgw/UlYDqH1h1gbH9ycfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: May 31 23:59:49 2025 GMT Not After : Jun 7 23:59:49 2025 GMT Subject: CN=683b97f5-e380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b1:4b:68:d0:e6:d4:9c:93:ff:79:95:5a:dc: df:65:17:72:6c:b5:e9:8b:7e:67:5f:98:1d:77:a5: 54:2c:68:4f:d7:af:3b:6e:a9:33:06:e6:77:cd:85: ff:65:83:78:9b:91:9c:60:09:0d:f2:91:61:d9:70: 9a:8e:b6:12:35:58:f0:db:d2:ba:74:3c:a0:4a:44: e7:f1:f9:27:06:a2:ed:c2:53:95:04:e9:c0:a0:b8: 7f:c8:89:bd:fe:d4:c5:c8:c1:ce:78:f7:8d:32:df: 0a:1d:98:0f:3d:36:9c:a0:f4:32:ec:ce:f1:29:50: 3b:60:6f:01:07:48:35:3e:66:59:ad:e3:8d:54:fc: 95:c3:76:ca:b1:8e:e2:98:ea:bd:93:8c:ef:b7:4f: 83:a0:12:2d:3b:7a:06:30:f1:25:a0:11:4e:de:9b: 97:b8:68:6c:7b:5c:cf:93:3f:ea:2f:ee:2d:bb:e9: a3:c4:08:c5:f8:0d:12:7d:45:16:4f:cd:2b:f5:c0: 8c:1a:7d:d7:4c:c7:54:c3:31:ba:bb:c0:f2:52:ba: 5f:c3:29:85:39:9c:77:d0:07:2a:c8:68:64:59:30: 42:bb:ec:73:c9:f1:9d:6f:6c:82:52:7e:77:3d:f0: 96:38:d4:6c:a3:64:e4:a7:40:b4:b4:6d:35:63:2c: 23:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:95:3F:0D:1F:CC:ED:94:E4:B2:DE:C3:D6:D8:1A:74:AB:C6:A9:85 X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:94:a9:7f:26:df:01:da:6b:9a:28:93:03:6d:b7:31:13:bb: ad:97:c9:6c:3c:7d:52:38:94:22:16:24:c1:5b:1f:5d:f9:44: 76:62:46:4f:ab:1d:a6:d5:a0:27:d7:cf:de:e6:3d:6f:49:cf: 8a:1a:16:00:5e:5b:99:69:a5:3f:f5:d7:53:bd:e7:58:1b:61: 72:97:a9:0b:f7:c6:75:6c:21:2a:24:50:ea:bd:36:f4:a6:7b: 25:62:b3:cf:e9:3e:fe:b4:71:96:d5:7b:45:03:68:06:81:9d: b1:b6:62:23:99:92:1a:1c:89:78:89:ba:17:ca:06:31:b5:d1: 9f:a8:54:54:e3:7e:80:34:49:a3:d2:8c:cd:05:e2:8c:3e:a5: d0:ef:f8:2d:69:9f:59:60:48:9f:a5:30:7a:a1:b5:ae:40:49: 61:eb:15:83:b1:0f:23:04:d0:60:cf:ec:48:28:81:3f:32:81: 1e:76:ec:a1:f1:b4:b6:ae:ba:9e:c6:f9:06:a7:45:b2:ac:ef: 48:53:0b:17:7d:a3:58:05:93:9e:b5:2a:29:84:2a:fe:52:13: b5:04:4c:d7:d7:77:41:eb:97:09:28:d6:a1:10:5c:54:87:b3: 01:19:55:9d:9d:93:82:df:74:32:82:97:02:22:d2:10:50:2f: de:90:68:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUwNTMxMjM1OTQ5WhcNMjUwNjA3MjM1OTQ5WjAYMRYwFAYD VQQDEw02ODNiOTdmNS1lMzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7FLaNDm1JyT/3mVWtzfZRdybLXpi35nX5gdd6VULGhP1687bqkzBuZ3zYX/ ZYN4m5GcYAkN8pFh2XCajrYSNVjw29K6dDygSkTn8fknBqLtwlOVBOnAoLh/yIm9 /tTFyMHOePeNMt8KHZgPPTacoPQy7M7xKVA7YG8BB0g1PmZZreONVPyVw3bKsY7i mOq9k4zvt0+DoBItO3oGMPEloBFO3puXuGhse1zPkz/qL+4tu+mjxAjF+A0SfUUW T80r9cCMGn3XTMdUwzG6u8DyUrpfwymFOZx30AcqyGhkWTBCu+xzyfGdb2yCUn53 PfCWONRso2Tkp0C0tG01YywjuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKVPw0f zO2U5LLew9bYGnSrxqmFMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqlKl/Jt8B2muaKJMDbbcxE7utl8lsPH1SOJQiFiTBWx9d+UR2YkZP qx2m1aAn18/e5j1vSc+KGhYAXluZaaU/9ddTvedYG2Fyl6kL98Z1bCEqJFDqvTb0 pnslYrPP6T7+tHGW1XtFA2gGgZ2xtmIjmZIaHIl4iboXygYxtdGfqFRU436ANEmj 0ozNBeKMPqXQ7/gtaZ9ZYEifpTB6obWuQElh6xWDsQ8jBNBgz+xIKIE/MoEeduyh 8bS2rrqexvkGp0WyrO9IUwsXfaNYBZOetSophCr+UhO1BEzX13dB65cJKNahEFxU h7MBGVWdnZOC33QygpcCItIQUC/ekGj/ -----END CERTIFICATE-----Generated at Mon Jun 2 22:11:39 2025 by rpki-client