$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: rZN5tFGTo+TSOBGymQKR3ZCg5gyJoW5Fr/fmCIJqzBo= Subject key identifier: DB:A0:F0:FE:0B:83:12:30:AA:76:70:A4:13:65:20:6C:86:5D:FD:D5 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0EB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0EAB Signing time: Fri 30 May 2025 17:51:16 +0000 Manifest this update: Fri 30 May 2025 17:51:15 +0000 Manifest next update: Fri 06 Jun 2025 17:51:15 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: +4CFJuMgkcu/4YDOElauTGUibDDnPjGELRf0g4WDTgo=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: az5u8maauMT/Sx2+Phgo1Z/ovh8gwvsYIRukSLKNLEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:51:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3768 (0xeb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: May 30 17:51:15 2025 GMT Not After : Jun 6 17:51:15 2025 GMT Subject: CN=6839f013-d897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ac:a6:85:87:ab:a9:2e:ec:d5:93:72:22:05: 5d:1c:c1:42:90:2d:c0:d2:b9:b3:23:55:4c:76:81: 78:6a:95:89:09:cd:c7:80:f9:49:cb:04:35:e6:76: 89:2b:d8:37:e5:38:2d:29:43:4a:14:01:75:18:87: f5:ca:20:e9:39:c5:33:10:d9:ff:a3:98:89:6a:bd: 11:c6:49:9a:73:52:bc:d5:45:77:e5:0d:3d:1d:6c: 4d:79:8e:62:72:53:19:08:c1:ce:b1:de:c0:c8:32: af:91:10:18:bd:cf:1e:53:2d:3c:e3:50:12:a5:20: 23:96:cf:c9:02:00:4f:a0:1d:25:e1:24:e0:06:d7: 7b:0b:90:db:0a:1e:96:6b:0a:13:8d:4c:36:9c:40: 5b:85:4d:4a:73:65:06:6f:8b:31:14:f2:47:5e:4e: 07:6e:79:69:60:0d:ec:a9:51:83:9c:1c:8c:c3:2c: cb:b4:f1:21:0a:8f:be:5b:55:19:5d:bf:8b:a6:76: 41:be:32:f6:95:61:34:3c:48:51:68:37:46:8d:bb: 5e:cc:fa:cc:89:57:27:61:ba:1a:56:ca:3a:f3:7b: 79:aa:8b:29:09:d4:02:56:77:cf:bf:92:86:39:6a: 94:17:1e:09:e7:f1:53:6e:0a:ed:ff:52:31:56:39: ac:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A0:F0:FE:0B:83:12:30:AA:76:70:A4:13:65:20:6C:86:5D:FD:D5 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:27:14:46:a9:7a:ce:d6:47:b0:42:5c:9b:50:0d:31:f3:ba: 56:82:43:bd:64:63:35:18:a8:e0:cf:fa:ca:9c:2d:b4:e7:ba: b7:a2:90:22:cf:da:97:87:ed:d8:bc:55:9e:4b:b3:d4:fb:98: c7:54:d1:4b:dd:a7:c3:0e:a9:16:d2:b9:73:95:03:46:1e:58: 9c:ee:be:ef:f8:6b:42:65:f7:13:d1:2a:a8:95:f0:1a:93:18: dd:f1:aa:5c:c5:c5:9f:3f:ec:86:bc:6b:76:16:10:1e:a4:6f: 10:3b:62:71:04:17:61:cd:9c:d4:a0:43:fa:9d:4b:c2:08:3e: a5:99:4f:c1:63:a6:fd:06:b4:23:ff:a3:7b:00:98:d8:cf:a5: 3c:f5:2a:2d:40:40:b0:3a:24:91:9d:f6:29:d4:b4:4a:e8:a1: 7f:ca:6a:c5:88:24:07:1e:ab:fc:5f:24:c5:96:a3:fa:33:0c: 3a:c9:a6:19:7a:c7:e3:fd:35:08:92:9d:68:fa:20:0e:2a:c4: 47:0e:3e:c1:04:c7:5a:59:fb:45:1b:66:c0:ef:80:64:11:b3: 85:c3:6e:0f:c8:89:ac:ec:38:17:c4:ad:e6:a7:2e:08:67:b8: 43:e1:8a:b9:af:a9:24:42:38:18:f9:39:21:65:67:b7:55:75: 6d:23:1f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUwNTMwMTc1MTE1WhcNMjUwNjA2MTc1MTE1WjAYMRYwFAYD VQQDEw02ODM5ZjAxMy1kODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKymhYerqS7s1ZNyIgVdHMFCkC3A0rmzI1VMdoF4apWJCc3HgPlJywQ15naJ K9g35TgtKUNKFAF1GIf1yiDpOcUzENn/o5iJar0Rxkmac1K81UV35Q09HWxNeY5i clMZCMHOsd7AyDKvkRAYvc8eUy0841ASpSAjls/JAgBPoB0l4STgBtd7C5DbCh6W awoTjUw2nEBbhU1Kc2UGb4sxFPJHXk4HbnlpYA3sqVGDnByMwyzLtPEhCo++W1UZ Xb+LpnZBvjL2lWE0PEhRaDdGjbtezPrMiVcnYboaVso683t5qospCdQCVnfPv5KG OWqUFx4J5/FTbgrt/1IxVjmsFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNug8P4L gxIwqnZwpBNlIGyGXf3VMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRJxRGqXrO1kewQlybUA0x87pWgkO9ZGM1GKjgz/rKnC2057q3opAi z9qXh+3YvFWeS7PU+5jHVNFL3afDDqkW0rlzlQNGHlic7r7v+GtCZfcT0SqolfAa kxjd8apcxcWfP+yGvGt2FhAepG8QO2JxBBdhzZzUoEP6nUvCCD6lmU/BY6b9BrQj /6N7AJjYz6U89SotQECwOiSRnfYp1LRK6KF/ymrFiCQHHqv8XyTFlqP6Mww6yaYZ esfj/TUIkp1o+iAOKsRHDj7BBMdaWftFG2bA74BkEbOFw24PyIms7DgXxK3mpy4I Z7hD4Yq5r6kkQjgY+TkhZWe3VXVtIx+2 -----END CERTIFICATE-----Generated at Sat May 31 17:47:28 2025 by rpki-client