$ rpki-client -vvf rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft File: yH_T4kCIpNnfHF0CaFII6Qph7_c.mft (raw, json) Hash identifier: 1tzKV6CDYAoeehlaygnIRNjZSaWSc706FuLNuJOIts8= Subject key identifier: C0:D8:34:DD:5A:1D:BE:08:22:B2:F5:9F:A5:17:49:22:EF:1E:F9:1C Authority key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 Certificate issuer: /CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft Manifest number: 0182 Signing time: Tue 13 May 2025 02:53:56 +0000 Manifest this update: Tue 13 May 2025 02:53:56 +0000 Manifest next update: Tue 20 May 2025 02:53:56 +0000 Files and hashes: 1: yH_T4kCIpNnfHF0CaFII6Qph7_c.crl (hash: q0iW7UCqkonFcEx/E/73I9OYp/YnutKQ5yEfDmV+tLQ=) 2: CDE70CB2E52011EDB505E014C4F9AE02.roa (hash: W0hL1B4Pu9Y3eTRJdGcmU+N0LKwGZJeiFs+2ym6914M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161065, serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Validity Not Before: May 13 02:53:56 2025 GMT Not After : May 20 02:53:56 2025 GMT Subject: CN=6822b444-cf5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ad:d4:96:4d:ba:0b:b3:37:f8:fe:5a:a3:3e: 3c:38:21:c7:e1:e9:a4:b6:02:52:5b:c8:24:e9:35: 35:e4:0e:9c:71:66:2c:7a:1a:bd:0c:f5:f0:5a:e8: 27:3b:e4:91:6e:48:11:f0:38:fd:7a:b3:6b:ec:38: 5e:1f:75:73:2b:c2:cf:28:7f:f7:71:50:5c:74:b9: e2:c5:84:2e:38:da:a4:05:88:f3:ef:cd:17:b8:70: 6d:23:dd:a2:1a:94:23:17:cf:97:5d:12:04:b9:d1: 3f:9c:31:a8:09:68:35:55:85:9a:de:6a:43:bb:00: d4:e6:3b:e8:9e:2a:54:57:d6:71:e9:49:e2:a5:3e: 8f:f1:b8:90:55:c5:73:76:a9:90:c7:5d:69:55:a5: bf:14:2e:ea:22:b8:ed:53:75:a9:8b:d8:2b:0f:81: a3:af:9f:3d:b8:d5:2f:bc:30:03:b3:3c:d8:b8:2b: 73:c5:2f:3f:be:28:40:5b:40:75:74:eb:af:68:68: 9b:71:2b:cf:d8:07:95:b0:85:5a:86:28:2a:87:5e: 67:f7:66:2e:d3:36:11:de:6a:8e:66:0a:c1:1e:1c: 7f:39:d8:e4:60:c8:96:d4:93:55:57:81:f9:6f:36: 39:17:02:8c:74:21:a0:65:f7:65:cb:8f:33:03:6c: c5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D8:34:DD:5A:1D:BE:08:22:B2:F5:9F:A5:17:49:22:EF:1E:F9:1C X509v3 Authority Key Identifier: keyid:C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:67:7e:25:ef:e4:2d:3a:eb:61:20:ac:01:1c:38:0a:7b:3e: 45:5a:d4:5a:fb:4e:7b:52:e5:81:c7:11:d6:c4:2a:ea:98:53: a1:78:32:ed:8d:a9:0b:3d:8c:d4:39:a6:3c:8c:d4:d8:3d:f8: 51:d8:43:01:6d:b5:21:35:fe:58:4c:ab:6b:e9:d2:5c:00:24: ff:3a:bb:5d:bf:65:d4:45:f3:9c:ab:72:2f:50:5f:ae:1a:ad: c1:43:4f:3e:21:a1:c4:47:32:c7:dd:4b:13:26:87:b0:a1:27: e4:59:70:95:a0:60:e3:38:ca:d4:96:ae:14:96:78:70:30:88: 3a:1d:10:1f:fe:26:37:e6:23:4a:78:18:a1:08:7b:dd:57:98: b8:79:be:ca:ad:5e:7f:6a:ae:e7:7b:b3:fa:4f:1a:9b:0a:75: f8:c8:28:7f:d4:f2:79:c4:8f:c9:c5:47:07:22:92:3d:09:1c: 16:17:52:96:f4:a3:0e:de:b5:ec:25:e0:25:01:3a:14:dd:73: 61:61:6a:3c:9a:8c:dd:37:28:d9:35:71:e0:dc:0b:82:1a:55: d8:eb:dc:63:54:aa:95:c1:97:4e:b8:d2:ab:e8:6d:5d:be:49: 1f:32:26:27:70:15:01:e1:1a:7a:56:ec:aa:12:74:5f:2c:07: 45:90:91:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwNjUxMTAvBgNVBAUTKEM4N0ZEM0UyNDA4OEE0RDlERjFDNUQwMjY4NTIwOEU5 MEE2MUVGRjcwHhcNMjUwNTEzMDI1MzU2WhcNMjUwNTIwMDI1MzU2WjAYMRYwFAYD VQQDEw02ODIyYjQ0NC1jZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA163Ulk26C7M3+P5aoz48OCHH4emktgJSW8gk6TU15A6ccWYsehq9DPXwWugn O+SRbkgR8Dj9erNr7DheH3VzK8LPKH/3cVBcdLnixYQuONqkBYjz780XuHBtI92i GpQjF8+XXRIEudE/nDGoCWg1VYWa3mpDuwDU5jvonipUV9Zx6UnipT6P8biQVcVz dqmQx11pVaW/FC7qIrjtU3Wpi9grD4Gjr589uNUvvDADszzYuCtzxS8/vihAW0B1 dOuvaGibcSvP2AeVsIVahigqh15n92Yu0zYR3mqOZgrBHhx/OdjkYMiW1JNVV4H5 bzY5FwKMdCGgZfdly48zA2zFHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDYNN1a Hb4IIrL1n6UXSSLvHvkcMB8GA1UdIwQYMBaAFMh/0+JAiKTZ3xxdAmhSCOkKYe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA2NS8xQTI1RDI3NEU1 MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBObmZIRjBDYUZJSTZRcGg3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX1Q0a0NJcE5uZkhGMENhRklJNlFwaDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTA2NS8xQTI1RDI3NEU1MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBO bmZIRjBDYUZJSTZRcGg3X2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQZ34l7+QtOuthIKwBHDgKez5FWtRa+057UuWBxxHWxCrqmFOheDLt jakLPYzUOaY8jNTYPfhR2EMBbbUhNf5YTKtr6dJcACT/Ortdv2XURfOcq3IvUF+u Gq3BQ08+IaHERzLH3UsTJoewoSfkWXCVoGDjOMrUlq4UlnhwMIg6HRAf/iY35iNK eBihCHvdV5i4eb7KrV5/aq7ne7P6TxqbCnX4yCh/1PJ5xI/JxUcHIpI9CRwWF1KW 9KMO3rXsJeAlAToU3XNhYWo8mozdNyjZNXHg3AuCGlXY69xjVKqVwZdOuNKr6G1d vkkfMiYncBUB4Rp6VuyqEnRfLAdFkJER -----END CERTIFICATE-----Generated at Wed May 14 06:09:35 2025 by rpki-client