$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: 3d85qDMxaUY/mCZKsM+PRTPilPZE4uN2kYx0GF1Fsos= Subject key identifier: 7F:E7:3F:3D:85:4A:30:B6:BD:86:9D:8C:1D:B5:BC:83:EB:F3:C3:60 Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 34A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 3496 Signing time: Fri 30 May 2025 15:05:49 +0000 Manifest this update: Fri 30 May 2025 15:05:49 +0000 Manifest next update: Fri 06 Jun 2025 15:05:49 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: PfJYIxGzVH9NORWIdZon/nNjyWyUT2klik2fcEVv0P4=) 2: 450B9058E3B511EF8A23824BC4F9AE02.roa (hash: 4hXXGwZ0FWApQz+whfMxiiIRXcDlazyJkk1NgFoELqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13473 (0x34a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: May 30 15:05:49 2025 GMT Not After : Jun 6 15:05:49 2025 GMT Subject: CN=6839c94d-854b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:75:10:21:36:23:ef:2c:28:fb:73:e0:85:dc: 53:6a:38:a2:c5:e3:81:5c:cc:16:91:28:fb:93:b3: 79:98:c0:33:4b:cb:50:c9:0e:29:94:2b:8b:8f:5d: 54:1a:ac:d4:12:c2:50:2c:61:eb:6a:0b:0d:29:36: 30:7e:ca:a5:d2:04:da:f3:da:f0:ca:15:74:e1:b8: a5:4c:8e:93:23:b5:22:e0:e6:3d:b1:12:a7:3a:23: 28:2b:4c:1c:ca:78:f6:58:c3:f4:10:c7:ca:c2:f4: c1:4d:2b:07:a3:f3:18:cd:7d:b7:f8:b6:43:c8:25: 14:f7:c4:73:5e:ef:bc:fe:35:64:f5:c5:40:de:8a: 17:4a:8d:aa:7b:a1:52:8a:19:ba:db:76:fa:4e:4d: bc:86:f8:a9:a0:b9:64:e9:75:af:64:1c:8f:a2:11: 7e:0c:4a:65:24:f7:f9:65:0a:18:aa:ce:0c:af:fa: 26:b3:e1:cc:63:a3:78:ff:61:e1:c6:f5:aa:56:f7: 55:89:40:89:a9:f8:45:aa:fb:9b:92:d1:28:5e:e4: c0:90:5e:5e:7e:1d:2b:e0:e4:cd:46:3a:b6:3c:7a: ee:c8:3f:23:57:e7:1c:f2:93:9b:03:ec:07:d2:9b: 3f:31:45:2f:64:e5:37:ea:c5:a1:d4:5a:9b:f9:3a: b6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E7:3F:3D:85:4A:30:B6:BD:86:9D:8C:1D:B5:BC:83:EB:F3:C3:60 X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:a7:53:fd:ea:88:e4:04:a3:d0:a8:77:6f:f7:3f:2c:de:d3: ae:c0:f1:fb:a8:67:51:b4:86:8f:ee:e6:0d:fd:5c:cb:9a:cc: 0b:5c:58:39:17:c2:af:db:16:b4:49:ea:86:c4:b4:c5:13:04: cb:5a:36:c3:fb:d0:37:89:73:44:44:2a:ea:3e:76:2c:4c:5c: 81:a9:3d:65:12:52:39:69:51:e5:52:48:56:fa:df:a2:bf:88: 7e:a7:c7:27:37:ee:80:ad:21:00:b8:e3:a6:15:9d:b1:93:5b: e9:b2:e4:0d:93:2f:27:6d:78:b3:84:7a:f0:a4:4c:7a:27:07: 90:4d:3e:c0:33:b3:52:4d:1e:c8:fc:79:31:a5:f5:ac:08:0d: 5a:44:cf:28:10:f3:c5:f2:0a:ee:18:77:9d:8e:f1:22:fa:62: 39:b1:27:61:32:a6:91:7d:0c:aa:1c:62:03:5b:a3:6f:24:c4: 36:3f:75:98:bb:c6:48:c6:15:2c:18:f0:af:71:4e:6a:c9:14: 4a:b0:fe:6f:e8:42:68:5a:f9:5e:67:d8:ed:d6:46:76:55:23: 13:b2:9a:fb:31:14:68:aa:a6:eb:94:65:e2:5b:dc:a3:15:31: 39:4b:d2:2f:bf:e3:27:0c:59:45:99:0f:8c:79:ad:f7:6c:98: 9e:ee:55:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUwNTMwMTUwNTQ5WhcNMjUwNjA2MTUwNTQ5WjAYMRYwFAYD VQQDEw02ODM5Yzk0ZC04NTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXUQITYj7ywo+3PghdxTajiixeOBXMwWkSj7k7N5mMAzS8tQyQ4plCuLj11U GqzUEsJQLGHragsNKTYwfsql0gTa89rwyhV04bilTI6TI7Ui4OY9sRKnOiMoK0wc ynj2WMP0EMfKwvTBTSsHo/MYzX23+LZDyCUU98RzXu+8/jVk9cVA3ooXSo2qe6FS ihm623b6Tk28hvipoLlk6XWvZByPohF+DEplJPf5ZQoYqs4Mr/oms+HMY6N4/2Hh xvWqVvdViUCJqfhFqvubktEoXuTAkF5efh0r4OTNRjq2PHruyD8jV+cc8pObA+wH 0ps/MUUvZOU36sWh1Fqb+Tq2KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/nPz2F SjC2vYadjB21vIPr88NgMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDp1P96ojkBKPQqHdv9z8s3tOuwPH7qGdRtIaP7uYN/VzLmswLXFg5 F8Kv2xa0SeqGxLTFEwTLWjbD+9A3iXNERCrqPnYsTFyBqT1lElI5aVHlUkhW+t+i v4h+p8cnN+6ArSEAuOOmFZ2xk1vpsuQNky8nbXizhHrwpEx6JweQTT7AM7NSTR7I /HkxpfWsCA1aRM8oEPPF8gruGHedjvEi+mI5sSdhMqaRfQyqHGIDW6NvJMQ2P3WY u8ZIxhUsGPCvcU5qyRRKsP5v6EJoWvleZ9jt1kZ2VSMTspr7MRRoqqbrlGXiW9yj FTE5S9Ivv+MnDFlFmQ+Mea33bJie7lWF -----END CERTIFICATE-----Generated at Sat May 31 14:46:33 2025 by rpki-client