$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft File: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft (raw, json) Hash identifier: INJDupS+dns/BReUhs75VoJk/rT2TCY0oqpOdNk2s9A= Subject key identifier: F6:D3:37:1E:9F:61:24:00:64:82:7B:D4:C8:D3:51:F2:32:36:C0:B0 Authority key identifier: EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 Certificate issuer: /CN=A9164B0A/serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft Manifest number: BE Signing time: Thu 15 May 2025 05:11:55 +0000 Manifest this update: Thu 15 May 2025 05:11:54 +0000 Manifest next update: Thu 22 May 2025 05:11:54 +0000 Files and hashes: 1: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl (hash: qoXEXb8vt43YeVPErFcSqLAEBoxxXypd00pu0TAiQTY=) 2: 0913CC14A59911EFBA373D1BC4F9AE02.roa (hash: gsiPVh91f5x0agyT4K6ET9Cizm+TUqAkZy67lxkkwXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B0A, serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Validity Not Before: May 15 05:11:54 2025 GMT Not After : May 22 05:11:54 2025 GMT Subject: CN=6825779a-747d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6d:31:01:2e:b6:81:ac:57:30:6c:8c:79:b3: ed:f7:5c:bc:b2:c8:98:e6:66:10:f3:18:11:45:d0: 75:3f:0f:78:85:5a:f5:ed:0b:70:a9:c6:f7:fa:86: 73:0d:3b:5b:36:e0:e0:85:85:b5:ce:09:78:90:d8: b1:d9:48:0d:90:2a:f4:27:83:92:44:b5:6f:7a:42: e9:69:60:35:09:89:bd:31:eb:2a:6f:18:16:8f:7f: 35:13:4c:40:0b:cf:6f:48:54:0e:67:d4:41:fd:4c: 4a:63:5c:6a:92:ff:71:a9:1b:5c:ee:db:73:b7:29: df:ee:0d:5f:80:73:51:be:c4:42:e8:40:b2:7d:bf: 8b:1f:d5:68:1d:f7:1f:63:44:01:9a:97:a2:aa:ac: 41:6b:3c:7a:5c:a9:d0:c4:a0:34:62:2b:28:4e:62: bf:e3:7b:9b:8c:55:74:1a:55:b3:71:85:a2:cd:92: 7e:c8:32:9d:d0:4d:38:7f:f1:30:c5:ed:40:97:cb: 6c:59:f7:2f:b4:ee:83:c8:90:1e:ed:d1:3b:27:17: 13:12:b6:92:ba:fa:a0:ac:10:2a:40:96:a7:29:cb: a5:af:26:1a:6a:f2:31:90:43:14:af:7f:8f:7d:fc: ea:26:73:02:9b:87:7a:08:99:37:b1:77:7a:e0:ee: f4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D3:37:1E:9F:61:24:00:64:82:7B:D4:C8:D3:51:F2:32:36:C0:B0 X509v3 Authority Key Identifier: keyid:EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:5f:ae:95:67:b7:53:6b:0e:e8:e6:fa:0c:50:0f:e8:ab:56: 47:dd:8a:b9:c7:08:3f:e4:4a:8e:8f:01:df:2f:e3:1c:8a:b9: 04:8d:8c:a7:8e:11:3d:5d:d0:0e:7d:5a:1f:a3:3b:34:28:45: 12:df:43:00:be:5f:fd:74:c8:4a:9d:db:78:96:d4:c0:90:0e: 2d:f9:07:2e:d6:37:0a:27:d5:e4:14:b8:7a:26:99:59:ea:4e: 1b:51:b2:1b:08:77:ac:69:49:cc:ef:1e:c3:e7:74:c4:3d:34: 75:37:26:70:ff:79:db:3a:b5:bf:b0:6e:46:81:eb:35:46:d4: 9c:5b:21:a6:45:02:91:8c:0f:03:b9:a7:03:e8:d9:83:2e:6a: b4:11:57:27:48:17:55:e3:d6:d5:78:e5:da:f3:b4:ba:13:05: 87:42:b2:19:ef:9e:95:b8:f8:42:a5:44:cc:a7:8c:ed:49:5e: 3e:34:5d:16:3e:54:58:06:12:04:98:dc:53:cb:c7:80:0b:69: 38:df:67:9a:c9:9c:c6:f6:c7:97:9d:0d:11:72:7f:4c:8b:68: 50:d7:f7:95:85:9a:67:90:47:da:bc:59:55:7e:8a:6c:60:16: 53:c8:cb:f7:ac:27:27:53:22:97:54:80:02:76:f8:92:e5:57: d8:68:6c:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRCMEExMTAvBgNVBAUTKEVFNEIwNTYxODQzN0YxOTQ4RDkyOTlGOEE0RjkyOUMx ODdEOTdGMzMwHhcNMjUwNTE1MDUxMTU0WhcNMjUwNTIyMDUxMTU0WjAYMRYwFAYD VQQDEw02ODI1Nzc5YS03NDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn20xAS62gaxXMGyMebPt91y8ssiY5mYQ8xgRRdB1Pw94hVr17Qtwqcb3+oZz DTtbNuDghYW1zgl4kNix2UgNkCr0J4OSRLVvekLpaWA1CYm9MesqbxgWj381E0xA C89vSFQOZ9RB/UxKY1xqkv9xqRtc7ttztynf7g1fgHNRvsRC6ECyfb+LH9VoHfcf Y0QBmpeiqqxBazx6XKnQxKA0YisoTmK/43ubjFV0GlWzcYWizZJ+yDKd0E04f/Ew xe1Al8tsWfcvtO6DyJAe7dE7JxcTEraSuvqgrBAqQJanKculryYaavIxkEMUr3+P ffzqJnMCm4d6CJk3sXd64O70qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbTNx6f YSQAZIJ71MjTUfIyNsCwMB8GA1UdIwQYMBaAFO5LBWGEN/GUjZKZ+KT5KcGH2X8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEIwQS80Q0YwRjcwODEy OTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzhaU05rcG40cFBrcHdZZlpm ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdrc0ZZWVEzOFpTTmtwbjRwUGtwd1lmWmZ6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEIwQS80Q0YwRjcwODEyOTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzha U05rcG40cFBrcHdZZlpmek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrX66VZ7dTaw7o5voMUA/oq1ZH3Yq5xwg/5EqOjwHfL+McirkEjYyn jhE9XdAOfVofozs0KEUS30MAvl/9dMhKndt4ltTAkA4t+Qcu1jcKJ9XkFLh6JplZ 6k4bUbIbCHesaUnM7x7D53TEPTR1NyZw/3nbOrW/sG5Gges1RtScWyGmRQKRjA8D uacD6NmDLmq0EVcnSBdV49bVeOXa87S6EwWHQrIZ756VuPhCpUTMp4ztSV4+NF0W PlRYBhIEmNxTy8eAC2k432eayZzG9seXnQ0Rcn9Mi2hQ1/eVhZpnkEfavFlVfops YBZTyMv3rCcnUyKXVIACdviS5VfYaGzK -----END CERTIFICATE-----Generated at Fri May 16 09:55:11 2025 by rpki-client