$ rpki-client -vvf rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft File: 0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft (raw, json) Hash identifier: Os3f3R3/Uwr5+dGDVvn9NFlQmXUCUyn0tF0iDqdmKR8= Subject key identifier: CF:D7:20:BD:EC:00:0A:FB:58:C9:92:82:E3:15:36:42:35:FE:39:EE Authority key identifier: D1:53:F7:58:5F:62:E9:C3:15:12:D2:86:88:84:01:C1:A6:8D:DE:16 Certificate issuer: /CN=A9143684/serialNumber=D153F7585F62E9C31512D286888401C1A68DDE16 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0VP3WF9i6cMVEtKGiIQBwaaN3hY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft Manifest number: 0161 Signing time: Mon 12 May 2025 15:10:18 +0000 Manifest this update: Mon 12 May 2025 15:10:18 +0000 Manifest next update: Mon 19 May 2025 15:10:18 +0000 Files and hashes: 1: 0VP3WF9i6cMVEtKGiIQBwaaN3hY.crl (hash: fAAPIfQNTcdG28if5u3N/AmmPIlMmJOY/Q7bDFXW5d0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.crl rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0VP3WF9i6cMVEtKGiIQBwaaN3hY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143684, serialNumber=D153F7585F62E9C31512D286888401C1A68DDE16 Validity Not Before: May 12 15:10:18 2025 GMT Not After : May 19 15:10:18 2025 GMT Subject: CN=68220f5a-1536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ca:ad:a0:4c:f5:39:dc:6b:51:33:c9:26:b2: 97:fa:01:74:f8:8b:d8:ca:ec:24:36:cc:4e:f3:fd: b9:47:71:cb:06:ac:7e:3e:32:82:40:46:3d:65:9f: 6c:c0:bd:b5:18:98:2c:34:9a:67:d1:e2:db:ee:88: c7:15:6c:d3:73:3b:3b:e9:86:11:6d:0a:00:41:f0: e1:93:e0:78:d6:0b:e8:a8:18:f8:7f:07:e9:51:bb: d5:34:d4:dd:dc:ac:74:1b:a7:a3:8f:06:41:d0:fc: 30:7c:d0:2d:79:eb:e2:53:85:45:54:12:c2:95:01: 26:82:1b:4d:89:bd:11:ce:d7:d1:d4:bc:0c:40:ea: 52:c8:d7:9b:80:63:bc:eb:8d:60:48:cb:c0:44:aa: 98:10:52:7b:bd:13:69:08:82:c4:84:72:4d:d6:1b: 0b:52:f9:db:fd:da:40:08:28:6b:b9:5d:34:95:9d: 7d:0f:aa:68:60:bd:4a:d2:7e:82:49:f0:fd:f2:54: 17:4e:45:76:c2:c5:a5:c9:d1:27:66:90:cf:20:67: e4:45:e1:4c:e9:1b:0a:4c:26:b7:53:14:97:84:fb: 20:04:92:af:04:11:7c:7b:31:7e:66:8f:96:1d:ba: 83:ad:86:aa:c2:ca:ec:22:74:9e:a3:90:37:3a:cf: d2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D7:20:BD:EC:00:0A:FB:58:C9:92:82:E3:15:36:42:35:FE:39:EE X509v3 Authority Key Identifier: keyid:D1:53:F7:58:5F:62:E9:C3:15:12:D2:86:88:84:01:C1:A6:8D:DE:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0VP3WF9i6cMVEtKGiIQBwaaN3hY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:43:2e:38:48:fa:0e:50:ee:b6:c6:3d:f2:45:b4:ec:40:be: 5c:8a:03:bf:b5:6a:88:16:b9:85:1b:cf:8d:69:44:51:89:bd: 23:a4:94:1d:70:d2:1a:1c:47:84:91:07:97:1c:65:8f:7a:07: 82:a4:62:d4:59:79:fd:8a:20:3d:70:7a:98:ff:1c:83:9e:1a: df:c6:bb:98:e8:f2:c8:8a:8f:c5:75:12:d1:ec:37:1e:b6:05: d6:98:e0:02:44:fd:bf:23:57:d6:ab:51:87:f3:d5:3f:cd:ae: ac:4d:3c:55:cb:4a:11:ed:a3:e1:66:02:c3:98:63:21:f4:8d: 5f:96:23:fd:ca:f5:d5:f5:96:da:eb:9a:a4:1b:80:74:d3:4b: 7a:d9:8e:06:0b:20:8e:a2:60:41:e7:ee:f4:5a:2e:49:09:6a: de:61:fd:f3:96:50:1d:e4:c3:24:b5:ec:9f:44:62:b4:d3:eb: 2b:e9:9f:cf:04:45:e9:df:7b:9a:3c:a1:c1:44:b0:0e:ea:37: 20:36:c2:21:c6:35:82:27:c3:7d:27:7b:61:75:d2:39:18:33: 8d:27:6a:38:a6:85:e5:ed:34:27:21:57:f8:bd:3a:a5:72:12: 68:7b:7d:0f:df:1c:a5:05:57:ba:5a:7b:8b:0a:12:3e:5d:47: d8:73:fe:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM2ODQxMTAvBgNVBAUTKEQxNTNGNzU4NUY2MkU5QzMxNTEyRDI4Njg4ODQwMUMx QTY4RERFMTYwHhcNMjUwNTEyMTUxMDE4WhcNMjUwNTE5MTUxMDE4WjAYMRYwFAYD VQQDEw02ODIyMGY1YS0xNTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcqtoEz1OdxrUTPJJrKX+gF0+IvYyuwkNsxO8/25R3HLBqx+PjKCQEY9ZZ9s wL21GJgsNJpn0eLb7ojHFWzTczs76YYRbQoAQfDhk+B41gvoqBj4fwfpUbvVNNTd 3Kx0G6ejjwZB0PwwfNAteeviU4VFVBLClQEmghtNib0RztfR1LwMQOpSyNebgGO8 641gSMvARKqYEFJ7vRNpCILEhHJN1hsLUvnb/dpACChruV00lZ19D6poYL1K0n6C SfD98lQXTkV2wsWlydEnZpDPIGfkReFM6RsKTCa3UxSXhPsgBJKvBBF8ezF+Zo+W HbqDrYaqwsrsInSeo5A3Os/STwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/XIL3s AAr7WMmSguMVNkI1/jnuMB8GA1UdIwQYMBaAFNFT91hfYunDFRLShoiEAcGmjd4W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzY4NC9BNkM4NDBCMjJB QjAxMUVFQUUyRTVEMUFDNEY5QUUwMi8wVlAzV0Y5aTZjTVZFdEtHaUlRQndhYU4z aFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBWUDNXRjlpNmNNVkV0S0dpSVFCd2FhTjNoWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzY4NC9BNkM4NDBCMjJBQjAxMUVFQUUyRTVEMUFDNEY5QUUwMi8wVlAzV0Y5aTZj TVZFdEtHaUlRQndhYU4zaFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3Qy44SPoOUO62xj3yRbTsQL5cigO/tWqIFrmFG8+NaURRib0jpJQd cNIaHEeEkQeXHGWPegeCpGLUWXn9iiA9cHqY/xyDnhrfxruY6PLIio/FdRLR7Dce tgXWmOACRP2/I1fWq1GH89U/za6sTTxVy0oR7aPhZgLDmGMh9I1fliP9yvXV9Zba 65qkG4B000t62Y4GCyCOomBB5+70Wi5JCWreYf3zllAd5MMkteyfRGK00+sr6Z/P BEXp33uaPKHBRLAO6jcgNsIhxjWCJ8N9J3thddI5GDONJ2o4poXl7TQnIVf4vTql chJoe30P3xylBVe6WnuLChI+XUfYc/5V -----END CERTIFICATE-----Generated at Tue May 13 11:46:13 2025 by rpki-client