$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: TanaOo3aaGXITaMQrF4EjLG4nyIjWvuYlrkOsEsTXds= Subject key identifier: 3E:CB:BA:2E:1E:07:37:06:1B:E7:51:18:5C:3C:28:73:52:62:61:8A Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 02C7 Signing time: Sat 31 May 2025 01:39:09 +0000 Manifest this update: Sat 31 May 2025 01:39:09 +0000 Manifest next update: Sat 07 Jun 2025 01:39:09 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: E75EJJ7yMNHPfgn77//Iw2c9rKaU8N7k9MIPEt/W55o=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: 53m8lgTS9MVUv1Vw8PSfBdAvCrqd3v5hMo0nMfwS2c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: May 31 01:39:09 2025 GMT Not After : Jun 7 01:39:09 2025 GMT Subject: CN=683a5dbd-faf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:ca:9a:97:23:f2:b2:4c:37:f2:78:28:c7: d0:95:cd:ac:09:f2:77:e0:65:2f:2a:14:bb:e6:3d: 66:18:50:01:a9:7c:cd:3d:66:ed:28:47:a2:4a:13: ce:fc:54:40:e8:d9:4e:b2:6e:91:53:a6:ee:a3:df: 01:07:c7:9f:72:20:1d:f3:41:15:58:3a:39:13:16: 9b:77:8d:1c:dc:81:7e:cd:2e:5b:69:88:f1:94:d7: 96:0f:c6:df:06:dd:e6:d2:d7:13:f1:2c:ac:d8:27: 5a:41:f2:4c:6b:86:9b:7d:d1:45:ee:95:94:1e:06: 59:24:85:b6:27:aa:87:58:e2:bb:4c:f0:df:b9:ed: 70:4f:b0:5e:c5:9f:4f:ca:86:21:fa:4c:91:d2:a9: bb:30:68:a9:55:8a:1b:97:91:94:25:f4:c6:79:b0: 02:ea:a3:46:29:3a:07:62:d1:01:d3:f7:c4:2f:b9: a3:2f:bb:2a:91:86:b0:16:4a:7d:c7:e5:35:92:27: 80:28:80:e7:f8:5b:6a:fc:ea:85:21:16:da:35:42: 04:43:05:0d:df:c7:e0:31:8f:41:53:c7:00:8b:b9: 6a:12:6b:4c:6a:9d:ec:0a:56:2f:1f:bd:b6:69:15: 54:0b:d9:62:c3:a6:1e:ce:20:40:bb:77:88:e7:44: 07:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:CB:BA:2E:1E:07:37:06:1B:E7:51:18:5C:3C:28:73:52:62:61:8A X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:53:2a:1b:b8:95:2d:48:be:c1:38:ac:ed:e1:36:2f:eb:b9: 8e:07:bd:5f:f5:ac:d5:4b:c2:5f:fb:86:d2:9b:f5:28:17:93: 53:89:02:c7:39:35:8d:a2:31:8e:2d:68:b4:c0:c5:78:e6:b3: 0f:91:07:f7:fe:b4:9f:84:ee:5e:30:9c:96:fe:b8:26:2c:4c: ea:a6:d0:6e:a7:d4:50:62:2d:31:fb:fd:91:5b:2e:f2:07:3f: 63:4d:eb:5a:eb:fa:68:00:4a:bd:b9:28:6c:c2:a8:21:38:a7: e1:44:4f:42:8c:31:3b:16:eb:2b:37:40:f1:d8:f0:f2:e9:db: 7a:d3:6d:63:7f:24:18:bb:b4:9b:2f:26:59:49:60:44:c1:b3: 69:08:df:4b:f6:ab:bc:15:f7:ec:1c:83:96:3f:20:bc:9f:11: f3:a4:65:c2:2e:12:78:89:44:bb:fa:e4:fd:b7:a3:c3:11:09: b8:6e:fe:c9:36:26:3b:45:6e:dc:fd:1f:d3:d0:23:8f:0e:88: 02:3d:45:a1:5d:66:ad:ea:57:59:42:d0:d8:3a:c3:a2:e7:81: 58:3a:f0:33:13:40:5f:ef:d0:6d:57:d2:fb:f5:c2:03:cb:73: 3b:fb:b1:13:bf:35:96:b0:cd:9d:02:10:2a:c0:9b:8b:ec:f4: 67:5c:4c:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUwNTMxMDEzOTA5WhcNMjUwNjA3MDEzOTA5WjAYMRYwFAYD VQQDEw02ODNhNWRiZC1mYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZfKmpcj8rJMN/J4KMfQlc2sCfJ34GUvKhS75j1mGFABqXzNPWbtKEeiShPO /FRA6NlOsm6RU6buo98BB8efciAd80EVWDo5Exabd40c3IF+zS5baYjxlNeWD8bf Bt3m0tcT8Sys2CdaQfJMa4abfdFF7pWUHgZZJIW2J6qHWOK7TPDfue1wT7BexZ9P yoYh+kyR0qm7MGipVYobl5GUJfTGebAC6qNGKToHYtEB0/fEL7mjL7sqkYawFkp9 x+U1kieAKIDn+Ftq/OqFIRbaNUIEQwUN38fgMY9BU8cAi7lqEmtMap3sClYvH722 aRVUC9liw6YeziBAu3eI50QHMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7Lui4e BzcGG+dRGFw8KHNSYmGKMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMUyobuJUtSL7BOKzt4TYv67mOB71f9azVS8Jf+4bSm/UoF5NTiQLH OTWNojGOLWi0wMV45rMPkQf3/rSfhO5eMJyW/rgmLEzqptBup9RQYi0x+/2RWy7y Bz9jTeta6/poAEq9uShswqghOKfhRE9CjDE7FusrN0Dx2PDy6dt6021jfyQYu7Sb LyZZSWBEwbNpCN9L9qu8FffsHIOWPyC8nxHzpGXCLhJ4iUS7+uT9t6PDEQm4bv7J NiY7RW7c/R/T0COPDogCPUWhXWat6ldZQtDYOsOi54FYOvAzE0Bf79BtV9L79cID y3M7+7ETvzWWsM2dAhAqwJuL7PRnXEyc -----END CERTIFICATE-----Generated at Sat May 31 16:56:14 2025 by rpki-client