$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft File: 03yc1lDAIKNQDtybQKVGqEw_Jgs.mft (raw, json) Hash identifier: cgj6yIDCBiXBJcdvRQvxTlhxJO6BgxT3esOXnsSTY5g= Subject key identifier: BB:EE:DD:18:95:B1:94:75:08:26:04:17:83:01:B8:81:39:86:67:AB Authority key identifier: D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B Certificate issuer: /CN=A9153C50/serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Certificate serial: 04B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft Manifest number: 04B1 Signing time: Mon 12 May 2025 23:42:14 +0000 Manifest this update: Mon 12 May 2025 23:42:14 +0000 Manifest next update: Mon 19 May 2025 23:42:14 +0000 Files and hashes: 1: 03yc1lDAIKNQDtybQKVGqEw_Jgs.crl (hash: asIATWTszNRFOPLd6Lh1hZ2ASPZrfJ0eLk/vdg/GCSA=) 2: 8B97D7A22CD911ECA528B744C4F9AE02.roa (hash: ejQetAzLgqVtDolBJZWz4Zc5LEXRfg3VkvX111clMEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1207 (0x4b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C50, serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Validity Not Before: May 12 23:42:14 2025 GMT Not After : May 19 23:42:14 2025 GMT Subject: CN=68228756-a5e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:73:aa:f5:7c:ec:00:36:ea:f5:7c:84:64:c2: 91:d3:e1:a7:73:bd:3c:c6:ab:d0:37:ae:76:e2:58: 7c:db:34:3a:23:2f:39:c0:ce:aa:81:a4:9b:79:03: f1:81:1d:3e:a8:a8:f1:60:2d:13:bb:4e:9a:44:33: a5:1a:70:83:e3:fa:61:54:81:cc:d7:0f:d3:23:61: 07:28:a1:0f:16:eb:fb:7a:17:d7:01:d5:d1:df:82: 4a:62:80:a8:41:a1:26:69:a1:39:55:6e:29:6f:39: 15:8f:38:eb:72:5d:d3:54:8e:c0:74:47:2f:ef:4b: 9b:65:6d:4c:12:78:37:9f:14:36:a5:83:f8:00:26: 5d:bd:d8:b1:00:ad:3b:da:12:1a:20:7c:b9:27:21: 72:84:bd:fa:15:4b:4d:22:e0:39:d6:69:e7:2c:21: 7e:af:fd:73:ad:1a:59:9b:7c:b5:a4:4c:d5:ad:03: f4:0c:a5:03:f4:e6:92:9b:38:e4:1e:9b:ed:ff:8d: f7:3b:f6:20:be:42:81:28:0c:4b:cc:fa:89:a3:c2: af:e4:a8:ae:f6:59:76:f8:37:75:b2:0f:e0:60:6b: 47:88:e6:a9:00:c8:5e:91:1d:bd:70:56:9e:6d:09: 01:da:a8:a7:61:26:bb:ed:35:95:85:e1:5b:f1:49: e0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:EE:DD:18:95:B1:94:75:08:26:04:17:83:01:B8:81:39:86:67:AB X509v3 Authority Key Identifier: keyid:D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:55:d2:46:1a:96:ec:6d:33:78:7a:32:39:0d:39:17:88:85: 59:85:3a:61:3f:44:db:f9:93:b0:22:82:20:41:73:07:c2:16: 95:63:ed:cc:0b:a0:e8:cc:87:29:1b:65:d9:f4:c3:b9:e8:a0: 34:25:f5:20:b1:ea:6c:a5:35:cc:57:1c:fa:29:cc:81:5d:ef: e9:c7:dd:ba:e3:58:ef:a0:5e:6a:07:40:88:0c:bf:21:a9:79: ad:0f:4c:5f:37:ce:6c:db:35:c3:9b:4d:a9:67:a1:72:19:d2: 28:8d:9e:a0:39:19:c7:b1:13:f1:95:da:8d:fc:2d:0a:90:96: 59:50:cf:9c:9c:27:8e:0a:ee:67:50:2d:98:43:27:d8:78:88: c6:df:0c:db:44:36:f9:b9:92:a5:29:21:d7:76:b7:fa:6a:d3: f1:b7:15:96:a7:6a:b5:03:b0:4e:81:5e:ef:32:81:ec:71:5c: 8c:5f:e2:11:db:4a:7c:4d:a0:50:db:ac:7f:90:b2:c0:d9:76: 8e:09:0d:07:5c:ce:8b:ed:94:36:ef:b9:3f:19:6d:84:4f:34: 35:7a:b7:e0:15:d8:8e:bb:d8:52:f7:e5:45:4a:cb:fb:4a:17: 46:c8:78:35:95:38:7f:99:9b:c0:67:77:36:34:54:5c:61:bc: 2a:6b:31:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDNTAxMTAvBgNVBAUTKEQzN0M5Q0Q2NTBDMDIwQTM1MDBFREM5QjQwQTU0NkE4 NEMzRjI2MEIwHhcNMjUwNTEyMjM0MjE0WhcNMjUwNTE5MjM0MjE0WjAYMRYwFAYD VQQDEw02ODIyODc1Ni1hNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6XOq9XzsADbq9XyEZMKR0+Gnc708xqvQN6524lh82zQ6Iy85wM6qgaSbeQPx gR0+qKjxYC0Tu06aRDOlGnCD4/phVIHM1w/TI2EHKKEPFuv7ehfXAdXR34JKYoCo QaEmaaE5VW4pbzkVjzjrcl3TVI7AdEcv70ubZW1MEng3nxQ2pYP4ACZdvdixAK07 2hIaIHy5JyFyhL36FUtNIuA51mnnLCF+r/1zrRpZm3y1pEzVrQP0DKUD9OaSmzjk Hpvt/433O/YgvkKBKAxLzPqJo8Kv5Kiu9ll2+Dd1sg/gYGtHiOapAMhekR29cFae bQkB2qinYSa77TWVheFb8UngAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvu3RiV sZR1CCYEF4MBuIE5hmerMB8GA1UdIwQYMBaAFNN8nNZQwCCjUA7cm0ClRqhMPyYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0M1MC80QjkwNjMwMjJD RDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlLTlFEdHliUUtWR3FFd19K Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzeWMxbERBSUtOUUR0eWJRS1ZHcUV3X0pncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0M1MC80QjkwNjMwMjJDRDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlL TlFEdHliUUtWR3FFd19KZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoVdJGGpbsbTN4ejI5DTkXiIVZhTphP0Tb+ZOwIoIgQXMHwhaVY+3M C6DozIcpG2XZ9MO56KA0JfUgsepspTXMVxz6KcyBXe/px92641jvoF5qB0CIDL8h qXmtD0xfN85s2zXDm02pZ6FyGdIojZ6gORnHsRPxldqN/C0KkJZZUM+cnCeOCu5n UC2YQyfYeIjG3wzbRDb5uZKlKSHXdrf6atPxtxWWp2q1A7BOgV7vMoHscVyMX+IR 20p8TaBQ26x/kLLA2XaOCQ0HXM6L7ZQ277k/GW2ETzQ1erfgFdiOu9hS9+VFSsv7 ShdGyHg1lTh/mZvAZ3c2NFRcYbwqazHW -----END CERTIFICATE-----Generated at Wed May 14 18:21:32 2025 by rpki-client