$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft File: s1py5W8JAsfhuNgSxdg2VBHdox0.mft (raw, json) Hash identifier: sL0OFMck3lDlupG9UjHj+0BbrTbuXaiQ1SVAiP2O2Pk= Subject key identifier: 48:1A:F8:58:AB:54:B3:35:88:FF:A7:33:77:13:AD:96:CB:03:AF:D4 Authority key identifier: B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D Certificate issuer: /CN=A9150B91/serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Certificate serial: 14BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft Manifest number: 14B6 Signing time: Sat 10 May 2025 16:45:55 +0000 Manifest this update: Sat 10 May 2025 16:45:55 +0000 Manifest next update: Sat 17 May 2025 16:45:55 +0000 Files and hashes: 1: s1py5W8JAsfhuNgSxdg2VBHdox0.crl (hash: hKQHTCSbLNi4IUZnVIlO/iff2BDh7Q9iJL71aVi1NGM=) 2: 4674A74E5DB211E8A30DF983C4F9AE02.roa (hash: Kpm1VRvUmk2GXeAxfKW1BgX1xl9xSgMJHiJXTqUoDIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5311 (0x14bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B91, serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Validity Not Before: May 10 16:45:55 2025 GMT Not After : May 17 16:45:55 2025 GMT Subject: CN=681f82c3-c235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:89:5a:50:f3:1d:2a:a1:2b:c5:2c:fc:1f:3e: 0d:f8:17:61:ff:27:64:c5:5c:f6:1e:54:f7:1f:32: 13:f5:b6:43:bf:2b:2d:b4:25:08:81:40:bf:61:4b: 7b:20:57:15:67:64:be:a1:7d:ea:d6:68:13:00:d1: 62:75:fc:69:5b:4f:00:3c:c0:64:d4:2b:87:94:91: bd:e7:4a:b7:1d:40:c8:07:3e:82:84:ba:ba:bc:01: d9:36:5b:e0:fb:1c:65:18:45:1c:0e:0e:17:8a:8a: a1:90:83:48:a6:1b:c0:48:3b:d9:3d:c3:53:e7:a3: 69:11:45:38:a9:3d:32:d7:9b:d6:13:96:7a:91:ab: c9:5a:64:1b:42:7d:65:61:74:72:10:76:27:81:c5: af:6d:b6:08:fb:e8:b7:38:0b:ca:71:c2:26:9e:60: 08:16:eb:54:62:b2:fd:5f:8a:b8:55:ea:07:86:85: 3d:8c:9d:29:30:c1:3b:4a:a4:a4:19:35:30:5e:6f: dc:b4:6b:a5:cc:a6:41:ab:28:8c:e1:87:f4:db:a6: ce:59:3d:0f:06:aa:ad:82:11:1c:45:07:c2:03:4b: 9f:72:30:7e:49:2e:45:86:e6:1a:36:1d:f1:4b:21: 64:8c:85:98:ba:4e:4a:fd:a4:78:29:f3:e5:b0:c5: d3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1A:F8:58:AB:54:B3:35:88:FF:A7:33:77:13:AD:96:CB:03:AF:D4 X509v3 Authority Key Identifier: keyid:B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:0c:d3:b4:c3:62:28:5c:2e:8b:c8:8e:52:b3:4f:f1:b0:9a: 17:34:a6:99:4c:ad:d0:ba:ae:a4:1d:77:40:26:fe:fc:b8:f3: 7c:24:63:c2:39:89:8e:b8:bb:06:f8:2e:ff:42:b7:e8:93:b7: e6:9c:59:8c:5b:db:9a:b0:ad:b3:f7:e9:39:9a:61:dd:fd:18: 67:f8:d6:f6:08:1e:c6:6f:5e:89:ee:5c:ad:f8:09:61:29:19: 79:35:0d:cc:53:d7:33:33:72:07:39:bb:b0:63:12:0b:d2:94: 81:bf:fe:b0:57:31:23:cf:86:95:6a:a0:cc:1c:7c:e0:bf:44: b7:52:51:fb:2d:7a:e1:eb:a6:7f:7a:c7:85:68:6b:5e:42:95: 63:c6:55:33:76:8c:45:f2:6f:34:33:01:f8:dc:91:37:28:78: 4a:38:05:3c:1d:b3:23:57:64:5b:16:89:60:b7:60:6d:8f:3a: 6a:47:b0:8f:64:0e:af:b4:08:6a:2b:60:24:a6:6a:d8:d2:00: 7a:dd:3a:2f:18:2d:1e:89:d9:25:46:11:a0:06:c4:cd:f0:da: 52:3a:13:e4:8c:8e:0a:aa:98:b3:34:37:98:1d:02:96:91:f8: 55:eb:9e:13:19:b5:c0:49:ab:f8:1f:53:a9:fd:9f:d3:6b:ae: cf:b8:51:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCOTExMTAvBgNVBAUTKEIzNUE3MkU1NkYwOTAyQzdFMUI4RDgxMkM1RDgzNjU0 MTFEREEzMUQwHhcNMjUwNTEwMTY0NTU1WhcNMjUwNTE3MTY0NTU1WjAYMRYwFAYD VQQDEw02ODFmODJjMy1jMjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYlaUPMdKqErxSz8Hz4N+Bdh/ydkxVz2HlT3HzIT9bZDvysttCUIgUC/YUt7 IFcVZ2S+oX3q1mgTANFidfxpW08APMBk1CuHlJG950q3HUDIBz6ChLq6vAHZNlvg +xxlGEUcDg4XioqhkINIphvASDvZPcNT56NpEUU4qT0y15vWE5Z6kavJWmQbQn1l YXRyEHYngcWvbbYI++i3OAvKccImnmAIFutUYrL9X4q4VeoHhoU9jJ0pMME7SqSk GTUwXm/ctGulzKZBqyiM4Yf026bOWT0PBqqtghEcRQfCA0ufcjB+SS5FhuYaNh3x SyFkjIWYuk5K/aR4KfPlsMXTFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEga+Fir VLM1iP+nM3cTrZbLA6/UMB8GA1UdIwQYMBaAFLNacuVvCQLH4bjYEsXYNlQR3aMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI5MS83NjMwNEE3ODVB OTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFzZmh1TmdTeGRnMlZCSGRv eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MxcHk1VzhKQXNmaHVOZ1N4ZGcyVkJIZG94MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI5MS83NjMwNEE3ODVBOTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFz Zmh1TmdTeGRnMlZCSGRveDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5DNO0w2IoXC6LyI5Ss0/xsJoXNKaZTK3Quq6kHXdAJv78uPN8JGPC OYmOuLsG+C7/Qrfok7fmnFmMW9uasK2z9+k5mmHd/Rhn+Nb2CB7Gb16J7lyt+Alh KRl5NQ3MU9czM3IHObuwYxIL0pSBv/6wVzEjz4aVaqDMHHzgv0S3UlH7LXrh66Z/ eseFaGteQpVjxlUzdoxF8m80MwH43JE3KHhKOAU8HbMjV2RbFolgt2BtjzpqR7CP ZA6vtAhqK2AkpmrY0gB63TovGC0eidklRhGgBsTN8NpSOhPkjI4KqpizNDeYHQKW kfhV654TGbXASav4H1Op/Z/Ta67PuFH7 -----END CERTIFICATE-----Generated at Sun May 11 13:26:47 2025 by rpki-client