$ rpki-client -vvf rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft File: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft (raw, json) Hash identifier: 2ceOY+nKE+1VIGKE9bTWdDtSWAEFkZtUF5BSrF2ZGnE= Subject key identifier: 00:CE:8C:AB:5C:C7:A3:25:F3:8E:EC:93:F2:68:BF:FC:DF:4D:34:47 Authority key identifier: DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 Certificate issuer: /CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Certificate serial: 0B21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft Manifest number: 0B14 Signing time: Fri 30 May 2025 19:28:23 +0000 Manifest this update: Fri 30 May 2025 19:28:23 +0000 Manifest next update: Fri 06 Jun 2025 19:28:23 +0000 Files and hashes: 1: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl (hash: 6FACW51qQ6FpodYkYNMYYa7ujUSI0q9km4K2UfJ4efI=) 2: 26010A0605EF11F09181F913C4F9AE02.roa (hash: N9/aRucZG0vkV0NK+baiZCaCBLLblOnkOGbPF5TkJk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A016, serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Validity Not Before: May 30 19:28:23 2025 GMT Not After : Jun 6 19:28:23 2025 GMT Subject: CN=683a06d7-99e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ca:b0:79:10:73:62:84:10:d1:c7:7a:37:b5: a8:49:b6:d2:c9:93:dc:d4:39:be:46:db:b0:42:42: d3:7d:1e:5a:6f:c7:4a:79:00:b9:2c:b0:4f:42:d4: 70:e5:fa:8e:8b:05:80:c1:f2:d1:60:10:ff:6a:dc: 13:3b:74:02:33:6e:d6:49:2e:7b:d0:85:19:aa:15: 0b:a4:99:08:87:de:30:41:3b:e0:96:fd:32:21:3d: 94:47:70:85:d7:42:83:f3:5b:31:17:bb:26:b8:d1: 91:31:5a:67:8b:3d:fc:4a:bf:29:0f:64:68:0a:d0: 56:5e:03:13:79:9d:7c:84:63:33:5c:01:3e:7a:03: d5:9f:29:67:97:d9:5b:ae:d3:32:bc:4a:db:78:b7: fa:c1:78:25:ea:ad:0e:26:16:92:a6:e9:bc:f2:a5: c5:45:1a:f0:d7:6e:8f:24:d3:a4:28:f5:59:7f:eb: 58:fe:aa:ed:0c:7a:9d:36:07:d2:77:0d:17:59:66: 7c:f7:2e:24:8f:3e:d6:32:e3:93:49:22:38:de:4d: 7f:7e:b7:43:0a:d6:34:f8:a8:12:2e:d7:c2:f1:d1: 6c:88:68:42:e0:c7:3c:66:61:7e:a2:2f:34:62:d7: 72:c7:36:24:19:58:d4:0f:e8:bb:9d:8e:c3:60:8c: 3d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CE:8C:AB:5C:C7:A3:25:F3:8E:EC:93:F2:68:BF:FC:DF:4D:34:47 X509v3 Authority Key Identifier: keyid:DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:98:79:20:d5:87:5a:fc:24:8a:9c:7e:60:0c:f3:01:3d:be: 88:78:8c:3e:81:28:4d:d2:dd:e1:4b:61:9e:19:f0:cc:4c:74: b4:1e:83:72:b8:ed:d3:a3:9d:71:7c:0c:d1:99:3c:b6:47:a3: 1e:5c:71:f6:5b:17:b0:f8:98:34:d7:8e:21:43:40:17:02:30: e9:76:b7:d0:0e:7d:c4:b1:92:4e:9b:0b:ad:7e:98:64:9e:9b: e2:8a:40:6c:1e:87:ac:bc:ba:9e:09:b9:3b:73:44:48:27:42: 29:86:26:2f:af:c1:28:2e:7a:33:0e:1a:1e:8f:c3:8b:ad:f4: d9:39:d1:47:8b:06:e2:1a:dd:44:4d:2f:89:29:06:f3:aa:cd: 28:d7:92:3a:ed:48:80:53:f3:51:e6:8d:2f:fe:a8:1e:76:c6: 61:e2:90:8a:aa:cc:55:c2:c6:2d:b6:79:ee:48:2d:fa:a8:1c: c5:20:55:f5:91:75:fa:88:77:58:a0:21:25:43:1a:3b:b6:fd: e4:40:d2:47:ac:12:55:4c:e8:7c:c0:6b:a2:85:1b:4a:59:2e: 61:3a:da:73:ee:4b:04:d2:bb:01:ed:47:0b:34:b3:b4:48:5e: 10:ec:87:04:4b:5f:1a:cc:03:48:e0:48:53:46:47:1a:d8:b7: 51:1f:26:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEwMTYxMTAvBgNVBAUTKERGMkY4QTc1RjNFOTI3NUUwRDRGMTBGQzZBMzE5OTk3 OTExQkU1QjUwHhcNMjUwNTMwMTkyODIzWhcNMjUwNjA2MTkyODIzWjAYMRYwFAYD VQQDEw02ODNhMDZkNy05OWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcqweRBzYoQQ0cd6N7WoSbbSyZPc1Dm+RtuwQkLTfR5ab8dKeQC5LLBPQtRw 5fqOiwWAwfLRYBD/atwTO3QCM27WSS570IUZqhULpJkIh94wQTvglv0yIT2UR3CF 10KD81sxF7smuNGRMVpniz38Sr8pD2RoCtBWXgMTeZ18hGMzXAE+egPVnylnl9lb rtMyvErbeLf6wXgl6q0OJhaSpum88qXFRRrw126PJNOkKPVZf+tY/qrtDHqdNgfS dw0XWWZ89y4kjz7WMuOTSSI43k1/frdDCtY0+KgSLtfC8dFsiGhC4Mc8ZmF+oi80 YtdyxzYkGVjUD+i7nY7DYIw9xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADOjKtc x6Ml847sk/Jov/zfTTRHMB8GA1UdIwQYMBaAFN8vinXz6SdeDU8Q/GoxmZeRG+W1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTAxNi9DMDY3NzIyNjQx NzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEoxNE5UeEQ4YWpHWmw1RWI1 YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5LUtkZlBwSjE0TlR4RDhhakdabDVFYjViVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTAxNi9DMDY3NzIyNjQxNzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEox NE5UeEQ4YWpHWmw1RWI1YlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCmHkg1Yda/CSKnH5gDPMBPb6IeIw+gShN0t3hS2GeGfDMTHS0HoNy uO3To51xfAzRmTy2R6MeXHH2Wxew+Jg0144hQ0AXAjDpdrfQDn3EsZJOmwutfphk npviikBsHoesvLqeCbk7c0RIJ0IphiYvr8EoLnozDhoej8OLrfTZOdFHiwbiGt1E TS+JKQbzqs0o15I67UiAU/NR5o0v/qgedsZh4pCKqsxVwsYttnnuSC36qBzFIFX1 kXX6iHdYoCElQxo7tv3kQNJHrBJVTOh8wGuihRtKWS5hOtpz7ksE0rsB7UcLNLO0 SF4Q7IcES18azANI4EhTRkca2LdRHyYA -----END CERTIFICATE-----Generated at Sat May 31 17:03:32 2025 by rpki-client