$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft File: rGOF7VY-H9amaz5LUQ3MaTDNSww.mft (raw, json) Hash identifier: akUtCEtP0Brg9oVHmKWk3r0KJ1kB2C9Wxutw7J8gILM= Subject key identifier: EC:FC:08:67:B4:D3:44:1F:AA:EF:CD:7E:B1:CB:E9:CA:7E:AC:55:20 Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C Certificate issuer: /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft Manifest number: 019C Signing time: Thu 15 May 2025 02:58:24 +0000 Manifest this update: Thu 15 May 2025 02:58:23 +0000 Manifest next update: Thu 22 May 2025 02:58:23 +0000 Files and hashes: 1: rGOF7VY-H9amaz5LUQ3MaTDNSww.crl (hash: 59qtHvAOzxxdwRLZpsNV9gk3U+lXJPCxq4DJZ88Ofuc=) 2: 096A1DB6D2BA11ED8E06CC13C4F9AE02.roa (hash: BWLI/lFMOk0gs1uM9uMc8V3aTl6ezInYU2HutDGOR1Y=) 3: D1EAA18CD2BC11ED9E7A9A1BC4F9AE02.roa (hash: WszDeDtt2pA1qPuCttmdMd6CqUvx9wc+SucMvuhAFvE=) 4: 42EC5F02D2B711EDAF6DC017C4F9AE02.roa (hash: KfEf5+IVw2cc5iVIvA+8UOcszxul9bOLbJUOX0WGbIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160D0A, serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Validity Not Before: May 15 02:58:23 2025 GMT Not After : May 22 02:58:23 2025 GMT Subject: CN=6825584f-9ce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:78:21:e9:3c:ab:46:89:0f:0f:36:b7:1b:52: 55:93:f6:75:1c:a4:5e:80:45:00:a7:87:ad:0b:56: 28:47:0b:58:40:5b:1b:dd:9a:3b:c0:d9:c8:a9:a0: de:4d:a0:a6:99:0e:22:75:70:ef:cb:3e:df:1d:4e: 94:2f:42:5c:8c:d4:ea:d9:81:c8:f2:ec:48:9f:b4: 6d:15:48:7e:ed:0a:e6:0f:c2:ac:a7:c1:70:59:b6: 08:d9:17:ea:5d:4d:09:f1:af:46:9f:fc:58:65:df: c6:d5:22:70:41:45:9b:89:7a:51:59:e8:17:bb:98: 70:c4:e6:d8:f7:1e:e1:a3:01:70:eb:a7:c5:b2:b4: 7f:ee:c4:15:b0:78:2a:70:4a:14:6d:31:f5:3d:c8: bd:e5:8a:6c:de:5a:2b:9c:64:b4:8a:18:2a:ce:c1: 90:1b:96:7c:43:08:a7:21:50:2f:33:9f:24:0b:0b: a6:a5:ff:2d:ec:6d:40:54:35:9d:86:bd:e9:b8:b9: fc:9d:95:eb:2d:5a:3a:dc:fc:ea:78:99:c5:65:4f: fd:dd:9a:98:7e:09:2a:83:a5:99:87:03:50:7e:9f: ce:9b:b6:da:72:cc:27:2b:0a:35:40:36:54:d6:06: e1:18:69:6a:d1:3c:c9:d0:2d:79:14:19:49:26:db: be:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:FC:08:67:B4:D3:44:1F:AA:EF:CD:7E:B1:CB:E9:CA:7E:AC:55:20 X509v3 Authority Key Identifier: keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:7d:1f:1e:e0:5d:5f:d5:0c:83:0c:31:9c:91:a5:9b:03:dc: 0a:f0:29:74:f7:36:b0:9d:94:25:d4:05:b8:2f:e2:03:e6:bd: f0:b7:35:89:c7:e0:56:8a:8b:ba:7d:a6:01:b4:a3:6d:cf:3b: 1f:6b:a3:7a:bc:34:1e:96:38:c9:36:a9:b2:a5:09:4a:7c:73: 1c:42:29:89:b8:c0:db:9d:7b:c9:4c:15:88:8c:a0:a2:56:51: 4a:5a:25:75:e3:1d:99:c0:de:46:3f:1c:04:35:f0:26:98:aa: 21:97:1c:a1:12:b9:44:46:7a:40:60:01:4c:fd:89:55:30:d9: 81:e7:8c:7c:36:0a:3b:07:7f:d0:cf:29:61:1e:80:cd:06:9a: 0c:b2:55:4e:44:ac:59:db:56:0e:b9:c2:17:20:43:a5:1c:8b: bf:83:a2:eb:64:65:02:31:db:2c:84:1d:93:ef:b8:8d:d1:ed: d8:0c:3c:30:21:e2:3e:f3:1d:49:38:55:5b:ed:43:fd:54:4c: b4:0a:d9:57:e4:d3:3c:42:ff:da:58:e4:2a:6e:3b:f3:3d:7b: fe:2e:42:7f:e6:a6:de:21:c5:8c:e8:43:9d:3b:8c:f6:2a:5c: 0e:fd:39:3d:27:58:7b:0a:18:22:e8:00:e9:48:2a:99:b4:26: 18:52:55:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBEMEExMTAvBgNVBAUTKEFDNjM4NUVENTYzRTFGRDZBNjZCM0U0QjUxMERDQzY5 MzBDRDRCMEMwHhcNMjUwNTE1MDI1ODIzWhcNMjUwNTIyMDI1ODIzWjAYMRYwFAYD VQQDEw02ODI1NTg0Zi05Y2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ngh6TyrRokPDza3G1JVk/Z1HKRegEUAp4etC1YoRwtYQFsb3Zo7wNnIqaDe TaCmmQ4idXDvyz7fHU6UL0JcjNTq2YHI8uxIn7RtFUh+7QrmD8Ksp8FwWbYI2Rfq XU0J8a9Gn/xYZd/G1SJwQUWbiXpRWegXu5hwxObY9x7howFw66fFsrR/7sQVsHgq cEoUbTH1Pci95Yps3lornGS0ihgqzsGQG5Z8QwinIVAvM58kCwumpf8t7G1AVDWd hr3puLn8nZXrLVo63PzqeJnFZU/93ZqYfgkqg6WZhwNQfp/Om7bacswnKwo1QDZU 1gbhGGlq0TzJ0C15FBlJJtu+ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOz8CGe0 00Qfqu/NfrHL6cp+rFUgMB8GA1UdIwQYMBaAFKxjhe1WPh/Wpms+S1ENzGkwzUsM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEQwQS81NjRBMTM1RUQy MjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5YW1hejVMVVEzTWFURE5T d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHT0Y3VlktSDlhbWF6NUxVUTNNYVRETlN3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEQwQS81NjRBMTM1RUQyMjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5 YW1hejVMVVEzTWFURE5Td3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRfR8e4F1f1QyDDDGckaWbA9wK8Cl09zawnZQl1AW4L+ID5r3wtzWJ x+BWiou6faYBtKNtzzsfa6N6vDQeljjJNqmypQlKfHMcQimJuMDbnXvJTBWIjKCi VlFKWiV14x2ZwN5GPxwENfAmmKohlxyhErlERnpAYAFM/YlVMNmB54x8Ngo7B3/Q zylhHoDNBpoMslVORKxZ21YOucIXIEOlHIu/g6LrZGUCMdsshB2T77iN0e3YDDww IeI+8x1JOFVb7UP9VEy0CtlX5NM8Qv/aWOQqbjvzPXv+LkJ/5qbeIcWM6EOdO4z2 KlwO/Tk9J1h7Chgi6ADpSCqZtCYYUlUQ -----END CERTIFICATE-----Generated at Sat May 17 00:58:18 2025 by rpki-client