$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: QdW95vR9OEtI8iLCIv3xfpKmKtiYPNCDpCsG7tlAJn4= Subject key identifier: 07:30:22:F1:75:F2:9E:C6:4D:F4:27:1B:9D:75:FF:1C:61:7D:1E:89 Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0A0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0A05 Signing time: Mon 12 May 2025 19:40:18 +0000 Manifest this update: Mon 12 May 2025 19:40:18 +0000 Manifest next update: Mon 19 May 2025 19:40:18 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: JVnr0je2zFs53dnB31boDSGm8WXoh/fjQCJzraZmLu8=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: /BGVJbRRDfivu1c+fyECLgKysqOT6aaM0UL54g9lwQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2572 (0xa0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: May 12 19:40:18 2025 GMT Not After : May 19 19:40:18 2025 GMT Subject: CN=68224ea2-31cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:39:d2:fa:f5:1f:fa:0c:5c:60:44:62:cb:64: 31:b4:d9:72:8d:48:10:22:2f:de:01:0a:ed:fd:48: fc:cd:a8:1c:5b:b3:bc:14:9a:0c:8d:ee:a9:b3:fd: 0b:9b:6d:e8:da:51:cf:93:d6:74:6d:e8:d0:cd:ea: 93:d6:db:aa:d2:8c:ea:11:5e:5e:8d:17:53:fc:d8: 86:a7:26:34:1e:04:86:8d:cf:ec:0b:63:2b:9b:ba: 3b:58:0a:9e:1f:ed:a4:85:dc:b1:66:94:d5:cf:95: 12:12:86:83:4c:d1:8e:db:75:c2:e7:a9:df:77:25: e1:c4:83:75:1d:35:c7:0e:cc:eb:ab:f6:61:a8:88: 7e:0b:ee:ec:b9:b0:4d:77:f4:6a:6c:29:cc:6e:a4: d9:18:cb:8c:9b:00:38:c4:fb:aa:e3:f9:61:90:f4: 07:be:70:3a:e2:b6:f9:d1:b5:39:91:18:51:cc:1d: 19:2e:73:41:2d:72:fc:33:8f:5c:e2:43:93:28:e4: 52:8b:2f:fa:09:9f:2a:5f:b7:89:c4:6b:24:07:52: fa:1b:51:f1:f5:76:38:8e:8d:e0:ea:17:2a:a0:56: d2:20:4a:71:bd:18:4d:d0:e5:94:26:cd:93:9f:0b: 82:a4:0b:c5:70:f1:c0:03:47:7b:75:c8:89:c0:c8: 48:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:30:22:F1:75:F2:9E:C6:4D:F4:27:1B:9D:75:FF:1C:61:7D:1E:89 X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d3:54:d8:bf:e2:c7:74:22:a8:ec:9a:2d:87:5e:e3:75:9b: b5:95:a0:7f:4a:cc:75:12:fb:5e:fa:a8:9c:03:7f:6c:54:0c: a5:f0:b2:4d:48:f9:8a:48:70:b2:3e:81:d7:ce:c2:ec:38:10: 6a:2c:41:91:3d:b8:4f:ef:11:ee:e5:f4:2f:93:ec:9b:4e:ac: d2:de:5a:a3:16:04:9a:4b:6f:69:08:42:05:bc:31:dd:b6:06: 0b:3d:98:1f:fe:71:ea:1b:6c:6c:93:d3:c8:64:70:ca:27:e0: 2a:41:72:3e:43:99:75:fe:8d:4e:f5:eb:b3:ec:4c:d6:38:ed: af:da:e7:da:23:1e:5d:58:be:7f:b4:93:2f:84:3d:4e:2d:b1: 3d:75:27:16:b3:ae:f7:fe:43:e0:7a:21:5e:dc:0a:df:3d:02: 5d:ed:47:2d:b3:d0:76:ef:9d:45:45:42:08:89:55:3a:d1:12: db:07:c1:ce:dc:3a:ab:1f:bd:e5:98:ae:c5:b5:41:e8:31:96: 58:cf:51:82:38:9e:df:80:4f:5c:22:f7:f5:c2:22:69:0e:3c: fc:25:a2:55:44:f9:85:55:ed:d5:ed:26:73:c6:ec:a1:61:11: 15:75:8d:00:37:25:77:3a:95:38:3d:99:7a:56:23:7f:14:be: f4:97:43:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjUwNTEyMTk0MDE4WhcNMjUwNTE5MTk0MDE4WjAYMRYwFAYD VQQDEw02ODIyNGVhMi0zMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DnS+vUf+gxcYERiy2QxtNlyjUgQIi/eAQrt/Uj8zagcW7O8FJoMje6ps/0L m23o2lHPk9Z0bejQzeqT1tuq0ozqEV5ejRdT/NiGpyY0HgSGjc/sC2Mrm7o7WAqe H+2khdyxZpTVz5USEoaDTNGO23XC56nfdyXhxIN1HTXHDszrq/ZhqIh+C+7subBN d/RqbCnMbqTZGMuMmwA4xPuq4/lhkPQHvnA64rb50bU5kRhRzB0ZLnNBLXL8M49c 4kOTKORSiy/6CZ8qX7eJxGskB1L6G1Hx9XY4jo3g6hcqoFbSIEpxvRhN0OWUJs2T nwuCpAvFcPHAA0d7dciJwMhI0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcwIvF1 8p7GTfQnG511/xxhfR6JMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/01TYv+LHdCKo7Joth17jdZu1laB/Ssx1Evte+qicA39sVAyl8LJN SPmKSHCyPoHXzsLsOBBqLEGRPbhP7xHu5fQvk+ybTqzS3lqjFgSaS29pCEIFvDHd tgYLPZgf/nHqG2xsk9PIZHDKJ+AqQXI+Q5l1/o1O9euz7EzWOO2v2ufaIx5dWL5/ tJMvhD1OLbE9dScWs673/kPgeiFe3ArfPQJd7Ucts9B2751FRUIIiVU60RLbB8HO 3DqrH73lmK7FtUHoMZZYz1GCOJ7fgE9cIvf1wiJpDjz8JaJVRPmFVe3V7SZzxuyh YREVdY0ANyV3OpU4PZl6ViN/FL70l0PB -----END CERTIFICATE-----Generated at Wed May 14 19:29:26 2025 by rpki-client