$ rpki-client -vvf rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft File: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft (raw, json) Hash identifier: JbxYYDYQZmARd9gTpySPBQbPLzKw3vLBuP8nH3m6zbg= Subject key identifier: 1D:51:68:B0:A2:07:B1:A1:CE:7E:91:1E:33:B0:F3:27:1C:0D:31:F1 Authority key identifier: F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 Certificate issuer: /CN=A915AA2E/serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft Manifest number: 8E Signing time: Tue 13 May 2025 05:38:21 +0000 Manifest this update: Tue 13 May 2025 05:38:21 +0000 Manifest next update: Tue 20 May 2025 05:38:21 +0000 Files and hashes: 1: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl (hash: FhHKatIPhfPtuXCv7xZRdZEEAjfFdP20zLOMSp2D9h0=) 2: BBC65AEC5AE511EFBC1FAA45C4F9AE02.roa (hash: Gqrui0OpB1CczHELSAaN90W0H5eLSv922/lG6tauLOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AA2E, serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Validity Not Before: May 13 05:38:21 2025 GMT Not After : May 20 05:38:21 2025 GMT Subject: CN=6822dacd-3cce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f2:9b:70:10:a8:2d:56:59:c0:85:95:e2:21: 9a:c1:53:7c:46:8b:b2:8e:68:1b:3e:17:37:d2:fc: 85:36:81:8c:5b:96:10:ee:00:35:29:b4:11:ef:e4: 85:d5:7f:6f:0a:5a:06:d6:0d:91:67:51:0c:79:6d: b5:ad:db:b0:7f:23:ac:e9:2d:10:75:0b:62:74:33: cf:9d:b8:be:be:92:78:3f:f1:7f:ea:4e:7d:20:16: 4d:54:8b:93:b9:8f:4c:36:bc:8e:b8:f9:42:9c:f1: bd:10:3a:8f:7f:5c:3d:15:fe:a2:d5:fc:36:83:73: 89:28:01:2c:52:a9:d1:d0:a9:4d:75:57:ac:29:08: db:73:34:f2:f1:5f:29:07:fe:66:c1:5e:f5:bd:3e: 15:e2:42:83:0f:3f:17:f0:41:93:93:eb:04:d0:1c: a0:14:cc:44:ec:05:21:54:d2:1c:8d:5e:f0:71:27: 72:8f:2d:00:63:86:ed:a7:c5:bb:e2:80:aa:50:69: c4:76:00:81:5e:b7:d9:9f:33:81:5b:05:6c:54:75: 69:12:ff:19:f0:00:0b:ed:d7:f7:d0:d8:78:e0:2b: aa:d2:8b:a2:9a:29:ce:40:8a:9c:6b:47:b4:a9:b9: f2:92:e7:cc:b0:87:d5:28:c4:a1:51:ba:d0:23:12: 53:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:51:68:B0:A2:07:B1:A1:CE:7E:91:1E:33:B0:F3:27:1C:0D:31:F1 X509v3 Authority Key Identifier: keyid:F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:c3:76:38:a7:66:fc:20:04:f3:52:0f:79:d2:60:b8:0d:fc: d6:de:28:c5:62:6d:7b:1d:8c:a0:dc:2c:2f:36:e8:c7:67:b6: c0:ac:5e:b1:47:81:12:97:b0:37:31:7f:0b:f8:e2:68:a5:b3: da:76:44:91:24:6b:62:d9:e6:09:56:1c:db:af:09:fc:31:9a: c9:41:cf:1e:1b:07:ea:bc:a9:dc:cb:10:3c:e7:97:d3:a2:6d: 98:e7:13:37:e8:f2:52:37:09:90:67:8a:da:4d:b6:46:ac:67: 46:5c:c9:48:dd:d9:41:3d:cb:85:0e:00:40:a1:52:2f:37:ef: dc:23:ae:45:a7:ec:1f:59:83:d2:a8:b5:21:0e:84:dd:17:7b: 09:7b:18:72:9d:a1:b6:dc:e7:f0:40:be:e1:33:4e:d3:fe:ef: 72:56:d7:7b:00:75:f2:62:3d:0e:e5:01:68:cd:f4:98:d4:c4: b7:e8:a0:5f:90:7d:f3:7f:96:e8:d3:0e:b5:4b:f9:79:f5:33: 6c:cc:cc:ac:89:7f:b7:be:2e:38:de:6c:2b:48:6b:8c:bc:8c: b0:53:bd:71:dc:88:b2:84:cf:d9:93:38:e5:68:90:eb:c3:23: bc:a1:52:19:3c:c9:d9:b4:72:18:f1:0d:3c:1a:91:89:d6:af: 59:72:44:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFBMkUxMTAvBgNVBAUTKEY1ODAyRDkwM0RBMTBDRDAzRkNGM0U4RTE2NTVGNTIx QzFEODU3ODMwHhcNMjUwNTEzMDUzODIxWhcNMjUwNTIwMDUzODIxWjAYMRYwFAYD VQQDEw02ODIyZGFjZC0zY2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlfKbcBCoLVZZwIWV4iGawVN8RouyjmgbPhc30vyFNoGMW5YQ7gA1KbQR7+SF 1X9vCloG1g2RZ1EMeW21rduwfyOs6S0QdQtidDPPnbi+vpJ4P/F/6k59IBZNVIuT uY9MNryOuPlCnPG9EDqPf1w9Ff6i1fw2g3OJKAEsUqnR0KlNdVesKQjbczTy8V8p B/5mwV71vT4V4kKDDz8X8EGTk+sE0BygFMxE7AUhVNIcjV7wcSdyjy0AY4btp8W7 4oCqUGnEdgCBXrfZnzOBWwVsVHVpEv8Z8AAL7df30Nh44Cuq0ouiminOQIqca0e0 qbnykufMsIfVKMShUbrQIxJT6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1RaLCi B7Ghzn6RHjOw8yccDTHxMB8GA1UdIwQYMBaAFPWALZA9oQzQP88+jhZV9SHB2FeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUEyRS83QUZDOURGMDVB RTUxMUVGQjExQzQ5NDVDNEY5QUUwMi85WUF0a0QyaEROQV96ejZPRmxYMUljSFlW NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlZQXRrRDJoRE5BX3p6Nk9GbFgxSWNIWVY0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUEyRS83QUZDOURGMDVBRTUxMUVGQjExQzQ5NDVDNEY5QUUwMi85WUF0a0QyaERO QV96ejZPRmxYMUljSFlWNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYw3Y4p2b8IATzUg950mC4DfzW3ijFYm17HYyg3CwvNujHZ7bArF6x R4ESl7A3MX8L+OJopbPadkSRJGti2eYJVhzbrwn8MZrJQc8eGwfqvKncyxA855fT om2Y5xM36PJSNwmQZ4raTbZGrGdGXMlI3dlBPcuFDgBAoVIvN+/cI65Fp+wfWYPS qLUhDoTdF3sJexhynaG23OfwQL7hM07T/u9yVtd7AHXyYj0O5QFozfSY1MS36KBf kH3zf5bo0w61S/l59TNszMysiX+3vi443mwrSGuMvIywU71x3IiyhM/ZkzjlaJDr wyO8oVIZPMnZtHIY8Q08GpGJ1q9ZckTV -----END CERTIFICATE-----Generated at Tue May 13 15:03:36 2025 by rpki-client