$ rpki-client -vvf rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft File: 5ufguvNPIMPZye8md2gF84JGO4Y.mft (raw, json) Hash identifier: ZmL3o9LRwUxNpXc7AIA83PkpNNJvnC6L1F+Y0ZcEoHo= Subject key identifier: 5C:05:3D:B9:87:EE:88:94:3D:3F:39:56:DC:5F:F4:C8:EA:FC:0A:1E Authority key identifier: E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 Certificate issuer: /CN=A9160BD2/serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft Manifest number: 0663 Signing time: Mon 12 May 2025 22:11:01 +0000 Manifest this update: Mon 12 May 2025 22:11:00 +0000 Manifest next update: Mon 19 May 2025 22:11:00 +0000 Files and hashes: 1: 5ufguvNPIMPZye8md2gF84JGO4Y.crl (hash: r7epBlYEsxIV95d79TXjVXJS3HwUdG5CeDm4RfRiAnU=) 2: 159A3C967D7211EBA0A7FF60C4F9AE02.roa (hash: Zxo0mKrJYkISVsqHRZIlLeBZhk5GaXEPMnvmTBTNLew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160BD2, serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Validity Not Before: May 12 22:11:00 2025 GMT Not After : May 19 22:11:00 2025 GMT Subject: CN=682271f5-dad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:86:0c:e9:31:61:96:98:a4:dc:e8:04:50:45: 70:01:bb:42:2d:67:41:bc:02:bc:87:40:62:15:ea: 87:ae:17:51:12:dd:63:d6:b9:ed:e3:9b:38:c8:9b: c5:86:c5:e0:bf:51:e8:1b:58:f6:e5:5a:55:19:0d: 8c:7d:ff:66:d1:1c:93:9f:82:c7:2a:95:76:23:e8: 14:fa:d2:10:86:2f:95:d8:83:c8:68:26:98:96:2f: c8:57:3f:84:3e:d7:c2:0f:48:8b:d3:94:fb:08:6d: 85:49:7d:a8:78:0f:0b:84:14:83:00:f7:bc:23:57: 64:2e:8d:c1:84:6f:87:53:54:41:b7:23:08:5d:58: 01:05:c7:e1:da:b8:3a:e8:79:e3:20:ec:2d:49:a6: 63:28:55:9a:56:5f:23:64:fe:91:76:2a:97:50:a9: 49:ba:67:b4:82:13:ce:ce:1b:c5:62:d8:2c:9e:8c: c4:73:e9:30:f5:7a:61:24:3d:3d:67:41:91:7c:94: 95:ed:96:3a:ce:1e:e0:1f:10:06:29:3c:b3:05:3d: 0e:6a:36:71:93:ba:fd:00:dc:02:d9:e6:b4:5e:1a: d3:2f:d2:28:14:22:b1:f5:60:da:92:30:fd:27:4b: 3d:8e:ad:fd:c9:ab:39:9c:8a:d8:7e:d9:f6:fa:ad: 04:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:05:3D:B9:87:EE:88:94:3D:3F:39:56:DC:5F:F4:C8:EA:FC:0A:1E X509v3 Authority Key Identifier: keyid:E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6e:e8:a9:8d:68:49:1b:78:2b:a1:05:49:73:4c:f8:dc:3e: d0:ad:1f:52:50:5b:7d:8d:51:a3:4a:fb:d5:44:c2:a7:cd:c8: e0:4e:bc:a4:9e:4f:82:ff:4a:32:52:01:79:99:62:f6:f0:a9: e0:64:ce:bc:ea:01:d7:1e:07:8f:a6:78:9b:23:66:a7:91:5f: 8f:cc:2e:24:df:31:11:76:65:17:b6:c9:8d:b3:f6:6c:34:4d: 38:85:b1:21:da:11:da:9e:b4:a7:38:75:62:1d:04:a9:ea:cc: 9a:ec:e6:02:d1:e8:59:71:57:e5:3f:1b:a2:98:c3:e8:0e:8d: b8:be:e6:5d:d0:bc:d1:88:ce:e4:32:a6:7e:29:11:dc:8b:c8: 14:18:f2:3d:a5:a8:66:38:d1:6f:26:f7:86:db:29:94:88:5b: 44:88:6e:54:67:05:46:c8:00:91:0c:dd:c3:b5:1a:dd:13:08: 01:f4:f8:af:c6:a1:11:c4:98:62:ae:ab:e7:52:50:60:3b:cb: 10:07:76:19:71:92:dd:6b:c7:bd:d3:74:a8:e4:14:26:b6:07: f4:8f:58:bb:69:2a:1f:ba:26:ea:38:e2:7c:28:f2:af:e0:53: 22:1e:db:80:9c:18:d3:0e:b2:4b:57:2f:71:48:6c:a5:86:29: d6:29:e2:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBCRDIxMTAvBgNVBAUTKEU2RTdFMEJBRjM0RjIwQzNEOUM5RUYyNjc3NjgwNUYz ODI0NjNCODYwHhcNMjUwNTEyMjIxMTAwWhcNMjUwNTE5MjIxMTAwWjAYMRYwFAYD VQQDEw02ODIyNzFmNS1kYWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4YM6TFhlpik3OgEUEVwAbtCLWdBvAK8h0BiFeqHrhdREt1j1rnt45s4yJvF hsXgv1HoG1j25VpVGQ2Mff9m0RyTn4LHKpV2I+gU+tIQhi+V2IPIaCaYli/IVz+E PtfCD0iL05T7CG2FSX2oeA8LhBSDAPe8I1dkLo3BhG+HU1RBtyMIXVgBBcfh2rg6 6HnjIOwtSaZjKFWaVl8jZP6RdiqXUKlJume0ghPOzhvFYtgsnozEc+kw9XphJD09 Z0GRfJSV7ZY6zh7gHxAGKTyzBT0OajZxk7r9ANwC2ea0XhrTL9IoFCKx9WDakjD9 J0s9jq39yas5nIrYftn2+q0EiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwFPbmH 7oiUPT85Vtxf9Mjq/AoeMB8GA1UdIwQYMBaAFObn4LrzTyDD2cnvJndoBfOCRjuG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEJEMi9FN0U5MDQwMDdE NkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElNUFp5ZThtZDJnRjg0SkdP NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV1Zmd1dk5QSU1QWnllOG1kMmdGODRKR080WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEJEMi9FN0U5MDQwMDdENkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElN UFp5ZThtZDJnRjg0SkdPNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBbuipjWhJG3groQVJc0z43D7QrR9SUFt9jVGjSvvVRMKnzcjgTryk nk+C/0oyUgF5mWL28KngZM686gHXHgePpnibI2ankV+PzC4k3zERdmUXtsmNs/Zs NE04hbEh2hHanrSnOHViHQSp6sya7OYC0ehZcVflPxuimMPoDo24vuZd0LzRiM7k MqZ+KRHci8gUGPI9pahmONFvJveG2ymUiFtEiG5UZwVGyACRDN3DtRrdEwgB9Piv xqERxJhirqvnUlBgO8sQB3YZcZLda8e903So5BQmtgf0j1i7aSofuibqOOJ8KPKv 4FMiHtuAnBjTDrJLVy9xSGylhinWKeKi -----END CERTIFICATE-----Generated at Tue May 13 18:33:20 2025 by rpki-client