$ rpki-client -vvf rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft File: tdRsD3W7vyQRKYrr0rVitaqV7Go.mft (raw, json) Hash identifier: Wmt2SQfZVbrg6cadvGpU5khvxuB2I546S6j+uX68ClE= Subject key identifier: CD:C4:9E:DB:E7:7A:F4:A9:CA:4C:CF:74:56:C5:30:E3:F5:50:07:37 Authority key identifier: B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A Certificate issuer: /CN=A919C230/serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A Certificate serial: 0A74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft Manifest number: 0A63 Signing time: Fri 30 May 2025 19:52:16 +0000 Manifest this update: Fri 30 May 2025 19:52:16 +0000 Manifest next update: Fri 06 Jun 2025 19:52:16 +0000 Files and hashes: 1: tdRsD3W7vyQRKYrr0rVitaqV7Go.crl (hash: qtCeB+NAtRfM2k5MgAo/8e8ffPS+z/NbyTFgD8q90Ug=) 2: 1429DACC099B11ED8A62781AC4F9AE02.roa (hash: yEtb/oBRu+Pt3DfxSeSuNm69CyCHMTAD09+IpcdOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:52:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2676 (0xa74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C230, serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A Validity Not Before: May 30 19:52:16 2025 GMT Not After : Jun 6 19:52:16 2025 GMT Subject: CN=683a0c70-74e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:43:22:98:02:60:c3:8f:95:b4:63:99:4a:80: 53:68:2b:c7:41:ce:f6:82:73:bd:02:a2:a0:75:91: ab:48:b0:1d:f1:8c:61:6c:c8:ea:0a:96:fa:d1:7d: e8:73:84:09:e2:35:bd:8f:37:50:5b:a3:3f:eb:bd: 58:6c:af:6d:26:05:44:fe:18:50:99:4c:fa:7b:94: dd:d5:7c:a7:68:03:62:70:b0:c4:ef:ed:88:25:36: c4:e8:5a:09:31:1d:be:10:22:14:4b:53:91:86:5e: 22:9e:44:b5:82:9a:78:3d:84:6c:96:c6:84:9f:2f: c0:a9:42:4a:65:51:0c:a1:b0:ca:db:fc:9f:db:9f: d6:c2:8f:8e:65:6d:d5:cf:98:4e:a7:37:29:d7:ac: e7:32:8a:8b:3a:ba:2f:0e:74:d2:8d:91:0d:91:5e: ce:4b:fe:8f:c3:64:7a:af:f1:5f:d2:4e:b4:7f:1d: e6:cf:d5:cf:16:7b:d1:de:49:27:69:17:0e:65:76: f4:42:b4:7f:a3:48:4c:61:ce:6f:d7:e1:84:28:aa: 7f:26:ca:55:b8:f2:40:b9:12:42:e5:2f:38:81:26: cf:44:7c:a8:81:f9:df:33:a5:30:06:55:ad:e5:0a: 87:3c:f6:33:57:f3:78:14:68:a7:42:8b:2d:a2:06: d9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C4:9E:DB:E7:7A:F4:A9:CA:4C:CF:74:56:C5:30:E3:F5:50:07:37 X509v3 Authority Key Identifier: keyid:B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:5e:f2:2b:fd:12:72:a8:21:07:ea:4e:c7:5f:72:fe:b6:f8: f1:39:e2:4b:7a:95:f8:f4:c9:26:79:6f:e5:75:e2:93:3b:f2: 75:c3:c0:80:9a:3b:92:10:d5:62:52:28:d1:28:f4:f1:b8:05: 33:a7:3d:9d:e4:bc:9e:1c:a0:7d:24:82:89:e1:ca:aa:a4:cc: c0:87:d5:05:13:c3:e0:0b:ec:e5:be:ca:46:34:be:9e:ec:2e: f2:5a:c6:b1:11:fd:b5:b9:06:60:b5:cb:01:2d:ce:b1:e0:15: f1:30:6c:26:0b:a8:e8:37:c4:f3:12:a1:2e:53:59:54:62:15: ff:49:dd:fc:06:b0:2e:8e:f9:3b:47:a6:6f:e0:1f:f3:3f:dd: 30:f5:0d:c3:10:cb:02:6b:4a:46:b5:80:8d:3d:1a:1c:2b:ee: 19:0b:e9:d6:9c:f3:bf:d0:2f:52:7a:ff:95:43:83:5d:a0:7b: 78:ec:79:e6:c0:88:03:0a:6c:9b:4c:78:d9:88:7b:78:ac:2d: 85:17:76:d3:66:96:79:83:20:b4:f8:be:66:de:82:ab:36:fe: a3:46:6a:d7:1c:3f:cc:f8:dc:98:bb:ba:96:fd:33:84:28:60: 67:d8:49:33:b4:1d:a5:1b:8f:c5:74:42:32:53:b7:0f:f8:f7: 76:f8:0c:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzAxMTAvBgNVBAUTKEI1RDQ2QzBGNzVCQkJGMjQxMTI5OEFFQkQyQjU2MkI1 QUE5NUVDNkEwHhcNMjUwNTMwMTk1MjE2WhcNMjUwNjA2MTk1MjE2WjAYMRYwFAYD VQQDEw02ODNhMGM3MC03NGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0MimAJgw4+VtGOZSoBTaCvHQc72gnO9AqKgdZGrSLAd8YxhbMjqCpb60X3o c4QJ4jW9jzdQW6M/671YbK9tJgVE/hhQmUz6e5Td1XynaANicLDE7+2IJTbE6FoJ MR2+ECIUS1ORhl4inkS1gpp4PYRslsaEny/AqUJKZVEMobDK2/yf25/Wwo+OZW3V z5hOpzcp16znMoqLOrovDnTSjZENkV7OS/6Pw2R6r/Ff0k60fx3mz9XPFnvR3kkn aRcOZXb0QrR/o0hMYc5v1+GEKKp/JspVuPJAuRJC5S84gSbPRHyogfnfM6UwBlWt 5QqHPPYzV/N4FGinQostogbZtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3Entvn evSpykzPdFbFMOP1UAc3MB8GA1UdIwQYMBaAFLXUbA91u78kESmK69K1YrWqlexq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMC8yOTU0QUJEQzY1 NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5UVJLWXJyMHJWaXRhcVY3 R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkUnNEM1c3dnlRUktZcnIwclZpdGFxVjdHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMC8yOTU0QUJEQzY1NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5 UVJLWXJyMHJWaXRhcVY3R28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYXvIr/RJyqCEH6k7HX3L+tvjxOeJLepX49MkmeW/ldeKTO/J1w8CA mjuSENViUijRKPTxuAUzpz2d5LyeHKB9JIKJ4cqqpMzAh9UFE8PgC+zlvspGNL6e 7C7yWsaxEf21uQZgtcsBLc6x4BXxMGwmC6joN8TzEqEuU1lUYhX/Sd38BrAujvk7 R6Zv4B/zP90w9Q3DEMsCa0pGtYCNPRocK+4ZC+nWnPO/0C9Sev+VQ4NdoHt47Hnm wIgDCmybTHjZiHt4rC2FF3bTZpZ5gyC0+L5m3oKrNv6jRmrXHD/M+NyYu7qW/TOE KGBn2EkztB2lG4/FdEIyU7cP+Pd2+Ayc -----END CERTIFICATE-----Generated at Sat May 31 17:49:32 2025 by rpki-client