$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: IAxDJ7v8Ak9zofB/GJMjYrW/Rl6yEtHBJP6Oxtv0i7I= Subject key identifier: EA:50:01:A2:61:FF:D0:78:30:92:77:52:FA:62:D0:F4:F8:4E:33:8B Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 0164 Signing time: Sat 17 May 2025 03:33:42 +0000 Manifest this update: Sat 17 May 2025 03:33:42 +0000 Manifest next update: Sat 24 May 2025 03:33:42 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: UfQZexN1uOXM8qtnsKW4Cy4Apnv1xWbA8RztBacKOqA=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: LEuGWO/AHJLUDwLeABLdjtuQr5+JNGq1678nn2RoAyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 03:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: May 17 03:33:42 2025 GMT Not After : May 24 03:33:42 2025 GMT Subject: CN=68280396-fb0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b4:db:4d:92:13:0f:ad:f2:22:44:7d:ea:59: c2:c8:8f:b7:31:fa:94:a9:f6:0b:cf:77:1c:b8:d3: 4c:1b:8d:d0:87:ea:1d:8c:94:eb:bb:53:16:96:9f: 51:30:e9:2b:45:f7:a7:51:48:a9:22:3c:e5:d1:1a: fc:b0:88:b3:35:59:36:a5:fa:3d:ad:c1:46:f8:fc: 78:b1:3c:83:51:1e:f6:23:a5:59:fd:06:58:a6:1b: 16:93:23:04:81:92:e1:70:a8:cc:3c:d2:66:fc:d2: b7:96:8f:a4:b3:70:a5:78:85:6b:7f:9e:5c:4f:ce: 30:98:19:97:31:8a:68:6c:4b:94:94:5f:17:bd:af: 4b:ee:cf:46:cc:bb:21:0d:8f:ce:97:12:35:16:0c: 2c:5d:44:25:7c:0e:18:69:58:a6:59:b0:c0:1e:1a: 8c:9e:2e:8f:2e:68:86:1d:3d:39:9e:8c:49:1c:ed: 32:59:24:84:91:83:ad:2b:98:1b:be:db:36:80:9f: 66:9f:1b:f2:29:ef:07:f1:05:7e:80:46:3a:86:9b: be:c8:8a:22:8b:a9:96:43:eb:d6:a5:90:0b:e8:f1: fa:d5:06:cc:fb:40:5b:c2:2f:12:86:24:d8:8d:83: 24:89:57:d2:4a:37:4a:81:cb:fb:fe:3b:c4:6d:70: 2c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:50:01:A2:61:FF:D0:78:30:92:77:52:FA:62:D0:F4:F8:4E:33:8B X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:27:0e:16:85:c4:54:47:97:ae:70:b0:7a:ab:00:37:e3:77: dc:2d:db:2c:bc:d3:93:0f:41:24:f9:8b:1c:8d:4e:a9:95:15: 64:0b:49:3a:ee:0f:25:98:1d:0d:f9:d2:84:77:35:ff:e1:df: 74:75:38:84:2a:0c:b3:89:b0:dd:ca:d6:39:d7:e7:47:54:bf: 41:33:31:32:fd:27:83:fd:d5:a9:57:f0:3d:96:1e:f9:5f:01: 5e:30:c6:78:e2:71:6e:e6:e1:b7:c4:c5:c2:2e:0d:b0:b4:83: 88:ef:12:09:f9:b7:fe:fa:df:ef:98:e4:5a:cf:0d:cb:e8:52: e2:b9:4c:b4:71:c5:f4:23:a3:37:bd:fb:f7:84:25:6f:95:87: ec:8c:a7:97:b5:81:c6:ce:20:9a:db:15:44:43:fb:5e:bc:f8: de:c2:cb:d0:e2:dd:4e:e9:98:cc:f5:c7:47:40:48:cf:11:8c: e2:52:84:f3:4b:b1:a7:69:bb:01:d6:bb:90:e5:6f:b6:38:de: 5e:4f:fb:e6:19:4f:a7:97:fd:81:aa:76:f6:8e:f7:88:58:e9: 40:a6:1c:2e:58:0d:4f:b4:59:ea:57:fd:dd:76:55:e3:77:9a: 9e:c5:d4:49:1d:a0:ef:de:47:13:9a:dd:67:49:20:a9:a0:3a: 00:51:23:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwNTE3MDMzMzQyWhcNMjUwNTI0MDMzMzQyWjAYMRYwFAYD VQQDEw02ODI4MDM5Ni1mYjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6LTbTZITD63yIkR96lnCyI+3MfqUqfYLz3ccuNNMG43Qh+odjJTru1MWlp9R MOkrRfenUUipIjzl0Rr8sIizNVk2pfo9rcFG+Px4sTyDUR72I6VZ/QZYphsWkyME gZLhcKjMPNJm/NK3lo+ks3CleIVrf55cT84wmBmXMYpobEuUlF8Xva9L7s9GzLsh DY/OlxI1FgwsXUQlfA4YaVimWbDAHhqMni6PLmiGHT05noxJHO0yWSSEkYOtK5gb vts2gJ9mnxvyKe8H8QV+gEY6hpu+yIoii6mWQ+vWpZAL6PH61QbM+0Bbwi8ShiTY jYMkiVfSSjdKgcv7/jvEbXAsAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpQAaJh /9B4MJJ3Uvpi0PT4TjOLMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXJw4WhcRUR5eucLB6qwA343fcLdssvNOTD0Ek+YscjU6plRVkC0k6 7g8lmB0N+dKEdzX/4d90dTiEKgyzibDdytY51+dHVL9BMzEy/SeD/dWpV/A9lh75 XwFeMMZ44nFu5uG3xMXCLg2wtIOI7xIJ+bf++t/vmORazw3L6FLiuUy0ccX0I6M3 vfv3hCVvlYfsjKeXtYHGziCa2xVEQ/tevPjewsvQ4t1O6ZjM9cdHQEjPEYziUoTz S7GnabsB1ruQ5W+2ON5eT/vmGU+nl/2Bqnb2jveIWOlAphwuWA1PtFnqV/3ddlXj d5qexdRJHaDv3kcTmt1nSSCpoDoAUSNt -----END CERTIFICATE-----Generated at Sat May 17 11:25:13 2025 by rpki-client