$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: 2dZ4tiXq4KhlF7KEX2nJkU1qKk/PVfn72PcNk8bATRM= Subject key identifier: 1A:27:10:3B:3F:53:57:75:28:5B:01:37:33:54:82:DB:1C:B9:59:87 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 0167 Signing time: Tue 13 May 2025 03:09:31 +0000 Manifest this update: Tue 13 May 2025 03:09:30 +0000 Manifest next update: Tue 20 May 2025 03:09:30 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: 1abuLOrNOdn9q9waQNFeQnpZghP60Wlur4cJfIQPLfc=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: May 13 03:09:30 2025 GMT Not After : May 20 03:09:30 2025 GMT Subject: CN=6822b7eb-bc63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:03:fb:b1:4d:16:63:f9:18:64:ba:33:3f:da: 8a:62:55:b4:3c:24:42:37:4b:92:58:da:7b:39:a6: 7e:60:0d:27:1e:09:92:9e:54:42:4a:e2:b7:03:b4: ea:8f:03:b2:09:c1:77:88:e4:8f:f1:f3:01:f9:37: f5:ad:5f:06:b1:4d:a5:87:12:89:b6:fb:8f:b2:5e: 75:cc:87:6d:00:e1:34:be:60:64:ce:cd:74:5f:e5: 3b:18:97:0e:1a:21:81:94:21:eb:7c:58:95:75:f9: 53:47:15:1f:06:6c:7b:ec:9f:e3:7d:e0:b4:a3:a2: b3:ed:f4:dc:c6:fb:f7:d4:5d:c0:41:a8:cc:08:57: 54:74:c1:f4:53:b3:72:0c:57:f8:49:83:15:f5:64: 47:3a:0f:77:a9:c3:6c:c9:c2:72:d6:ed:9c:2f:86: 43:14:8c:ab:de:98:dc:b3:63:11:ab:35:aa:79:70: 28:df:cd:aa:61:dd:97:ad:8e:15:9d:6e:4f:88:d1: 09:5b:0d:d2:1d:18:2b:89:0c:30:1c:e4:a5:e8:87: 2e:11:e1:dc:62:99:a6:07:9d:39:c7:ea:93:1e:4e: a4:46:72:84:95:1c:f7:85:5f:e1:4b:f0:fc:44:28: d4:b4:fc:eb:cd:8e:41:38:e2:a6:78:93:3a:0e:0c: 5e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:27:10:3B:3F:53:57:75:28:5B:01:37:33:54:82:DB:1C:B9:59:87 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:16:04:9d:ee:f7:64:03:a1:66:1d:a1:c4:c5:f9:4a:24:b8: b9:11:eb:12:92:88:63:45:f7:b4:c2:e9:53:cd:df:a7:62:34: 59:31:c4:47:4c:73:8c:33:32:f0:b4:f9:7f:5c:59:d5:c8:c8: a3:0e:d0:ed:98:c3:06:5e:68:c7:3b:b3:c7:a1:0d:d7:22:89: 1a:d1:45:be:7b:d3:dc:3b:47:cc:b5:02:fd:ff:44:b5:f4:c2: 0d:5a:ed:a0:19:61:8f:fe:d0:5c:8f:22:0c:66:60:3a:4d:a9: 93:ca:aa:b4:b9:4f:cd:12:5c:07:fa:28:54:39:39:35:56:a6: a2:9c:55:e6:ec:1c:b5:64:74:bf:ac:98:a5:98:ba:f1:3a:af: fb:b4:b9:ce:d3:09:5f:17:18:4d:3b:9b:1b:8f:03:5b:33:94: 5c:3f:c0:1c:e6:79:69:d4:66:c1:66:61:96:13:a2:73:1e:7f: 51:7f:38:4e:ac:da:94:5b:04:0f:ea:d0:f0:2e:1a:f2:ea:a1: 78:d5:da:56:d8:98:ca:b4:cd:32:9b:dd:06:83:1c:84:6d:3f: b1:39:9c:09:67:ce:f5:fe:36:2e:42:3e:06:35:9e:fb:d4:2a: bd:20:06:52:b9:b3:bf:85:cd:90:8e:20:4d:eb:4b:d2:ef:5f: 3b:b0:4a:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjUwNTEzMDMwOTMwWhcNMjUwNTIwMDMwOTMwWjAYMRYwFAYD VQQDEw02ODIyYjdlYi1iYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAP7sU0WY/kYZLozP9qKYlW0PCRCN0uSWNp7OaZ+YA0nHgmSnlRCSuK3A7Tq jwOyCcF3iOSP8fMB+Tf1rV8GsU2lhxKJtvuPsl51zIdtAOE0vmBkzs10X+U7GJcO GiGBlCHrfFiVdflTRxUfBmx77J/jfeC0o6Kz7fTcxvv31F3AQajMCFdUdMH0U7Ny DFf4SYMV9WRHOg93qcNsycJy1u2cL4ZDFIyr3pjcs2MRqzWqeXAo382qYd2XrY4V nW5PiNEJWw3SHRgriQwwHOSl6IcuEeHcYpmmB505x+qTHk6kRnKElRz3hV/hS/D8 RCjUtPzrzY5BOOKmeJM6Dgxe2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBonEDs/ U1d1KFsBNzNUgtscuVmHMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdFgSd7vdkA6FmHaHExflKJLi5EesSkohjRfe0wulTzd+nYjRZMcRH THOMMzLwtPl/XFnVyMijDtDtmMMGXmjHO7PHoQ3XIoka0UW+e9PcO0fMtQL9/0S1 9MINWu2gGWGP/tBcjyIMZmA6TamTyqq0uU/NElwH+ihUOTk1VqainFXm7By1ZHS/ rJilmLrxOq/7tLnO0wlfFxhNO5sbjwNbM5RcP8Ac5nlp1GbBZmGWE6JzHn9RfzhO rNqUWwQP6tDwLhry6qF41dpW2JjKtM0ym90GgxyEbT+xOZwJZ871/jYuQj4GNZ77 1Cq9IAZSubO/hc2QjiBN60vS7187sEpe -----END CERTIFICATE-----Generated at Wed May 14 08:17:45 2025 by rpki-client