$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft File: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft (raw, json) Hash identifier: hftN2TxEKLRjJLkeCovubCQpn4bH1Lv3xKRioUNRlRY= Subject key identifier: D5:26:C4:BA:4A:FB:5E:30:40:81:06:1C:1A:23:A6:61:AE:3A:80:AF Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft Manifest number: 0166 Signing time: Tue 13 May 2025 03:19:22 +0000 Manifest this update: Tue 13 May 2025 03:19:21 +0000 Manifest next update: Tue 20 May 2025 03:19:21 +0000 Files and hashes: 1: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl (hash: Afft9puE71xybggY5kw8CWx8wV1MKvcNQ6emverYcW0=) 2: F4C13F18066811F0B521BF2FC4F9AE02.roa (hash: epExzgPr36sDhlRxRH5MQNOpHIGT7+cJfb/YyVTxfcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE, serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: May 13 03:19:21 2025 GMT Not After : May 20 03:19:21 2025 GMT Subject: CN=6822ba39-4da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c9:22:40:a5:06:6a:56:e5:c1:05:e6:c3:52: 59:07:4b:df:38:55:bc:d0:2f:05:cf:3a:bc:6e:57: 51:50:4e:2f:c6:a6:f2:5e:b7:48:5d:aa:cc:0f:36: 1c:e9:13:10:f9:5b:fe:2c:19:1b:50:7c:dc:41:ad: a0:17:1a:e5:fd:3a:08:a6:49:a2:8f:64:a9:b4:08: a4:2d:f3:ce:6b:0b:1c:29:ec:b2:2a:ba:10:da:30: 2e:c3:ba:b9:50:00:0c:dc:c0:83:0a:e4:fa:17:27: f5:40:a7:d8:14:1a:2d:5f:0d:cb:78:4e:78:4d:ff: 2c:ba:06:34:71:10:96:46:31:83:d3:15:77:af:57: 88:57:e4:a6:fa:52:05:9d:60:6d:be:cc:78:74:44: 55:49:27:00:6d:ec:7d:d2:a5:d2:74:f9:62:b0:a0: c8:22:fb:17:2b:b7:12:94:4a:db:2e:07:24:3b:b9: 01:10:66:9b:ae:09:5f:02:b3:65:77:a1:f7:4f:58: 2f:a1:2f:74:a5:36:53:64:a1:e4:09:1e:91:2b:7c: b2:e5:94:32:0d:a7:04:e8:30:47:0f:c3:09:48:42: 05:2a:66:cf:9b:0f:ab:ff:74:5b:e0:ae:04:fc:97: dd:ee:22:db:e9:74:02:73:31:69:34:34:70:e6:a3: 16:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:26:C4:BA:4A:FB:5E:30:40:81:06:1C:1A:23:A6:61:AE:3A:80:AF X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:73:1c:9e:d4:a2:64:3f:8c:f9:c4:ac:7a:53:e4:f5:77:af: 3c:6b:0e:f5:6a:a5:a6:cb:0c:cf:63:50:3e:d0:82:5c:27:f1: c8:71:4a:49:6f:9b:54:bc:dc:63:a4:93:c3:4f:25:93:60:6f: 81:eb:7a:a6:23:93:b1:e1:40:27:6e:55:40:fb:7a:20:b5:ce: 6c:bb:7d:2d:13:18:4d:fe:c2:06:26:f3:8a:6d:6f:d8:1e:50: 1f:ab:9a:b5:a5:f6:7a:4f:0f:64:d4:b4:49:78:57:a2:01:9c: b3:25:f3:fb:de:9b:ea:c3:21:67:34:a0:34:8c:fe:d4:64:32: bf:d8:33:09:33:17:63:ad:fd:82:ba:c1:a8:1f:f3:3e:0c:95: 91:4e:88:0e:08:9e:be:5f:a1:54:fe:21:6f:49:29:c5:ef:fc: 9c:76:80:9e:d8:26:f0:5e:dc:f4:ff:c1:a5:fd:e8:09:04:04: cd:7d:d6:40:da:63:d1:cf:13:40:21:5d:c3:68:db:08:3d:d5: bd:b4:1d:f6:1e:d4:a9:df:1e:29:74:af:a0:0a:05:c9:5e:2f: 1e:94:29:5a:62:9e:63:54:6a:c4:ef:81:7d:b6:e7:7b:5e:4d: e7:f1:7c:a9:4a:3f:fa:7b:3a:d1:ee:d8:7f:da:98:38:e1:1e: 2c:91:92:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FCRkUxMTAvBgNVBAUTKEU1ODhDNzNFNkNCNEZEQjM4Qjg0RUU0MEY4RjlCNjRD NTBCRTRCNzMwHhcNMjUwNTEzMDMxOTIxWhcNMjUwNTIwMDMxOTIxWjAYMRYwFAYD VQQDEw02ODIyYmEzOS00ZGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MkiQKUGalblwQXmw1JZB0vfOFW80C8Fzzq8bldRUE4vxqbyXrdIXarMDzYc 6RMQ+Vv+LBkbUHzcQa2gFxrl/ToIpkmij2SptAikLfPOawscKeyyKroQ2jAuw7q5 UAAM3MCDCuT6Fyf1QKfYFBotXw3LeE54Tf8sugY0cRCWRjGD0xV3r1eIV+Sm+lIF nWBtvsx4dERVSScAbex90qXSdPlisKDIIvsXK7cSlErbLgckO7kBEGabrglfArNl d6H3T1gvoS90pTZTZKHkCR6RK3yy5ZQyDacE6DBHD8MJSEIFKmbPmw+r/3Rb4K4E /Jfd7iLb6XQCczFpNDRw5qMWmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUmxLpK +14wQIEGHBojpmGuOoCvMB8GA1UdIwQYMBaAFOWIxz5stP2zi4TuQPj5tkxQvktz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUJGRS9GMUQ1NTg3RTI1 RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9iT0xoTzVBLVBtMlRGQy1T M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUJGRS9GMUQ1NTg3RTI1RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9i T0xoTzVBLVBtMlRGQy1TM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCacxye1KJkP4z5xKx6U+T1d688aw71aqWmywzPY1A+0IJcJ/HIcUpJ b5tUvNxjpJPDTyWTYG+B63qmI5Ox4UAnblVA+3ogtc5su30tExhN/sIGJvOKbW/Y HlAfq5q1pfZ6Tw9k1LRJeFeiAZyzJfP73pvqwyFnNKA0jP7UZDK/2DMJMxdjrf2C usGoH/M+DJWRTogOCJ6+X6FU/iFvSSnF7/ycdoCe2CbwXtz0/8Gl/egJBATNfdZA 2mPRzxNAIV3DaNsIPdW9tB32HtSp3x4pdK+gCgXJXi8elClaYp5jVGrE74F9tud7 Xk3n8XypSj/6ezrR7th/2pg44R4skZKK -----END CERTIFICATE-----Generated at Tue May 13 21:59:18 2025 by rpki-client