$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: Qlia9BHJQvO9CQNAHcQjxlIlyLvasT6t8NZY66cJFcw= Subject key identifier: 64:88:01:51:F5:77:6B:FA:97:96:4D:74:EF:42:C9:C9:02:E8:B0:8D Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0C65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0C5A Signing time: Wed 14 May 2025 18:30:47 +0000 Manifest this update: Wed 14 May 2025 18:30:46 +0000 Manifest next update: Wed 21 May 2025 18:30:46 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: 96W/Z0SKh/TFF0SIwwUwm6HmM9N4tWarshTNpcNV0yc=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3173 (0xc65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: May 14 18:30:46 2025 GMT Not After : May 21 18:30:46 2025 GMT Subject: CN=6824e157-0403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:94:ef:17:80:4e:25:4a:4a:be:44:c7:ac:50: 58:f2:f9:ab:12:8a:b5:0b:a7:15:44:9d:ed:26:b8: 05:04:0f:57:2c:8e:f9:49:3a:7c:d7:fa:18:8c:12: 5c:05:6a:f5:68:7f:9b:6a:a9:b1:2e:5a:f1:51:75: 75:80:0a:09:3c:b2:99:25:54:3a:ee:ec:de:74:0b: 1c:c9:9a:14:99:8e:0d:28:39:64:c5:76:61:bd:3d: d7:32:67:a6:90:11:f0:f5:7e:bc:7a:91:7b:5e:c9: 19:bb:b7:b2:73:f7:3d:9e:94:0e:eb:73:41:09:9c: 67:94:a1:b4:c5:59:96:df:40:ff:c2:6b:8d:04:42: 7d:0b:b3:ee:bc:64:bf:82:6c:c4:88:c8:04:5d:99: 10:62:36:fb:56:25:be:64:b1:f1:8b:52:b8:e0:85: be:dd:67:a6:ba:61:a9:38:ce:e3:56:ae:3a:15:17: 3d:a9:44:c8:8e:db:78:4c:6b:6f:a2:bd:20:25:f0: b7:df:d1:de:32:b0:7e:c4:34:49:8f:1c:c2:ef:27: 6b:5e:a0:82:77:79:8c:c2:23:f3:22:93:f0:53:e6: 98:a3:a7:c9:f6:1a:24:01:b9:51:07:50:45:0c:4e: 04:13:10:29:03:15:fb:ea:22:84:7c:48:e2:b6:aa: 4a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:88:01:51:F5:77:6B:FA:97:96:4D:74:EF:42:C9:C9:02:E8:B0:8D X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:f8:af:f0:bd:d1:d3:1e:17:c2:be:af:bf:88:8f:db:bb:bd: 04:6f:0e:01:d7:63:f8:b0:86:24:09:5e:dd:48:6e:93:cd:01: b6:c2:0a:c4:9f:08:a6:52:98:40:d5:1a:91:d6:b7:c9:79:92: 03:72:48:5c:a2:0b:43:4b:83:76:5f:47:d5:d8:86:1c:c6:3c: 29:9d:eb:fb:08:da:ce:e1:fc:74:06:75:76:82:46:31:6f:89: c7:d0:b3:97:13:7c:98:2e:a9:cf:9a:a9:dd:61:1d:61:05:e4: e7:d1:f5:98:7b:30:cf:d4:2d:db:42:c9:47:f3:7c:20:fb:ce: 6f:1e:d7:22:d7:54:1c:78:a4:45:f9:28:18:97:94:d9:53:7e: 57:00:36:c5:3a:9b:20:8d:91:24:ae:c6:25:fc:89:4b:5f:59: b5:49:9c:d2:d4:ce:99:3d:2d:4e:75:12:57:0c:02:63:db:e4: ab:66:b1:9e:25:a1:12:a9:13:0b:07:b9:86:a5:8a:a4:9a:d8: 0b:b2:07:2f:94:6f:05:b5:2f:f5:da:ac:24:18:ad:1b:a5:4f: 0b:db:a4:2a:ec:99:8e:79:6d:9b:a8:4f:10:b6:0e:64:76:c4: 79:9b:b1:aa:d1:4f:92:46:b1:59:ba:68:93:e9:65:c5:d0:5f: 35:1e:d2:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUwNTE0MTgzMDQ2WhcNMjUwNTIxMTgzMDQ2WjAYMRYwFAYD VQQDEw02ODI0ZTE1Ny0wNDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJTvF4BOJUpKvkTHrFBY8vmrEoq1C6cVRJ3tJrgFBA9XLI75STp81/oYjBJc BWr1aH+baqmxLlrxUXV1gAoJPLKZJVQ67uzedAscyZoUmY4NKDlkxXZhvT3XMmem kBHw9X68epF7XskZu7eyc/c9npQO63NBCZxnlKG0xVmW30D/wmuNBEJ9C7PuvGS/ gmzEiMgEXZkQYjb7ViW+ZLHxi1K44IW+3WemumGpOM7jVq46FRc9qUTIjtt4TGtv or0gJfC339HeMrB+xDRJjxzC7ydrXqCCd3mMwiPzIpPwU+aYo6fJ9hokAblRB1BF DE4EExApAxX76iKEfEjitqpKoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSIAVH1 d2v6l5ZNdO9CyckC6LCNMB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ+K/wvdHTHhfCvq+/iI/bu70Ebw4B12P4sIYkCV7dSG6TzQG2wgrE nwimUphA1RqR1rfJeZIDckhcogtDS4N2X0fV2IYcxjwpnev7CNrO4fx0BnV2gkYx b4nH0LOXE3yYLqnPmqndYR1hBeTn0fWYezDP1C3bQslH83wg+85vHtci11QceKRF +SgYl5TZU35XADbFOpsgjZEkrsYl/IlLX1m1SZzS1M6ZPS1OdRJXDAJj2+SrZrGe JaESqRMLB7mGpYqkmtgLsgcvlG8FtS/12qwkGK0bpU8L26Qq7JmOeW2bqE8Qtg5k dsR5m7Gq0U+SRrFZumiT6WXF0F81HtL/ -----END CERTIFICATE-----Generated at Wed May 14 20:42:34 2025 by rpki-client