$ rpki-client -vvf rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft File: lYpO2dfWT6yHvRbsijZXHhovUIo.mft (raw, json) Hash identifier: 4l5+uDnPlBY4zm/QiHcoJDslSdau9e6/Ek8/Ny4F5rc= Subject key identifier: 5E:A6:F6:EF:E8:F1:86:B6:56:89:D2:E5:E0:00:24:A2:FF:1E:80:8D Authority key identifier: 95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A Certificate issuer: /CN=A9160EEF/serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Certificate serial: 0CA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft Manifest number: 0C8E Signing time: Sat 10 May 2025 18:05:22 +0000 Manifest this update: Sat 10 May 2025 18:05:22 +0000 Manifest next update: Sat 17 May 2025 18:05:22 +0000 Files and hashes: 1: lYpO2dfWT6yHvRbsijZXHhovUIo.crl (hash: ez0YTFi9Ph6KryHu7Ucf4D0TDwf+03C2+6+nIVB1sAI=) 2: C3667DBAE6A711EFA8D1A077C4F9AE02.roa (hash: 5CkSO9tc+/UFRkRtU6tdYYVHHpR7HqK76CBHyDuJbdw=) 3: C2911C74E6A711EFA8D1A077C4F9AE02.roa (hash: 7uzXUSClxgsZqYNV6os8g6TMOvQ9tK2i5DS7Dqxq1Is=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3238 (0xca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160EEF, serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Validity Not Before: May 10 18:05:22 2025 GMT Not After : May 17 18:05:22 2025 GMT Subject: CN=681f9562-9e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c5:6e:f1:5d:95:25:d0:22:42:8c:a8:08:21: 36:e3:af:71:a3:d1:ca:99:92:27:c5:89:54:cd:f2: 6a:77:5b:3c:70:93:f2:23:75:bd:a8:d5:ff:e2:f4: f5:b0:4f:c6:30:8c:c8:d6:1e:33:20:89:0e:ef:56: 92:b8:c8:2c:cd:9c:93:a9:56:b9:b7:e1:c6:a6:db: 0c:1e:fc:eb:ab:97:d3:3c:ee:00:b9:c0:13:56:c0: e8:c0:33:66:2f:a4:23:3e:2b:43:10:d6:e0:a6:80: 61:df:80:14:9a:57:01:8d:0a:7b:43:d0:b9:50:02: 1c:f2:8e:c6:39:25:eb:1c:0a:43:97:d0:70:47:62: 52:42:1b:d2:ab:c5:7b:1f:7f:00:e6:aa:f9:25:07: 58:08:ea:3c:83:46:9e:f6:c3:7e:64:b2:80:5b:23: ff:7c:b4:cc:25:0d:4a:70:80:2e:99:b4:05:9f:cb: 8f:59:72:6b:0a:51:1b:1a:9c:d6:a7:4f:af:fa:31: c4:a3:f0:85:9f:6b:21:97:4d:bc:b7:b5:f0:69:a7: c6:de:07:54:3e:2b:86:ef:ee:dd:fe:2b:db:13:21: b0:6e:1d:f8:fc:b5:81:99:ba:ec:f1:7e:79:cd:a0: e8:ff:7a:31:5e:18:1c:35:90:85:1f:e7:5d:25:3b: 32:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A6:F6:EF:E8:F1:86:B6:56:89:D2:E5:E0:00:24:A2:FF:1E:80:8D X509v3 Authority Key Identifier: keyid:95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:28:ae:64:8e:cb:7e:1a:38:6c:d0:49:3c:14:b8:d0:35:46: 48:53:55:1f:03:9f:a9:54:09:f3:4f:9a:11:72:d6:7b:66:b8: 45:4b:b0:62:96:ad:8f:f5:d3:b1:80:b0:df:9d:26:d4:ab:1f: 40:c0:e0:2d:d3:80:b2:b9:b3:1b:3d:ab:0e:fd:11:7d:03:52: ae:fa:3d:80:20:1b:09:36:8e:6f:49:7f:ff:33:41:ed:a8:90: fe:ab:3a:87:52:4a:01:f7:1b:3b:08:72:9f:a4:71:5d:98:83: e5:b9:c8:ee:aa:28:81:78:ce:39:b1:c9:9e:5e:f0:1e:af:3c: 8a:e3:33:28:ce:9c:88:b5:7b:72:ee:f8:b6:26:b4:ea:83:07: 43:c1:46:95:f9:b2:4e:e5:1d:57:82:e3:05:ca:53:0d:cb:5a: e2:e1:cb:ef:f9:a5:80:ca:9a:67:35:6e:e2:e4:9b:13:00:fc: 8e:72:ca:c3:29:21:d1:ea:00:56:91:e1:c8:3c:5f:6a:bc:26: 7d:7b:45:37:54:4d:a3:4f:1d:c0:19:8c:81:c2:32:4a:cb:07: 8b:63:ce:db:16:98:89:81:16:12:12:d9:0e:22:16:18:33:3e: a2:d7:53:0d:af:95:83:b7:5b:f2:b5:1c:01:0b:6d:a1:d1:65: e6:b1:82:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBFRUYxMTAvBgNVBAUTKDk1OEE0RUQ5RDdENjRGQUM4N0JEMTZFQzhBMzY1NzFF MUEyRjUwOEEwHhcNMjUwNTEwMTgwNTIyWhcNMjUwNTE3MTgwNTIyWjAYMRYwFAYD VQQDEw02ODFmOTU2Mi05ZTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8Vu8V2VJdAiQoyoCCE2469xo9HKmZInxYlUzfJqd1s8cJPyI3W9qNX/4vT1 sE/GMIzI1h4zIIkO71aSuMgszZyTqVa5t+HGptsMHvzrq5fTPO4AucATVsDowDNm L6QjPitDENbgpoBh34AUmlcBjQp7Q9C5UAIc8o7GOSXrHApDl9BwR2JSQhvSq8V7 H38A5qr5JQdYCOo8g0ae9sN+ZLKAWyP/fLTMJQ1KcIAumbQFn8uPWXJrClEbGpzW p0+v+jHEo/CFn2shl028t7XwaafG3gdUPiuG7+7d/ivbEyGwbh34/LWBmbrs8X55 zaDo/3oxXhgcNZCFH+ddJTsy9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6m9u/o 8Ya2VonS5eAAJKL/HoCNMB8GA1UdIwQYMBaAFJWKTtnX1k+sh70W7Io2Vx4aL1CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEVFRi82QzRDRDY5MEY4 ODgxMUU5OEZBMDBBN0NDNEY5QUUwMi9sWXBPMmRmV1Q2eUh2UmJzaWpaWEhob3ZV SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZcE8yZGZXVDZ5SHZSYnNpalpYSGhvdlVJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEVFRi82QzRDRDY5MEY4ODgxMUU5OEZBMDBBN0NDNEY5QUUwMi9sWXBPMmRmV1Q2 eUh2UmJzaWpaWEhob3ZVSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8KK5kjst+Gjhs0Ek8FLjQNUZIU1UfA5+pVAnzT5oRctZ7ZrhFS7Bi lq2P9dOxgLDfnSbUqx9AwOAt04CyubMbPasO/RF9A1Ku+j2AIBsJNo5vSX//M0Ht qJD+qzqHUkoB9xs7CHKfpHFdmIPlucjuqiiBeM45scmeXvAerzyK4zMozpyItXty 7vi2JrTqgwdDwUaV+bJO5R1XguMFylMNy1ri4cvv+aWAyppnNW7i5JsTAPyOcsrD KSHR6gBWkeHIPF9qvCZ9e0U3VE2jTx3AGYyBwjJKyweLY87bFpiJgRYSEtkOIhYY Mz6i11MNr5WDt1vytRwBC22h0WXmsYIY -----END CERTIFICATE-----Generated at Sun May 11 15:38:28 2025 by rpki-client