$ rpki-client -vvf rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft File: rYW34Ys6FvU-kpOKM07Guz64tjA.mft (raw, json) Hash identifier: 3MlpIFSdnfvING0dxhWl/rR0McWDgq5uCHInA92YRr8= Subject key identifier: 97:06:12:8B:40:C0:DB:B8:F9:B5:F5:E2:31:22:BE:D7:63:2E:55:BC Authority key identifier: AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 Certificate issuer: /CN=A913FBB2/serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft Manifest number: 0161 Signing time: Thu 15 May 2025 03:24:54 +0000 Manifest this update: Thu 15 May 2025 03:24:53 +0000 Manifest next update: Thu 22 May 2025 03:24:53 +0000 Files and hashes: 1: rYW34Ys6FvU-kpOKM07Guz64tjA.crl (hash: saEqoBSTqStH+j3QBqdDtjT2zIaSNcmYrXMh21qat0A=) 2: A9321C0A1B2A11EE84F40B3AC4F9AE02.roa (hash: p81EH8N+mq+tuXFMTqadpbhtGnx8x8sovmy9swXxzCM=) 3: A8C501F61B2A11EE84F40B3AC4F9AE02.roa (hash: GGQZQXITbCi35kDi1cszvpoNDF4GQHNFV1AYsPL4NFA=) 4: B97D647C1A8811EEB5AE963CC4F9AE02.roa (hash: NMwwqT5E6qjLfBlg6rE6vavEzETFOwEvTWR7gAiqQV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FBB2, serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Validity Not Before: May 15 03:24:53 2025 GMT Not After : May 22 03:24:53 2025 GMT Subject: CN=68255e86-2c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:76:cc:ca:02:4c:a7:6b:56:3c:7d:0c:70:d1: a4:09:be:87:3b:03:59:84:6a:56:42:bd:b0:cb:59: af:4f:25:7e:75:05:ab:a2:87:a2:83:fe:3c:78:2f: bd:6a:ba:4e:f0:6e:4a:85:75:af:bf:ea:16:05:a4: c8:c1:4b:be:29:36:8b:a3:1d:e8:92:4e:ee:2d:03: fd:ce:f0:35:3d:f6:d9:1c:25:d6:8d:cc:9d:b5:67: aa:02:63:fd:2c:07:76:8d:dc:06:7f:20:48:33:3e: b1:fa:99:9e:43:17:52:fa:d8:0e:62:d4:7b:d1:3e: f4:f1:c8:f0:f7:ae:d8:99:86:21:7a:c6:31:21:9d: ee:65:77:a1:d2:a8:71:19:d8:7e:69:e7:01:27:25: e4:09:5e:27:99:4e:46:9a:ff:38:87:09:5f:97:cd: 21:e8:9b:93:b9:d8:6c:fa:55:98:d6:d6:89:e6:16: 21:40:d2:d2:16:e5:89:6d:08:9f:2f:7a:ee:ac:3b: 9c:f3:af:03:70:de:22:8f:07:d3:bd:e5:f4:96:80: 0c:ef:fc:a0:5f:5f:af:f2:53:f1:df:f5:70:42:ae: b1:8b:2d:7a:3c:2f:56:f4:f6:a2:10:c5:18:0f:42: 9e:6d:f3:51:26:3b:81:8e:f0:ad:57:55:02:33:1b: da:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:06:12:8B:40:C0:DB:B8:F9:B5:F5:E2:31:22:BE:D7:63:2E:55:BC X509v3 Authority Key Identifier: keyid:AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e8:0a:5a:cc:7a:8f:9e:68:d3:0d:7d:b7:78:cd:0c:bb:e8: 98:ce:09:07:84:68:e4:25:3f:1a:64:84:bc:4d:85:af:bb:82: 19:e7:52:d0:27:30:0a:1f:e6:cf:44:4c:98:2e:87:7d:33:91: 42:4c:31:c0:7c:7f:11:70:d9:d7:9b:01:0e:66:b3:73:fd:80: b5:4a:7b:71:6b:e9:cc:c8:4d:b7:14:ce:e5:25:d3:2c:ac:a1: cb:83:1c:12:4f:5d:48:f0:92:5d:a8:c9:8a:9a:72:78:28:f9: ad:97:46:5f:9a:55:50:b9:62:b4:8f:a5:51:04:2d:05:b8:af: e6:0f:40:57:43:e1:ad:ee:e7:81:21:89:d8:28:bd:b3:2e:50: 32:82:86:4a:56:a5:3c:71:94:51:8b:ec:54:2d:22:c8:a7:80: d7:b8:6d:11:0e:fa:70:d6:05:5f:31:d3:c2:ac:7b:a7:08:fa: 53:3b:59:ec:ea:3c:d1:21:b5:98:29:cb:88:9e:bf:24:5f:62: c8:a5:d1:d9:0e:32:40:f2:9a:34:fc:ee:eb:80:b5:0c:68:88: bc:5e:9a:00:a7:f1:78:80:01:75:f0:d2:ba:c7:34:35:fe:16: d2:01:ee:b0:c7:da:35:c9:ee:3e:53:ae:eb:04:0a:f6:38:ae: ea:09:3b:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZCQjIxMTAvBgNVBAUTKEFEODVCN0UxOEIzQTE2RjUzRTkyOTM4QTMzNEVDNkJC M0VCOEI2MzAwHhcNMjUwNTE1MDMyNDUzWhcNMjUwNTIyMDMyNDUzWjAYMRYwFAYD VQQDEw02ODI1NWU4Ni0yYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHbMygJMp2tWPH0McNGkCb6HOwNZhGpWQr2wy1mvTyV+dQWrooeig/48eC+9 arpO8G5KhXWvv+oWBaTIwUu+KTaLox3okk7uLQP9zvA1PfbZHCXWjcydtWeqAmP9 LAd2jdwGfyBIMz6x+pmeQxdS+tgOYtR70T708cjw967YmYYhesYxIZ3uZXeh0qhx Gdh+aecBJyXkCV4nmU5Gmv84hwlfl80h6JuTudhs+lWY1taJ5hYhQNLSFuWJbQif L3rurDuc868DcN4ijwfTveX0loAM7/ygX1+v8lPx3/VwQq6xiy16PC9W9PaiEMUY D0KebfNRJjuBjvCtV1UCMxva4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcGEotA wNu4+bX14jEivtdjLlW8MB8GA1UdIwQYMBaAFK2Ft+GLOhb1PpKTijNOxrs+uLYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkJCMi8wRTI3MDU0NDFB ODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2VS1rcE9LTTA3R3V6NjR0 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVzM0WXM2RnZVLWtwT0tNMDdHdXo2NHRqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkJCMi8wRTI3MDU0NDFBODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2 VS1rcE9LTTA3R3V6NjR0akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB06ApazHqPnmjTDX23eM0Mu+iYzgkHhGjkJT8aZIS8TYWvu4IZ51LQ JzAKH+bPREyYLod9M5FCTDHAfH8RcNnXmwEOZrNz/YC1Sntxa+nMyE23FM7lJdMs rKHLgxwST11I8JJdqMmKmnJ4KPmtl0ZfmlVQuWK0j6VRBC0FuK/mD0BXQ+Gt7ueB IYnYKL2zLlAygoZKVqU8cZRRi+xULSLIp4DXuG0RDvpw1gVfMdPCrHunCPpTO1ns 6jzRIbWYKcuInr8kX2LIpdHZDjJA8po0/O7rgLUMaIi8XpoAp/F4gAF18NK6xzQ1 /hbSAe6wx9o1ye4+U67rBAr2OK7qCTv5 -----END CERTIFICATE-----Generated at Sat May 17 03:42:00 2025 by rpki-client