$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: jMbE03rB2xPKAQLO14GN3mBdRtLmXh2l+wBHUgslJM0= Subject key identifier: 91:C2:01:31:F8:6D:03:88:16:2D:BE:87:79:8C:09:49:A5:BC:C4:AA Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 08AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0882 Signing time: Fri 16 May 2025 21:01:48 +0000 Manifest this update: Fri 16 May 2025 21:01:47 +0000 Manifest next update: Fri 23 May 2025 21:01:47 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: QnntczTpJ7T0w3DHIUjrjC48LuxslL+RMPW9HsPv1XQ=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 21:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2220 (0x8ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: May 16 21:01:47 2025 GMT Not After : May 23 21:01:47 2025 GMT Subject: CN=6827a7bc-e8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:65:b1:40:3b:78:f4:f7:a7:ff:b8:b0:1f:59: 8d:0d:23:cb:1c:b0:42:e6:16:20:d7:64:59:d0:b6: 3d:de:2e:62:a8:5f:a8:67:31:93:64:97:f1:62:b2: 6d:20:90:88:44:fd:58:3b:8c:6c:9e:50:cb:9d:36: 36:be:0a:46:c5:ad:ab:fb:82:aa:2b:80:06:90:f6: 0c:d1:c6:44:3a:06:18:e3:23:eb:b3:9e:ac:e5:1c: 88:55:a5:56:9e:0f:12:0e:30:51:ec:e2:9d:16:3d: 9c:ca:9f:c5:aa:1e:ab:21:4f:3d:2e:09:20:0d:ea: cb:66:e3:af:6d:de:7e:be:3e:4c:e2:73:c6:82:57: 57:cb:da:12:ca:c5:59:9e:b3:5d:85:97:af:29:2f: 1a:e6:4e:b6:04:2a:f3:d3:db:80:d3:f5:f4:78:b9: 64:07:69:e2:c7:a9:b5:a1:d8:eb:96:b3:5b:4f:ca: 4e:02:a2:9c:5c:d8:27:d1:d2:a4:25:a8:e5:a7:e8: e1:d8:01:70:b7:af:c9:5b:d4:1b:d5:f1:bb:51:6c: 49:15:be:9e:bc:1f:cc:25:b9:52:c2:4a:b6:a1:4b: ca:b5:0c:5c:2b:dd:66:30:0e:02:b4:29:93:0c:a4: 23:ec:5a:d0:12:47:6d:79:9b:90:93:03:9c:f7:c7: 97:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C2:01:31:F8:6D:03:88:16:2D:BE:87:79:8C:09:49:A5:BC:C4:AA X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:80:17:19:fb:1e:8f:1b:29:95:4a:e6:97:8f:ed:78:59:bc: e4:b8:59:eb:1c:2a:b8:c8:10:d0:cc:26:56:b8:b1:c0:04:a6: 2b:f2:06:e2:63:03:07:ca:a7:33:ec:d1:4c:0e:89:a1:99:f8: 23:c5:1b:aa:c8:b0:01:47:1b:49:18:2a:91:34:80:5a:d9:80: 8f:cd:b0:3d:68:85:0d:54:f5:82:a4:17:ea:f8:b3:0d:ba:66: c8:cf:0f:91:8d:3a:61:16:f3:7b:4a:6c:09:30:ce:e4:65:f3: 12:4e:af:9c:46:88:d4:a7:04:93:45:89:01:ab:a4:59:4d:ed: 0f:cd:dc:80:19:37:e2:03:8a:73:42:a5:c3:11:7b:e1:d9:6d: fa:83:3f:c3:b9:32:59:69:d7:55:84:0d:4b:9f:dd:9a:9b:a4: 9d:52:a4:f1:8a:5f:ab:06:cd:f5:68:f4:20:47:45:eb:ca:8f: 5c:cb:2d:99:8d:4d:d2:ef:53:5d:4f:3a:15:67:ec:ef:d9:ab: 3d:5f:1c:ac:39:05:e1:a2:94:0b:81:93:3e:f6:cc:0d:b5:74: e1:fb:82:aa:ed:b0:7e:85:3d:ee:01:83:25:4b:21:0d:f6:70: db:06:8e:21:50:bd:c9:56:ad:a5:e3:67:f7:b8:e5:ee:52:36: f6:69:39:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwNTE2MjEwMTQ3WhcNMjUwNTIzMjEwMTQ3WjAYMRYwFAYD VQQDEw02ODI3YTdiYy1lOGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmWxQDt49Pen/7iwH1mNDSPLHLBC5hYg12RZ0LY93i5iqF+oZzGTZJfxYrJt IJCIRP1YO4xsnlDLnTY2vgpGxa2r+4KqK4AGkPYM0cZEOgYY4yPrs56s5RyIVaVW ng8SDjBR7OKdFj2cyp/Fqh6rIU89LgkgDerLZuOvbd5+vj5M4nPGgldXy9oSysVZ nrNdhZevKS8a5k62BCrz09uA0/X0eLlkB2nix6m1odjrlrNbT8pOAqKcXNgn0dKk Jajlp+jh2AFwt6/JW9Qb1fG7UWxJFb6evB/MJblSwkq2oUvKtQxcK91mMA4CtCmT DKQj7FrQEkdteZuQkwOc98eX+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHCATH4 bQOIFi2+h3mMCUmlvMSqMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4gBcZ+x6PGymVSuaXj+14WbzkuFnrHCq4yBDQzCZWuLHABKYr8gbi YwMHyqcz7NFMDomhmfgjxRuqyLABRxtJGCqRNIBa2YCPzbA9aIUNVPWCpBfq+LMN umbIzw+RjTphFvN7SmwJMM7kZfMSTq+cRojUpwSTRYkBq6RZTe0PzdyAGTfiA4pz QqXDEXvh2W36gz/DuTJZaddVhA1Ln92am6SdUqTxil+rBs31aPQgR0Xryo9cyy2Z jU3S71NdTzoVZ+zv2as9XxysOQXhopQLgZM+9swNtXTh+4Kq7bB+hT3uAYMlSyEN 9nDbBo4hUL3JVq2l42f3uOXuUjb2aTlB -----END CERTIFICATE-----Generated at Sat May 17 12:25:10 2025 by rpki-client